This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/ZNVLkE0Hncpo1bsQ8SqkvCmjNMs.roa File: ZNVLkE0Hncpo1bsQ8SqkvCmjNMs.roa (raw, json) Hash identifier: ckctwOhfUle+O6fK0mnv5ZMxRNGqbUG5lJdOX3nwnlo= Subject key identifier: 64:D5:4B:90:4D:07:9D:CA:68:D5:BB:10:F1:2A:A4:BC:29:A3:34:CB Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 019B78345ECB6E1D3E4AFC292F5C1E6202AD Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/ZNVLkE0Hncpo1bsQ8SqkvCmjNMs.roa Signing time: Thu 01 Jan 2026 06:17:36 +0000 ROA not before: Thu 01 Jan 2026 06:17:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208767 IP address blocks: 212.230.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:5e:cb:6e:1d:3e:4a:fc:29:2f:5c:1e:62:02:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: Jan 1 06:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=64d54b904d079dca68d5bb10f12aa4bc29a334cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:61:e4:70:b2:0f:a3:91:9b:c1:a9:97:02:6c: 01:96:8b:bb:92:85:16:90:86:ca:c6:66:1c:63:80: ee:0c:5b:6a:e7:ef:8a:ab:fb:17:88:02:f7:21:37: be:5a:46:86:d7:ec:1d:1b:e5:bc:0c:25:1e:f9:be: 4a:80:63:62:23:71:ed:e5:75:f6:a2:60:d0:69:d7: 04:32:fd:8d:f1:d4:d3:f0:91:bd:b2:b3:41:e6:82: ff:91:84:d8:31:4d:89:7e:7d:db:0e:a9:9e:3e:79: 7f:23:37:24:35:71:0c:0e:0a:39:30:51:94:17:aa: 3b:74:76:ad:18:ab:8d:f1:90:1e:55:08:c2:eb:37: 81:74:0c:61:b5:cd:b4:cc:19:21:d8:de:d0:c4:34: 8c:cb:7a:4a:c3:27:4c:84:e6:2f:3a:8f:f8:f8:a2: c2:a3:74:a0:14:92:be:c3:cc:b1:fb:ff:a1:e7:af: 2c:2f:95:c7:aa:e2:1a:b2:4a:6a:b4:ad:80:26:17: fd:b0:18:7d:de:fc:3a:61:d8:c3:13:0b:e3:f0:2b: 72:48:68:40:0c:36:a7:32:ef:79:62:ef:f6:4d:f9: 5f:d2:18:36:25:40:8c:cd:ea:15:ac:c7:f7:c4:ef: 9f:33:78:e3:12:5e:13:30:99:81:b9:6a:a4:b3:71: 75:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:D5:4B:90:4D:07:9D:CA:68:D5:BB:10:F1:2A:A4:BC:29:A3:34:CB X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/ZNVLkE0Hncpo1bsQ8SqkvCmjNMs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.230.163.0/24 Signature Algorithm: sha256WithRSAEncryption 38:bf:91:54:a6:9c:d9:7e:af:3c:4b:16:d4:fe:d3:f7:44:8b: d6:d0:40:8a:72:06:b8:a0:48:43:1e:a9:97:f1:00:cf:0f:8c: 0c:54:4c:5f:c6:15:4c:e8:4d:7f:36:e3:cb:ee:c5:32:c5:c4: cd:82:86:7d:99:27:ab:ca:43:ae:0c:98:ed:19:3b:2b:bb:ed: ec:9f:0f:89:31:49:36:2e:67:90:3d:96:76:b9:72:42:2f:0a: aa:ea:fd:80:e1:4f:b3:09:62:26:61:02:6a:ec:06:bc:01:36: d2:40:1a:c7:2f:83:4a:c1:d8:07:d7:7f:4a:f2:28:d5:ef:b1: 6c:d9:1a:80:19:a3:77:4b:a0:46:22:af:1d:6f:a8:b8:ec:c3: d9:3a:9b:d5:64:4b:81:29:09:cb:50:df:a8:3f:18:29:2c:28: e5:70:91:b2:bc:7c:dd:74:db:58:f4:68:88:73:23:89:fb:d2: 24:fc:d8:31:38:7b:78:9d:7a:d5:71:d6:03:31:70:4a:12:40: 9f:1f:a7:71:fd:3e:84:53:7d:0f:ab:0f:3b:f7:3b:b1:0d:9e: b7:ac:40:5f:66:80:1e:49:ee:d0:fa:50:23:7c:56:a6:d8:e0: 2d:fa:1f:67:34:72:79:37:3d:58:43:74:55:6d:6a:09:27:59: 76:2f:83:6d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NF7Lbh0+SvwpL1weYgKtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjYwMTAxMDYxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NGQ1NGI5MDRkMDc5ZGNhNjhkNWJiMTBmMTJhYTRiYzI5YTMzNGNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz2HkcLIPo5GbwamXAmwBlou7koUW kIbKxmYcY4DuDFtq5++Kq/sXiAL3ITe+WkaG1+wdG+W8DCUe+b5KgGNiI3Ht5XX2 omDQadcEMv2N8dTT8JG9srNB5oL/kYTYMU2Jfn3bDqmePnl/IzckNXEMDgo5MFGU F6o7dHatGKuN8ZAeVQjC6zeBdAxhtc20zBkh2N7QxDSMy3pKwydMhOYvOo/4+KLC o3SgFJK+w8yx+/+h568sL5XHquIaskpqtK2AJhf9sBh93vw6YdjDEwvj8CtySGhA DDanMu95Yu/2Tflf0hg2JUCMzeoVrMf3xO+fM3jjEl4TMJmBuWqks3F1WwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGTVS5BNB53KaNW7EPEqpLwpozTLMB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvWk5WTGtFMEhuY3BvMWJzUThTcWt2Q21qTk1zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1OajMA0G CSqGSIb3DQEBCwUAA4IBAQA4v5FUppzZfq88SxbU/tP3RIvW0ECKcga4oEhDHqmX 8QDPD4wMVExfxhVM6E1/NuPL7sUyxcTNgoZ9mSerykOuDJjtGTsru+3snw+JMUk2 LmeQPZZ2uXJCLwqq6v2A4U+zCWImYQJq7Aa8ATbSQBrHL4NKwdgH139K8ijV77Fs 2RqAGaN3S6BGIq8db6i47MPZOpvVZEuBKQnLUN+oPxgpLCjlcJGyvHzddNtY9GiI cyOJ+9Ik/NgxOHt4nXrVcdYDMXBKEkCfH6dx/T6EU30Pqw879zuxDZ63rEBfZoAe Se7Q+lAjfFam2OAt+h9nNHJ5Nz1YQ3RVbWoJJ1l2L4Nt -----END CERTIFICATE-----Generated at Sun Jan 25 16:28:14 2026 by rpki-client