This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/07d0c7-dc1e-4089-bd48-7ee0e60bb053/1/zY55egblxOayG_XFLEDuLnn2KzY.roa File: zY55egblxOayG_XFLEDuLnn2KzY.roa (raw, json) Hash identifier: 3VtoSxzQ+1ALd4QWfODnz+BMqwgszTlt4xRR53OtSeY= Subject key identifier: CD:8E:79:7A:06:E5:C4:E6:B2:1B:F5:C5:2C:40:EE:2E:79:F6:2B:36 Certificate issuer: /CN=a1e5fc635a1a775574b779aea9ccd6524cc4d0f9 Certificate serial: 019B7AC801C86F85329DDB401DD4717F6B3F Authority key identifier: A1:E5:FC:63:5A:1A:77:55:74:B7:79:AE:A9:CC:D6:52:4C:C4:D0:F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oeX8Y1oad1V0t3muqczWUkzE0Pk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/07d0c7-dc1e-4089-bd48-7ee0e60bb053/1/zY55egblxOayG_XFLEDuLnn2KzY.roa Signing time: Thu 01 Jan 2026 18:18:06 +0000 ROA not before: Thu 01 Jan 2026 18:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197265 IP address blocks: 91.217.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/07d0c7-dc1e-4089-bd48-7ee0e60bb053/1/oeX8Y1oad1V0t3muqczWUkzE0Pk.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/07d0c7-dc1e-4089-bd48-7ee0e60bb053/1/oeX8Y1oad1V0t3muqczWUkzE0Pk.mft rsync://rpki.ripe.net/repository/DEFAULT/oeX8Y1oad1V0t3muqczWUkzE0Pk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:01:c8:6f:85:32:9d:db:40:1d:d4:71:7f:6b:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1e5fc635a1a775574b779aea9ccd6524cc4d0f9 Validity Not Before: Jan 1 18:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cd8e797a06e5c4e6b21bf5c52c40ee2e79f62b36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d2:0c:64:a1:f4:8d:6a:94:4c:90:a2:43:04: f0:e3:57:36:5c:61:7c:93:2a:d6:bf:d2:90:1d:19: 3f:67:f1:c9:31:3d:c9:20:eb:98:53:97:d5:a2:ee: c0:bc:77:f4:4b:37:85:d0:3c:87:51:02:8c:9d:f9: c3:d8:83:4c:3d:2a:6a:35:f9:10:ce:96:c4:2b:52: 2d:64:85:00:9e:d4:14:01:f0:4a:ab:6c:f2:f8:7a: bf:1e:98:d3:e1:10:c2:99:db:2c:b5:47:0d:36:1c: c7:bb:b0:5a:36:41:a1:26:dd:b4:08:ca:3b:aa:fd: d0:c6:3f:67:ea:dc:e3:98:e5:96:7d:5d:a2:b7:b2: 69:14:60:08:68:87:5d:2c:a7:56:30:cb:3f:98:8e: 0b:da:ea:6f:be:1f:6e:22:8f:27:6f:2a:c8:84:cd: 1a:5c:29:b5:60:c7:06:8b:e6:96:0c:66:ff:48:96: f1:06:d3:cc:0e:3b:6a:fd:ea:58:f3:13:17:25:39: fd:a8:50:d2:ab:52:83:82:09:46:6e:2a:eb:ad:85: 80:0c:0d:86:be:87:a7:ba:23:75:7e:c0:41:43:a9: dd:01:31:09:b9:0f:c5:4f:a4:a0:b3:92:1d:c2:74: 4f:94:45:d6:b0:07:75:26:8f:63:8c:8f:99:60:2e: e7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:8E:79:7A:06:E5:C4:E6:B2:1B:F5:C5:2C:40:EE:2E:79:F6:2B:36 X509v3 Authority Key Identifier: keyid:A1:E5:FC:63:5A:1A:77:55:74:B7:79:AE:A9:CC:D6:52:4C:C4:D0:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oeX8Y1oad1V0t3muqczWUkzE0Pk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/07d0c7-dc1e-4089-bd48-7ee0e60bb053/1/zY55egblxOayG_XFLEDuLnn2KzY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/07d0c7-dc1e-4089-bd48-7ee0e60bb053/1/oeX8Y1oad1V0t3muqczWUkzE0Pk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.217.204.0/24 Signature Algorithm: sha256WithRSAEncryption 44:3f:3d:b6:f7:cd:c4:2c:f7:73:32:1c:30:fb:11:ad:b9:63: 21:4c:52:bf:6b:75:d3:b8:08:02:31:b1:11:ad:87:52:0d:ce: 5e:46:bb:4a:51:e7:ef:94:a7:3a:08:ba:4e:3c:4c:3e:9d:bb: f8:5d:74:26:da:9f:eb:26:25:75:f3:17:55:c9:b9:37:18:46: 0b:77:04:09:10:32:eb:66:88:91:94:ad:53:ae:37:01:c4:e1: 2e:b1:6f:2e:e4:40:d3:00:51:5d:1a:5c:ba:f0:e0:e9:21:9d: 7c:c9:a7:4e:43:0f:11:86:7e:e0:bd:29:84:d8:54:2e:b7:d3: 22:c6:78:95:64:10:dd:e6:9d:c7:20:5e:a8:2c:de:70:84:2a: c9:1d:8b:0b:ac:b7:99:6a:f5:ee:3b:dd:a7:68:a4:3a:7c:e1: ba:f1:25:03:9b:ca:48:9e:ad:8e:48:61:21:4b:5a:37:f6:99: 43:d5:40:ce:75:70:63:da:49:c7:f0:85:2b:d2:95:0a:d8:6c: 14:ce:54:bb:6d:d4:45:4f:70:b2:6f:b6:13:f4:75:44:d7:0e: b0:92:88:d2:46:0d:d0:a1:9e:4c:87:8d:ce:fd:8e:c5:06:0a: 8d:10:aa:92:7c:bd:75:eb:99:e0:f5:5f:f8:2c:b4:f4:85:e1: 6f:d0:83:61 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yAHIb4UyndtAHdRxf2s/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExZTVmYzYzNWExYTc3NTU3NGI3NzlhZWE5Y2NkNjUyNGNj NGQwZjkwHhcNMjYwMTAxMTgxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZDhlNzk3YTA2ZTVjNGU2YjIxYmY1YzUyYzQwZWUyZTc5ZjYyYjM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9IMZKH0jWqUTJCiQwTw41c2XGF8 kyrWv9KQHRk/Z/HJMT3JIOuYU5fVou7AvHf0SzeF0DyHUQKMnfnD2INMPSpqNfkQ zpbEK1ItZIUAntQUAfBKq2zy+Hq/HpjT4RDCmdsstUcNNhzHu7BaNkGhJt20CMo7 qv3Qxj9n6tzjmOWWfV2it7JpFGAIaIddLKdWMMs/mI4L2upvvh9uIo8nbyrIhM0a XCm1YMcGi+aWDGb/SJbxBtPMDjtq/epY8xMXJTn9qFDSq1KDgglGbirrrYWADA2G voenuiN1fsBBQ6ndATEJuQ/FT6Sgs5IdwnRPlEXWsAd1Jo9jjI+ZYC7nHwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFM2OeXoG5cTmshv1xSxA7i559is2MB8GA1UdIwQY MBaAFKHl/GNaGndVdLd5rqnM1lJMxND5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2VYOFkxb2FkMVYwdDNtdXFjeldVa3pFMFBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC8wN2QwYzctZGMxZS00MDg5LWJkNDgt N2VlMGU2MGJiMDUzLzEvelk1NWVnYmx4T2F5R19YRkxFRHVMbm4yS3pZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC8wN2QwYzctZGMxZS00MDg5LWJkNDgtN2VlMGU2MGJiMDUz LzEvb2VYOFkxb2FkMVYwdDNtdXFjeldVa3pFMFBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9nMMA0G CSqGSIb3DQEBCwUAA4IBAQBEPz22983ELPdzMhww+xGtuWMhTFK/a3XTuAgCMbER rYdSDc5eRrtKUefvlKc6CLpOPEw+nbv4XXQm2p/rJiV18xdVybk3GEYLdwQJEDLr ZoiRlK1TrjcBxOEusW8u5EDTAFFdGly68ODpIZ18yadOQw8Rhn7gvSmE2FQut9Mi xniVZBDd5p3HIF6oLN5whCrJHYsLrLeZavXuO92naKQ6fOG68SUDm8pInq2OSGEh S1o39plD1UDOdXBj2knH8IUr0pUK2GwUzlS7bdRFT3Cyb7YT9HVE1w6wkojSRg3Q oZ5Mh43O/Y7FBgqNEKqSfL1165ng9V/4LLT0heFv0INh -----END CERTIFICATE-----Generated at Mon Jan 26 14:21:43 2026 by rpki-client