This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/Z0AdFl_CwyfMQZLv3ZoD_aLvzkc.roa File: Z0AdFl_CwyfMQZLv3ZoD_aLvzkc.roa (raw, json) Hash identifier: K3NNVdFjKnNzHLIoQrzWu15fZZcASrLzQF5r6/PQDHM= Subject key identifier: 67:40:1D:16:5F:C2:C3:27:CC:41:92:EF:DD:9A:03:FD:A2:EF:CE:47 Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Certificate serial: 019B7F16019A451F1E73DE1105BC1FC40D4B Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/Z0AdFl_CwyfMQZLv3ZoD_aLvzkc.roa Signing time: Fri 02 Jan 2026 14:21:47 +0000 ROA not before: Fri 02 Jan 2026 14:21:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20473 IP address blocks: 85.239.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.mft rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:16:01:9a:45:1f:1e:73:de:11:05:bc:1f:c4:0d:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Validity Not Before: Jan 2 14:21:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67401d165fc2c327cc4192efdd9a03fda2efce47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:72:03:c2:13:4a:98:55:83:a9:78:d9:f3:06: fb:4a:88:f5:59:a0:6b:b9:15:ea:a7:d8:33:5b:70: 78:3f:79:0c:50:20:7f:1a:c1:8f:39:c9:69:8e:a6: 94:24:b8:1a:cd:30:a2:bf:8f:c4:ee:2f:ac:6a:5d: 53:ec:c9:27:ac:a1:6d:f4:24:ce:0b:c7:25:b7:3e: 23:2a:51:b2:a6:0d:f8:9f:0b:db:a9:b8:05:bb:04: fa:96:0e:d5:57:3c:0b:74:75:0a:7e:c2:b1:32:dd: 5a:e7:ca:09:f9:b4:18:63:f7:ad:a8:1d:13:29:67: 28:6e:06:4c:00:24:d4:9e:19:85:42:a1:cc:8a:2c: 54:b0:71:34:d3:04:39:12:1b:4e:05:c1:21:1a:1b: 5b:fe:f8:6f:cc:ef:0d:06:b2:8d:f8:58:ca:20:d1: 4a:48:6c:a0:61:4a:15:c8:8a:af:e9:4f:79:a5:fd: 6b:ea:f4:4e:54:78:2b:4e:36:a6:38:f5:90:ee:73: 8c:3f:91:fa:15:c7:ce:20:e6:1c:30:0c:e7:3d:b0: 26:3d:55:7a:6f:cc:74:b3:72:ea:86:db:21:4f:85: 2b:51:52:d6:92:a4:95:44:d0:d7:fb:9c:ad:20:3f: 01:bc:f7:ee:1b:1f:82:f4:91:1f:d0:20:12:ba:c3: 38:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:40:1D:16:5F:C2:C3:27:CC:41:92:EF:DD:9A:03:FD:A2:EF:CE:47 X509v3 Authority Key Identifier: keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/Z0AdFl_CwyfMQZLv3ZoD_aLvzkc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.239.148.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:53:ee:23:b0:a2:84:3f:75:8f:ac:f4:d2:10:9e:79:c6:ed: c3:95:15:6c:d4:38:78:9e:18:a2:c6:17:61:c5:ba:52:09:50: 0c:e5:01:6f:03:72:a8:69:e7:18:a8:d1:99:1b:6c:65:14:45: cb:e7:ea:30:14:42:35:30:7c:8f:bf:76:de:42:9c:87:42:1f: a3:fa:52:1a:84:47:9b:e3:81:33:c1:ed:f5:ce:40:08:09:f9: 9e:52:15:a4:e1:43:2a:7a:3e:ea:14:5c:e1:97:fb:77:b3:bc: c0:fe:88:97:0b:cb:66:59:f0:00:30:6b:80:39:d6:3e:56:04: 3e:15:d8:01:f3:94:7d:d6:a1:f4:f4:89:16:d2:df:f8:78:8c: 2e:d2:17:70:f9:31:e0:6a:19:f5:5a:d9:05:a2:c0:0b:7a:f1: 41:51:03:1d:07:27:0a:4b:9c:82:2b:39:53:03:02:13:87:9a: 62:8a:80:0d:1e:4b:db:98:b6:f8:28:40:b5:2c:b6:9b:e2:cb: 65:83:59:7b:70:ee:c9:ae:eb:da:c4:80:b0:2a:da:71:a1:11: 23:62:85:2a:b6:db:9a:9d:6b:d6:12:d3:4c:3d:ba:cb:ef:c5: ed:4c:b8:ab:08:d8:8d:f6:a2:e9:2a:6b:79:6a:6c:5a:ce:eb: 8b:b1:6b:78 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FgGaRR8ec94RBbwfxA1LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZDJkYWZmMWM1YmI2MWEwYWM4YjNjYWVhZDRiOGExZmEy ODRkMGYwHhcNMjYwMTAyMTQyMTQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NzQwMWQxNjVmYzJjMzI3Y2M0MTkyZWZkZDlhMDNmZGEyZWZjZTQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3IDwhNKmFWDqXjZ8wb7Soj1WaBr uRXqp9gzW3B4P3kMUCB/GsGPOclpjqaUJLgazTCiv4/E7i+sal1T7MknrKFt9CTO C8cltz4jKlGypg34nwvbqbgFuwT6lg7VVzwLdHUKfsKxMt1a58oJ+bQYY/etqB0T KWcobgZMACTUnhmFQqHMiixUsHE00wQ5EhtOBcEhGhtb/vhvzO8NBrKN+FjKINFK SGygYUoVyIqv6U95pf1r6vROVHgrTjamOPWQ7nOMP5H6FcfOIOYcMAznPbAmPVV6 b8x0s3LqhtshT4UrUVLWkqSVRNDX+5ytID8BvPfuGx+C9JEf0CASusM4UQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGdAHRZfwsMnzEGS792aA/2i785HMB8GA1UdIwQY MBaAFCnS2v8cW7YaCsizyurUuKH6KE0PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3Zjgt NGY1N2Q5Y2Y1Y2FhLzEvWjBBZEZsX0N3eWZNUVpMdjNab0RfYUx2emtjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3ZjgtNGY1N2Q5Y2Y1Y2Fh LzEvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVe+UMA0G CSqGSIb3DQEBCwUAA4IBAQCPU+4jsKKEP3WPrPTSEJ55xu3DlRVs1Dh4nhiixhdh xbpSCVAM5QFvA3KoaecYqNGZG2xlFEXL5+owFEI1MHyPv3beQpyHQh+j+lIahEeb 44Ezwe31zkAICfmeUhWk4UMqej7qFFzhl/t3s7zA/oiXC8tmWfAAMGuAOdY+VgQ+ FdgB85R91qH09IkW0t/4eIwu0hdw+THgahn1WtkFosALevFBUQMdBycKS5yCKzlT AwITh5piioANHkvbmLb4KEC1LLab4stlg1l7cO7JruvaxICwKtpxoREjYoUqttua nWvWEtNMPbrL78XtTLirCNiN9qLpKmt5amxazuuLsWt4 -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:12 2026 by rpki-client