This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/75a6cb-5866-44a2-8bb0-a31ab64cfccb/1/ZDjYliWD0oQH__BfRtAhVecXudc.roa File: ZDjYliWD0oQH__BfRtAhVecXudc.roa (raw, json) Hash identifier: EqrDJr+rXgFnW5BPHzLM4MtDhMgQ7CjiVJSQnOFIC3c= Subject key identifier: 64:38:D8:96:25:83:D2:84:07:FF:F0:5F:46:D0:21:55:E7:17:B9:D7 Certificate issuer: /CN=1597b9d73480ca22cbf31faaf0bccbed30b2095e Certificate serial: 019B7C8045F6ABB48014B1D2B486E4017D35 Authority key identifier: 15:97:B9:D7:34:80:CA:22:CB:F3:1F:AA:F0:BC:CB:ED:30:B2:09:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZe51zSAyiLL8x-q8LzL7TCyCV4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/75a6cb-5866-44a2-8bb0-a31ab64cfccb/1/ZDjYliWD0oQH__BfRtAhVecXudc.roa Signing time: Fri 02 Jan 2026 02:18:59 +0000 ROA not before: Fri 02 Jan 2026 02:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216269 IP address blocks: 31.172.172.0/22 maxlen: 24 2a13:eac0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/75a6cb-5866-44a2-8bb0-a31ab64cfccb/1/FZe51zSAyiLL8x-q8LzL7TCyCV4.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/75a6cb-5866-44a2-8bb0-a31ab64cfccb/1/FZe51zSAyiLL8x-q8LzL7TCyCV4.mft rsync://rpki.ripe.net/repository/DEFAULT/FZe51zSAyiLL8x-q8LzL7TCyCV4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:45:f6:ab:b4:80:14:b1:d2:b4:86:e4:01:7d:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1597b9d73480ca22cbf31faaf0bccbed30b2095e Validity Not Before: Jan 2 02:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6438d8962583d28407fff05f46d02155e717b9d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b6:c4:78:29:72:a3:31:71:5a:5d:b1:1e:15: 4b:60:78:70:74:fa:d1:2e:29:f6:58:eb:aa:8c:88: 9f:81:54:ec:44:35:88:6e:af:c6:36:b8:1b:fe:39: ef:96:16:17:75:24:13:bb:b9:f4:35:27:90:bc:d2: b3:d5:b9:0b:d3:cb:5a:14:a5:17:0b:d1:22:75:bf: 30:9d:1d:c1:0c:fc:3d:bf:d2:df:bf:6a:4c:d4:98: 2c:64:0d:69:86:ea:de:00:7b:f4:6d:b2:6e:ac:40: 2a:ae:e2:a1:92:82:38:cc:a8:fb:9e:41:91:af:31: a2:0a:59:b0:35:55:b0:ab:4b:a9:e7:7d:98:a3:d8: 90:30:be:4b:c1:a8:b7:00:5b:6b:f0:51:3d:51:dc: 7b:41:f7:cb:93:0a:3e:07:c0:ad:8a:c8:eb:08:b5: 05:32:ea:88:ed:89:4c:5a:83:c9:93:01:85:93:da: 4c:fe:3b:01:e5:54:0e:8c:50:1b:ad:9c:43:ee:c8: 81:8b:a6:5a:15:db:e9:49:a4:f9:f2:5c:db:70:38: d1:5b:a5:cd:ec:b6:a1:96:65:b5:a3:85:30:9d:24: 9c:37:45:b4:ec:0f:bf:d1:15:c9:d9:c0:a0:e8:78: 1c:4a:d9:4b:ba:ef:81:9e:14:7d:36:2f:2f:18:7c: 70:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:38:D8:96:25:83:D2:84:07:FF:F0:5F:46:D0:21:55:E7:17:B9:D7 X509v3 Authority Key Identifier: keyid:15:97:B9:D7:34:80:CA:22:CB:F3:1F:AA:F0:BC:CB:ED:30:B2:09:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZe51zSAyiLL8x-q8LzL7TCyCV4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/75a6cb-5866-44a2-8bb0-a31ab64cfccb/1/ZDjYliWD0oQH__BfRtAhVecXudc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/75a6cb-5866-44a2-8bb0-a31ab64cfccb/1/FZe51zSAyiLL8x-q8LzL7TCyCV4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.172.172.0/22 IPv6: 2a13:eac0::/29 Signature Algorithm: sha256WithRSAEncryption 7f:c0:0d:33:63:53:c9:51:7e:67:9a:c5:47:4c:3b:a6:9f:d7: 8e:8d:42:c8:64:ff:30:bf:19:6e:90:a8:68:bf:1a:45:0c:4a: 03:f5:29:fc:f2:b8:89:71:10:ca:d5:32:5e:61:7f:d4:1e:0f: 01:c2:ce:6f:b8:4b:15:d8:9e:3e:19:26:93:29:ca:04:d0:b3: 80:90:a4:3e:78:4e:3e:24:c9:0a:99:a0:f2:4c:c0:9c:c0:64: fe:11:e4:2b:de:dd:52:4e:2d:f4:0f:d7:00:2a:3e:47:83:d1: ab:ed:7e:3f:01:c7:d2:96:43:7f:e5:aa:c6:e0:df:c6:c0:88: 54:8d:c5:64:27:8f:66:e2:92:95:0c:49:6c:41:3a:f0:1f:5d: e4:ac:1c:52:3e:e7:12:e7:25:16:fe:a1:67:e7:67:6d:9d:37: 4b:f7:6c:f0:ac:b7:90:d4:2b:c3:cd:be:d0:3c:7f:a1:bd:0c: cb:ed:0a:d6:9e:95:85:30:8a:fd:6b:82:e8:36:69:20:7a:03: 44:cc:0a:a8:27:62:2f:06:e1:8c:d3:4d:3a:f2:82:b7:64:54: f9:9a:ff:87:60:8e:91:de:0b:7e:90:36:30:b0:0d:a4:44:4b: 6f:3e:02:53:f6:3d:7d:f1:9b:1e:40:85:29:e0:58:66:65:b3: 19:f0:29:ff -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8gEX2q7SAFLHStIbkAX01MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1OTdiOWQ3MzQ4MGNhMjJjYmYzMWZhYWYwYmNjYmVkMzBi MjA5NWUwHhcNMjYwMTAyMDIxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NDM4ZDg5NjI1ODNkMjg0MDdmZmYwNWY0NmQwMjE1NWU3MTdiOWQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl7bEeClyozFxWl2xHhVLYHhwdPrR Lin2WOuqjIifgVTsRDWIbq/GNrgb/jnvlhYXdSQTu7n0NSeQvNKz1bkL08taFKUX C9Eidb8wnR3BDPw9v9Lfv2pM1JgsZA1phureAHv0bbJurEAqruKhkoI4zKj7nkGR rzGiClmwNVWwq0up532Yo9iQML5Lwai3AFtr8FE9Udx7QffLkwo+B8CtisjrCLUF MuqI7YlMWoPJkwGFk9pM/jsB5VQOjFAbrZxD7siBi6ZaFdvpSaT58lzbcDjRW6XN 7LahlmW1o4UwnSScN0W07A+/0RXJ2cCg6HgcStlLuu+BnhR9Ni8vGHxwiwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGQ42JYlg9KEB//wX0bQIVXnF7nXMB8GA1UdIwQY MBaAFBWXudc0gMoiy/MfqvC8y+0wsgleMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRlplNTF6U0F5aUxMOHgtcThMekw3VEN5Q1Y0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi83NWE2Y2ItNTg2Ni00NGEyLThiYjAt YTMxYWI2NGNmY2NiLzEvWkRqWWxpV0Qwb1FIX19CZlJ0QWhWZWNYdWRjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi83NWE2Y2ItNTg2Ni00NGEyLThiYjAtYTMxYWI2NGNmY2Ni LzEvRlplNTF6U0F5aUxMOHgtcThMekw3VEN5Q1Y0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCH6ysMA0E AgACMAcDBQMqE+rAMA0GCSqGSIb3DQEBCwUAA4IBAQB/wA0zY1PJUX5nmsVHTDum n9eOjULIZP8wvxlukKhovxpFDEoD9Sn88riJcRDK1TJeYX/UHg8Bws5vuEsV2J4+ GSaTKcoE0LOAkKQ+eE4+JMkKmaDyTMCcwGT+EeQr3t1STi30D9cAKj5Hg9Gr7X4/ AcfSlkN/5arG4N/GwIhUjcVkJ49m4pKVDElsQTrwH13krBxSPucS5yUW/qFn52dt nTdL92zwrLeQ1CvDzb7QPH+hvQzL7QrWnpWFMIr9a4LoNmkgegNEzAqoJ2IvBuGM 00068oK3ZFT5mv+HYI6R3gt+kDYwsA2kREtvPgJT9j198ZseQIUp4FhmZbMZ8Cn/ -----END CERTIFICATE-----Generated at Mon Jan 26 01:14:59 2026 by rpki-client