This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/06b7ee-6752-450e-b852-9e908d077f4f/1/ZenpZaPwibfOmlVAv-TXRHjBtwo.roa File: ZenpZaPwibfOmlVAv-TXRHjBtwo.roa (raw, json) Hash identifier: 0ehuNaSCp+tbF/K/SnZ+V5bAmTlPs3tw4jnWUFFDmpM= Subject key identifier: 65:E9:E9:65:A3:F0:89:B7:CE:9A:55:40:BF:E4:D7:44:78:C1:B7:0A Certificate issuer: /CN=1a58462feba546104b4797292dd23a46b02f7ed2 Certificate serial: 019B78353BA9D69FEE571DEEC59A3AAF086D Authority key identifier: 1A:58:46:2F:EB:A5:46:10:4B:47:97:29:2D:D2:3A:46:B0:2F:7E:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GlhGL-ulRhBLR5cpLdI6RrAvftI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/06b7ee-6752-450e-b852-9e908d077f4f/1/ZenpZaPwibfOmlVAv-TXRHjBtwo.roa Signing time: Thu 01 Jan 2026 06:18:33 +0000 ROA not before: Thu 01 Jan 2026 06:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215104 IP address blocks: 145.63.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/06b7ee-6752-450e-b852-9e908d077f4f/1/GlhGL-ulRhBLR5cpLdI6RrAvftI.crl rsync://rpki.ripe.net/repository/DEFAULT/10/06b7ee-6752-450e-b852-9e908d077f4f/1/GlhGL-ulRhBLR5cpLdI6RrAvftI.mft rsync://rpki.ripe.net/repository/DEFAULT/GlhGL-ulRhBLR5cpLdI6RrAvftI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:3b:a9:d6:9f:ee:57:1d:ee:c5:9a:3a:af:08:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a58462feba546104b4797292dd23a46b02f7ed2 Validity Not Before: Jan 1 06:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=65e9e965a3f089b7ce9a5540bfe4d74478c1b70a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e4:27:25:94:f3:44:2e:76:57:93:e7:e2:cf: 30:95:63:2c:90:01:ab:9c:06:2c:8c:f2:0f:95:7f: f8:9d:df:59:44:4b:45:2a:e5:58:ea:2d:d5:2f:fe: 5e:c3:3b:46:02:38:f5:1b:dc:35:51:ef:c4:29:9e: 95:bf:38:83:8a:e1:cd:3a:12:52:5e:bc:71:de:2f: 87:ee:dc:b3:6e:b5:2f:46:fb:36:f0:8b:67:d0:9e: 28:25:62:79:4a:cf:ec:91:62:79:65:1e:10:11:c5: 6a:7f:13:08:60:16:bb:04:0b:b4:0d:95:ac:47:b5: fa:8b:93:2b:2a:bf:36:63:e5:a6:c8:b1:2f:07:83: 75:b7:60:4f:ee:b4:79:a6:13:06:d7:b9:a9:37:c3: 2c:5a:b1:c8:74:c4:ec:90:f1:57:64:9e:a2:40:99: dc:5b:9a:c4:d1:4d:60:7e:b4:2b:9e:c0:be:a9:60: 83:f0:e8:24:c4:f2:f2:e7:bd:1d:a0:9f:04:29:22: ac:08:09:80:3a:bd:5e:fc:44:95:a9:20:85:cb:ba: 6f:e8:56:3d:4d:33:7a:2d:99:94:46:a1:fe:4e:d9: b2:bc:7c:0f:72:be:2c:8d:38:2d:46:4d:0a:bd:3f: 16:38:c0:28:84:25:a2:8a:14:20:8d:07:9a:10:80: c7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:E9:E9:65:A3:F0:89:B7:CE:9A:55:40:BF:E4:D7:44:78:C1:B7:0A X509v3 Authority Key Identifier: keyid:1A:58:46:2F:EB:A5:46:10:4B:47:97:29:2D:D2:3A:46:B0:2F:7E:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GlhGL-ulRhBLR5cpLdI6RrAvftI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/06b7ee-6752-450e-b852-9e908d077f4f/1/ZenpZaPwibfOmlVAv-TXRHjBtwo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/06b7ee-6752-450e-b852-9e908d077f4f/1/GlhGL-ulRhBLR5cpLdI6RrAvftI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.63.4.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:df:54:d9:1b:77:e4:31:73:96:82:ee:c8:be:b7:32:c1:47: 01:64:c4:b3:a2:35:ce:e1:94:8c:ec:b3:f6:f0:d8:5a:4e:b5: f0:05:40:69:5d:b1:18:a4:c0:02:b3:81:c6:ef:4d:19:9d:72: f6:1a:b2:cd:9f:83:c6:f5:c1:84:30:a2:fb:ce:50:86:de:ec: 22:28:b5:46:63:58:fe:3e:24:74:86:e9:5b:41:ca:8d:ac:1d: 8f:db:b0:f5:aa:07:7d:ba:af:49:bc:01:e7:3a:dd:fa:14:01: ac:35:9f:ae:8d:58:32:95:84:2e:57:6e:61:f9:0f:5b:f6:e0: e7:fe:c4:5f:a8:62:e4:ef:89:9c:40:f3:e0:23:d8:4e:94:a5: 17:d7:c9:58:eb:25:ef:e5:40:44:67:41:fc:5a:e8:7e:ae:43: fd:2b:69:f8:e1:09:ab:9c:a8:b1:2f:f6:0c:c4:88:06:f2:82: 7f:65:bc:4d:a4:f8:ac:8b:6a:86:b9:fa:6d:85:24:1f:24:60: 7b:f9:5d:03:da:5b:f1:6f:53:53:54:df:58:86:30:cd:34:fe: 88:c1:7e:4f:53:60:87:ba:30:d1:cb:ee:97:8d:6e:01:10:b8: c6:a4:bd:a9:b3:a8:4b:4f:ee:e1:e2:8e:5e:64:6a:15:1a:30: ae:97:97:28 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NTup1p/uVx3uxZo6rwhtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhNTg0NjJmZWJhNTQ2MTA0YjQ3OTcyOTJkZDIzYTQ2YjAy ZjdlZDIwHhcNMjYwMTAxMDYxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NWU5ZTk2NWEzZjA4OWI3Y2U5YTU1NDBiZmU0ZDc0NDc4YzFiNzBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv+QnJZTzRC52V5Pn4s8wlWMskAGr nAYsjPIPlX/4nd9ZREtFKuVY6i3VL/5ewztGAjj1G9w1Ue/EKZ6VvziDiuHNOhJS Xrxx3i+H7tyzbrUvRvs28Itn0J4oJWJ5Ss/skWJ5ZR4QEcVqfxMIYBa7BAu0DZWs R7X6i5MrKr82Y+WmyLEvB4N1t2BP7rR5phMG17mpN8MsWrHIdMTskPFXZJ6iQJnc W5rE0U1gfrQrnsC+qWCD8OgkxPLy570doJ8EKSKsCAmAOr1e/ESVqSCFy7pv6FY9 TTN6LZmURqH+TtmyvHwPcr4sjTgtRk0KvT8WOMAohCWiihQgjQeaEIDH7QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGXp6WWj8Im3zppVQL/k10R4wbcKMB8GA1UdIwQY MBaAFBpYRi/rpUYQS0eXKS3SOkawL37SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR2xoR0wtdWxSaEJMUjVjcExkSTZSckF2ZnRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8wNmI3ZWUtNjc1Mi00NTBlLWI4NTIt OWU5MDhkMDc3ZjRmLzEvWmVucFphUHdpYmZPbWxWQXYtVFhSSGpCdHdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC8wNmI3ZWUtNjc1Mi00NTBlLWI4NTItOWU5MDhkMDc3ZjRm LzEvR2xoR0wtdWxSaEJMUjVjcExkSTZSckF2ZnRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCkT8EMA0G CSqGSIb3DQEBCwUAA4IBAQAO31TZG3fkMXOWgu7IvrcywUcBZMSzojXO4ZSM7LP2 8NhaTrXwBUBpXbEYpMACs4HG700ZnXL2GrLNn4PG9cGEMKL7zlCG3uwiKLVGY1j+ PiR0hulbQcqNrB2P27D1qgd9uq9JvAHnOt36FAGsNZ+ujVgylYQuV25h+Q9b9uDn /sRfqGLk74mcQPPgI9hOlKUX18lY6yXv5UBEZ0H8Wuh+rkP9K2n44QmrnKixL/YM xIgG8oJ/ZbxNpPisi2qGufpthSQfJGB7+V0D2lvxb1NTVN9YhjDNNP6IwX5PU2CH ujDRy+6XjW4BELjGpL2ps6hLT+7h4o5eZGoVGjCul5co -----END CERTIFICATE-----Generated at Tue Feb 10 01:13:18 2026 by rpki-client