This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3ebe30-ee89-48de-874c-b469db10b68a/1/zynEh3pPdQY3KJQVgvhOsaYxciw.roa File: zynEh3pPdQY3KJQVgvhOsaYxciw.roa (raw, json) Hash identifier: rOMrg3wVXzNicfVb9K/t1LGxhcGrIWejZTOsjk80vqw= Subject key identifier: CF:29:C4:87:7A:4F:75:06:37:28:94:15:82:F8:4E:B1:A6:31:72:2C Certificate issuer: /CN=654d96672a59ec3895fc15847aca1b29db791244 Certificate serial: 019B791011B4DE49DCEBC7433E6C4E03394D Authority key identifier: 65:4D:96:67:2A:59:EC:38:95:FC:15:84:7A:CA:1B:29:DB:79:12:44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZU2WZypZ7DiV_BWEesobKdt5EkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebe30-ee89-48de-874c-b469db10b68a/1/zynEh3pPdQY3KJQVgvhOsaYxciw.roa Signing time: Thu 01 Jan 2026 10:17:34 +0000 ROA not before: Thu 01 Jan 2026 10:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 327909 IP address blocks: 193.151.244.0/24 maxlen: 24 2a13:6040::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebe30-ee89-48de-874c-b469db10b68a/1/ZU2WZypZ7DiV_BWEesobKdt5EkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebe30-ee89-48de-874c-b469db10b68a/1/ZU2WZypZ7DiV_BWEesobKdt5EkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/ZU2WZypZ7DiV_BWEesobKdt5EkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:11:b4:de:49:dc:eb:c7:43:3e:6c:4e:03:39:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=654d96672a59ec3895fc15847aca1b29db791244 Validity Not Before: Jan 1 10:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cf29c4877a4f75063728941582f84eb1a631722c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:c5:ca:8e:d1:82:88:74:84:53:11:4f:9f:da: a6:6b:b2:39:b7:c3:13:46:21:79:0d:95:f0:ea:a2: e6:7a:e1:6a:b6:bd:dd:84:d6:42:6f:6f:ff:37:85: d6:1f:0f:96:be:8d:87:c5:e5:f8:51:cc:85:77:c2: 44:a0:74:0d:d5:41:b5:78:b9:7a:22:8c:45:79:9e: fd:d8:f0:2c:17:9a:9a:56:20:19:2d:da:e6:eb:92: fe:33:d9:cc:bd:fd:7a:54:65:11:2b:46:40:a3:59: 2d:cf:78:ae:d0:8d:a0:2b:ad:39:03:6d:0c:cf:30: 77:d6:33:a8:c2:ec:90:e5:d1:d0:6c:39:a5:d2:8a: 70:b1:b7:aa:03:88:2a:c3:ca:20:1c:3a:3d:c5:64: ba:d1:d2:08:84:61:1e:99:9c:d7:c3:f4:41:a6:2c: ab:f5:ee:00:e6:53:ca:58:b4:cc:f6:6e:e6:d6:1d: f8:ab:69:df:51:92:c9:c9:57:8d:4c:34:1b:27:a0: 7c:ad:59:87:26:6b:16:09:89:c3:4f:a3:8e:be:e7: b0:bd:28:76:84:06:68:7c:44:54:12:96:11:e1:47: 44:a9:29:b2:8a:e2:5b:1e:35:46:55:b7:8c:37:67: 0d:a1:bd:9e:fe:f5:4c:c2:ee:ed:c2:e8:a3:10:74: 47:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:29:C4:87:7A:4F:75:06:37:28:94:15:82:F8:4E:B1:A6:31:72:2C X509v3 Authority Key Identifier: keyid:65:4D:96:67:2A:59:EC:38:95:FC:15:84:7A:CA:1B:29:DB:79:12:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZU2WZypZ7DiV_BWEesobKdt5EkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebe30-ee89-48de-874c-b469db10b68a/1/zynEh3pPdQY3KJQVgvhOsaYxciw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebe30-ee89-48de-874c-b469db10b68a/1/ZU2WZypZ7DiV_BWEesobKdt5EkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.151.244.0/24 IPv6: 2a13:6040::/29 Signature Algorithm: sha256WithRSAEncryption 2e:14:04:0e:ea:49:df:08:5c:f8:9c:3e:75:52:67:2f:f3:55: bb:4e:72:a6:3c:4d:af:d8:20:1d:d8:93:0a:a6:b1:0a:cc:2d: e0:a3:6f:46:25:6b:59:44:19:6c:46:eb:be:43:fe:c5:27:1e: 3d:a5:63:f1:79:aa:b0:7a:d6:4c:74:77:ff:4c:f1:b2:22:b2: 20:63:0a:1b:c0:d6:30:e2:63:7e:4b:ce:6d:62:d6:fb:4a:8d: 50:e0:6c:e7:6e:46:7e:0e:c8:71:10:35:fc:ab:b0:35:34:b8: 05:db:db:ab:26:72:ba:5c:24:c5:e0:0c:b4:cb:fc:cd:bb:15: 3b:30:6e:bb:36:ed:af:be:70:9b:47:6f:79:60:f1:9e:47:e3: d6:48:50:0b:fd:1b:77:35:e8:45:0a:a6:b3:e4:cc:7d:dc:ab: 03:b9:9f:5e:f7:29:02:ab:54:21:fd:d0:b0:1b:ee:29:ea:0c: 4d:e0:8c:98:84:53:e7:89:b8:b9:b6:7d:d4:32:8d:9b:ee:fd: 75:41:77:79:b7:f4:35:ce:52:29:a2:0b:ac:78:dd:5c:a5:5a: 46:a7:d6:23:9d:08:47:76:23:cf:ce:55:31:c4:d1:ad:16:26: e0:b1:27:d3:28:c1:98:70:65:89:ea:cf:0a:ce:2e:ba:17:35: 4f:20:23:94 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EBG03knc68dDPmxOAzlNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1NGQ5NjY3MmE1OWVjMzg5NWZjMTU4NDdhY2ExYjI5ZGI3 OTEyNDQwHhcNMjYwMTAxMTAxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZjI5YzQ4NzdhNGY3NTA2MzcyODk0MTU4MmY4NGViMWE2MzE3MjJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAisXKjtGCiHSEUxFPn9qma7I5t8MT RiF5DZXw6qLmeuFqtr3dhNZCb2//N4XWHw+Wvo2HxeX4UcyFd8JEoHQN1UG1eLl6 IoxFeZ792PAsF5qaViAZLdrm65L+M9nMvf16VGURK0ZAo1ktz3iu0I2gK605A20M zzB31jOowuyQ5dHQbDml0opwsbeqA4gqw8ogHDo9xWS60dIIhGEemZzXw/RBpiyr 9e4A5lPKWLTM9m7m1h34q2nfUZLJyVeNTDQbJ6B8rVmHJmsWCYnDT6OOvuewvSh2 hAZofERUEpYR4UdEqSmyiuJbHjVGVbeMN2cNob2e/vVMwu7twuijEHRHBwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFM8pxId6T3UGNyiUFYL4TrGmMXIsMB8GA1UdIwQY MBaAFGVNlmcqWew4lfwVhHrKGynbeRJEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlUyV1p5cFo3RGlWX0JXRWVzb2JLZHQ1RWtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8zZWJlMzAtZWU4OS00OGRlLTg3NGMt YjQ2OWRiMTBiNjhhLzEvenluRWgzcFBkUVkzS0pRVmd2aE9zYVl4Y2l3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS8zZWJlMzAtZWU4OS00OGRlLTg3NGMtYjQ2OWRiMTBiNjhh LzEvWlUyV1p5cFo3RGlWX0JXRWVzb2JLZHQ1RWtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwZf0MA0E AgACMAcDBQMqE2BAMA0GCSqGSIb3DQEBCwUAA4IBAQAuFAQO6knfCFz4nD51Umcv 81W7TnKmPE2v2CAd2JMKprEKzC3go29GJWtZRBlsRuu+Q/7FJx49pWPxeaqwetZM dHf/TPGyIrIgYwobwNYw4mN+S85tYtb7So1Q4GznbkZ+DshxEDX8q7A1NLgF29ur JnK6XCTF4Ay0y/zNuxU7MG67Nu2vvnCbR295YPGeR+PWSFAL/Rt3NehFCqaz5Mx9 3KsDuZ9e9ykCq1Qh/dCwG+4p6gxN4IyYhFPnibi5tn3UMo2b7v11QXd5t/Q1zlIp oguseN1cpVpGp9YjnQhHdiPPzlUxxNGtFibgsSfTKMGYcGWJ6s8Kzi66FzVPICOU -----END CERTIFICATE-----Generated at Sun Jan 25 18:07:48 2026 by rpki-client