This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zstBlDCVDrtUhh8zcuXV-6gwwXo.roa File: zstBlDCVDrtUhh8zcuXV-6gwwXo.roa (raw, json) Hash identifier: gpAsoJviEcqg4YnInO9jpKk5t5YTQDbRlAoDvTzH4/E= Subject key identifier: CE:CB:41:94:30:95:0E:BB:54:86:1F:33:72:E5:D5:FB:A8:30:C1:7A Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E391C0DEDAC965D10B36EC19BB7B652 Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zstBlDCVDrtUhh8zcuXV-6gwwXo.roa Signing time: Fri 02 Jan 2026 10:20:30 +0000 ROA not before: Fri 02 Jan 2026 10:20:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24429 IP address blocks: 163.5.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:1c:0d:ed:ac:96:5d:10:b3:6e:c1:9b:b7:b6:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cecb419430950ebb54861f3372e5d5fba830c17a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cd:cf:c3:ce:54:fc:6c:84:2b:74:58:e9:66: f6:41:7c:d2:1d:07:f7:a9:1e:be:c4:04:b9:47:95: a8:fb:bc:5d:ca:76:b1:c0:03:5a:6f:73:93:60:14: 50:6b:e3:9e:7f:02:3a:2e:b5:4c:de:df:aa:fc:fa: 74:3a:02:81:c0:d6:3f:4e:8d:cf:20:5d:79:c9:19: 5b:9d:8e:bf:2b:0c:6d:6a:de:3b:ee:96:3d:2f:9b: 9a:61:ef:b8:62:09:52:09:df:6b:b9:bd:3f:1f:25: 81:c9:27:e4:78:59:e8:aa:67:a9:a0:32:e4:7c:d7: 3e:c7:60:e6:a2:23:63:9c:cc:06:1d:a4:e0:44:78: 27:82:76:21:38:16:83:5e:6d:1d:b5:18:dc:35:30: ab:8d:48:2f:5c:55:a1:2a:d5:9b:38:68:4a:fd:ac: 98:2f:7e:92:67:d6:ae:66:a2:b6:39:8b:82:6e:5f: c5:6d:3d:48:5e:37:19:d1:6e:d4:5a:08:8b:5c:d4: b2:af:0c:d3:da:8c:16:cb:48:67:8f:e6:d0:f1:04: 02:1e:1a:9b:7f:c1:f2:52:d2:da:ad:52:dc:3b:ad: d0:79:25:cf:05:c5:e7:e6:fb:7a:6f:e7:56:5c:eb: 64:2c:a4:73:d4:b7:67:da:4d:fd:45:1f:dc:5c:7b: 96:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:CB:41:94:30:95:0E:BB:54:86:1F:33:72:E5:D5:FB:A8:30:C1:7A X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/zstBlDCVDrtUhh8zcuXV-6gwwXo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.166.0/24 Signature Algorithm: sha256WithRSAEncryption 06:90:39:ba:a6:b8:65:b0:ad:f4:8c:83:b2:4b:9b:ad:f4:2f: 1d:7d:a2:fb:31:46:17:a5:dc:09:bd:91:9d:ad:24:36:dc:c1: 95:69:e7:25:50:3e:0a:41:1a:3e:58:56:73:c9:d2:57:6f:81: 19:2b:73:17:31:36:6f:3d:fc:b4:1a:3d:60:3b:ea:cb:44:f9: 00:45:c8:a1:60:d6:60:c3:9a:65:0d:fd:40:8d:32:4d:72:ad: ff:43:b4:93:23:19:8b:f5:89:cf:14:76:cd:27:b1:21:fa:3f: a8:c0:c9:c8:dd:a1:7e:bf:38:4b:fb:2a:92:eb:97:69:de:84: f6:5c:a1:3e:80:96:4a:53:25:d7:16:45:f2:99:4f:84:3a:2e: 10:a7:a0:c6:4b:d0:fa:73:05:9f:29:92:7c:5a:9c:36:bb:62: ed:44:8a:44:0e:b6:de:34:81:1b:2d:23:ea:b0:cd:33:a4:68: f2:b2:d2:cf:7b:81:25:43:6e:6a:07:c1:55:0c:07:8c:09:0f: 8e:4a:66:9f:c6:c5:2c:21:e0:52:d7:c3:75:14:13:a6:e7:d0: 95:af:38:e1:a0:d7:98:44:0e:e9:a4:2c:24:f0:e6:f4:00:00: 8b:2b:c9:41:a4:8a:a8:47:a4:56:bd:5d:23:32:3c:dd:fb:b8: 14:80:6f:40 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+ORwN7ayWXRCzbsGbt7ZSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZWNiNDE5NDMwOTUwZWJiNTQ4NjFmMzM3MmU1ZDVmYmE4MzBjMTdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqs3Pw85U/GyEK3RY6Wb2QXzSHQf3 qR6+xAS5R5Wo+7xdynaxwANab3OTYBRQa+OefwI6LrVM3t+q/Pp0OgKBwNY/To3P IF15yRlbnY6/Kwxtat477pY9L5uaYe+4YglSCd9rub0/HyWBySfkeFnoqmepoDLk fNc+x2DmoiNjnMwGHaTgRHgngnYhOBaDXm0dtRjcNTCrjUgvXFWhKtWbOGhK/ayY L36SZ9auZqK2OYuCbl/FbT1IXjcZ0W7UWgiLXNSyrwzT2owWy0hnj+bQ8QQCHhqb f8HyUtLarVLcO63QeSXPBcXn5vt6b+dWXOtkLKRz1Ldn2k39RR/cXHuWuwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFM7LQZQwlQ67VIYfM3Ll1fuoMMF6MB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvenN0QmxEQ1ZEcnRVaGg4emN1WFYtNmd3d1hvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowWmMA0G CSqGSIb3DQEBCwUAA4IBAQAGkDm6prhlsK30jIOyS5ut9C8dfaL7MUYXpdwJvZGd rSQ23MGVaeclUD4KQRo+WFZzydJXb4EZK3MXMTZvPfy0Gj1gO+rLRPkARcihYNZg w5plDf1AjTJNcq3/Q7STIxmL9YnPFHbNJ7Eh+j+owMnI3aF+vzhL+yqS65dp3oT2 XKE+gJZKUyXXFkXymU+EOi4Qp6DGS9D6cwWfKZJ8Wpw2u2LtRIpEDrbeNIEbLSPq sM0zpGjystLPe4ElQ25qB8FVDAeMCQ+OSmafxsUsIeBS18N1FBOm59CVrzjhoNeY RA7ppCwk8Ob0AACLK8lBpIqoR6RWvV0jMjzd+7gUgG9A -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:03 2026 by rpki-client