This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/ZgTKdwUh3SurmRUa8dm-u_MWcXw.roa File: ZgTKdwUh3SurmRUa8dm-u_MWcXw.roa (raw, json) Hash identifier: qRP4wuFNa16Ds9pfHaXqX+aH3Ub6klNpQNjHeuFx6D8= Subject key identifier: 66:04:CA:77:05:21:DD:2B:AB:99:15:1A:F1:D9:BE:BB:F3:16:71:7C Certificate issuer: /CN=894928a39627cd5ee5f975bd897c2d775ab29940 Certificate serial: 019B7CEE4D8F52A292F781C94BE7FF4BE5D1 Authority key identifier: 89:49:28:A3:96:27:CD:5E:E5:F9:75:BD:89:7C:2D:77:5A:B2:99:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iUkoo5YnzV7l-XW9iXwtd1qymUA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/ZgTKdwUh3SurmRUa8dm-u_MWcXw.roa Signing time: Fri 02 Jan 2026 04:19:10 +0000 ROA not before: Fri 02 Jan 2026 04:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212403 IP address blocks: 149.226.252.0/24 maxlen: 24 2a03:cc00:fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iUkoo5YnzV7l-XW9iXwtd1qymUA.crl rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iUkoo5YnzV7l-XW9iXwtd1qymUA.mft rsync://rpki.ripe.net/repository/DEFAULT/iUkoo5YnzV7l-XW9iXwtd1qymUA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:4d:8f:52:a2:92:f7:81:c9:4b:e7:ff:4b:e5:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=894928a39627cd5ee5f975bd897c2d775ab29940 Validity Not Before: Jan 2 04:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6604ca770521dd2bab99151af1d9bebbf316717c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fa:63:cc:e9:d4:81:35:c6:bb:30:68:dd:1e: d0:27:b0:26:ce:48:5a:95:0e:84:6e:fc:cc:a2:a2: a6:38:98:30:19:89:19:7e:a3:5b:fb:04:2b:d7:fe: 65:8e:9e:70:c1:82:12:5f:aa:b7:42:84:9a:e6:56: 81:e8:1e:bf:7f:06:db:be:01:da:69:cd:76:23:60: 09:12:d9:3b:d5:fa:5b:b8:25:e8:60:16:11:0e:7b: ba:11:ed:5c:68:9a:1b:90:e7:d2:59:02:8d:82:b3: eb:ec:06:33:af:0e:bd:10:70:60:15:44:cc:d5:ba: 69:cc:e3:b8:be:d4:9c:8b:56:bf:54:f5:62:d9:d9: 3b:d5:d6:e1:16:d3:79:7b:43:7b:a4:12:4e:fb:12: f1:5d:60:ee:7b:fe:97:71:81:76:88:46:26:3c:a7: 94:60:a8:a8:a4:62:27:e7:61:23:5a:7b:fa:25:cb: 08:b7:ee:d3:26:04:7f:eb:7c:c3:d6:cc:27:fa:61: ae:d2:a6:a1:38:8b:00:4b:56:e8:ef:ea:af:eb:85: d3:f0:2d:77:75:79:ef:c1:39:83:c9:9f:d6:ea:c9: c4:8e:07:0f:24:29:7c:dd:0c:00:52:1f:8f:41:96: e9:d2:99:12:8e:4d:d7:29:4e:74:9a:ae:fd:37:70: 38:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:04:CA:77:05:21:DD:2B:AB:99:15:1A:F1:D9:BE:BB:F3:16:71:7C X509v3 Authority Key Identifier: keyid:89:49:28:A3:96:27:CD:5E:E5:F9:75:BD:89:7C:2D:77:5A:B2:99:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iUkoo5YnzV7l-XW9iXwtd1qymUA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/ZgTKdwUh3SurmRUa8dm-u_MWcXw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iUkoo5YnzV7l-XW9iXwtd1qymUA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.226.252.0/24 IPv6: 2a03:cc00:fc0::/48 Signature Algorithm: sha256WithRSAEncryption 7b:b2:11:95:49:2c:14:2a:40:40:a9:cf:8f:01:80:b2:e0:ff: 78:d3:53:41:20:8a:76:db:5e:08:b7:e7:60:87:ce:e5:28:54: 95:ad:a0:45:43:00:a8:8e:9c:74:6a:8b:06:04:08:50:89:3a: 85:cc:6c:04:a0:e2:68:02:dc:99:31:93:aa:6a:97:17:03:71: d2:b6:8c:12:b8:0a:47:05:ab:b8:8c:ad:8d:5f:31:6b:67:e4: d1:fe:55:df:31:f1:be:0f:3a:3c:5b:1a:88:13:c5:6a:b2:e2: 0e:37:b3:47:c0:86:10:e7:32:6b:9c:6e:90:29:f7:d6:f0:f3: a7:ee:54:76:b6:df:53:5c:13:44:a3:62:a4:76:92:f3:39:89: 2a:dc:39:b3:08:7c:ad:e5:9b:07:71:e5:20:0e:01:20:dc:19: a0:45:4d:2f:d2:a5:ed:ad:6c:4e:f0:71:c1:a7:ab:c2:0e:e8: 9a:fc:6a:b4:90:1e:fd:c0:3a:59:b4:f4:2a:e8:fb:70:77:ed: 67:5f:e9:15:ef:80:79:24:ca:28:39:23:c9:19:bd:22:55:69: b9:bb:51:49:cb:1d:29:7a:5b:e6:cb:fd:06:67:6a:00:b5:0b: ca:6f:92:da:aa:e1:6d:95:39:61:45:8e:21:ff:12:98:99:0f: 84:b9:9f:ab -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt87k2PUqKS94HJS+f/S+XRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NDkyOGEzOTYyN2NkNWVlNWY5NzViZDg5N2MyZDc3NWFi Mjk5NDAwHhcNMjYwMTAyMDQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NjA0Y2E3NzA1MjFkZDJiYWI5OTE1MWFmMWQ5YmViYmYzMTY3MTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PpjzOnUgTXGuzBo3R7QJ7Amzkha lQ6EbvzMoqKmOJgwGYkZfqNb+wQr1/5ljp5wwYISX6q3QoSa5laB6B6/fwbbvgHa ac12I2AJEtk71fpbuCXoYBYRDnu6Ee1caJobkOfSWQKNgrPr7AYzrw69EHBgFUTM 1bppzOO4vtSci1a/VPVi2dk71dbhFtN5e0N7pBJO+xLxXWDue/6XcYF2iEYmPKeU YKiopGIn52EjWnv6JcsIt+7TJgR/63zD1swn+mGu0qahOIsAS1bo7+qv64XT8C13 dXnvwTmDyZ/W6snEjgcPJCl83QwAUh+PQZbp0pkSjk3XKU50mq79N3A4CQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFGYEyncFId0rq5kVGvHZvrvzFnF8MB8GA1UdIwQY MBaAFIlJKKOWJ81e5fl1vYl8LXdasplAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVVrb281WW56VjdsLVhXOWlYd3RkMXF5bVVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC82OWM3ZDEtYzQzZC00YmNkLThlNmEt MTU5M2Q0MDQ1Y2JjLzEvWmdUS2R3VWgzU3VybVJVYThkbS11X01XY1h3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC82OWM3ZDEtYzQzZC00YmNkLThlNmEtMTU5M2Q0MDQ1Y2Jj LzEvaVVrb281WW56VjdsLVhXOWlYd3RkMXF5bVVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAleL8MA8E AgACMAkDBwAqA8wAD8AwDQYJKoZIhvcNAQELBQADggEBAHuyEZVJLBQqQECpz48B gLLg/3jTU0EginbbXgi352CHzuUoVJWtoEVDAKiOnHRqiwYECFCJOoXMbASg4mgC 3Jkxk6pqlxcDcdK2jBK4CkcFq7iMrY1fMWtn5NH+Vd8x8b4POjxbGogTxWqy4g43 s0fAhhDnMmucbpAp99bw86fuVHa231NcE0SjYqR2kvM5iSrcObMIfK3lmwdx5SAO ASDcGaBFTS/Spe2tbE7wccGnq8IO6Jr8arSQHv3AOlm09Cro+3B37Wdf6RXvgHkk yig5I8kZvSJVabm7UUnLHSl6W+bL/QZnagC1C8pvktqq4W2VOWFFjiH/EpiZD4S5 n6s= -----END CERTIFICATE-----Generated at Mon Jan 26 03:27:39 2026 by rpki-client