This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/cf520c-2893-42bf-a80f-237bb30d7305/1/zRiHFdGjFdtLfm7gsvy2-5E0CpI.roa File: zRiHFdGjFdtLfm7gsvy2-5E0CpI.roa (raw, json) Hash identifier: LIfEP9SyJvvx/mP2z1DtCTkpaRU2RlrQg1/zTilnakw= Subject key identifier: CD:18:87:15:D1:A3:15:DB:4B:7E:6E:E0:B2:FC:B6:FB:91:34:0A:92 Certificate issuer: /CN=44434fd98c11d8d72df380ca83edf79fcc00859f Certificate serial: 019B7910E9506ABF0E12CF78D98002AEC33C Authority key identifier: 44:43:4F:D9:8C:11:D8:D7:2D:F3:80:CA:83:ED:F7:9F:CC:00:85:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RENP2YwR2Nct84DKg-33n8wAhZ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/cf520c-2893-42bf-a80f-237bb30d7305/1/zRiHFdGjFdtLfm7gsvy2-5E0CpI.roa Signing time: Thu 01 Jan 2026 10:18:29 +0000 ROA not before: Thu 01 Jan 2026 10:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41960 IP address blocks: 185.75.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/cf520c-2893-42bf-a80f-237bb30d7305/1/RENP2YwR2Nct84DKg-33n8wAhZ8.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/cf520c-2893-42bf-a80f-237bb30d7305/1/RENP2YwR2Nct84DKg-33n8wAhZ8.mft rsync://rpki.ripe.net/repository/DEFAULT/RENP2YwR2Nct84DKg-33n8wAhZ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:e9:50:6a:bf:0e:12:cf:78:d9:80:02:ae:c3:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44434fd98c11d8d72df380ca83edf79fcc00859f Validity Not Before: Jan 1 10:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cd188715d1a315db4b7e6ee0b2fcb6fb91340a92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d0:54:46:b4:52:ec:ea:ee:ed:2d:ee:2e:41: 08:9c:1a:b6:8a:2b:01:86:d2:74:41:09:25:87:c4: 46:00:fe:6b:c0:4f:3f:79:7d:96:50:d9:2d:38:03: 76:1b:9e:78:38:2e:51:86:98:f7:3e:58:af:c7:80: 7c:0f:15:f6:59:06:54:96:4b:f6:86:3f:56:48:ea: 4b:ec:38:e9:2c:46:2c:be:41:82:e9:91:4f:2c:90: f4:29:6f:69:b4:0c:01:06:f6:0e:25:bf:80:65:fe: 45:52:60:fc:50:1c:d2:ec:76:82:d1:17:82:cc:9c: b1:4a:68:b8:2b:b2:57:4d:52:cd:f3:24:1e:bd:f3: 3b:d6:7e:f9:8b:e3:5d:06:47:3c:cc:5f:72:3c:5c: 36:b6:30:a0:07:71:f2:13:66:0f:e1:e5:8a:62:e9: d7:56:47:a4:86:b6:06:f9:96:69:ff:0e:5a:ec:2c: 77:6c:df:50:e2:d5:eb:30:6e:19:ba:ab:1c:d4:a7: 72:cf:6a:14:d1:a8:a5:57:8f:8a:1a:1c:da:42:08: ca:0a:9d:c8:f6:23:6c:9e:bd:f0:cf:b3:13:6e:b5: ec:7b:26:2b:2b:4c:2b:83:e4:ed:0a:8d:66:bc:72: cb:73:80:20:cd:3d:87:02:f6:f5:d8:39:5c:5e:2c: 56:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:18:87:15:D1:A3:15:DB:4B:7E:6E:E0:B2:FC:B6:FB:91:34:0A:92 X509v3 Authority Key Identifier: keyid:44:43:4F:D9:8C:11:D8:D7:2D:F3:80:CA:83:ED:F7:9F:CC:00:85:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RENP2YwR2Nct84DKg-33n8wAhZ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/cf520c-2893-42bf-a80f-237bb30d7305/1/zRiHFdGjFdtLfm7gsvy2-5E0CpI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/cf520c-2893-42bf-a80f-237bb30d7305/1/RENP2YwR2Nct84DKg-33n8wAhZ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.75.246.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:8d:1f:6b:1b:d1:55:50:ca:7a:ee:08:ab:58:cf:f8:e4:d4: f7:2f:f2:b7:52:41:e0:4b:65:24:06:5a:5c:e1:87:89:68:c4: d8:06:19:1d:df:3c:98:ff:5f:cd:50:80:da:b3:c0:f5:f4:3e: ba:8b:cf:81:1f:1c:b7:48:6e:50:f5:61:c8:b6:e3:04:8a:ea: fd:ab:e7:58:d1:c2:57:7c:83:46:e8:3f:78:46:90:4e:f7:c8: c0:23:66:8b:68:d3:da:2f:09:6e:52:d5:3d:07:be:0e:64:4b: 96:66:09:d5:8a:04:37:f4:46:7b:3d:fe:94:e3:a2:05:24:2c: 04:a2:c1:12:23:40:cf:32:65:87:37:72:d2:3b:12:93:11:b9: a1:44:25:54:29:e4:8c:ae:c2:e3:50:fa:73:a0:90:8e:f4:c0: 41:a3:96:e9:6f:b2:40:43:75:33:8c:30:3a:65:d3:3c:40:f5: a4:c1:83:10:f4:e0:20:a2:7d:17:4f:2b:7a:fc:f6:a6:5f:5a: e1:f2:93:30:ac:6a:4a:5c:a8:87:6d:49:e7:9b:64:95:d2:4c: 47:23:e0:ee:41:7d:bf:28:21:82:78:62:be:b8:79:17:9f:3a: e3:9a:2a:ff:4e:cd:0c:97:87:de:90:a7:f1:f5:64:6c:01:91: 8d:6d:02:5e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EOlQar8OEs942YACrsM8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0NDM0ZmQ5OGMxMWQ4ZDcyZGYzODBjYTgzZWRmNzlmY2Mw MDg1OWYwHhcNMjYwMTAxMTAxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZDE4ODcxNWQxYTMxNWRiNGI3ZTZlZTBiMmZjYjZmYjkxMzQwYTkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAodBURrRS7Oru7S3uLkEInBq2iisB htJ0QQklh8RGAP5rwE8/eX2WUNktOAN2G554OC5Rhpj3Plivx4B8DxX2WQZUlkv2 hj9WSOpL7DjpLEYsvkGC6ZFPLJD0KW9ptAwBBvYOJb+AZf5FUmD8UBzS7HaC0ReC zJyxSmi4K7JXTVLN8yQevfM71n75i+NdBkc8zF9yPFw2tjCgB3HyE2YP4eWKYunX VkekhrYG+ZZp/w5a7Cx3bN9Q4tXrMG4Zuqsc1Kdyz2oU0ailV4+KGhzaQgjKCp3I 9iNsnr3wz7MTbrXseyYrK0wrg+TtCo1mvHLLc4AgzT2HAvb12DlcXixWGwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFM0YhxXRoxXbS35u4LL8tvuRNAqSMB8GA1UdIwQY MBaAFERDT9mMEdjXLfOAyoPt95/MAIWfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkVOUDJZd1IyTmN0ODRES2ctMzNuOHdBaFo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9jZjUyMGMtMjg5My00MmJmLWE4MGYt MjM3YmIzMGQ3MzA1LzEvelJpSEZkR2pGZHRMZm03Z3N2eTItNUUwQ3BJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9jZjUyMGMtMjg5My00MmJmLWE4MGYtMjM3YmIzMGQ3MzA1 LzEvUkVOUDJZd1IyTmN0ODRES2ctMzNuOHdBaFo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUv2MA0G CSqGSIb3DQEBCwUAA4IBAQAvjR9rG9FVUMp67girWM/45NT3L/K3UkHgS2UkBlpc 4YeJaMTYBhkd3zyY/1/NUIDas8D19D66i8+BHxy3SG5Q9WHItuMEiur9q+dY0cJX fING6D94RpBO98jAI2aLaNPaLwluUtU9B74OZEuWZgnVigQ39EZ7Pf6U46IFJCwE osESI0DPMmWHN3LSOxKTEbmhRCVUKeSMrsLjUPpzoJCO9MBBo5bpb7JAQ3UzjDA6 ZdM8QPWkwYMQ9OAgon0XTyt6/PamX1rh8pMwrGpKXKiHbUnnm2SV0kxHI+DuQX2/ KCGCeGK+uHkXnzrjmir/Ts0Ml4fekKfx9WRsAZGNbQJe -----END CERTIFICATE-----Generated at Sun Jan 25 23:32:44 2026 by rpki-client