This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ZtK2V9j1QyAV3Mohc_DGv_S2unI.roa File: ZtK2V9j1QyAV3Mohc_DGv_S2unI.roa (raw, json) Hash identifier: 1xV3V7XOe0RT/50nJcbGM6oINV6/ei13eE4lAOp0Q/A= Subject key identifier: 66:D2:B6:57:D8:F5:43:20:15:DC:CA:21:73:F0:C6:BF:F4:B6:BA:72 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84D48903CCD168FA80A1A188B6FF06 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ZtK2V9j1QyAV3Mohc_DGv_S2unI.roa Signing time: Fri 02 Jan 2026 16:22:50 +0000 ROA not before: Fri 02 Jan 2026 16:22:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60075 IP address blocks: 31.148.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:d4:89:03:cc:d1:68:fa:80:a1:a1:88:b6:ff:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=66d2b657d8f5432015dcca2173f0c6bff4b6ba72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f2:4f:f2:30:bd:c8:d0:ae:df:c1:bf:d5:d1: f2:8e:6e:41:22:fd:45:01:44:02:4c:17:5a:85:ad: 26:a5:5c:f3:ea:46:ff:56:97:93:a9:db:57:64:52: 1b:17:18:87:35:dc:3b:55:88:c4:c2:04:e3:23:65: e8:06:4a:d3:13:b8:5a:52:c4:f7:db:f5:51:81:e7: 32:e0:a8:eb:24:bd:31:63:10:2a:b7:ee:de:d7:b1: d6:f7:97:67:d4:5f:46:81:36:95:05:54:8e:ec:ba: 34:db:8c:09:6b:8c:74:21:c8:88:14:65:e8:c9:3b: f6:c2:53:7d:b8:b5:b9:22:81:b0:7b:31:22:38:2c: c5:20:b6:b3:3b:67:12:cc:1d:2e:3d:eb:3c:1a:ac: 50:21:4e:e0:78:86:31:71:c4:e9:2b:74:70:f9:89: 92:e1:a2:34:ac:f4:84:47:36:b6:eb:f7:44:0b:1b: a9:b6:2f:43:e3:2b:ab:4d:ca:76:92:eb:fc:f3:dd: ab:ab:fd:20:8f:f1:38:1f:a3:f6:df:03:b7:1a:7a: 63:c9:3c:a8:17:b6:ca:5f:72:17:ab:a4:36:48:92: fd:bd:9a:37:f8:74:3f:e3:df:69:fa:80:e8:bb:35: 2c:ec:f4:ea:a2:33:b5:ce:94:36:e3:fb:36:f2:7c: 29:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:D2:B6:57:D8:F5:43:20:15:DC:CA:21:73:F0:C6:BF:F4:B6:BA:72 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ZtK2V9j1QyAV3Mohc_DGv_S2unI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.148.2.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:bb:81:b0:2f:29:d4:6a:d6:46:a3:90:b6:6d:33:43:fd:dc: a1:3f:c6:1a:de:51:d8:58:ce:a3:17:97:2c:f5:eb:b4:95:e4: 76:7a:ed:18:1e:a3:41:2c:ed:38:75:70:6d:85:e0:17:8f:49: 5b:18:5b:20:b7:eb:2c:72:9e:d0:3a:fb:26:a5:86:c7:0c:e9: bc:33:b0:5f:14:1f:1f:4d:a6:be:7c:39:25:f3:f3:30:e3:c3: 1c:7c:cd:c5:5d:33:de:cb:ac:8b:27:21:3b:84:c3:87:ec:b3: 01:41:be:74:3b:a1:be:cd:b9:3c:4c:8a:cd:a7:34:f5:d2:8d: c5:a5:1e:a8:13:cc:b5:64:95:40:f2:6e:1a:ee:4b:db:d6:41: ff:e6:06:de:93:19:7c:ae:92:eb:64:5a:d9:f9:c2:63:6b:ea: 83:3f:cc:22:9f:4a:80:61:61:2f:e6:de:13:15:97:0f:5e:5d: 27:90:9f:71:66:ae:a3:c7:49:38:fd:68:c6:d9:92:6b:60:e0: 5a:3b:a5:03:a7:5a:14:82:b3:38:11:1a:a2:65:78:00:e3:e4: 94:57:e1:15:c1:d4:08:cb:d2:1c:ac:fa:5a:7e:46:8b:a0:f3: eb:96:02:11:ed:f8:5a:39:a7:cb:68:dc:f6:d0:29:02:be:7a: 9c:24:13:ba -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hNSJA8zRaPqAoaGItv8GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NmQyYjY1N2Q4ZjU0MzIwMTVkY2NhMjE3M2YwYzZiZmY0YjZiYTcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApvJP8jC9yNCu38G/1dHyjm5BIv1F AUQCTBdaha0mpVzz6kb/VpeTqdtXZFIbFxiHNdw7VYjEwgTjI2XoBkrTE7haUsT3 2/VRgecy4KjrJL0xYxAqt+7e17HW95dn1F9GgTaVBVSO7Lo024wJa4x0IciIFGXo yTv2wlN9uLW5IoGwezEiOCzFILazO2cSzB0uPes8GqxQIU7geIYxccTpK3Rw+YmS 4aI0rPSERza26/dECxupti9D4yurTcp2kuv8892rq/0gj/E4H6P23wO3GnpjyTyo F7bKX3IXq6Q2SJL9vZo3+HQ/499p+oDouzUs7PTqojO1zpQ24/s28nwp5QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGbStlfY9UMgFdzKIXPwxr/0trpyMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvWnRLMlY5ajFReUFWM01vaGNfREd2X1MydW5JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBH5QCMA0G CSqGSIb3DQEBCwUAA4IBAQCdu4GwLynUatZGo5C2bTND/dyhP8Ya3lHYWM6jF5cs 9eu0leR2eu0YHqNBLO04dXBtheAXj0lbGFsgt+sscp7QOvsmpYbHDOm8M7BfFB8f Taa+fDkl8/Mw48McfM3FXTPey6yLJyE7hMOH7LMBQb50O6G+zbk8TIrNpzT10o3F pR6oE8y1ZJVA8m4a7kvb1kH/5gbekxl8rpLrZFrZ+cJja+qDP8win0qAYWEv5t4T FZcPXl0nkJ9xZq6jx0k4/WjG2ZJrYOBaO6UDp1oUgrM4ERqiZXgA4+SUV+EVwdQI y9IcrPpafkaLoPPrlgIR7fhaOafLaNz20CkCvnqcJBO6 -----END CERTIFICATE-----Generated at Sun Jan 25 17:44:41 2026 by rpki-client