This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/z2GzRIfnPyUIyfcmz4cbiqXUULo.roa File: z2GzRIfnPyUIyfcmz4cbiqXUULo.roa (raw, json) Hash identifier: rUEahhJNYdXTeWi9T9rOa+s/9ueoMA83VgeuJpMOnvc= Subject key identifier: CF:61:B3:44:87:E7:3F:25:08:C9:F7:26:CF:87:1B:8A:A5:D4:50:BA Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Certificate serial: 019B7AC7D30CBBD0CFCCE055A6426A893346 Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/z2GzRIfnPyUIyfcmz4cbiqXUULo.roa Signing time: Thu 01 Jan 2026 18:17:54 +0000 ROA not before: Thu 01 Jan 2026 18:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 54339 IP address blocks: 159.148.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:d3:0c:bb:d0:cf:cc:e0:55:a6:42:6a:89:33:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Validity Not Before: Jan 1 18:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cf61b34487e73f2508c9f726cf871b8aa5d450ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8f:6d:65:6b:48:19:33:5e:b3:3a:36:6e:03: 77:54:3d:cf:8a:47:03:55:bf:1e:c9:72:4c:cc:b1: a5:0f:4b:bb:73:a2:9c:93:ab:f2:8d:a7:1b:09:97: e4:48:ce:28:9f:d5:18:64:a2:64:ce:b0:ee:37:6c: 07:f1:9d:36:6e:47:5e:47:88:8e:7e:c3:2c:94:c3: 29:9c:f1:c8:89:73:fb:24:72:68:48:80:d6:b5:98: 1e:e1:7b:8f:7b:f8:52:5e:5d:5d:64:4f:22:d9:55: 74:c9:3f:74:ff:a0:a4:09:5c:8d:2f:f3:09:38:a2: 5d:b0:d2:a0:25:28:83:e4:e9:51:20:0b:7e:a3:0f: cf:b6:d0:e4:52:53:66:59:ac:43:99:ed:96:fd:29: 91:f9:9c:21:e5:67:c6:91:c4:da:d3:cd:10:96:f5: 1f:8e:a0:ab:10:48:04:51:bd:81:17:78:19:9f:dd: a1:c7:f8:69:9d:f2:b8:b7:c3:79:04:d5:8d:0b:06: c3:48:bc:62:f0:77:40:94:50:1f:22:7a:c2:78:a3: fc:42:d0:2f:92:82:16:4f:e3:43:0d:2c:dc:37:66: 29:c9:f1:d9:b1:2c:fc:ad:ec:55:be:8a:bb:83:14: 9c:4d:3a:05:c5:3e:a9:ae:05:bd:22:23:f6:2b:69: 49:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:61:B3:44:87:E7:3F:25:08:C9:F7:26:CF:87:1B:8A:A5:D4:50:BA X509v3 Authority Key Identifier: keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/z2GzRIfnPyUIyfcmz4cbiqXUULo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.148.255.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:11:8d:7b:0a:c4:76:80:7c:0c:69:26:70:89:88:19:cd:7f: dd:87:34:49:c6:b3:3b:65:3b:b4:a5:03:19:9b:01:c1:73:42: b8:e1:9e:36:27:1d:09:f2:f9:da:46:06:ff:df:b3:63:3c:8c: 8d:f3:0d:ed:59:71:7f:cb:3b:0e:bc:90:5d:a5:51:97:57:d1: c6:f2:d2:1e:ad:eb:bf:bf:eb:56:79:cf:74:82:8f:4c:e5:30: be:0a:e1:92:69:90:73:bc:0c:31:55:a9:12:0a:c7:6e:ea:93: c8:72:ef:37:47:ac:4a:1f:2f:3e:20:c3:f0:ad:59:36:ff:ee: 23:bb:72:ab:6f:b8:08:04:4d:5d:8b:31:34:88:0b:08:b0:9c: 43:e3:c8:52:df:a6:38:6d:db:ff:b4:75:b8:cc:34:df:56:88: 7c:36:fe:4d:12:62:27:2b:3e:cf:dd:27:fc:36:56:ea:0b:d9: 8f:45:2a:49:60:dd:c2:c1:ba:48:e0:58:92:da:76:8a:f4:80: 61:b1:58:bf:c5:d9:5e:4c:3a:be:55:06:d6:f1:83:c7:18:45: b3:1c:c4:4c:b2:cd:bf:82:e9:9b:2b:e2:f9:06:d7:0e:64:e8: a9:4b:b6:b1:22:4b:c4:fc:09:de:3d:51:44:e8:9a:b1:d1:c6: db:db:67:ca -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x9MMu9DPzOBVpkJqiTNGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm YzQxZWMwHhcNMjYwMTAxMTgxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZjYxYjM0NDg3ZTczZjI1MDhjOWY3MjZjZjg3MWI4YWE1ZDQ1MGJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAto9tZWtIGTNeszo2bgN3VD3PikcD Vb8eyXJMzLGlD0u7c6Kck6vyjacbCZfkSM4on9UYZKJkzrDuN2wH8Z02bkdeR4iO fsMslMMpnPHIiXP7JHJoSIDWtZge4XuPe/hSXl1dZE8i2VV0yT90/6CkCVyNL/MJ OKJdsNKgJSiD5OlRIAt+ow/PttDkUlNmWaxDme2W/SmR+Zwh5WfGkcTa080QlvUf jqCrEEgEUb2BF3gZn92hx/hpnfK4t8N5BNWNCwbDSLxi8HdAlFAfInrCeKP8QtAv koIWT+NDDSzcN2YpyfHZsSz8rexVvoq7gxScTToFxT6prgW9IiP2K2lJ/QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFM9hs0SH5z8lCMn3Js+HG4ql1FC6MB8GA1UdIwQY MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt NTU1NGQ2ZTE2ODZmLzEvejJHelJJZm5QeVVJeWZjbXo0Y2JpcVhVVUxvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAn5T/MA0G CSqGSIb3DQEBCwUAA4IBAQAPEY17CsR2gHwMaSZwiYgZzX/dhzRJxrM7ZTu0pQMZ mwHBc0K44Z42Jx0J8vnaRgb/37NjPIyN8w3tWXF/yzsOvJBdpVGXV9HG8tIereu/ v+tWec90go9M5TC+CuGSaZBzvAwxVakSCsdu6pPIcu83R6xKHy8+IMPwrVk2/+4j u3Krb7gIBE1dizE0iAsIsJxD48hS36Y4bdv/tHW4zDTfVoh8Nv5NEmInKz7P3Sf8 NlbqC9mPRSpJYN3CwbpI4FiS2naK9IBhsVi/xdleTDq+VQbW8YPHGEWzHMRMss2/ gumbK+L5BtcOZOipS7axIkvE/AnePVFE6Jqx0cbb22fK -----END CERTIFICATE-----Generated at Mon Jan 19 19:57:12 2026 by rpki-client