This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ZC7CX3sp-_gdA-yz-eVX_vTipCs.roa File: ZC7CX3sp-_gdA-yz-eVX_vTipCs.roa (raw, json) Hash identifier: SI1TuVJOiuOwsQdeAdFujY0Vnh/QfxTbhpuJ7GsG6Fo= Subject key identifier: 64:2E:C2:5F:7B:29:FB:F8:1D:03:EC:B3:F9:E5:57:FE:F4:E2:A4:2B Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B7834394B23FB4F90D62A1865A5282A94 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ZC7CX3sp-_gdA-yz-eVX_vTipCs.roa Signing time: Thu 01 Jan 2026 06:17:27 +0000 ROA not before: Thu 01 Jan 2026 06:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 174 IP address blocks: 193.235.207.0/24 maxlen: 24 194.103.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:39:4b:23:fb:4f:90:d6:2a:18:65:a5:28:2a:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=642ec25f7b29fbf81d03ecb3f9e557fef4e2a42b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3f:ca:71:77:b9:c9:b2:66:38:3c:29:10:ec: cc:be:cd:29:23:fd:ef:75:a2:41:4f:77:80:cc:3f: 5b:6c:62:2d:55:a5:01:1b:48:1e:49:d1:3f:80:4f: ee:24:5b:a4:92:33:b2:8d:e4:7d:a4:65:c2:ad:21: bb:63:00:d1:94:88:86:24:e6:5a:f7:9b:18:34:f9: 5e:45:6d:0b:d4:60:43:b1:f3:5c:c3:29:ac:76:4f: a7:ae:be:07:c7:20:4d:15:26:36:a5:94:b2:fd:20: cc:96:1c:88:a5:e8:d5:45:9e:6e:0b:4a:dd:94:a3: ab:75:39:b6:99:87:f1:d7:f3:00:4d:bd:a0:25:e6: db:e6:53:ec:e2:95:d0:39:18:19:cb:a9:d2:0e:8e: 7c:39:8e:33:32:23:73:3c:61:fb:62:73:bb:0b:a8: 3e:7f:14:ef:2b:56:ac:3a:ca:38:1b:73:bb:54:83: ec:cd:34:22:20:8e:ed:e8:98:6b:b4:d4:5c:fa:83: 79:69:87:f7:01:bc:c1:12:08:d7:3c:68:ba:d1:4d: 2a:fd:be:3a:49:16:57:3f:58:5c:12:84:91:b5:7d: 74:19:fe:80:e0:f8:ea:5b:a1:4f:fb:e2:5a:53:59: a9:88:63:15:f4:e0:0a:01:de:34:e8:d2:d7:6f:34: 7c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:2E:C2:5F:7B:29:FB:F8:1D:03:EC:B3:F9:E5:57:FE:F4:E2:A4:2B X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ZC7CX3sp-_gdA-yz-eVX_vTipCs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.235.207.0/24 194.103.42.0/24 Signature Algorithm: sha256WithRSAEncryption 49:6b:ad:f4:0f:9c:23:06:8c:45:30:9c:46:e6:34:e8:5f:9e: 1b:71:04:a3:1d:d9:90:0d:93:2e:70:d2:9f:d1:8c:db:0d:e7: 6a:fe:d8:2b:98:6f:b1:a0:3c:9e:0a:36:7c:70:fa:b5:1f:9f: 79:65:d9:0a:09:4d:b8:65:35:b7:71:48:f2:e7:6f:51:8b:d6: 2e:11:7b:23:ca:e8:f3:5e:5b:08:2e:72:4e:00:cc:ff:8e:a4: ca:cc:59:f6:44:b2:b4:2f:0e:fa:7b:b2:31:ff:da:d0:6e:77: 4c:dd:c4:46:69:51:c7:cf:95:6c:19:f0:a8:d3:71:65:fa:7e: df:93:f6:aa:89:d5:8b:59:d1:2d:1a:86:58:22:c7:da:0c:77: bb:72:ff:14:50:a3:37:83:f7:6f:be:07:e7:5f:d0:ad:6e:8f: 66:da:bc:f7:ee:60:51:1c:ce:51:08:18:a4:a5:ae:bc:97:a0: 1b:1c:57:a4:d7:38:f2:44:7b:94:7b:45:9f:2c:99:1d:a8:2d: 51:7c:2a:7a:b5:5f:4c:83:3d:d3:a0:54:d5:b8:d5:c0:0c:d6: 7b:83:b0:63:8f:b3:58:26:62:74:a6:50:b1:3f:68:71:36:bc: e4:64:c9:66:ee:57:fe:fa:04:42:1b:a2:ec:17:c9:e1:45:9d: 37:b4:57:47 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NDlLI/tPkNYqGGWlKCqUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NDJlYzI1ZjdiMjlmYmY4MWQwM2VjYjNmOWU1NTdmZWY0ZTJhNDJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxj/KcXe5ybJmODwpEOzMvs0pI/3v daJBT3eAzD9bbGItVaUBG0geSdE/gE/uJFukkjOyjeR9pGXCrSG7YwDRlIiGJOZa 95sYNPleRW0L1GBDsfNcwymsdk+nrr4HxyBNFSY2pZSy/SDMlhyIpejVRZ5uC0rd lKOrdTm2mYfx1/MATb2gJebb5lPs4pXQORgZy6nSDo58OY4zMiNzPGH7YnO7C6g+ fxTvK1asOso4G3O7VIPszTQiII7t6JhrtNRc+oN5aYf3AbzBEgjXPGi60U0q/b46 SRZXP1hcEoSRtX10Gf6A4PjqW6FP++JaU1mpiGMV9OAKAd406NLXbzR8aQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGQuwl97Kfv4HQPss/nlV/704qQrMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvWkM3Q1gzc3AtX2dkQS15ei1lVlhfdlRpcENzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwevPAwQA wmcqMA0GCSqGSIb3DQEBCwUAA4IBAQBJa630D5wjBoxFMJxG5jToX54bcQSjHdmQ DZMucNKf0YzbDedq/tgrmG+xoDyeCjZ8cPq1H595ZdkKCU24ZTW3cUjy529Ri9Yu EXsjyujzXlsILnJOAMz/jqTKzFn2RLK0Lw76e7Ix/9rQbndM3cRGaVHHz5VsGfCo 03Fl+n7fk/aqidWLWdEtGoZYIsfaDHe7cv8UUKM3g/dvvgfnX9Ctbo9m2rz37mBR HM5RCBikpa68l6AbHFek1zjyRHuUe0WfLJkdqC1RfCp6tV9Mgz3ToFTVuNXADNZ7 g7Bjj7NYJmJ0plCxP2hxNrzkZMlm7lf++gRCG6LsF8nhRZ03tFdH -----END CERTIFICATE-----Generated at Mon Jan 12 00:54:09 2026 by rpki-client