This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/zAff6ilnehpGGi5BDUZ7hLHheXA.roa File: zAff6ilnehpGGi5BDUZ7hLHheXA.roa (raw, json) Hash identifier: 4vg6QTx+7Obl0HEsR7tGfz+AKdR30zhHteU6BT4n1so= Subject key identifier: CC:07:DF:EA:29:67:7A:1A:46:1A:2E:41:0D:46:7B:84:B1:E1:79:70 Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b Certificate serial: 019B7D5D1AAF80C7933CD9FEB0EA9083EF39 Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/zAff6ilnehpGGi5BDUZ7hLHheXA.roa Signing time: Fri 02 Jan 2026 06:20:12 +0000 ROA not before: Fri 02 Jan 2026 06:20:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 33954 IP address blocks: 195.228.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.mft rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:1a:af:80:c7:93:3c:d9:fe:b0:ea:90:83:ef:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b Validity Not Before: Jan 2 06:20:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cc07dfea29677a1a461a2e410d467b84b1e17970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ec:a1:d0:49:b2:73:d5:ad:40:07:23:65:40: 95:d4:90:17:00:9c:a5:ee:48:42:a3:0c:84:e5:b6: 31:0e:cc:bd:cf:9a:1c:ea:ff:3a:78:db:0a:79:f6: d5:25:5d:df:65:d8:f0:cc:9a:4c:c6:d8:4c:7b:c3: 22:48:5e:22:c8:79:48:a7:73:27:4f:dc:fc:cc:d0: cd:b4:37:2f:29:b2:12:95:64:28:85:2b:46:18:93: 76:d5:08:2e:c0:fc:1b:b4:3b:c5:3f:0a:d5:e4:d2: 1f:05:eb:ba:73:8e:2c:cf:8f:55:2b:68:43:db:0a: 76:00:f3:72:cd:2d:e8:f2:2e:4b:b8:77:f9:0f:28: 7c:c3:82:3b:54:30:d3:e8:53:55:0b:97:29:92:7f: 49:eb:02:92:c7:6b:ff:23:5b:33:b2:7b:9b:01:47: 52:a9:11:18:ce:e5:15:3f:2a:f1:d4:fe:c7:d9:6c: 06:4b:31:58:a0:9a:07:d4:d0:34:32:38:b7:75:04: 11:75:07:64:b4:f3:b4:85:ec:9c:b2:7c:7e:97:5f: c0:c6:f3:6f:e2:5d:e6:0d:68:e4:68:bc:67:0c:7f: c2:3a:58:57:5b:d8:e8:e9:87:bf:7d:ce:11:d2:a9: da:f2:2c:c6:36:b1:7d:2e:4a:d1:d3:04:af:5c:35: 77:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:07:DF:EA:29:67:7A:1A:46:1A:2E:41:0D:46:7B:84:B1:E1:79:70 X509v3 Authority Key Identifier: keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/zAff6ilnehpGGi5BDUZ7hLHheXA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.228.53.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:ec:07:19:79:2b:7f:13:1b:b8:4e:77:9c:d6:5d:2d:60:9b: b3:ab:31:a8:5e:e8:57:a6:5f:d4:fe:bd:d0:5a:0b:75:9e:e1: e8:94:dc:9f:75:8c:0d:a4:d5:a8:a7:15:80:3a:fb:eb:7d:92: af:2a:c8:82:f5:b6:d7:bb:5d:16:13:67:cc:85:e0:3b:52:59: 9b:6b:16:91:f9:d3:5d:39:c3:07:22:b7:fc:5a:02:53:79:af: c0:35:2e:c4:ab:7d:54:9e:85:60:6d:03:01:f6:df:8f:a0:84: be:18:52:ac:a4:84:ef:56:ae:1c:fe:69:a5:d3:bf:f2:14:1c: a1:6e:b4:58:1d:82:30:80:02:e4:f3:9b:b0:03:41:be:70:9d: 9b:fb:16:42:6e:e8:67:3b:21:60:1f:39:49:68:74:87:96:63: 7b:23:c0:95:eb:dd:62:d4:9e:4e:96:62:2e:ee:ec:d5:ca:cd: 05:a8:56:2d:86:d4:21:f3:20:33:bf:7a:3d:89:af:96:ae:03: d1:8a:3b:57:e3:de:e4:4a:1c:e4:9e:df:54:c4:60:aa:8a:a0: 04:8d:86:60:97:28:91:54:38:91:c2:80:8b:99:57:ff:29:66: 32:dc:57:0c:0f:3c:7a:00:ac:e6:61:46:cb:42:3d:66:bc:ff: 53:06:07:7f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XRqvgMeTPNn+sOqQg+85MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwMmRhYzYwNWY0NjU5NzE4YzBhMTVlMWY3MzJjYmQ0ZjQ4 YWFlN2IwHhcNMjYwMTAyMDYyMDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYzA3ZGZlYTI5Njc3YTFhNDYxYTJlNDEwZDQ2N2I4NGIxZTE3OTcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApeyh0Emyc9WtQAcjZUCV1JAXAJyl 7khCowyE5bYxDsy9z5oc6v86eNsKefbVJV3fZdjwzJpMxthMe8MiSF4iyHlIp3Mn T9z8zNDNtDcvKbISlWQohStGGJN21QguwPwbtDvFPwrV5NIfBeu6c44sz49VK2hD 2wp2APNyzS3o8i5LuHf5Dyh8w4I7VDDT6FNVC5cpkn9J6wKSx2v/I1szsnubAUdS qREYzuUVPyrx1P7H2WwGSzFYoJoH1NA0Mji3dQQRdQdktPO0heycsnx+l1/AxvNv 4l3mDWjkaLxnDH/COlhXW9jo6Ye/fc4R0qna8izGNrF9LkrR0wSvXDV3awIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMwH3+opZ3oaRhouQQ1Ge4Sx4XlwMB8GA1UdIwQY MBaAFPAtrGBfRllxjAoV4fcyy9T0iq57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYt MjkyYWU0NmU2MzAyLzEvekFmZjZpbG5laHBHR2k1QkRVWjdoTEhoZVhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYtMjkyYWU0NmU2MzAy LzEvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw+Q1MA0G CSqGSIb3DQEBCwUAA4IBAQBb7AcZeSt/Exu4Tnec1l0tYJuzqzGoXuhXpl/U/r3Q Wgt1nuHolNyfdYwNpNWopxWAOvvrfZKvKsiC9bbXu10WE2fMheA7UlmbaxaR+dNd OcMHIrf8WgJTea/ANS7Eq31UnoVgbQMB9t+PoIS+GFKspITvVq4c/mml07/yFByh brRYHYIwgALk85uwA0G+cJ2b+xZCbuhnOyFgHzlJaHSHlmN7I8CV691i1J5OlmIu 7uzVys0FqFYthtQh8yAzv3o9ia+WrgPRijtX497kShzknt9UxGCqiqAEjYZglyiR VDiRwoCLmVf/KWYy3FcMDzx6AKzmYUbLQj1mvP9TBgd/ -----END CERTIFICATE-----Generated at Sun Jan 25 15:36:31 2026 by rpki-client