This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/zHE_Roky3AGIHoilX0Vwt-WQBbk.roa File: zHE_Roky3AGIHoilX0Vwt-WQBbk.roa (raw, json) Hash identifier: ib2UHQahYQ7UlRTwpBdnOpyEX+FxhxL9+JKXVCxUxaA= Subject key identifier: CC:71:3F:46:89:32:DC:01:88:1E:88:A5:5F:45:70:B7:E5:90:05:B9 Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d Certificate serial: 019B797E62F4242122457E488AB96DD93978 Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/zHE_Roky3AGIHoilX0Vwt-WQBbk.roa Signing time: Thu 01 Jan 2026 12:18:04 +0000 ROA not before: Thu 01 Jan 2026 12:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 973 IP address blocks: 89.251.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.mft rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:62:f4:24:21:22:45:7e:48:8a:b9:6d:d9:39:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d Validity Not Before: Jan 1 12:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cc713f468932dc01881e88a55f4570b7e59005b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:4e:b2:af:29:2a:04:ab:06:ca:2e:33:7c:53: b5:3d:13:60:0e:c5:da:96:34:42:7d:43:3a:ff:da: f2:0a:2c:1e:fa:e0:c2:8e:a4:b9:3c:8d:00:69:db: 4b:be:42:68:92:78:19:c3:10:67:2a:99:89:45:21: cc:27:3c:1e:90:33:18:db:7d:62:53:e9:14:d4:de: 80:3c:44:04:fb:7d:8c:39:ea:fa:d5:62:1b:88:fb: c6:35:f0:15:84:fe:dc:f1:6c:f4:a5:14:51:36:94: a4:9e:82:2a:4c:d1:c8:84:69:34:4f:0b:14:c8:21: 54:63:f9:65:33:9d:97:52:8f:fe:19:26:bd:14:92: 5c:22:61:bb:e0:c3:5f:93:5a:bb:64:f8:d1:34:b5: e0:9f:6f:ac:81:5a:11:82:ba:96:ba:19:fd:b8:36: 2d:34:cf:e7:b4:6e:cd:46:53:11:24:2d:7c:e7:f1: f1:90:33:e9:8c:f5:ad:89:45:75:ec:31:d4:cb:d6: 30:83:4e:87:5d:1e:c7:93:e1:b8:6b:e4:84:e6:4f: 28:3c:a3:37:34:90:22:c3:08:5a:60:c7:77:30:65: 05:03:2e:fd:1b:eb:8d:61:55:ec:21:87:44:69:1f: 6c:36:da:7c:a7:7a:08:e2:61:af:19:54:9c:88:53: b6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:71:3F:46:89:32:DC:01:88:1E:88:A5:5F:45:70:B7:E5:90:05:B9 X509v3 Authority Key Identifier: keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/zHE_Roky3AGIHoilX0Vwt-WQBbk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.251.24.0/24 Signature Algorithm: sha256WithRSAEncryption 07:a9:b5:12:76:4b:8e:91:74:b4:a4:46:36:7c:54:66:7c:f6: 0e:79:94:03:2e:1f:34:1e:60:fe:74:62:64:12:7a:b1:06:2d: 5e:c0:93:7b:ab:b1:ef:05:86:23:e0:e9:bb:ab:42:99:f5:f2: 9c:4b:86:7c:d3:c8:e8:ed:d9:05:cd:16:19:9d:22:6c:dc:3f: 56:49:42:b2:3e:f4:82:ee:f3:59:96:59:e4:15:39:d2:b5:30: 34:62:85:3f:a6:85:55:da:9a:23:0f:a2:ee:10:8b:1d:8f:17: cb:6c:57:f7:af:11:3e:2a:56:d2:b2:10:5c:04:43:49:7f:13: c2:4d:3e:21:75:c4:4a:4e:2d:03:e2:1c:b1:9c:e6:4e:8b:3a: 2b:62:78:fb:7f:ec:84:2a:50:d1:7f:bf:22:f1:48:66:41:6a: c1:72:0e:f5:6b:9f:91:7e:e3:67:ab:75:53:66:f0:db:59:54: bf:33:bc:f0:e2:9a:25:12:0b:03:24:b5:a0:b4:e6:54:9f:9b: 60:09:49:b8:71:dc:e1:c3:8d:c8:39:d9:b0:ee:89:cb:c0:99: 73:5a:1c:ab:a0:21:6c:72:54:f4:c0:a3:90:c7:85:32:4b:18: 64:43:a2:78:7b:88:06:90:e0:4b:d1:13:27:45:eb:cb:3c:49: 1f:81:44:37 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fmL0JCEiRX5Iirlt2Tl4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj NWFjOGQwHhcNMjYwMTAxMTIxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYzcxM2Y0Njg5MzJkYzAxODgxZTg4YTU1ZjQ1NzBiN2U1OTAwNWI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8U6yrykqBKsGyi4zfFO1PRNgDsXa ljRCfUM6/9ryCiwe+uDCjqS5PI0AadtLvkJokngZwxBnKpmJRSHMJzwekDMY231i U+kU1N6APEQE+32MOer61WIbiPvGNfAVhP7c8Wz0pRRRNpSknoIqTNHIhGk0TwsU yCFUY/llM52XUo/+GSa9FJJcImG74MNfk1q7ZPjRNLXgn2+sgVoRgrqWuhn9uDYt NM/ntG7NRlMRJC185/HxkDPpjPWtiUV17DHUy9Ywg06HXR7Hk+G4a+SE5k8oPKM3 NJAiwwhaYMd3MGUFAy79G+uNYVXsIYdEaR9sNtp8p3oI4mGvGVSciFO2JQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMxxP0aJMtwBiB6IpV9FcLflkAW5MB8GA1UdIwQY MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt MzE4YTI2ZDRhOGM5LzEvekhFX1Jva3kzQUdJSG9pbFgwVnd0LVdRQmJrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5 LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWfsYMA0G CSqGSIb3DQEBCwUAA4IBAQAHqbUSdkuOkXS0pEY2fFRmfPYOeZQDLh80HmD+dGJk EnqxBi1ewJN7q7HvBYYj4Om7q0KZ9fKcS4Z808jo7dkFzRYZnSJs3D9WSUKyPvSC 7vNZllnkFTnStTA0YoU/poVV2pojD6LuEIsdjxfLbFf3rxE+KlbSshBcBENJfxPC TT4hdcRKTi0D4hyxnOZOizorYnj7f+yEKlDRf78i8UhmQWrBcg71a5+RfuNnq3VT ZvDbWVS/M7zw4polEgsDJLWgtOZUn5tgCUm4cdzhw43IOdmw7onLwJlzWhyroCFs clT0wKOQx4UySxhkQ6J4e4gGkOBL0RMnRevLPEkfgUQ3 -----END CERTIFICATE-----Generated at Mon Jan 19 13:55:14 2026 by rpki-client