This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ZW7qULCj2PgFCFsiljWHmnptKRI.roa File: ZW7qULCj2PgFCFsiljWHmnptKRI.roa (raw, json) Hash identifier: 9wDjssyhmWMSaL4fpdENRNb2J88OiCq8ycL0EXf2i0k= Subject key identifier: 65:6E:EA:50:B0:A3:D8:F8:05:08:5B:22:96:35:87:9A:7A:6D:29:12 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F85097F0B70AA67CC4F5AEA4DCBB103 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ZW7qULCj2PgFCFsiljWHmnptKRI.roa Signing time: Fri 02 Jan 2026 16:23:03 +0000 ROA not before: Fri 02 Jan 2026 16:23:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209918 IP address blocks: 95.47.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:09:7f:0b:70:aa:67:cc:4f:5a:ea:4d:cb:b1:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:23:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=656eea50b0a3d8f805085b229635879a7a6d2912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fa:0e:48:74:5d:fb:74:bd:dc:0b:5c:e1:f2: 8c:73:9a:5e:c8:2c:5a:4b:2e:d8:dc:15:f9:01:2d: 03:30:1e:0a:34:49:fa:b9:d5:3d:c6:55:c1:d8:de: 40:ec:d2:00:48:90:75:f7:12:f4:28:0f:91:a7:15: 27:7c:8e:1c:c2:b2:5c:ea:c8:ed:97:31:c4:83:7a: b8:8d:74:5d:b2:1a:5d:3f:33:f0:9c:3c:c7:37:d3: 68:52:3e:e5:64:ac:44:1e:4c:62:0f:3d:7d:fe:88: a0:bc:f2:41:73:d1:8f:06:e8:14:0d:65:a9:ff:00: 94:82:58:1a:85:73:30:56:e1:5e:e3:65:9a:b6:35: ca:b0:61:71:c2:d2:24:9c:46:36:85:f6:b4:58:ba: af:af:1e:ab:1b:75:48:28:c8:07:33:38:16:a4:d1: a1:ed:6d:7d:80:7c:91:54:e5:13:41:12:76:51:48: f6:7c:37:64:93:56:ed:83:ea:25:14:46:36:48:bd: f5:fb:97:a8:33:e4:d0:04:6f:ff:39:91:e4:c1:b1: 5c:0a:8c:f5:78:9d:33:01:01:39:e3:29:0f:0d:36: fc:bc:4f:81:59:00:99:dd:88:52:7c:17:03:d3:c6: 79:ce:a7:db:f7:7a:a4:17:9a:e3:0d:bc:8a:82:c6: 6f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:6E:EA:50:B0:A3:D8:F8:05:08:5B:22:96:35:87:9A:7A:6D:29:12 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ZW7qULCj2PgFCFsiljWHmnptKRI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.47.232.0/24 Signature Algorithm: sha256WithRSAEncryption 91:9f:58:8f:a2:51:b0:b2:ac:fc:0a:3e:be:7e:47:6e:72:e1: 52:03:e3:4f:7f:cc:48:f1:cc:c1:04:43:f8:79:26:16:2b:ca: ad:c4:3b:4a:37:eb:0b:47:c1:f4:ac:84:9f:3b:7c:d0:d1:de: 53:83:20:50:86:0c:e0:de:66:4f:0f:14:3d:ad:cf:b8:51:7a: d3:ea:6b:53:ac:3a:d2:4c:4e:bd:c5:16:79:1c:28:70:fb:65: d3:77:dd:fd:ec:19:05:88:1f:c9:b0:dc:e5:ad:54:e5:3b:41: 8b:53:a8:8b:70:c6:fd:52:2a:16:54:6b:86:d4:71:f2:63:41: 8a:e6:4a:4c:19:65:43:12:fa:03:5f:fd:f9:66:0a:75:15:e3: 11:e2:3e:ca:87:7f:25:99:ba:48:cc:9c:7d:a3:65:a7:95:b0: bf:2e:65:ca:23:6c:4c:af:63:66:69:8c:27:b9:67:13:a6:16: ea:33:76:2c:b3:8e:50:ac:ee:2b:f4:f6:08:9e:da:cc:80:08: 31:45:79:cb:f2:de:fc:58:5b:3a:72:f7:84:f1:af:d3:c3:35: c1:50:ee:f9:93:bb:7f:55:db:3d:ff:80:e8:54:ce:0b:eb:87: d1:0b:68:b2:f5:89:a0:0e:51:d1:e7:a9:74:0a:63:1e:07:b6: 04:28:6e:f3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hQl/C3CqZ8xPWupNy7EDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMzAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NTZlZWE1MGIwYTNkOGY4MDUwODViMjI5NjM1ODc5YTdhNmQyOTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPoOSHRd+3S93Atc4fKMc5peyCxa Sy7Y3BX5AS0DMB4KNEn6udU9xlXB2N5A7NIASJB19xL0KA+RpxUnfI4cwrJc6sjt lzHEg3q4jXRdshpdPzPwnDzHN9NoUj7lZKxEHkxiDz19/oigvPJBc9GPBugUDWWp /wCUglgahXMwVuFe42WatjXKsGFxwtIknEY2hfa0WLqvrx6rG3VIKMgHMzgWpNGh 7W19gHyRVOUTQRJ2UUj2fDdkk1btg+olFEY2SL31+5eoM+TQBG//OZHkwbFcCoz1 eJ0zAQE54ykPDTb8vE+BWQCZ3YhSfBcD08Z5zqfb93qkF5rjDbyKgsZvIQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGVu6lCwo9j4BQhbIpY1h5p6bSkSMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvWlc3cVVMQ2oyUGdGQ0ZzaWxqV0htbnB0S1JJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXy/oMA0G CSqGSIb3DQEBCwUAA4IBAQCRn1iPolGwsqz8Cj6+fkducuFSA+NPf8xI8czBBEP4 eSYWK8qtxDtKN+sLR8H0rISfO3zQ0d5TgyBQhgzg3mZPDxQ9rc+4UXrT6mtTrDrS TE69xRZ5HChw+2XTd9397BkFiB/JsNzlrVTlO0GLU6iLcMb9UioWVGuG1HHyY0GK 5kpMGWVDEvoDX/35Zgp1FeMR4j7Kh38lmbpIzJx9o2WnlbC/LmXKI2xMr2NmaYwn uWcTphbqM3Yss45QrO4r9PYIntrMgAgxRXnL8t78WFs6cveE8a/TwzXBUO75k7t/ Vds9/4DoVM4L64fRC2iy9YmgDlHR56l0CmMeB7YEKG7z -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:21 2026 by rpki-client