This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Z9JO3nwOYHiDZmqIJ3g4kRYsJrI.roa File: Z9JO3nwOYHiDZmqIJ3g4kRYsJrI.roa (raw, json) Hash identifier: FsKlq94nxENEAUK+WfnG+YBdHTQ8WZaeKyI1cOa05to= Subject key identifier: 67:D2:4E:DE:7C:0E:60:78:83:66:6A:88:27:78:38:91:16:2C:26:B2 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84A7B3AC55E4B04657183310BE997E Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Z9JO3nwOYHiDZmqIJ3g4kRYsJrI.roa Signing time: Fri 02 Jan 2026 16:22:38 +0000 ROA not before: Fri 02 Jan 2026 16:22:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44200 IP address blocks: 93.171.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:a7:b3:ac:55:e4:b0:46:57:18:33:10:be:99:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67d24ede7c0e607883666a8827783891162c26b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:06:ee:f9:87:a9:0b:6a:e8:a1:dc:7f:07:e1: 65:40:be:7c:9a:f3:02:e2:c1:cb:bf:50:a7:d0:ea: 12:05:2e:47:c9:d6:f3:71:87:27:58:2d:a9:10:78: 2b:c4:a5:73:b3:91:e5:a1:84:09:c2:75:b1:0a:bf: 54:b0:f2:34:c1:15:ec:ce:5a:f2:68:90:76:e7:0c: 00:7e:14:e7:0d:67:b8:37:a5:4b:1d:9e:fd:a7:32: 2d:77:14:28:48:53:d8:79:2e:ab:b9:e6:c1:26:23: c4:ef:d4:51:99:05:a7:09:06:ae:d6:be:07:02:77: 13:eb:bd:75:5e:51:e5:5e:6d:30:77:ae:45:20:72: d0:0a:d3:96:26:a5:b1:2d:eb:2a:c8:5b:4d:50:7e: e7:e3:40:a4:37:80:86:c5:11:16:73:3a:c9:9f:ff: ff:21:0c:b1:fc:ef:ad:5e:9d:2a:61:2d:d6:e7:8f: f6:2d:42:47:a6:45:28:3b:2e:91:f9:f6:b9:b2:b0: 82:87:da:e3:e6:fb:6b:11:f0:e1:d0:cd:62:21:cf: bf:2d:db:61:1f:c2:5c:8b:b5:b2:d4:be:5b:ef:20: 77:f5:3f:6c:f1:6d:fc:f6:ae:d6:f7:51:cc:cb:5c: c7:a1:d4:c8:02:6e:2b:9b:5e:a8:af:42:ac:45:3e: af:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:D2:4E:DE:7C:0E:60:78:83:66:6A:88:27:78:38:91:16:2C:26:B2 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Z9JO3nwOYHiDZmqIJ3g4kRYsJrI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.171.209.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:8a:22:f0:a9:9e:ac:13:a5:bf:02:61:7a:aa:4f:20:30:0b: e7:d5:55:00:89:92:25:b6:92:88:58:3a:7a:0c:ed:8b:eb:c9: 21:0e:33:e4:ed:34:65:60:2b:51:b0:61:20:f2:16:e3:78:30: 59:d5:f0:de:84:38:6f:4b:d0:9e:e8:5d:87:e3:07:c1:41:f3: f4:bc:2a:86:70:fd:de:46:0c:20:ea:90:6f:6c:b7:ff:f5:d4: ed:75:72:23:3b:0a:c4:24:40:28:fb:a6:4b:4c:4d:40:3a:2e: f9:8a:84:14:39:8b:4b:80:dd:e0:13:37:a8:39:2c:fe:8e:88: bd:3f:5a:f8:11:80:ca:04:a9:92:b0:8c:38:ee:f5:57:c6:66: 60:95:93:86:cd:06:4c:7a:f9:26:cb:94:66:fa:d4:bd:9c:8f: 9a:42:5c:bc:20:7b:a6:e9:01:65:67:4a:d3:11:b5:7e:1a:ec: 8f:9e:0d:9c:12:3e:ea:11:e6:ba:06:a2:59:a3:e8:3c:27:29: c2:f8:58:3f:74:f2:31:cc:2c:a8:2c:12:32:8c:b0:ca:bd:6e: a8:d0:93:70:f3:6f:5e:bb:b4:b4:f0:97:8c:76:c8:b4:e8:d6: 74:17:61:96:47:e9:b0:0e:b7:8f:97:48:f4:a2:40:82:1f:23: 17:b5:69:33 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hKezrFXksEZXGDMQvpl+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2N2QyNGVkZTdjMGU2MDc4ODM2NjZhODgyNzc4Mzg5MTE2MmMyNmIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Qbu+YepC2roodx/B+FlQL58mvMC 4sHLv1Cn0OoSBS5HydbzcYcnWC2pEHgrxKVzs5HloYQJwnWxCr9UsPI0wRXszlry aJB25wwAfhTnDWe4N6VLHZ79pzItdxQoSFPYeS6ruebBJiPE79RRmQWnCQau1r4H AncT6711XlHlXm0wd65FIHLQCtOWJqWxLesqyFtNUH7n40CkN4CGxREWczrJn/// IQyx/O+tXp0qYS3W54/2LUJHpkUoOy6R+fa5srCCh9rj5vtrEfDh0M1iIc+/Ldth H8Jci7Wy1L5b7yB39T9s8W389q7W91HMy1zHodTIAm4rm16or0KsRT6vgwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGfSTt58DmB4g2ZqiCd4OJEWLCayMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvWjlKTzNud09ZSGlEWm1xSUozZzRrUllzSnJJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXavRMA0G CSqGSIb3DQEBCwUAA4IBAQA8iiLwqZ6sE6W/AmF6qk8gMAvn1VUAiZIltpKIWDp6 DO2L68khDjPk7TRlYCtRsGEg8hbjeDBZ1fDehDhvS9Ce6F2H4wfBQfP0vCqGcP3e Rgwg6pBvbLf/9dTtdXIjOwrEJEAo+6ZLTE1AOi75ioQUOYtLgN3gEzeoOSz+joi9 P1r4EYDKBKmSsIw47vVXxmZglZOGzQZMevkmy5Rm+tS9nI+aQly8IHum6QFlZ0rT EbV+GuyPng2cEj7qEea6BqJZo+g8JynC+Fg/dPIxzCyoLBIyjLDKvW6o0JNw829e u7S08JeMdsi06NZ0F2GWR+mwDrePl0j0okCCHyMXtWkz -----END CERTIFICATE-----Generated at Sun Jan 25 17:44:36 2026 by rpki-client