This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/zyiTueEsxpcD3PrX5wVtwGJMZ_Y.roa File: zyiTueEsxpcD3PrX5wVtwGJMZ_Y.roa (raw, json) Hash identifier: 7R1f/73J/Qx3gYsQEvvU8YVQZND5dDU9/Elan9+1kYw= Subject key identifier: CF:28:93:B9:E1:2C:C6:97:03:DC:FA:D7:E7:05:6D:C0:62:4C:67:F6 Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Certificate serial: 019B7D5B6F23BDE5B0920E3B3B97F133DE44 Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/zyiTueEsxpcD3PrX5wVtwGJMZ_Y.roa Signing time: Fri 02 Jan 2026 06:18:22 +0000 ROA not before: Fri 02 Jan 2026 06:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212014 IP address blocks: 89.35.226.0/24 maxlen: 24 2a0a:d6c0:226::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:6f:23:bd:e5:b0:92:0e:3b:3b:97:f1:33:de:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Validity Not Before: Jan 2 06:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cf2893b9e12cc69703dcfad7e7056dc0624c67f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4a:c5:8b:fd:85:04:ff:b3:11:05:7f:a8:54: 9f:a9:b0:7e:d2:bb:a6:c7:ce:bf:26:8b:3f:5e:cc: db:ac:eb:8f:b2:80:24:94:a3:bc:8b:65:cd:b8:e4: 21:0e:af:76:ce:30:67:26:d3:a3:f2:e2:23:d2:77: ae:49:cf:c6:72:8b:65:95:55:e2:31:b1:9c:83:b3: 10:b3:33:b7:71:e3:9c:6f:38:cb:e4:a5:76:c9:42: 2a:0c:64:4c:77:0c:36:2c:34:24:0f:77:e1:79:73: 03:e6:99:ee:ea:f2:84:b9:cd:f9:41:98:e7:10:dc: c7:0b:74:cc:db:33:89:5c:ae:0d:59:a7:80:b6:43: cd:5d:b1:8e:65:78:21:4a:fb:d8:98:45:55:f0:6e: 9d:b8:6d:b2:a3:48:ee:bc:ff:4b:cf:63:f9:d1:19: 7c:41:d4:6f:c5:b8:7b:1e:48:19:3f:f7:52:76:97: e4:22:68:ae:78:9c:e5:1a:0b:55:5c:df:97:c1:83: 9f:b1:84:5f:15:32:db:5d:80:fd:d3:5c:87:31:fd: 05:32:df:fb:56:76:a0:43:6d:3c:74:54:a9:bb:d3: 6d:2c:8b:92:e8:ef:47:df:8a:b4:65:cd:d6:e2:17: 0e:b7:e4:76:ce:06:21:4b:0f:81:94:58:14:10:4c: ac:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:28:93:B9:E1:2C:C6:97:03:DC:FA:D7:E7:05:6D:C0:62:4C:67:F6 X509v3 Authority Key Identifier: keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/zyiTueEsxpcD3PrX5wVtwGJMZ_Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.35.226.0/24 IPv6: 2a0a:d6c0:226::/48 Signature Algorithm: sha256WithRSAEncryption 54:b5:80:a8:6f:bf:01:01:c9:2c:1d:2e:74:75:85:ba:00:c6: f5:cd:f6:e7:39:c8:54:66:5f:d4:af:87:c3:98:c0:60:59:eb: 4e:e6:7f:81:b4:bb:94:06:b5:18:18:7b:39:2d:30:54:50:68: 51:c7:ab:87:7f:4e:08:f6:1e:3b:0c:74:ca:1f:5c:21:7e:b6: 82:f0:2d:6c:f1:e0:ac:fb:a3:80:7a:06:72:df:19:22:2c:7b: 66:0b:f5:28:4b:2c:d2:44:46:40:79:4c:66:4e:7a:ef:81:3b: fb:d2:31:37:71:d4:95:b1:91:20:0c:5e:45:da:60:21:24:ba: 3c:06:73:38:1d:08:8c:27:61:17:da:2f:47:40:b3:85:d8:2c: b0:5f:27:5f:6c:65:d3:55:5e:21:80:31:8d:eb:64:3e:c1:b5: ec:2b:4c:43:d6:19:28:5c:f7:3f:88:96:64:d6:8d:8b:22:8e: e9:2e:66:32:04:65:7f:24:29:eb:69:ac:ea:4c:ec:9e:85:e5: a4:40:92:ae:4a:61:9c:6d:eb:b6:d6:72:de:3e:a8:7e:ab:5c: b0:f2:1b:d2:6c:ac:59:c9:82:d2:0e:aa:14:9a:08:b7:c3:fd: 82:2f:69:b6:89:f5:8f:a7:22:94:33:56:58:fc:74:1b:05:5e: 7d:f3:b2:89 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt9W28jveWwkg47O5fxM95EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4N2Q2ZGY3ZWI3NTQyZTAzMzNhZWVkZDE0YWRmZjhmNTFm OGNiZDgwHhcNMjYwMTAyMDYxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZjI4OTNiOWUxMmNjNjk3MDNkY2ZhZDdlNzA1NmRjMDYyNGM2N2Y2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ErFi/2FBP+zEQV/qFSfqbB+0rum x86/Jos/XszbrOuPsoAklKO8i2XNuOQhDq92zjBnJtOj8uIj0neuSc/GcotllVXi MbGcg7MQszO3ceOcbzjL5KV2yUIqDGRMdww2LDQkD3fheXMD5pnu6vKEuc35QZjn ENzHC3TM2zOJXK4NWaeAtkPNXbGOZXghSvvYmEVV8G6duG2yo0juvP9Lz2P50Rl8 QdRvxbh7HkgZP/dSdpfkImiueJzlGgtVXN+XwYOfsYRfFTLbXYD901yHMf0FMt/7 VnagQ208dFSpu9NtLIuS6O9H34q0Zc3W4hcOt+R2zgYhSw+BlFgUEEysUQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFM8ok7nhLMaXA9z61+cFbcBiTGf2MB8GA1UdIwQY MBaAFDh9bffrdULgMzru3RSt/49R+MvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2Mt NjA5YTQ4YjJiMTRkLzEvenlpVHVlRXN4cGNEM1ByWDV3VnR3R0pNWl9ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2MtNjA5YTQ4YjJiMTRk LzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAWSPiMA8E AgACMAkDBwAqCtbAAiYwDQYJKoZIhvcNAQELBQADggEBAFS1gKhvvwEBySwdLnR1 hboAxvXN9uc5yFRmX9Svh8OYwGBZ607mf4G0u5QGtRgYezktMFRQaFHHq4d/Tgj2 HjsMdMofXCF+toLwLWzx4Kz7o4B6BnLfGSIse2YL9ShLLNJERkB5TGZOeu+BO/vS MTdx1JWxkSAMXkXaYCEkujwGczgdCIwnYRfaL0dAs4XYLLBfJ19sZdNVXiGAMY3r ZD7BtewrTEPWGShc9z+IlmTWjYsijukuZjIEZX8kKetprOpM7J6F5aRAkq5KYZxt 67bWct4+qH6rXLDyG9JsrFnJgtIOqhSaCLfD/YIvabaJ9Y+nIpQzVlj8dBsFXn3z sok= -----END CERTIFICATE-----Generated at Mon Jan 26 00:14:12 2026 by rpki-client