This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/zxlNoz3rzQ3-dAnhy_jjif6hTJc.roa File: zxlNoz3rzQ3-dAnhy_jjif6hTJc.roa (raw, json) Hash identifier: J8qFyCD+0ZUlnXfOJKaFx3pu76rmJ2d6yo1rgVv/jyk= Subject key identifier: CF:19:4D:A3:3D:EB:CD:0D:FE:74:09:E1:CB:F8:E3:89:FE:A1:4C:97 Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f Certificate serial: 019B7DCB61B48009E9B4DCD97B7C03E6CAAC Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/zxlNoz3rzQ3-dAnhy_jjif6hTJc.roa Signing time: Fri 02 Jan 2026 08:20:39 +0000 ROA not before: Fri 02 Jan 2026 08:20:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212389 IP address blocks: 31.24.249.0/24 maxlen: 32 2a12:4942:4009::/48 maxlen: 48 2a12:4946:8030::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.mft rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:61:b4:80:09:e9:b4:dc:d9:7b:7c:03:e6:ca:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f Validity Not Before: Jan 2 08:20:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cf194da33debcd0dfe7409e1cbf8e389fea14c97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:4c:0d:77:22:50:72:af:aa:12:55:67:df:76: c6:e2:15:46:b4:e4:68:9d:2b:4e:91:4b:39:fb:4f: 96:87:ba:81:ef:48:42:97:4c:0f:2e:59:6c:53:3e: a9:7c:60:75:12:70:24:3c:c0:e0:d2:33:64:98:bc: ae:a7:26:6e:b8:08:7c:81:34:1b:8d:57:3f:31:cc: 3a:8c:14:f8:40:f9:87:02:10:47:16:bb:4d:fc:ca: 79:d5:97:11:80:c8:8c:46:1c:42:af:99:3d:2d:8f: 57:6c:fe:85:d0:70:07:35:34:02:dc:d9:a8:fb:ec: 03:0b:77:12:d8:6e:d9:b9:dc:7e:48:38:38:a0:5f: 2a:e1:1e:7e:71:4d:0e:73:e5:0a:41:1e:e5:61:81: 58:34:40:b8:8f:ce:c7:2d:1b:0e:13:9d:d0:ee:ff: b7:41:09:2b:a4:76:d4:ea:5a:c0:d8:97:0a:ab:6b: 64:87:cf:55:af:8c:2d:e9:f2:d2:2e:f8:c2:43:8a: 86:9a:23:81:04:d3:56:76:4e:99:a5:81:22:59:fd: 4e:c8:d5:d1:61:02:62:8e:e5:e5:38:ae:76:e7:d4: 8c:60:b2:82:b2:0c:49:1d:3c:c9:fa:9c:30:25:1e: 97:17:86:d4:8e:0a:b5:ad:ef:ec:9c:a2:c8:9a:49: ce:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:19:4D:A3:3D:EB:CD:0D:FE:74:09:E1:CB:F8:E3:89:FE:A1:4C:97 X509v3 Authority Key Identifier: keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/zxlNoz3rzQ3-dAnhy_jjif6hTJc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.24.249.0/24 IPv6: 2a12:4942:4009::/48 2a12:4946:8030::/48 Signature Algorithm: sha256WithRSAEncryption 5b:a1:b3:33:31:22:6a:84:5e:37:f7:2c:1f:ce:13:5a:92:29: 16:9f:a3:2f:0b:9e:71:ed:56:1e:67:b0:49:9f:99:12:3c:12: fe:1c:4b:6f:df:02:dd:09:d0:d6:9e:f1:de:72:63:8d:61:19: 19:50:d5:1b:96:9d:83:6e:f6:48:bc:fb:0e:68:fd:cd:82:87: 5f:2b:a9:56:a5:5f:3c:c6:1f:b2:c5:ba:8c:db:d1:8a:63:dc: 4d:33:58:c2:81:a9:25:06:4d:3d:e5:a9:2e:d8:c6:93:2f:f2: 17:87:ca:c8:a7:00:b2:35:86:02:4b:29:dc:91:81:e2:48:20: da:ac:d1:bb:75:57:21:20:53:2d:a3:b6:6e:aa:14:a3:2c:5d: 47:b0:45:73:17:a2:af:a5:c4:41:59:a1:6e:cd:22:f5:62:25: 9c:8a:39:5b:99:95:2a:a9:ca:8c:05:26:2a:39:1b:1a:12:d9: ac:ed:35:08:41:60:37:31:e7:0d:62:f1:70:bf:d3:66:49:07: 92:c5:fa:99:a8:13:f1:0f:3a:3e:8a:4c:9a:82:22:ce:18:37: d8:2a:53:a5:3a:1a:cb:4a:0d:c5:ce:ae:64:e5:54:df:30:40: 10:8e:df:6a:71:92:1c:08:cb:85:1f:94:0d:6d:94:90:ad:ff: 9b:bf:95:24 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt9y2G0gAnptNzZe3wD5sqsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0NjM5NWMxMjY3MmFkOTU4OTIxYjYyYjlkYzliMmJjZDhh NjhhOWYwHhcNMjYwMTAyMDgyMDM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZjE5NGRhMzNkZWJjZDBkZmU3NDA5ZTFjYmY4ZTM4OWZlYTE0Yzk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk0wNdyJQcq+qElVn33bG4hVGtORo nStOkUs5+0+Wh7qB70hCl0wPLllsUz6pfGB1EnAkPMDg0jNkmLyupyZuuAh8gTQb jVc/Mcw6jBT4QPmHAhBHFrtN/Mp51ZcRgMiMRhxCr5k9LY9XbP6F0HAHNTQC3Nmo ++wDC3cS2G7Zudx+SDg4oF8q4R5+cU0Oc+UKQR7lYYFYNEC4j87HLRsOE53Q7v+3 QQkrpHbU6lrA2JcKq2tkh89Vr4wt6fLSLvjCQ4qGmiOBBNNWdk6ZpYEiWf1OyNXR YQJijuXlOK5259SMYLKCsgxJHTzJ+pwwJR6XF4bUjgq1re/snKLImknOZwIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFM8ZTaM9680N/nQJ4cv444n+oUyXMB8GA1UdIwQY MBaAFHRjlcEmcq2ViSG2K53JsrzYpoqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEdPVndTWnlyWldKSWJZcm5jbXl2TmltaXA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi85ZTIzNTEtOGRkMC00YjcwLWE1ZmMt ZmI3NzRhYmRmYWMyLzEvenhsTm96M3J6UTMtZEFuaHlfamppZjZoVEpjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi85ZTIzNTEtOGRkMC00YjcwLWE1ZmMtZmI3NzRhYmRmYWMy LzEvZEdPVndTWnlyWldKSWJZcm5jbXl2TmltaXA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAMBAIAATAGAwQAHxj5MBgE AgACMBIDBwAqEklCQAkDBwAqEklGgDAwDQYJKoZIhvcNAQELBQADggEBAFuhszMx ImqEXjf3LB/OE1qSKRafoy8LnnHtVh5nsEmfmRI8Ev4cS2/fAt0J0Nae8d5yY41h GRlQ1RuWnYNu9ki8+w5o/c2Ch18rqValXzzGH7LFuozb0Ypj3E0zWMKBqSUGTT3l qS7YxpMv8heHysinALI1hgJLKdyRgeJIINqs0bt1VyEgUy2jtm6qFKMsXUewRXMX oq+lxEFZoW7NIvViJZyKOVuZlSqpyowFJio5GxoS2aztNQhBYDcx5w1i8XC/02ZJ B5LF+pmoE/EPOj6KTJqCIs4YN9gqU6U6GstKDcXOrmTlVN8wQBCO32pxkhwIy4Uf lA1tlJCt/5u/lSQ= -----END CERTIFICATE-----Generated at Sun Jan 25 20:49:53 2026 by rpki-client