This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/z7ZtQfl0qkOvogvdHntBBnAaK6Q.roa File: z7ZtQfl0qkOvogvdHntBBnAaK6Q.roa (raw, json) Hash identifier: RPVb71yJXb6EpA1T1+C9vKmvrwFOntkhe2LnFwIxwmY= Subject key identifier: CF:B6:6D:41:F9:74:AA:43:AF:A2:0B:DD:1E:7B:41:06:70:1A:2B:A4 Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c Certificate serial: 019B7F1460A8E61C371C84BF08AEDCE30FCD Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/z7ZtQfl0qkOvogvdHntBBnAaK6Q.roa Signing time: Fri 02 Jan 2026 14:20:00 +0000 ROA not before: Fri 02 Jan 2026 14:20:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207957 IP address blocks: 193.233.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.mft rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:60:a8:e6:1c:37:1c:84:bf:08:ae:dc:e3:0f:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c Validity Not Before: Jan 2 14:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cfb66d41f974aa43afa20bdd1e7b4106701a2ba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9e:02:b0:58:a7:99:24:da:da:38:e4:28:17: a4:e3:2c:1b:29:88:7a:84:ad:ac:27:36:e9:78:b9: 12:4f:3f:f0:1a:42:56:e8:39:3a:64:35:37:4b:95: dd:63:20:df:ac:a9:48:3b:21:ec:f7:c6:30:00:60: 5a:69:13:bb:53:c4:ec:0f:22:e4:55:53:ad:92:04: ef:04:dd:a0:3e:2c:3b:02:19:48:f8:e1:2a:25:f8: 88:32:a5:54:09:84:67:de:db:6b:43:b6:60:46:75: e4:0a:8b:a4:a3:c9:f0:4d:e8:6f:bf:07:e0:0c:9d: 98:50:a9:11:0e:dd:b6:27:03:ba:84:37:a9:2d:3e: ac:cd:bc:a4:ff:42:e2:30:d1:6c:48:a3:13:99:e0: e1:37:97:6f:b8:b9:b3:b0:fb:87:93:de:ef:19:5c: 5b:ef:13:09:dc:ca:ff:3a:59:67:a5:11:a3:fb:bc: 12:cc:91:35:29:8a:44:23:6a:20:cd:e7:b4:7d:6c: f5:10:59:b3:cc:a5:fb:44:ab:82:0f:f5:54:fc:f4: 88:21:2b:b7:5f:07:99:ab:31:0a:ca:0b:72:f0:be: 07:9a:df:5a:4d:12:7f:48:dc:83:fb:44:fc:ae:bf: 5b:95:da:e7:90:5f:1c:2e:3c:8e:28:83:5b:31:fa: 67:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B6:6D:41:F9:74:AA:43:AF:A2:0B:DD:1E:7B:41:06:70:1A:2B:A4 X509v3 Authority Key Identifier: keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/z7ZtQfl0qkOvogvdHntBBnAaK6Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.233.16.0/24 Signature Algorithm: sha256WithRSAEncryption 73:67:af:d0:d0:36:3f:e4:ee:69:f0:6d:e8:c0:e3:72:23:9e: 4d:d8:1d:19:36:d5:0c:de:be:0f:67:dc:78:6a:72:ef:0c:d5: af:30:f5:69:99:32:32:8f:05:1d:0f:42:4f:dd:6c:13:ea:af: e0:6e:19:68:fe:94:2d:ff:1b:a9:22:ca:4c:61:1d:0c:c5:60: f1:15:45:b1:2c:1c:c6:67:a5:d6:96:37:20:3f:d0:04:2e:14: b9:82:64:30:5d:10:7e:a3:1a:50:05:37:3f:1e:26:48:08:4c: 55:7c:b3:85:29:e8:fc:aa:37:04:cd:c9:50:27:a6:29:85:3a: 8b:5a:bf:82:05:1e:23:97:61:b0:60:3b:00:b1:de:d6:c4:c7: 83:bb:24:c3:23:63:cc:27:0e:9d:0d:5b:86:c2:e9:eb:53:60: 3b:7f:76:04:6c:20:3c:a6:0f:b6:0b:9e:c9:85:3e:72:4b:95: 5b:7c:5a:9b:f2:e5:d9:78:63:d0:10:0e:3c:62:fa:bc:c2:46: 5e:cd:c2:fb:e5:80:50:b0:a2:e5:b8:dd:8c:67:e9:eb:18:a6: 67:22:3c:ae:30:60:3c:f6:fb:1c:fd:4f:c6:16:5e:24:6f:8f: 51:dc:3e:9e:1b:c7:89:0b:94:12:2c:da:b1:1c:83:72:6c:2c: ed:e4:b8:1b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FGCo5hw3HIS/CK7c4w/NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4 Mjg3M2MwHhcNMjYwMTAyMTQyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZmI2NmQ0MWY5NzRhYTQzYWZhMjBiZGQxZTdiNDEwNjcwMWEyYmE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZ4CsFinmSTa2jjkKBek4ywbKYh6 hK2sJzbpeLkSTz/wGkJW6Dk6ZDU3S5XdYyDfrKlIOyHs98YwAGBaaRO7U8TsDyLk VVOtkgTvBN2gPiw7AhlI+OEqJfiIMqVUCYRn3ttrQ7ZgRnXkCouko8nwTehvvwfg DJ2YUKkRDt22JwO6hDepLT6szbyk/0LiMNFsSKMTmeDhN5dvuLmzsPuHk97vGVxb 7xMJ3Mr/OllnpRGj+7wSzJE1KYpEI2ogzee0fWz1EFmzzKX7RKuCD/VU/PSIISu3 XweZqzEKygty8L4Hmt9aTRJ/SNyD+0T8rr9bldrnkF8cLjyOKINbMfpneQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFM+2bUH5dKpDr6IL3R57QQZwGiukMB8GA1UdIwQY MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt NGRlYzRkYWZlZTQ5LzEvejdadFFmbDBxa092b2d2ZEhudEJCbkFhSzZRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5 LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwekQMA0G CSqGSIb3DQEBCwUAA4IBAQBzZ6/Q0DY/5O5p8G3owONyI55N2B0ZNtUM3r4PZ9x4 anLvDNWvMPVpmTIyjwUdD0JP3WwT6q/gbhlo/pQt/xupIspMYR0MxWDxFUWxLBzG Z6XWljcgP9AELhS5gmQwXRB+oxpQBTc/HiZICExVfLOFKej8qjcEzclQJ6YphTqL Wr+CBR4jl2GwYDsAsd7WxMeDuyTDI2PMJw6dDVuGwunrU2A7f3YEbCA8pg+2C57J hT5yS5VbfFqb8uXZeGPQEA48Yvq8wkZezcL75YBQsKLluN2MZ+nrGKZnIjyuMGA8 9vsc/U/GFl4kb49R3D6eG8eJC5QSLNqxHINybCzt5Lgb -----END CERTIFICATE-----Generated at Tue Jan 20 11:09:38 2026 by rpki-client