This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/ZFX1wiMo9pjybe2C6NOlis161vg.roa File: ZFX1wiMo9pjybe2C6NOlis161vg.roa (raw, json) Hash identifier: 2gd9X68UIcrLtfaw+PHS88NJNR8euVr2/TC7qbHMmHo= Subject key identifier: 64:55:F5:C2:23:28:F6:98:F2:6D:ED:82:E8:D3:A5:8A:CD:7A:D6:F8 Certificate issuer: /CN=90f25e6a6893f466d2695e90670c047443643701 Certificate serial: 019B77C759792AA1334FA32C27CF5A165151 Authority key identifier: 90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/ZFX1wiMo9pjybe2C6NOlis161vg.roa Signing time: Thu 01 Jan 2026 04:18:31 +0000 ROA not before: Thu 01 Jan 2026 04:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 33915 IP address blocks: 94.168.0.0/17 maxlen: 17 94.168.0.0/18 maxlen: 18 94.168.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/kPJeamiT9GbSaV6QZwwEdENkNwE.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/kPJeamiT9GbSaV6QZwwEdENkNwE.mft rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:59:79:2a:a1:33:4f:a3:2c:27:cf:5a:16:51:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90f25e6a6893f466d2695e90670c047443643701 Validity Not Before: Jan 1 04:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6455f5c22328f698f26ded82e8d3a58acd7ad6f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:28:98:2a:e9:b6:4d:53:af:91:fc:b6:68:ad: 5d:60:0e:51:b6:31:22:9d:6a:e0:88:f1:16:ff:1d: a6:4f:ac:0b:94:9a:ea:53:5d:91:2f:8f:78:e3:d1: d4:a5:3a:9d:0e:99:0a:23:fe:4d:3e:9c:c8:ce:4d: 7a:b8:09:37:dc:ba:dd:e7:37:7b:ce:2a:99:3b:a6: 16:2a:77:6e:e6:33:b4:00:59:4b:b8:e1:7b:65:12: c7:53:25:2d:04:6d:68:53:aa:4a:b8:90:0b:2b:e2: 77:24:36:e5:d3:00:3b:53:48:f8:ca:d7:3d:37:6a: 46:22:e0:fd:67:96:eb:71:e8:3b:e4:4b:dc:43:16: a5:de:7b:bd:98:be:53:03:df:b1:d8:14:c9:3f:81: 71:af:ce:db:61:c7:04:ec:9d:88:74:1d:92:0c:03: ae:0b:dc:ff:0c:1c:9d:cd:c2:73:45:10:0f:de:ba: 35:d3:39:37:ad:ad:d7:5a:51:5b:59:19:b9:08:c1: 76:df:70:14:81:f9:7a:90:df:8c:05:c1:89:69:67: b4:09:94:94:cd:8c:ad:25:e3:1a:94:54:5e:b2:fb: 0b:42:f9:a8:bf:ff:5d:0c:5d:2a:60:f6:ca:ec:26: a1:8f:37:e6:d6:87:5f:b1:61:35:72:5c:ef:55:72: 73:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:55:F5:C2:23:28:F6:98:F2:6D:ED:82:E8:D3:A5:8A:CD:7A:D6:F8 X509v3 Authority Key Identifier: keyid:90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/ZFX1wiMo9pjybe2C6NOlis161vg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/kPJeamiT9GbSaV6QZwwEdENkNwE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.168.0.0/17 Signature Algorithm: sha256WithRSAEncryption 64:34:6e:ec:a1:f5:a4:78:4d:f7:23:a2:56:99:bf:33:5e:2b: 53:77:ba:85:66:05:65:9a:f2:c9:f3:07:79:fb:01:11:2a:7f: 9c:4e:58:a3:ab:a7:cb:af:44:7a:16:eb:bd:0c:34:46:f4:8a: 3f:40:40:60:6d:48:25:e9:92:c6:78:f1:18:50:b1:9c:0e:6d: 18:e9:f0:97:d8:1d:3e:53:6c:3f:84:42:c5:f2:71:a2:74:73: 00:9c:d6:6b:d3:c2:03:8c:d6:9a:44:06:0c:fb:f4:08:17:d8: 9e:dc:dc:9b:b8:a4:b9:43:da:04:45:c5:04:7b:a8:7f:da:66: 0a:8a:70:2e:88:2a:a4:bf:8d:76:46:cd:00:e8:f7:de:92:20: c9:bd:99:7d:8e:1b:d3:57:7c:aa:10:3f:3a:a6:32:95:43:96: 4d:6e:3e:ca:6d:23:8d:77:56:84:f9:b9:25:a1:47:dc:9c:3b: 02:a9:03:82:3f:da:fe:12:05:17:a7:f4:df:48:c2:14:0d:25: 09:d5:ce:51:47:40:df:7f:80:d2:90:df:e2:a7:1e:48:81:8d: 94:ee:42:d8:3f:ac:07:62:06:9d:e4:7b:6b:34:60:98:82:54: fe:c9:9f:ce:1d:ba:37:ab:73:2d:23:2b:91:e5:23:46:47:27: 0e:ec:dd:8b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x1l5KqEzT6MsJ89aFlFRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwZjI1ZTZhNjg5M2Y0NjZkMjY5NWU5MDY3MGMwNDc0NDM2 NDM3MDEwHhcNMjYwMTAxMDQxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NDU1ZjVjMjIzMjhmNjk4ZjI2ZGVkODJlOGQzYTU4YWNkN2FkNmY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApSiYKum2TVOvkfy2aK1dYA5RtjEi nWrgiPEW/x2mT6wLlJrqU12RL49449HUpTqdDpkKI/5NPpzIzk16uAk33Lrd5zd7 ziqZO6YWKndu5jO0AFlLuOF7ZRLHUyUtBG1oU6pKuJALK+J3JDbl0wA7U0j4ytc9 N2pGIuD9Z5brceg75EvcQxal3nu9mL5TA9+x2BTJP4Fxr87bYccE7J2IdB2SDAOu C9z/DBydzcJzRRAP3ro10zk3ra3XWlFbWRm5CMF233AUgfl6kN+MBcGJaWe0CZSU zYytJeMalFResvsLQvmov/9dDF0qYPbK7Cahjzfm1odfsWE1clzvVXJzOwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGRV9cIjKPaY8m3tgujTpYrNetb4MB8GA1UdIwQY MBaAFJDyXmpok/Rm0mlekGcMBHRDZDcBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1BKZWFtaVQ5R2JTYVY2UVp3d0VkRU5rTndFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi8wNGIxNjItNzA5OS00MDRkLTgzOTEt M2IwYjRiOGEyOTgzLzEvWkZYMXdpTW85cGp5YmUyQzZOT2xpczE2MXZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi8wNGIxNjItNzA5OS00MDRkLTgzOTEtM2IwYjRiOGEyOTgz LzEva1BKZWFtaVQ5R2JTYVY2UVp3d0VkRU5rTndFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHXqgAMA0G CSqGSIb3DQEBCwUAA4IBAQBkNG7sofWkeE33I6JWmb8zXitTd7qFZgVlmvLJ8wd5 +wERKn+cTlijq6fLr0R6Fuu9DDRG9Io/QEBgbUgl6ZLGePEYULGcDm0Y6fCX2B0+ U2w/hELF8nGidHMAnNZr08IDjNaaRAYM+/QIF9ie3NybuKS5Q9oERcUEe6h/2mYK inAuiCqkv412Rs0A6PfekiDJvZl9jhvTV3yqED86pjKVQ5ZNbj7KbSONd1aE+bkl oUfcnDsCqQOCP9r+EgUXp/TfSMIUDSUJ1c5RR0Dff4DSkN/ipx5IgY2U7kLYP6wH Ygad5HtrNGCYglT+yZ/OHbo3q3MtIyuR5SNGRycO7N2L -----END CERTIFICATE-----Generated at Sun Jan 25 16:12:38 2026 by rpki-client