This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/0Zesq0AbB4PradrYOoKeAmLgmoo.roa File: 0Zesq0AbB4PradrYOoKeAmLgmoo.roa (raw, json) Hash identifier: uyAIf7m1jJ9F7/DZjhCImbWm0xh75pqBE+0Iul58rXo= Subject key identifier: D1:97:AC:AB:40:1B:07:83:EB:69:DA:D8:3A:82:9E:02:62:E0:9A:8A Certificate issuer: /CN=a316c7659af1d56bc718faf614f092758f5edc7f Certificate serial: 019B7AC89E51F90FA564BE8124276320A391 Authority key identifier: A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/0Zesq0AbB4PradrYOoKeAmLgmoo.roa Signing time: Thu 01 Jan 2026 18:18:46 +0000 ROA not before: Thu 01 Jan 2026 18:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 23467 IP address blocks: 212.32.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/oxbHZZrx1WvHGPr2FPCSdY9e3H8.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/oxbHZZrx1WvHGPr2FPCSdY9e3H8.mft rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:9e:51:f9:0f:a5:64:be:81:24:27:63:20:a3:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a316c7659af1d56bc718faf614f092758f5edc7f Validity Not Before: Jan 1 18:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d197acab401b0783eb69dad83a829e0262e09a8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:70:22:b5:d7:d6:2c:98:6b:15:6b:f1:60:83: 65:a5:af:d6:4d:8a:8b:e2:e6:a1:9e:b8:22:d4:b9: 3d:15:49:e0:5c:6f:ed:1d:d6:f4:c3:89:f2:76:a4: 54:c3:1a:73:2e:2c:61:f9:4b:cd:05:31:0c:80:79: 3c:dd:ca:3c:d3:1b:f7:f0:43:96:47:f1:49:58:10: e3:cc:c5:29:ea:40:fd:cf:6b:e7:a0:80:21:03:b6: d4:70:aa:ee:84:65:0e:c6:49:75:d0:12:81:29:50: c6:61:e3:35:8b:29:71:70:1b:1b:fe:2c:81:3d:5e: ec:b9:62:b7:39:79:9d:1a:b7:bb:24:00:0d:12:ce: 04:8b:b3:26:62:2b:49:29:f7:fb:fb:de:7c:c2:1d: 07:06:bf:bf:30:12:72:21:0b:45:33:8e:de:df:54: 77:d9:13:8b:f4:f2:67:a6:ba:90:eb:dd:f6:27:ce: a7:bd:aa:66:08:e8:fe:2b:77:9f:42:3c:2f:4d:54: 0a:ef:69:19:06:92:55:3e:96:6b:d1:5f:37:67:b2: 94:d3:55:83:59:73:6f:5a:05:4f:44:26:1a:55:4f: b6:ad:9b:4c:f5:8e:98:66:16:67:47:24:73:cc:41: ad:6f:21:66:f9:d3:aa:c8:84:30:c4:20:0f:2a:d3: 54:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:97:AC:AB:40:1B:07:83:EB:69:DA:D8:3A:82:9E:02:62:E0:9A:8A X509v3 Authority Key Identifier: keyid:A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/0Zesq0AbB4PradrYOoKeAmLgmoo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/oxbHZZrx1WvHGPr2FPCSdY9e3H8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.32.0.0/20 Signature Algorithm: sha256WithRSAEncryption 15:b2:2e:47:1f:a1:f4:6a:8d:c6:b7:9d:c8:e1:c1:68:48:3f: 96:8a:ca:03:02:d4:b3:26:32:9e:86:3a:9b:cd:84:eb:c2:eb: 7c:c3:bb:61:ac:fd:02:c2:de:c9:4c:44:13:dd:49:d1:4d:04: 80:95:80:a8:a1:9e:ae:54:80:c1:92:be:29:bb:bf:63:bd:d1: 41:b2:fc:1e:7a:2d:1d:b7:e4:da:11:da:99:20:1a:67:a0:69: 28:77:44:af:7f:08:05:ac:84:d9:a6:9a:36:30:36:8e:30:ea: 4a:8d:d1:3c:a7:d1:74:ee:67:75:c2:5c:88:15:a8:1b:bf:01: 60:88:d0:3f:8b:c3:3d:61:b5:cd:77:e1:9a:9f:80:6d:0a:47: ee:6a:b5:99:4c:43:bf:15:35:0c:77:2d:f6:11:8d:a9:25:9e: eb:f4:ce:8d:aa:be:55:72:6b:f5:71:e6:18:ff:b8:39:1f:49: 77:d9:fc:47:a8:63:2b:b3:10:2d:17:f9:ad:34:18:20:43:c2: 65:66:c7:dd:4f:61:f2:21:f2:c3:7c:c8:09:9d:05:50:b2:27: aa:f0:5c:fe:a3:d4:28:14:c1:cd:7e:cd:ca:de:18:9c:08:71: 87:e3:85:be:90:b5:d2:d1:58:6c:a9:46:76:f8:71:45:7d:5c: 8f:8d:24:00 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yJ5R+Q+lZL6BJCdjIKORMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzMTZjNzY1OWFmMWQ1NmJjNzE4ZmFmNjE0ZjA5Mjc1OGY1 ZWRjN2YwHhcNMjYwMTAxMTgxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMTk3YWNhYjQwMWIwNzgzZWI2OWRhZDgzYTgyOWUwMjYyZTA5YThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+3AitdfWLJhrFWvxYINlpa/WTYqL 4uahnrgi1Lk9FUngXG/tHdb0w4nydqRUwxpzLixh+UvNBTEMgHk83co80xv38EOW R/FJWBDjzMUp6kD9z2vnoIAhA7bUcKruhGUOxkl10BKBKVDGYeM1iylxcBsb/iyB PV7suWK3OXmdGre7JAANEs4Ei7MmYitJKff7+958wh0HBr+/MBJyIQtFM47e31R3 2ROL9PJnprqQ6932J86nvapmCOj+K3efQjwvTVQK72kZBpJVPpZr0V83Z7KU01WD WXNvWgVPRCYaVU+2rZtM9Y6YZhZnRyRzzEGtbyFm+dOqyIQwxCAPKtNUmwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNGXrKtAGweD62na2DqCngJi4JqKMB8GA1UdIwQY MBaAFKMWx2Wa8dVrxxj69hTwknWPXtx/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3hiSFpacngxV3ZIR1ByMkZQQ1NkWTllM0g4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8zMGQ0ZTgtZTA5MC00YmYyLTgxODUt MzY4N2M4MThlZGU1LzEvMFplc3EwQWJCNFByYWRyWU9vS2VBbUxnbW9vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy8zMGQ0ZTgtZTA5MC00YmYyLTgxODUtMzY4N2M4MThlZGU1 LzEvb3hiSFpacngxV3ZIR1ByMkZQQ1NkWTllM0g4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE1CAAMA0G CSqGSIb3DQEBCwUAA4IBAQAVsi5HH6H0ao3Gt53I4cFoSD+WisoDAtSzJjKehjqb zYTrwut8w7thrP0Cwt7JTEQT3UnRTQSAlYCooZ6uVIDBkr4pu79jvdFBsvweei0d t+TaEdqZIBpnoGkod0SvfwgFrITZppo2MDaOMOpKjdE8p9F07md1wlyIFagbvwFg iNA/i8M9YbXNd+Gan4BtCkfuarWZTEO/FTUMdy32EY2pJZ7r9M6Nqr5Vcmv1ceYY /7g5H0l32fxHqGMrsxAtF/mtNBggQ8JlZsfdT2HyIfLDfMgJnQVQsieq8Fz+o9Qo FMHNfs3K3hicCHGH44W+kLXS0VhsqUZ2+HFFfVyPjSQA -----END CERTIFICATE-----Generated at Sun Jan 25 10:31:03 2026 by rpki-client