This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/ZGek-6HBksI7UR516vE0gk5R-L4.roa File: ZGek-6HBksI7UR516vE0gk5R-L4.roa (raw, json) Hash identifier: t0Obkj8sK06HaBNs4kmLvSB4hxDxnIEARfCn1Ni3RSc= Subject key identifier: 64:67:A4:FB:A1:C1:92:C2:3B:51:1E:75:EA:F1:34:82:4E:51:F8:BE Certificate issuer: /CN=99ce569a14c2db3772f23187ce68e6541ec0048e Certificate serial: 019B7EA511788ED9448CF621623C390B1303 Authority key identifier: 99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/ZGek-6HBksI7UR516vE0gk5R-L4.roa Signing time: Fri 02 Jan 2026 12:18:25 +0000 ROA not before: Fri 02 Jan 2026 12:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50053 IP address blocks: 185.174.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.mft rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:11:78:8e:d9:44:8c:f6:21:62:3c:39:0b:13:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99ce569a14c2db3772f23187ce68e6541ec0048e Validity Not Before: Jan 2 12:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6467a4fba1c192c23b511e75eaf134824e51f8be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:18:ff:85:c7:1a:45:2e:cc:03:4c:a1:fc:ea: c6:0b:47:b0:a7:02:ff:53:29:7b:39:88:9d:3e:05: f6:b7:eb:2a:10:47:f5:78:f9:40:7f:ec:16:85:e6: 8c:66:52:3b:82:c9:d7:34:59:11:74:19:12:96:e8: cf:92:54:e7:6d:ef:7b:d6:7d:be:0d:af:b8:61:7c: 54:1d:9f:db:20:ea:87:fa:f7:9b:ef:69:37:77:4b: 4f:a1:63:9d:5c:67:76:b3:b1:3c:69:a4:4d:97:be: c0:94:d1:d6:3b:98:e7:e7:94:52:09:9c:22:29:d5: 0e:30:2a:8b:17:74:ae:bc:03:05:5b:8f:a8:e9:fb: 72:d2:b9:f2:d6:45:61:37:49:f7:40:f6:9c:36:19: be:cb:c8:10:81:1a:eb:a1:63:10:6d:32:c7:8a:b5: b3:5b:72:48:25:60:15:18:b2:e3:6e:91:3d:d5:40: b0:8e:93:43:44:27:3d:69:7c:e2:6a:b3:68:f1:9e: 6f:1a:2e:e1:7b:62:65:02:f8:01:8b:39:20:8a:4e: 92:1d:01:6e:56:14:25:b2:59:4f:d2:b9:0e:c2:0b: bb:55:f8:6d:36:87:1b:a5:a0:da:98:d3:d1:d7:34: 17:03:bb:3a:c0:10:d0:56:4e:55:9c:42:d9:ed:32: 95:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:67:A4:FB:A1:C1:92:C2:3B:51:1E:75:EA:F1:34:82:4E:51:F8:BE X509v3 Authority Key Identifier: keyid:99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/ZGek-6HBksI7UR516vE0gk5R-L4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.174.40.0/24 Signature Algorithm: sha256WithRSAEncryption 80:99:49:cf:50:17:c8:22:4a:b5:b4:49:15:5c:13:db:f5:f6: 21:8f:34:1c:b4:9f:c0:7d:2f:bb:a5:5f:19:54:c1:b8:b2:0b: 5c:af:8a:ca:39:73:3b:55:0a:54:41:a6:58:99:bc:e1:5b:47: 21:d5:0a:20:9f:e1:59:59:44:41:02:d2:df:aa:51:62:c2:5f: 4a:3f:63:40:6c:e6:7f:dd:9b:a9:df:da:de:9f:87:2a:5c:10: 79:a9:0a:43:85:a0:70:69:ea:37:e8:ca:22:4c:3b:2c:d9:e3: a3:ff:28:70:75:10:52:6f:2d:ac:7b:e7:2e:83:81:68:f0:d9: 24:31:61:4a:90:17:b8:88:c5:e0:36:2a:07:73:b9:ca:b7:25: 01:41:0e:ba:2e:23:aa:9d:f0:35:5c:d1:d8:77:14:23:c0:ea: d4:2b:da:d1:91:1a:25:6b:92:33:af:67:5a:be:40:c9:c4:4e: 69:b2:d5:b8:d7:49:37:b8:bd:cc:3f:47:66:fc:7b:c3:74:ac: 21:45:8c:ca:44:81:bc:0a:57:f2:86:2c:e6:5e:4b:6e:d5:bf: 4c:e1:9e:44:3c:1f:ea:19:17:99:61:de:86:b6:71:b6:38:88: cc:d6:16:57:50:df:bd:2d:6d:20:7a:93:d3:2b:87:86:83:5e: 6b:9d:85:e0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pRF4jtlEjPYhYjw5CxMDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5Y2U1NjlhMTRjMmRiMzc3MmYyMzE4N2NlNjhlNjU0MWVj MDA0OGUwHhcNMjYwMTAyMTIxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NDY3YTRmYmExYzE5MmMyM2I1MTFlNzVlYWYxMzQ4MjRlNTFmOGJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBj/hccaRS7MA0yh/OrGC0ewpwL/ Uyl7OYidPgX2t+sqEEf1ePlAf+wWheaMZlI7gsnXNFkRdBkSlujPklTnbe971n2+ Da+4YXxUHZ/bIOqH+veb72k3d0tPoWOdXGd2s7E8aaRNl77AlNHWO5jn55RSCZwi KdUOMCqLF3SuvAMFW4+o6fty0rny1kVhN0n3QPacNhm+y8gQgRrroWMQbTLHirWz W3JIJWAVGLLjbpE91UCwjpNDRCc9aXziarNo8Z5vGi7he2JlAvgBizkgik6SHQFu VhQlsllP0rkOwgu7VfhtNocbpaDamNPR1zQXA7s6wBDQVk5VnELZ7TKV9QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGRnpPuhwZLCO1EederxNIJOUfi+MB8GA1UdIwQY MBaAFJnOVpoUwts3cvIxh85o5lQewASOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWM1V21oVEMyemR5OGpHSHptam1WQjdBQkk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi9jYzZlOTktNmU1Zi00MDFiLTkxMmQt MTA5NTU0NGM2YzUwLzEvWkdlay02SEJrc0k3VVI1MTZ2RTBnazVSLUw0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi9jYzZlOTktNmU1Zi00MDFiLTkxMmQtMTA5NTU0NGM2YzUw LzEvbWM1V21oVEMyemR5OGpHSHptam1WQjdBQkk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAua4oMA0G CSqGSIb3DQEBCwUAA4IBAQCAmUnPUBfIIkq1tEkVXBPb9fYhjzQctJ/AfS+7pV8Z VMG4sgtcr4rKOXM7VQpUQaZYmbzhW0ch1Qogn+FZWURBAtLfqlFiwl9KP2NAbOZ/ 3Zup39ren4cqXBB5qQpDhaBwaeo36MoiTDss2eOj/yhwdRBSby2se+cug4Fo8Nkk MWFKkBe4iMXgNioHc7nKtyUBQQ66LiOqnfA1XNHYdxQjwOrUK9rRkRola5Izr2da vkDJxE5pstW410k3uL3MP0dm/HvDdKwhRYzKRIG8ClfyhizmXktu1b9M4Z5EPB/q GReZYd6GtnG2OIjM1hZXUN+9LW0gepPTK4eGg15rnYXg -----END CERTIFICATE-----Generated at Fri Jan 23 09:23:23 2026 by rpki-client