This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/zyd8uSkjKcRLHzmFPeh-k40bdgw.roa File: zyd8uSkjKcRLHzmFPeh-k40bdgw.roa (raw, json) Hash identifier: Z+xUSGJvLfcezS9srOZIqvbsKOYqYqGNXUZ1rB4SeYY= Subject key identifier: CF:27:7C:B9:29:23:29:C4:4B:1F:39:85:3D:E8:7E:93:8D:1B:76:0C Certificate issuer: /CN=d9efe9d36f5f88fdf04742c4140c7532090ab770 Certificate serial: 019B7F858DD82B672B1DA48AD20FCD41D75A Authority key identifier: D9:EF:E9:D3:6F:5F:88:FD:F0:47:42:C4:14:0C:75:32:09:0A:B7:70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2e_p029fiP3wR0LEFAx1MgkKt3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/zyd8uSkjKcRLHzmFPeh-k40bdgw.roa Signing time: Fri 02 Jan 2026 16:23:37 +0000 ROA not before: Fri 02 Jan 2026 16:23:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12849 IP address blocks: 185.131.144.0/24 maxlen: 24 185.131.145.0/24 maxlen: 24 194.88.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/2e_p029fiP3wR0LEFAx1MgkKt3A.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/2e_p029fiP3wR0LEFAx1MgkKt3A.mft rsync://rpki.ripe.net/repository/DEFAULT/2e_p029fiP3wR0LEFAx1MgkKt3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:8d:d8:2b:67:2b:1d:a4:8a:d2:0f:cd:41:d7:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9efe9d36f5f88fdf04742c4140c7532090ab770 Validity Not Before: Jan 2 16:23:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cf277cb9292329c44b1f39853de87e938d1b760c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:b7:9a:42:4e:e5:6c:ae:56:3b:0d:42:03:c6: 25:df:7f:a3:d2:9a:c9:bf:4b:f7:45:7c:e5:08:6c: ca:77:73:b3:02:2d:55:9f:0e:32:da:26:d2:27:51: 8b:40:07:59:c5:7b:c0:72:80:8a:3a:00:6d:2a:85: 3c:95:2e:d0:cc:50:bf:57:5e:45:44:8c:cc:8b:ef: 78:91:29:62:a7:be:ac:14:ce:96:10:1d:2a:fa:9b: a0:42:2b:1a:60:fe:96:54:39:b8:02:54:2b:b9:a8: 13:43:38:06:5f:88:61:b7:07:0b:28:d0:7c:78:79: 65:24:3a:0a:07:4c:20:34:92:0a:f5:9d:f2:95:cf: 00:09:05:5e:50:7c:7d:2e:e6:93:8f:dc:e2:1e:6c: 6a:ba:69:9f:ad:94:ab:0f:21:b7:89:86:b7:dd:f9: c8:f2:2e:da:4e:37:66:60:de:ab:79:cc:bc:d8:22: 4d:86:4c:ce:95:b1:1d:b7:ae:21:40:ed:01:74:7e: 1e:4f:f3:80:ea:a5:12:cc:87:05:2b:fd:b9:73:9e: 0b:96:05:07:92:10:16:ea:f9:4b:a7:f5:ea:93:9e: 26:2a:8c:ef:b9:97:71:48:a3:d2:07:d4:15:58:d9: c7:15:08:8c:53:87:a6:2e:64:ff:03:b8:65:17:7e: 1a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:27:7C:B9:29:23:29:C4:4B:1F:39:85:3D:E8:7E:93:8D:1B:76:0C X509v3 Authority Key Identifier: keyid:D9:EF:E9:D3:6F:5F:88:FD:F0:47:42:C4:14:0C:75:32:09:0A:B7:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e_p029fiP3wR0LEFAx1MgkKt3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/zyd8uSkjKcRLHzmFPeh-k40bdgw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/2e_p029fiP3wR0LEFAx1MgkKt3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.131.144.0/23 194.88.108.0/22 Signature Algorithm: sha256WithRSAEncryption 58:e0:12:bb:4d:92:8b:92:ed:88:aa:ee:04:e5:01:17:a7:04: de:44:aa:1a:17:11:8a:c3:82:ae:70:2d:f6:60:ad:55:25:c6: 57:08:b3:d8:66:54:78:4e:cf:b8:cb:a6:b8:c2:ad:26:fa:fc: 02:f5:72:13:59:92:bc:7c:a3:1e:95:41:40:a6:e9:6e:ab:28: f0:b2:fc:69:27:db:d9:ac:fa:3f:51:ee:87:3f:bc:91:5b:a8: 90:f8:ec:ee:bd:48:82:e3:07:da:a2:2a:a7:91:be:79:7e:0e: 28:4c:f9:f7:64:d3:3e:d4:6c:e3:4c:08:18:f5:15:f7:31:62: ac:f3:00:13:4c:3f:ea:f0:ef:ed:e1:98:48:31:1c:26:3f:02: 8d:8b:99:c0:a1:c3:19:21:de:de:d3:c7:81:94:fd:27:7b:83: 48:92:38:7b:3f:47:48:19:cb:fc:31:b4:dc:93:c7:db:af:93: 0e:ef:4f:97:8b:35:fe:3d:b9:83:63:d6:70:1a:ff:1e:02:54: 12:6f:8a:a9:00:27:ae:c9:9e:6a:73:87:37:84:07:f5:4e:ae: 44:40:af:47:8b:3c:c8:00:00:ed:e3:c8:d9:96:54:fe:0e:d1: 37:d0:7f:29:54:48:00:a8:7d:76:5c:33:ca:20:1b:20:dd:b4: f0:b1:25:28 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hY3YK2crHaSK0g/NQddaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZWZlOWQzNmY1Zjg4ZmRmMDQ3NDJjNDE0MGM3NTMyMDkw YWI3NzAwHhcNMjYwMTAyMTYyMzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZjI3N2NiOTI5MjMyOWM0NGIxZjM5ODUzZGU4N2U5MzhkMWI3NjBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9reaQk7lbK5WOw1CA8Yl33+j0prJ v0v3RXzlCGzKd3OzAi1Vnw4y2ibSJ1GLQAdZxXvAcoCKOgBtKoU8lS7QzFC/V15F RIzMi+94kSlip76sFM6WEB0q+pugQisaYP6WVDm4AlQruagTQzgGX4hhtwcLKNB8 eHllJDoKB0wgNJIK9Z3ylc8ACQVeUHx9LuaTj9ziHmxqummfrZSrDyG3iYa33fnI 8i7aTjdmYN6recy82CJNhkzOlbEdt64hQO0BdH4eT/OA6qUSzIcFK/25c54LlgUH khAW6vlLp/Xqk54mKozvuZdxSKPSB9QVWNnHFQiMU4emLmT/A7hlF34asQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFM8nfLkpIynESx85hT3ofpONG3YMMB8GA1UdIwQY MBaAFNnv6dNvX4j98EdCxBQMdTIJCrdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmVfcDAyOWZpUDN3UjBMRUZBeDFNZ2tLdDNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC81NWRiMzQtZmM3OS00MDA0LTk1Yzkt MzlmNmQ2NDI1MzM4LzEvenlkOHVTa2pLY1JMSHptRlBlaC1rNDBiZGd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC81NWRiMzQtZmM3OS00MDA0LTk1YzktMzlmNmQ2NDI1MzM4 LzEvMmVfcDAyOWZpUDN3UjBMRUZBeDFNZ2tLdDNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBuYOQAwQC wlhsMA0GCSqGSIb3DQEBCwUAA4IBAQBY4BK7TZKLku2Iqu4E5QEXpwTeRKoaFxGK w4KucC32YK1VJcZXCLPYZlR4Ts+4y6a4wq0m+vwC9XITWZK8fKMelUFApuluqyjw svxpJ9vZrPo/Ue6HP7yRW6iQ+OzuvUiC4wfaoiqnkb55fg4oTPn3ZNM+1GzjTAgY 9RX3MWKs8wATTD/q8O/t4ZhIMRwmPwKNi5nAocMZId7e08eBlP0ne4NIkjh7P0dI Gcv8MbTck8fbr5MO70+XizX+PbmDY9ZwGv8eAlQSb4qpACeuyZ5qc4c3hAf1Tq5E QK9HizzIAADt48jZllT+DtE30H8pVEgAqH12XDPKIBsg3bTwsSUo -----END CERTIFICATE-----Generated at Mon Jan 26 00:15:03 2026 by rpki-client