This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/ZmfnOd4CDL5CJbgzX0IFfaCpn_I.roa File: ZmfnOd4CDL5CJbgzX0IFfaCpn_I.roa (raw, json) Hash identifier: r+ACJr/bLBpfF1nAJ7m58XKQpbM78W0wGzauIYTi2V8= Subject key identifier: 66:67:E7:39:DE:02:0C:BE:42:25:B8:33:5F:42:05:7D:A0:A9:9F:F2 Certificate issuer: /CN=490b21f79b9ea2f3d042374714867d12401995db Certificate serial: 019B7F837D9EC532D24345E70C8A950635C1 Authority key identifier: 49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/ZmfnOd4CDL5CJbgzX0IFfaCpn_I.roa Signing time: Fri 02 Jan 2026 16:21:22 +0000 ROA not before: Fri 02 Jan 2026 16:21:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25577 IP address blocks: 77.73.9.0/24 maxlen: 24 77.73.12.0/24 maxlen: 24 82.197.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:7d:9e:c5:32:d2:43:45:e7:0c:8a:95:06:35:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=490b21f79b9ea2f3d042374714867d12401995db Validity Not Before: Jan 2 16:21:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6667e739de020cbe4225b8335f42057da0a99ff2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f2:75:d5:03:ed:70:94:b7:d6:02:a5:4f:15: 9f:bf:2d:51:81:2d:c5:34:3f:d5:b5:71:ea:f1:d0: e7:78:d2:9c:34:3b:82:18:5b:76:0f:7b:88:05:c3: 7d:50:94:ab:ab:fa:e6:ba:14:6e:14:ee:e2:64:a8: e5:10:7e:d5:0b:4f:34:86:32:d2:6c:68:c7:7e:d4: 30:99:87:b2:8a:22:98:11:f1:cf:54:6e:55:7d:f7: 90:7f:48:1b:42:b7:40:16:3f:f7:12:dd:ae:ab:e9: 1a:76:05:42:1e:0c:6e:46:45:c7:54:33:11:88:b4: 62:46:65:e6:97:12:1a:17:32:bd:95:58:cd:90:d8: ad:cc:15:1f:7c:af:5a:8e:ac:cb:2b:50:c8:8c:ca: 45:33:cc:e5:36:ff:7e:c7:8a:a7:e4:5f:70:0c:7d: 76:14:09:47:1e:05:82:b3:40:46:5d:17:14:62:d5: 32:85:f5:f4:f5:b3:cc:9c:2f:d6:13:bd:62:81:1e: e3:6e:af:4f:6c:08:4f:c1:e2:2f:10:5f:eb:66:84: 21:c9:c4:1d:c2:00:c0:4c:4e:25:df:1c:b1:05:6a: f5:9b:0c:68:48:df:ef:f7:fb:07:03:9a:4d:39:2c: dc:64:36:5b:76:00:be:9d:18:c8:44:ae:b8:a3:07: d7:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:67:E7:39:DE:02:0C:BE:42:25:B8:33:5F:42:05:7D:A0:A9:9F:F2 X509v3 Authority Key Identifier: keyid:49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/ZmfnOd4CDL5CJbgzX0IFfaCpn_I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.73.9.0/24 77.73.12.0/24 82.197.74.0/24 Signature Algorithm: sha256WithRSAEncryption 96:b5:a0:81:5c:c0:75:7b:3b:47:69:a6:62:b7:4f:51:80:a4: 25:43:13:9b:56:84:f1:fb:2e:46:3b:ba:75:3a:a0:87:c7:8d: bc:0d:43:68:5f:c5:3e:af:b7:46:99:f0:3c:30:43:04:37:58: c9:8c:a3:ed:cd:e6:04:cb:d6:12:ea:0e:11:1c:40:30:8a:34: 8a:56:50:87:31:32:78:c8:ba:69:e5:d9:50:74:32:87:8c:16: 9a:02:ad:1e:3f:55:7f:c6:4d:ac:6b:40:a0:56:88:79:0d:a2: e5:84:9b:d7:5f:c9:14:51:39:77:cc:2c:23:95:22:34:4a:47: 50:66:01:41:c9:c5:d7:a5:0f:db:5e:d0:8f:ec:04:69:77:b6: 60:ed:d7:7f:b2:9b:4b:a2:44:61:50:0e:e6:ad:d0:4f:26:b2: fb:b7:09:9c:48:0f:d4:09:70:7e:3c:62:54:7a:d0:09:73:80: dd:1c:df:e0:b1:db:e6:0f:b4:e3:91:d1:27:ca:1c:0b:33:7d: 28:fa:b9:7d:c0:e2:7a:d1:e4:53:16:60:5f:78:44:8d:3b:e2: 6f:8a:f0:19:2a:e5:7d:15:e6:04:b6:cd:74:63:86:b5:40:49: 3d:0e:0b:2b:e2:89:a3:c5:3e:7b:c8:7f:f2:ae:8a:2d:63:5f: 2d:77:f3:b3 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt/g32exTLSQ0XnDIqVBjXBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5MGIyMWY3OWI5ZWEyZjNkMDQyMzc0NzE0ODY3ZDEyNDAx OTk1ZGIwHhcNMjYwMTAyMTYyMTIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NjY3ZTczOWRlMDIwY2JlNDIyNWI4MzM1ZjQyMDU3ZGEwYTk5ZmYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PJ11QPtcJS31gKlTxWfvy1RgS3F ND/VtXHq8dDneNKcNDuCGFt2D3uIBcN9UJSrq/rmuhRuFO7iZKjlEH7VC080hjLS bGjHftQwmYeyiiKYEfHPVG5VffeQf0gbQrdAFj/3Et2uq+kadgVCHgxuRkXHVDMR iLRiRmXmlxIaFzK9lVjNkNitzBUffK9ajqzLK1DIjMpFM8zlNv9+x4qn5F9wDH12 FAlHHgWCs0BGXRcUYtUyhfX09bPMnC/WE71igR7jbq9PbAhPweIvEF/rZoQhycQd wgDATE4l3xyxBWr1mwxoSN/v9/sHA5pNOSzcZDZbdgC+nRjIRK64owfXHQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFGZn5zneAgy+QiW4M19CBX2gqZ/yMB8GA1UdIwQY MBaAFEkLIfebnqLz0EI3RxSGfRJAGZXbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1FzaDk1dWVvdlBRUWpkSEZJWjlFa0FabGRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9lMTAxNjUtYjRjZC00MzIxLWJmM2Mt NDgwYzMyZjQwMGUxLzEvWm1mbk9kNENETDVDSmJnelgwSUZmYUNwbl9JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS9lMTAxNjUtYjRjZC00MzIxLWJmM2MtNDgwYzMyZjQwMGUx LzEvU1FzaDk1dWVvdlBRUWpkSEZJWjlFa0FabGRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQATUkJAwQA TUkMAwQAUsVKMA0GCSqGSIb3DQEBCwUAA4IBAQCWtaCBXMB1eztHaaZit09RgKQl QxObVoTx+y5GO7p1OqCHx428DUNoX8U+r7dGmfA8MEMEN1jJjKPtzeYEy9YS6g4R HEAwijSKVlCHMTJ4yLpp5dlQdDKHjBaaAq0eP1V/xk2sa0CgVoh5DaLlhJvXX8kU UTl3zCwjlSI0SkdQZgFBycXXpQ/bXtCP7ARpd7Zg7dd/sptLokRhUA7mrdBPJrL7 twmcSA/UCXB+PGJUetAJc4DdHN/gsdvmD7TjkdEnyhwLM30o+rl9wOJ60eRTFmBf eESNO+JvivAZKuV9FeYEts10Y4a1QEk9Dgsr4omjxT57yH/yrootY18td/Oz -----END CERTIFICATE-----Generated at Sun Jan 25 20:58:35 2026 by rpki-client