This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Z-YCzchVF5bQH2HicwMC7TiNiIo.roa File: Z-YCzchVF5bQH2HicwMC7TiNiIo.roa (raw, json) Hash identifier: S79GiezgHAF6LzHXyznfu+6Fnlx8lKM8RhqxjBgw0Qo= Subject key identifier: 67:E6:02:CD:C8:55:17:96:D0:1F:61:E2:73:03:02:ED:38:8D:88:8A Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d Certificate serial: 019B7F844B257D2F90ED3D83CB9CE6D17CB3 Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Z-YCzchVF5bQH2HicwMC7TiNiIo.roa Signing time: Fri 02 Jan 2026 16:22:15 +0000 ROA not before: Fri 02 Jan 2026 16:22:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200036 IP address blocks: 45.159.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.mft rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:4b:25:7d:2f:90:ed:3d:83:cb:9c:e6:d1:7c:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d Validity Not Before: Jan 2 16:22:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67e602cdc8551796d01f61e2730302ed388d888a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d3:82:6d:8d:08:71:5c:23:c2:e6:de:e0:40: 77:de:61:d3:91:99:67:ea:46:55:84:f7:a4:bc:1d: f4:95:6c:1e:16:11:7b:a2:ed:79:13:76:4d:f1:11: b7:3e:ae:04:ee:a6:90:df:da:c2:94:b6:81:b3:48: 70:6e:60:6c:f7:63:ec:75:eb:71:16:57:13:1b:c1: a1:a8:a9:f5:71:cc:39:75:b1:0a:8d:e4:eb:8f:b8: 3a:9d:10:3b:09:41:25:7c:4a:e3:4a:95:53:c6:f4: b2:22:78:8e:b5:83:74:e4:d0:a3:23:9f:45:a6:ed: b7:07:9a:bc:e8:da:c6:23:0b:3a:72:6d:a5:b1:0e: c0:62:05:b5:5a:36:c3:8b:44:97:59:35:79:6a:39: 32:b4:77:4e:78:38:0a:cb:9e:fa:fb:fe:6d:1c:c9: 9f:53:bd:d8:55:6d:e7:17:95:02:f6:d4:79:eb:ff: 35:4e:c0:88:70:90:fb:df:0b:8a:6f:4a:04:4e:75: f0:5e:d0:7c:b1:42:7c:cb:f2:ae:73:85:6a:37:14: 9b:59:e5:cb:7c:63:a0:f0:82:06:3b:00:ac:90:0b: 3e:01:85:ff:34:89:aa:da:12:1b:fe:00:c8:5b:7d: aa:66:b8:40:2e:7b:cf:c7:39:55:d7:7b:2f:96:07: 3b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E6:02:CD:C8:55:17:96:D0:1F:61:E2:73:03:02:ED:38:8D:88:8A X509v3 Authority Key Identifier: keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Z-YCzchVF5bQH2HicwMC7TiNiIo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.159.195.0/24 Signature Algorithm: sha256WithRSAEncryption 34:79:77:ca:b0:9f:0b:c3:da:7c:3c:3c:af:24:d5:f6:e6:8f: a3:19:50:28:08:91:0f:4a:d7:38:60:f3:2f:b6:85:c2:7c:78: 80:1f:3a:d2:ad:40:aa:ab:64:66:58:6b:d0:cd:a0:d1:e9:56: 6a:d2:d9:da:73:56:ae:d3:2f:46:cd:93:43:38:9d:67:2b:02: 61:15:bb:ef:10:58:37:48:40:27:9c:cd:80:97:59:6d:11:f5: 50:3f:a4:44:a5:62:9b:fa:e8:76:c4:7e:d4:33:e8:2a:8a:06: 73:0e:5d:7d:39:bd:16:e3:82:f2:31:b6:0d:2f:96:58:db:cf: 4b:0e:1c:c5:05:b1:7d:be:6f:67:ac:b5:24:b9:9c:16:15:15: b4:14:f9:92:cf:02:c7:89:22:87:72:88:78:f7:ae:06:de:bd: 53:d2:4e:4b:43:75:19:76:f5:4d:92:ac:85:d8:c1:11:30:2b: 4a:85:2f:b4:01:d0:dd:5e:45:30:27:0f:d5:85:a8:be:11:56: e3:e8:7d:5d:04:1b:d0:7e:41:bd:eb:4d:9d:28:e7:c6:5a:d2: 65:43:19:68:aa:e4:c3:8b:cc:0e:1d:ba:02:6a:ff:d0:31:bd: 8a:c2:ee:10:6d:1d:3a:54:f8:65:44:98:41:ab:9a:ae:a7:bf: d0:95:86:e6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hEslfS+Q7T2Dy5zm0XyzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw MTRiOGQwHhcNMjYwMTAyMTYyMjE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2N2U2MDJjZGM4NTUxNzk2ZDAxZjYxZTI3MzAzMDJlZDM4OGQ4ODhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz9OCbY0IcVwjwube4EB33mHTkZln 6kZVhPekvB30lWweFhF7ou15E3ZN8RG3Pq4E7qaQ39rClLaBs0hwbmBs92Psdetx FlcTG8GhqKn1ccw5dbEKjeTrj7g6nRA7CUElfErjSpVTxvSyIniOtYN05NCjI59F pu23B5q86NrGIws6cm2lsQ7AYgW1WjbDi0SXWTV5ajkytHdOeDgKy576+/5tHMmf U73YVW3nF5UC9tR56/81TsCIcJD73wuKb0oETnXwXtB8sUJ8y/Kuc4VqNxSbWeXL fGOg8IIGOwCskAs+AYX/NImq2hIb/gDIW32qZrhALnvPxzlV13svlgc7swIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGfmAs3IVReW0B9h4nMDAu04jYiKMB8GA1UdIwQY MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt NmJjNzU1NzhiNGMzLzEvWi1ZQ3pjaFZGNWJRSDJIaWN3TUM3VGlOaUlvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ/DMA0G CSqGSIb3DQEBCwUAA4IBAQA0eXfKsJ8Lw9p8PDyvJNX25o+jGVAoCJEPStc4YPMv toXCfHiAHzrSrUCqq2RmWGvQzaDR6VZq0tnac1au0y9GzZNDOJ1nKwJhFbvvEFg3 SEAnnM2Al1ltEfVQP6REpWKb+uh2xH7UM+gqigZzDl19Ob0W44LyMbYNL5ZY289L DhzFBbF9vm9nrLUkuZwWFRW0FPmSzwLHiSKHcoh4964G3r1T0k5LQ3UZdvVNkqyF 2MERMCtKhS+0AdDdXkUwJw/Vhai+EVbj6H1dBBvQfkG9602dKOfGWtJlQxloquTD i8wOHboCav/QMb2Kwu4QbR06VPhlRJhBq5qup7/QlYbm -----END CERTIFICATE-----Generated at Wed Jan 21 16:57:09 2026 by rpki-client