This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/ZdCdDiaVYNNGWHk2giMF7Jc4Psc.roa File: ZdCdDiaVYNNGWHk2giMF7Jc4Psc.roa (raw, json) Hash identifier: dUO7JtaFhT894/XBSf1WeNvB2B7nOAigDkpa6ed99xk= Subject key identifier: 65:D0:9D:0E:26:95:60:D3:46:58:79:36:82:23:05:EC:97:38:3E:C7 Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Certificate serial: 019B7F1612557F78CB97FB2F0F302DE3AA40 Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/ZdCdDiaVYNNGWHk2giMF7Jc4Psc.roa Signing time: Fri 02 Jan 2026 14:21:51 +0000 ROA not before: Fri 02 Jan 2026 14:21:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216138 IP address blocks: 92.62.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.mft rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:16:12:55:7f:78:cb:97:fb:2f:0f:30:2d:e3:aa:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Validity Not Before: Jan 2 14:21:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=65d09d0e269560d346587936822305ec97383ec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:99:2f:fb:5f:dc:8b:04:c3:8d:4a:85:cb:ac: 3c:6d:d1:cc:4a:0a:67:56:2d:b2:e7:64:a6:85:90: 84:54:91:f7:f6:48:b2:6e:20:dc:e5:66:d6:b7:14: de:22:7a:7d:a1:1c:56:de:83:6b:29:ae:fa:93:ba: 44:9a:10:9e:b0:5b:df:1b:9b:1b:1d:6b:80:ec:d3: 77:bd:b4:19:ce:b0:20:fa:fa:71:c7:2b:74:56:c3: 81:c1:26:28:51:c4:c3:a7:8a:32:14:86:da:93:2b: 33:bb:03:38:3a:2d:8b:94:b8:86:ff:09:d9:be:a2: ce:db:f4:66:c7:c0:23:1c:af:24:e6:40:cd:39:59: e5:bb:43:9a:e4:e9:19:48:71:f4:54:00:2b:77:5b: 67:2c:dd:25:4d:72:76:b6:b3:83:c2:e8:b8:ff:37: 36:01:a6:6e:f9:ad:1e:e0:b3:8c:8c:11:a9:a4:d1: 96:6e:a7:45:f8:c8:3b:44:92:d8:cd:3c:87:b7:39: 3f:dc:6a:92:d6:85:96:cc:e9:e7:14:8d:2f:3f:4c: 27:8b:23:d8:6e:4f:b0:97:5f:96:4e:f7:4a:57:d2: 72:66:fa:2b:35:16:19:c0:7a:2a:59:cd:b4:14:20: aa:c9:61:8b:8e:b8:77:ab:45:f6:24:94:a3:cb:44: a6:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D0:9D:0E:26:95:60:D3:46:58:79:36:82:23:05:EC:97:38:3E:C7 X509v3 Authority Key Identifier: keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/ZdCdDiaVYNNGWHk2giMF7Jc4Psc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.62.245.0/24 Signature Algorithm: sha256WithRSAEncryption b1:35:dd:c0:a0:cc:5e:11:aa:ed:ff:41:84:c2:c6:97:e5:d1: f2:96:81:68:b9:28:1d:2a:6f:b4:2f:6f:6a:3d:4f:36:72:14: e1:6e:db:66:1c:6d:b4:09:ea:02:4d:17:e9:c0:b5:7b:71:e1: 42:4d:1e:c8:4c:96:f6:a6:10:74:f0:f2:44:62:e5:65:00:dd: 07:db:68:df:30:a9:70:44:aa:40:6c:26:5c:78:cc:6f:5d:34: e8:6b:1b:02:42:60:4a:2d:67:c3:de:5d:e9:3e:29:42:3d:d9: d0:14:bb:02:44:7e:13:2e:53:61:0c:42:03:d8:2b:03:aa:d7: f5:6c:0e:18:6d:13:db:ab:f9:df:df:93:25:87:c4:c2:1b:10: 3f:3b:3c:2c:d6:aa:31:35:be:44:03:37:59:25:82:f7:9e:92: 69:3b:f9:f6:2c:3e:08:6a:44:9d:19:e1:2a:72:c7:ff:f3:5d: 61:93:72:44:12:4d:af:85:c1:85:a8:92:5a:92:bb:0a:f9:c4: 32:25:4b:18:60:04:ce:25:59:bb:01:28:20:8f:fa:80:99:4c: 68:0c:21:1b:13:c3:e7:73:87:9a:98:dd:ad:3a:64:69:ef:8a: e4:da:4e:e9:7e:30:d2:79:8f:9c:b4:98:41:26:08:a8:b9:1e: 6d:ce:93:aa -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FhJVf3jLl/svDzAt46pAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZDJkYWZmMWM1YmI2MWEwYWM4YjNjYWVhZDRiOGExZmEy ODRkMGYwHhcNMjYwMTAyMTQyMTUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NWQwOWQwZTI2OTU2MGQzNDY1ODc5MzY4MjIzMDVlYzk3MzgzZWM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAupkv+1/ciwTDjUqFy6w8bdHMSgpn Vi2y52SmhZCEVJH39kiybiDc5WbWtxTeInp9oRxW3oNrKa76k7pEmhCesFvfG5sb HWuA7NN3vbQZzrAg+vpxxyt0VsOBwSYoUcTDp4oyFIbakyszuwM4Oi2LlLiG/wnZ vqLO2/Rmx8AjHK8k5kDNOVnlu0Oa5OkZSHH0VAArd1tnLN0lTXJ2trODwui4/zc2 AaZu+a0e4LOMjBGppNGWbqdF+Mg7RJLYzTyHtzk/3GqS1oWWzOnnFI0vP0wniyPY bk+wl1+WTvdKV9JyZvorNRYZwHoqWc20FCCqyWGLjrh3q0X2JJSjy0SmbwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGXQnQ4mlWDTRlh5NoIjBeyXOD7HMB8GA1UdIwQY MBaAFCnS2v8cW7YaCsizyurUuKH6KE0PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3Zjgt NGY1N2Q5Y2Y1Y2FhLzEvWmRDZERpYVZZTk5HV0hrMmdpTUY3SmM0UHNjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3ZjgtNGY1N2Q5Y2Y1Y2Fh LzEvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXD71MA0G CSqGSIb3DQEBCwUAA4IBAQCxNd3AoMxeEart/0GEwsaX5dHyloFouSgdKm+0L29q PU82chThbttmHG20CeoCTRfpwLV7ceFCTR7ITJb2phB08PJEYuVlAN0H22jfMKlw RKpAbCZceMxvXTToaxsCQmBKLWfD3l3pPilCPdnQFLsCRH4TLlNhDEID2CsDqtf1 bA4YbRPbq/nf35Mlh8TCGxA/Ozws1qoxNb5EAzdZJYL3npJpO/n2LD4IakSdGeEq csf/811hk3JEEk2vhcGFqJJakrsK+cQyJUsYYATOJVm7ASggj/qAmUxoDCEbE8Pn c4eamN2tOmRp74rk2k7pfjDSeY+ctJhBJgiouR5tzpOq -----END CERTIFICATE-----Generated at Tue Jan 20 02:44:48 2026 by rpki-client