This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/cac63c-55e5-4154-8876-8c32c351ee70/1/zAbYbd0War1iqYSyjtgKe0wPWK0.roa File: zAbYbd0War1iqYSyjtgKe0wPWK0.roa (raw, json) Hash identifier: lHnNnamI74ze+EojrEsu93ZxnIhz1eP+7F0DGR8ciLQ= Subject key identifier: CC:06:D8:6D:DD:16:6A:BD:62:A9:84:B2:8E:D8:0A:7B:4C:0F:58:AD Certificate issuer: /CN=7e26b1ef7410072ce96e82d7581be436e639a7c4 Certificate serial: 019B79ED5CBEF83F4EEE5D8E5CB1649A77B4 Authority key identifier: 7E:26:B1:EF:74:10:07:2C:E9:6E:82:D7:58:1B:E4:36:E6:39:A7:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiax73QQByzpboLXWBvkNuY5p8Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/cac63c-55e5-4154-8876-8c32c351ee70/1/zAbYbd0War1iqYSyjtgKe0wPWK0.roa Signing time: Thu 01 Jan 2026 14:19:17 +0000 ROA not before: Thu 01 Jan 2026 14:19:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43298 IP address blocks: 185.121.243.0/24 maxlen: 24 2a06:a180:20::/48 maxlen: 48 2a06:a180:21::/48 maxlen: 48 2a06:a180:22::/48 maxlen: 48 2a06:a180:90::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/cac63c-55e5-4154-8876-8c32c351ee70/1/fiax73QQByzpboLXWBvkNuY5p8Q.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/cac63c-55e5-4154-8876-8c32c351ee70/1/fiax73QQByzpboLXWBvkNuY5p8Q.mft rsync://rpki.ripe.net/repository/DEFAULT/fiax73QQByzpboLXWBvkNuY5p8Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 23:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:5c:be:f8:3f:4e:ee:5d:8e:5c:b1:64:9a:77:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e26b1ef7410072ce96e82d7581be436e639a7c4 Validity Not Before: Jan 1 14:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cc06d86ddd166abd62a984b28ed80a7b4c0f58ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:6a:2a:a5:d5:66:12:43:02:6f:45:12:a6:6a: 8f:3d:b2:b3:9a:22:0a:79:35:d3:c3:43:be:ac:ec: 84:cb:1b:19:39:da:62:10:5c:92:9e:9d:07:d5:43: bf:05:d4:83:99:65:d4:bc:68:00:96:52:82:57:e5: df:12:8b:ce:68:75:5a:2f:98:9d:8c:a8:7f:12:1e: 11:5f:be:6a:d7:77:48:6e:8d:d5:1a:c4:ff:5f:71: 78:ae:7f:05:4c:9e:13:69:73:3e:5c:68:3e:bc:4d: 6c:41:34:d4:ab:4e:5d:13:87:4c:5a:58:07:23:cb: fd:74:04:19:8e:a3:cc:b2:9d:57:fb:08:c0:d1:ff: ed:e5:ea:06:ba:ce:d5:0b:83:af:e4:2d:4c:b4:0d: 3f:ab:4c:df:47:3c:75:90:cc:df:79:99:18:0a:f4: e9:b2:a4:fd:3d:c2:ce:2a:ee:7a:74:a6:0c:2f:01: c2:11:7b:0c:1d:5c:45:d1:ba:c8:da:2f:eb:d8:35: f1:9c:a8:c1:da:b7:97:c5:51:63:a7:db:14:dd:e0: 89:41:03:bb:3c:da:c9:82:86:b1:c6:b2:5c:d7:36: aa:6e:03:64:c7:04:6a:7d:4c:b7:01:51:35:ab:13: c7:c2:43:3e:64:e9:54:27:c8:df:b3:2e:95:f5:56: 3a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:06:D8:6D:DD:16:6A:BD:62:A9:84:B2:8E:D8:0A:7B:4C:0F:58:AD X509v3 Authority Key Identifier: keyid:7E:26:B1:EF:74:10:07:2C:E9:6E:82:D7:58:1B:E4:36:E6:39:A7:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiax73QQByzpboLXWBvkNuY5p8Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/cac63c-55e5-4154-8876-8c32c351ee70/1/zAbYbd0War1iqYSyjtgKe0wPWK0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/cac63c-55e5-4154-8876-8c32c351ee70/1/fiax73QQByzpboLXWBvkNuY5p8Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.121.243.0/24 IPv6: 2a06:a180:20::-2a06:a180:22:ffff:ffff:ffff:ffff:ffff 2a06:a180:90::/48 Signature Algorithm: sha256WithRSAEncryption 61:df:b5:c6:23:b5:0b:2d:9b:74:f6:a6:82:90:f2:c6:8f:b8: b9:44:19:74:10:68:9b:dd:28:ab:91:48:3b:bb:54:a7:2a:a0: 3e:48:bf:e3:54:fa:fc:0e:4e:6d:3c:82:97:05:d6:47:e8:9b: dd:97:d0:42:e1:da:68:3e:2f:21:74:a9:95:9c:37:89:6e:d0: a4:9a:d6:13:4f:40:ea:b3:12:62:8a:59:93:02:2c:5a:bc:f1: 9e:54:02:68:45:55:ac:c3:c7:53:22:67:f1:ad:a1:b1:7f:de: 1f:a9:f2:de:b8:f3:8d:19:44:b4:bb:99:ec:c1:c8:ca:ac:15: 27:4f:60:f7:bd:4b:d1:ae:3b:8f:cd:4e:fa:5b:c1:e8:60:c9: d0:f4:b4:e5:9c:b5:87:d6:05:8e:02:36:ec:14:b7:b7:15:7e: 49:b1:e1:d1:69:56:3d:03:d7:79:94:d4:99:e5:8f:77:5a:9c: c6:e2:66:fc:03:4c:ad:36:7a:74:de:72:8b:f0:5d:eb:cc:4c: a2:08:3d:ec:48:cd:b8:e6:ec:4c:cb:27:b7:41:a9:7f:23:c8: 8c:3a:e6:68:f7:37:08:69:bf:3e:ea:27:93:52:d3:42:8d:24: bf:8a:25:45:f6:a3:b5:2c:10:2c:d3:4e:8f:0d:29:5f:7c:65: 88:8b:9a:d3 -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgISAZt57Vy++D9O7l2OXLFkmne0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlMjZiMWVmNzQxMDA3MmNlOTZlODJkNzU4MWJlNDM2ZTYz OWE3YzQwHhcNMjYwMTAxMTQxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYzA2ZDg2ZGRkMTY2YWJkNjJhOTg0YjI4ZWQ4MGE3YjRjMGY1OGFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkGoqpdVmEkMCb0USpmqPPbKzmiIK eTXTw0O+rOyEyxsZOdpiEFySnp0H1UO/BdSDmWXUvGgAllKCV+XfEovOaHVaL5id jKh/Eh4RX75q13dIbo3VGsT/X3F4rn8FTJ4TaXM+XGg+vE1sQTTUq05dE4dMWlgH I8v9dAQZjqPMsp1X+wjA0f/t5eoGus7VC4Ov5C1MtA0/q0zfRzx1kMzfeZkYCvTp sqT9PcLOKu56dKYMLwHCEXsMHVxF0brI2i/r2DXxnKjB2reXxVFjp9sU3eCJQQO7 PNrJgoaxxrJc1zaqbgNkxwRqfUy3AVE1qxPHwkM+ZOlUJ8jfsy6V9VY6JQIDAQAB o4ICLjCCAiowHQYDVR0OBBYEFMwG2G3dFmq9YqmEso7YCntMD1itMB8GA1UdIwQY MBaAFH4mse90EAcs6W6C11gb5DbmOafEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmlheDczUVFCeXpwYm9MWFdCdmtOdVk1cDhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9jYWM2M2MtNTVlNS00MTU0LTg4NzYt OGMzMmMzNTFlZTcwLzEvekFiWWJkMFdhcjFpcVlTeWp0Z0tlMHdQV0swLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS9jYWM2M2MtNTVlNS00MTU0LTg4NzYtOGMzMmMzNTFlZTcw LzEvZmlheDczUVFCeXpwYm9MWFdCdmtOdVk1cDhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEQGCCsGAQUFBwEHAQH/BDUwMzAMBAIAATAGAwQAuXnzMCME AgACMB0wEgMHBSoGoYAAIAMHACoGoYAAIgMHACoGoYAAkDANBgkqhkiG9w0BAQsF AAOCAQEAYd+1xiO1Cy2bdPamgpDyxo+4uUQZdBBom90oq5FIO7tUpyqgPki/41T6 /A5ObTyClwXWR+ib3ZfQQuHaaD4vIXSplZw3iW7QpJrWE09A6rMSYopZkwIsWrzx nlQCaEVVrMPHUyJn8a2hsX/eH6ny3rjzjRlEtLuZ7MHIyqwVJ09g971L0a47j81O +lvB6GDJ0PS05Zy1h9YFjgI27BS3txV+SbHh0WlWPQPXeZTUmeWPd1qcxuJm/ANM rTZ6dN5yi/Bd68xMogg97EjNuObsTMsnt0GpfyPIjDrmaPc3CGm/Puonk1LTQo0k v4olRfajtSwQLNNOjw0pX3xliIua0w== -----END CERTIFICATE-----Generated at Mon Jan 26 09:25:12 2026 by rpki-client