This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/ZYExCDXlMvLvbu9PyCtvwKVx1wg.roa File: ZYExCDXlMvLvbu9PyCtvwKVx1wg.roa (raw, json) Hash identifier: 80JMqq0F0tUOvFwE2Iz/kNdGxy/t5IdoU4H7dyp6pDI= Subject key identifier: 65:81:31:08:35:E5:32:F2:EF:6E:EF:4F:C8:2B:6F:C0:A5:71:D7:08 Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03 Certificate serial: 019B7B36AE58E38DE8FFBF478FDC9E22DAA6 Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/ZYExCDXlMvLvbu9PyCtvwKVx1wg.roa Signing time: Thu 01 Jan 2026 20:18:59 +0000 ROA not before: Thu 01 Jan 2026 20:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 45018 IP address blocks: 193.232.137.0/24 maxlen: 24 2001:67c:1441::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.mft rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:ae:58:e3:8d:e8:ff:bf:47:8f:dc:9e:22:da:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03 Validity Not Before: Jan 1 20:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6581310835e532f2ef6eef4fc82b6fc0a571d708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:45:f6:5c:96:a9:78:2c:2b:b4:ed:e9:cb:54: c0:46:a9:e6:98:5c:2a:c6:36:fc:ca:c1:51:46:5d: 72:28:f7:0c:60:48:c5:06:b3:bd:9c:4a:31:8e:7a: f0:f1:b0:a9:58:bf:f0:5d:38:0d:03:b6:68:4a:25: f1:40:c2:5b:94:52:48:a2:f2:66:20:10:7d:eb:aa: cd:09:81:57:ef:56:97:b8:0b:b4:8f:27:3f:07:19: 5a:05:7e:7e:19:c4:75:b0:ff:b3:b1:d8:8c:2a:22: 6b:f9:94:02:29:e3:7f:ab:89:4c:ca:4b:0b:bd:4c: e3:2b:6a:f2:d8:0c:74:51:ca:f9:3d:04:6c:cf:20: b0:3e:7b:0f:a7:fe:07:db:5a:25:f1:2a:12:e9:7f: cb:b0:ca:9e:33:bf:12:0d:b2:95:55:a5:d9:6e:7e: 66:0b:82:26:45:25:b9:83:43:ac:d8:d5:0c:4d:1b: 36:7d:43:7f:54:95:a5:77:76:8e:89:0d:f2:53:cf: 0b:ed:61:3d:e0:89:85:f2:02:f4:0c:d9:6a:04:2a: f1:51:8c:f2:ec:75:34:b2:6e:a8:a2:7d:a3:c0:21: 27:01:a0:75:6e:3c:a9:24:21:8f:c7:96:37:85:44: 88:b5:c3:30:a2:3c:a7:69:0a:9a:e8:d3:21:fd:de: 9c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:81:31:08:35:E5:32:F2:EF:6E:EF:4F:C8:2B:6F:C0:A5:71:D7:08 X509v3 Authority Key Identifier: keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/ZYExCDXlMvLvbu9PyCtvwKVx1wg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.232.137.0/24 IPv6: 2001:67c:1441::/48 Signature Algorithm: sha256WithRSAEncryption bc:95:ed:75:44:2d:3f:6c:5b:dd:3c:1a:5d:c4:7b:53:48:c9: 42:6d:7c:c7:f7:c9:d6:34:05:d7:8f:88:fa:19:40:c2:ec:78: d1:a0:8d:67:44:d2:bb:f6:c8:9b:2e:5b:20:2d:e1:c1:c4:92: 80:af:2c:a5:96:5c:fe:19:86:2a:d1:a6:4b:92:e0:54:b4:aa: e1:07:74:49:68:8d:7c:3e:93:a4:f4:10:c3:7f:0b:19:03:79: 23:f4:f4:f8:cf:78:e0:68:a9:3f:f6:a2:da:2c:9a:6d:57:94: 88:71:77:d8:8a:75:37:1f:2e:cf:7f:7c:3d:73:e1:1e:2d:dc: c4:a8:46:2b:d0:7b:33:62:bf:bd:fa:6a:2e:b7:82:de:18:7e: 43:64:35:a5:d4:23:d6:19:f6:8f:cd:c7:9b:87:9b:50:b6:b8: 45:b0:6a:0e:8e:9a:b3:d2:19:55:19:5e:36:fb:05:63:db:50: ae:b1:f7:2d:8a:47:68:80:ba:22:d8:db:53:de:e3:f0:3a:7a: 82:0f:53:5e:20:39:64:1c:94:d8:80:f5:05:6a:ee:8a:11:3b: 07:70:19:8c:5c:6d:83:25:fe:98:58:4d:eb:b3:6f:4a:39:8f: 00:26:78:b2:5e:be:f6:0d:21:1e:6b:92:4e:a6:bc:7b:bf:f4: 3c:37:9b:37 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt7Nq5Y443o/79Hj9yeItqmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmMWM2NjViMDM4NjkyYjkzYmRmNWQxZDhmM2NlYTNlOTg2 OTdhMDMwHhcNMjYwMTAxMjAxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NTgxMzEwODM1ZTUzMmYyZWY2ZWVmNGZjODJiNmZjMGE1NzFkNzA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEX2XJapeCwrtO3py1TARqnmmFwq xjb8ysFRRl1yKPcMYEjFBrO9nEoxjnrw8bCpWL/wXTgNA7ZoSiXxQMJblFJIovJm IBB966rNCYFX71aXuAu0jyc/BxlaBX5+GcR1sP+zsdiMKiJr+ZQCKeN/q4lMyksL vUzjK2ry2Ax0Ucr5PQRszyCwPnsPp/4H21ol8SoS6X/LsMqeM78SDbKVVaXZbn5m C4ImRSW5g0Os2NUMTRs2fUN/VJWld3aOiQ3yU88L7WE94ImF8gL0DNlqBCrxUYzy 7HU0sm6oon2jwCEnAaB1bjypJCGPx5Y3hUSItcMwojynaQqa6NMh/d6c8wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFGWBMQg15TLy727vT8grb8ClcdcIMB8GA1UdIwQY MBaAFO8cZlsDhpK5O99dHY886j6YaXoDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAt Njg4ZDMzM2VkOWQ1LzEvWllFeENEWGxNdkx2YnU5UHlDdHZ3S1Z4MXdnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAtNjg4ZDMzM2VkOWQ1 LzEvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAweiJMA8E AgACMAkDBwAgAQZ8FEEwDQYJKoZIhvcNAQELBQADggEBALyV7XVELT9sW908Gl3E e1NIyUJtfMf3ydY0BdePiPoZQMLseNGgjWdE0rv2yJsuWyAt4cHEkoCvLKWWXP4Z hirRpkuS4FS0quEHdElojXw+k6T0EMN/CxkDeSP09PjPeOBoqT/2otosmm1XlIhx d9iKdTcfLs9/fD1z4R4t3MSoRivQezNiv736ai63gt4YfkNkNaXUI9YZ9o/Nx5uH m1C2uEWwag6OmrPSGVUZXjb7BWPbUK6x9y2KR2iAuiLY21Pe4/A6eoIPU14gOWQc lNiA9QVq7ooROwdwGYxcbYMl/phYTeuzb0o5jwAmeLJevvYNIR5rkk6mvHu/9Dw3 mzc= -----END CERTIFICATE-----Generated at Sun Jan 25 22:14:10 2026 by rpki-client