This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/zNwZgS-KWr_tdZQlJYw7r-bncj4.roa File: zNwZgS-KWr_tdZQlJYw7r-bncj4.roa (raw, json) Hash identifier: bFzYQzvtRgyI5Sf4GLvJJ0QPWEhrGxWF/aPyki12aFQ= Subject key identifier: CC:DC:19:81:2F:8A:5A:BF:ED:75:94:25:25:8C:3B:AF:E6:E7:72:3E Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7 Certificate serial: 019B7B35896E5DCD65149FE8C722621F641E Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/zNwZgS-KWr_tdZQlJYw7r-bncj4.roa Signing time: Thu 01 Jan 2026 20:17:44 +0000 ROA not before: Thu 01 Jan 2026 20:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 54252 IP address blocks: 83.136.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.mft rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:89:6e:5d:cd:65:14:9f:e8:c7:22:62:1f:64:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7 Validity Not Before: Jan 1 20:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ccdc19812f8a5abfed759425258c3bafe6e7723e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:72:68:75:8e:38:31:6f:ee:61:4c:aa:8f:61: 89:b5:ca:57:43:cd:4e:78:64:fb:9d:bd:a8:88:51: 0f:e7:e9:45:57:2a:a4:2a:91:73:62:1d:6e:93:b8: 39:88:4a:56:c9:dc:1f:68:df:55:41:14:c8:b1:06: 85:5f:02:b8:80:a4:bd:c9:b5:cd:af:3c:58:85:84: 8e:ee:83:fb:b2:45:cd:b6:f8:a5:47:65:1a:94:6f: 77:9b:15:c9:d8:8a:1d:f4:87:77:b5:e3:b4:7a:15: c3:76:ec:ef:f7:73:68:0c:9f:d7:a4:70:85:39:f5: 63:90:f0:a7:c3:40:7c:10:a5:fc:97:e0:98:e7:49: 5f:ec:51:93:15:a4:8c:52:6b:f7:22:dd:af:0c:0b: 24:e8:f1:18:6a:f0:a6:f6:02:fc:e2:64:9e:99:db: b2:fd:9d:50:9e:0d:11:45:f6:83:2a:1b:e3:d9:7b: fe:39:17:5e:f5:5a:1d:17:85:a8:f2:f9:6b:6c:25: 8e:9c:c3:c0:cb:b8:c9:ad:ac:be:a8:f6:d3:2b:9f: b5:a7:1c:15:a2:ee:61:9e:c5:c7:be:05:98:ae:f5: ed:72:86:0d:27:fe:0c:39:cf:f3:53:cf:22:24:62: 6b:59:a6:1f:b1:62:55:4c:08:ea:26:a9:46:cc:91: f4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:DC:19:81:2F:8A:5A:BF:ED:75:94:25:25:8C:3B:AF:E6:E7:72:3E X509v3 Authority Key Identifier: keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/zNwZgS-KWr_tdZQlJYw7r-bncj4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.136.213.0/24 Signature Algorithm: sha256WithRSAEncryption 73:d1:ba:ad:6d:ad:ce:51:64:9e:c1:b1:96:54:8e:b0:4d:9d: d2:10:45:27:81:39:19:a8:20:4d:a8:94:32:8f:e1:ec:04:0d: 3b:59:b7:82:3d:bc:1f:eb:73:1c:8c:27:f9:e8:0c:60:ba:4e: 08:e9:3f:10:1f:91:89:bb:58:1f:88:07:d1:41:cc:cd:43:3c: ff:e1:57:3f:b2:d8:55:94:b0:3e:ba:e7:cb:aa:81:38:48:5d: b8:b4:05:fe:8e:3e:d4:29:a8:b9:e2:fd:ba:31:28:2d:18:b9: 53:4e:f3:28:4c:d6:18:31:d1:b5:cc:43:0f:78:37:40:45:87: 34:61:35:88:69:0d:40:68:3c:f3:1a:0f:e5:49:62:f4:f4:be: 45:08:89:f7:54:82:fa:86:b5:48:1c:e5:3f:f5:f8:3c:03:77: 0e:7e:24:be:18:04:0e:97:d3:73:4a:e8:87:2a:e0:c3:96:68: d8:2b:84:e0:b1:78:65:94:bd:ac:4a:9d:3b:e8:a9:c9:9b:f8: d9:4c:85:f2:a5:89:80:4e:69:5a:d2:52:cd:dd:40:aa:6c:e1: b5:9a:28:c2:14:51:27:2a:46:47:3a:f9:2a:dc:6d:a2:62:95: 95:89:52:9d:37:0d:31:23:ad:1d:bf:14:c9:b5:b3:02:a2:56: 0d:38:28:ed -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt7NYluXc1lFJ/oxyJiH2QeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4Nzk5ODhlMGY0OTk3MWEzMjZmNDE5ZTVjZmFjYmZkZGNj OTkzZTcwHhcNMjYwMTAxMjAxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjY2RjMTk4MTJmOGE1YWJmZWQ3NTk0MjUyNThjM2JhZmU2ZTc3MjNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjHJodY44MW/uYUyqj2GJtcpXQ81O eGT7nb2oiFEP5+lFVyqkKpFzYh1uk7g5iEpWydwfaN9VQRTIsQaFXwK4gKS9ybXN rzxYhYSO7oP7skXNtvilR2UalG93mxXJ2Iod9Id3teO0ehXDduzv93NoDJ/XpHCF OfVjkPCnw0B8EKX8l+CY50lf7FGTFaSMUmv3It2vDAsk6PEYavCm9gL84mSemduy /Z1Qng0RRfaDKhvj2Xv+ORde9VodF4Wo8vlrbCWOnMPAy7jJray+qPbTK5+1pxwV ou5hnsXHvgWYrvXtcoYNJ/4MOc/zU88iJGJrWaYfsWJVTAjqJqlGzJH0MQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFMzcGYEvilq/7XWUJSWMO6/m53I+MB8GA1UdIwQY MBaAFPh5mI4PSZcaMm9Bnlz6y/3cyZPnMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1IbVlqZzlKbHhveWIwR2VYUHJMX2R6SmstYy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDUvYWYzZDgxLTAwNDctNDEzYy05MWY0 LTA0NzBiNGJiMzBkYi8xL3pOd1pnUy1LV3JfdGRaUWxKWXc3ci1ibmNqNC5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMDUvYWYzZDgxLTAwNDctNDEzYy05MWY0LTA0NzBiNGJiMzBk Yi8xLzEtSG1Zamc5Smx4b3liMEdlWFByTF9kekprLWMuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABTiNUw DQYJKoZIhvcNAQELBQADggEBAHPRuq1trc5RZJ7BsZZUjrBNndIQRSeBORmoIE2o lDKP4ewEDTtZt4I9vB/rcxyMJ/noDGC6TgjpPxAfkYm7WB+IB9FBzM1DPP/hVz+y 2FWUsD6658uqgThIXbi0Bf6OPtQpqLni/boxKC0YuVNO8yhM1hgx0bXMQw94N0BF hzRhNYhpDUBoPPMaD+VJYvT0vkUIifdUgvqGtUgc5T/1+DwDdw5+JL4YBA6X03NK 6Icq4MOWaNgrhOCxeGWUvaxKnTvoqcmb+NlMhfKliYBOaVrSUs3dQKps4bWaKMIU UScqRkc6+SrcbaJilZWJUp03DTEjrR2/FMm1swKiVg04KO0= -----END CERTIFICATE-----Generated at Tue Jan 20 02:17:26 2026 by rpki-client