This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/zquZt87bLrrbW9ThzOpV1vC-OJo.roa File: zquZt87bLrrbW9ThzOpV1vC-OJo.roa (raw, json) Hash identifier: CRDc+5evimmemjLQlC3ofH0ofALEFuvicxiwbB7L6bE= Subject key identifier: CE:AB:99:B7:CE:DB:2E:BA:DB:5B:D4:E1:CC:EA:55:D6:F0:BE:38:9A Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511 Certificate serial: 019B7C800C6F9F1E077B350CD6B1441FAB3D Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/zquZt87bLrrbW9ThzOpV1vC-OJo.roa Signing time: Fri 02 Jan 2026 02:18:45 +0000 ROA not before: Fri 02 Jan 2026 02:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13034 IP address blocks: 193.252.138.0/24 maxlen: 24 193.252.242.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.mft rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:0c:6f:9f:1e:07:7b:35:0c:d6:b1:44:1f:ab:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511 Validity Not Before: Jan 2 02:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ceab99b7cedb2ebadb5bd4e1ccea55d6f0be389a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2e:12:25:3f:7d:52:b2:da:aa:59:94:0e:15: 5a:14:07:89:8e:c9:62:7a:26:f7:46:75:80:d2:56: 07:9e:5b:5c:e0:c1:ce:46:3c:78:d1:39:4a:64:80: 8f:f2:e0:6c:74:62:e9:4b:a3:2f:d1:1d:90:b8:91: 30:31:a3:d0:fc:8c:32:0a:47:92:95:c2:79:33:3b: f3:02:68:96:ff:dd:3c:94:02:7a:04:63:cb:69:69: 52:86:8a:fc:0c:75:f2:0e:24:e2:d8:b4:bf:61:16: b2:b5:3a:f0:cb:cb:8e:8b:9b:d9:c4:54:1f:a3:e0: 47:1c:7d:56:39:27:30:ba:5a:c5:04:c1:eb:ca:d7: 0e:65:d2:4a:8b:d6:c6:68:2e:23:7a:1e:df:e6:2d: 83:45:88:1f:23:e3:83:e5:5e:b8:d1:f5:46:99:be: 3e:7e:ef:6f:63:25:0a:74:6e:f5:1b:0f:c4:31:d5: bd:98:17:d8:08:9c:a1:30:1d:d5:0b:75:de:40:92: ab:ec:c6:09:ff:fb:d8:e7:9f:a5:7e:c7:f3:14:be: 80:4e:09:d7:f2:10:db:ca:2b:6d:c5:a3:e4:4d:31: ae:70:f5:b7:82:30:2d:fe:65:09:d1:18:9d:bd:1e: d7:64:29:5d:52:32:3c:79:ba:8a:7f:1c:21:c1:5e: 3d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:AB:99:B7:CE:DB:2E:BA:DB:5B:D4:E1:CC:EA:55:D6:F0:BE:38:9A X509v3 Authority Key Identifier: keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/zquZt87bLrrbW9ThzOpV1vC-OJo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.252.138.0/24 193.252.242.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:2f:a5:c1:ec:b9:dd:96:3b:90:24:d4:67:47:1b:9f:dc:2a: 70:8a:be:0a:d0:61:0d:cd:50:98:ba:71:1a:6b:5d:86:03:9d: d8:7d:0c:66:3c:8f:f7:cd:47:9d:b3:44:47:13:ca:cd:fc:d0: 93:5a:dd:48:03:20:f0:23:b7:0a:61:60:fc:82:7e:00:72:95: 51:6f:ed:b1:61:6d:55:9a:39:dd:28:3a:7a:4e:d5:1a:c9:3e: 5b:aa:d8:ee:12:9f:fe:80:bd:82:5f:81:9b:73:01:62:da:bf: d4:9c:29:dd:e9:11:ac:3f:d4:c2:fa:fb:0a:6c:4c:28:c8:dc: fa:1c:e9:50:15:ec:ce:1b:46:3e:25:0d:1b:6d:d4:01:c6:9c: 3a:8b:b1:91:01:c8:df:32:e7:c4:c4:3d:29:5b:11:44:f7:ec: 07:a6:51:c9:65:56:cf:bf:97:c4:e7:d5:96:ae:cb:7e:a6:1d: 76:90:1a:bd:fd:19:3b:74:dd:fa:32:46:f3:c5:80:8f:44:71: 0a:19:15:cb:04:e1:89:43:9a:d5:c9:5e:92:c8:b5:8a:37:24: b1:ef:ee:14:fc:97:12:06:cd:86:d1:3f:86:4b:9f:37:1c:ea: fc:ec:bc:7c:4d:6c:7e:c2:20:c2:53:df:c8:45:2e:b3:c2:9b: 55:83:6e:93 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8gAxvnx4HezUM1rFEH6s9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZjA5YmEzM2I1YWU1ODFiMGQyOTMyMzI0OTMxNGY3NmFh MTA1MTEwHhcNMjYwMTAyMDIxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZWFiOTliN2NlZGIyZWJhZGI1YmQ0ZTFjY2VhNTVkNmYwYmUzODlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAry4SJT99UrLaqlmUDhVaFAeJjsli eib3RnWA0lYHnltc4MHORjx40TlKZICP8uBsdGLpS6Mv0R2QuJEwMaPQ/IwyCkeS lcJ5MzvzAmiW/908lAJ6BGPLaWlShor8DHXyDiTi2LS/YRaytTrwy8uOi5vZxFQf o+BHHH1WOScwulrFBMHrytcOZdJKi9bGaC4jeh7f5i2DRYgfI+OD5V640fVGmb4+ fu9vYyUKdG71Gw/EMdW9mBfYCJyhMB3VC3XeQJKr7MYJ//vY55+lfsfzFL6ATgnX 8hDbyittxaPkTTGucPW3gjAt/mUJ0RidvR7XZCldUjI8ebqKfxwhwV49QQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFM6rmbfO2y6621vU4czqVdbwvjiaMB8GA1UdIwQY MBaAFDrwm6M7WuWBsNKTIySTFPdqoQURMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQt NDU5MzVmNTA2YTEyLzEvenF1WnQ4N2JMcnJiVzlUaHpPcFYxdkMtT0pvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQtNDU5MzVmNTA2YTEy LzEvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwfyKAwQB wfzyMA0GCSqGSIb3DQEBCwUAA4IBAQBaL6XB7LndljuQJNRnRxuf3Cpwir4K0GEN zVCYunEaa12GA53YfQxmPI/3zUeds0RHE8rN/NCTWt1IAyDwI7cKYWD8gn4AcpVR b+2xYW1VmjndKDp6TtUayT5bqtjuEp/+gL2CX4GbcwFi2r/UnCnd6RGsP9TC+vsK bEwoyNz6HOlQFezOG0Y+JQ0bbdQBxpw6i7GRAcjfMufExD0pWxFE9+wHplHJZVbP v5fE59WWrst+ph12kBq9/Rk7dN36MkbzxYCPRHEKGRXLBOGJQ5rVyV6SyLWKNySx 7+4U/JcSBs2G0T+GS583HOr87Lx8TWx+wiDCU9/IRS6zwptVg26T -----END CERTIFICATE-----Generated at Sun Jan 25 19:01:12 2026 by rpki-client