This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/ZYguphbq_OVZXqnSVXPcyY-MrWU.roa File: ZYguphbq_OVZXqnSVXPcyY-MrWU.roa (raw, json) Hash identifier: YBNSr4xuGhr4HSUuVKzH8avlZXqqbx+cNVBs9dQx+pg= Subject key identifier: 65:88:2E:A6:16:EA:FC:E5:59:5E:A9:D2:55:73:DC:C9:8F:8C:AD:65 Certificate issuer: /CN=0969a2a39635b797476f1f1633ae8f27bf33b533 Certificate serial: 019B77C762F0211CF80EF6A06709740EEC3C Authority key identifier: 09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/ZYguphbq_OVZXqnSVXPcyY-MrWU.roa Signing time: Thu 01 Jan 2026 04:18:34 +0000 ROA not before: Thu 01 Jan 2026 04:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51722 IP address blocks: 195.85.201.0/24 maxlen: 24 195.85.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 01:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:62:f0:21:1c:f8:0e:f6:a0:67:09:74:0e:ec:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0969a2a39635b797476f1f1633ae8f27bf33b533 Validity Not Before: Jan 1 04:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=65882ea616eafce5595ea9d25573dcc98f8cad65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6a:88:34:98:57:e7:4d:a2:32:b2:26:ff:99: 70:e1:89:22:81:76:5d:dd:3f:72:57:f5:8a:49:96: 45:b0:94:e9:18:e1:5c:54:7a:66:da:3f:56:00:9b: 94:c6:bf:12:11:b3:07:6a:06:6d:41:2a:12:43:4e: e5:77:c0:92:31:f0:33:56:29:c4:c0:e2:73:9b:4e: 04:19:3c:01:ab:1b:e8:95:df:7c:2d:bd:f0:ea:27: ff:ff:d1:a8:e6:a0:c6:ed:cc:e5:fa:0a:be:4e:e0: 16:39:ff:9c:45:44:f3:d8:f4:c1:65:ac:f9:eb:42: a7:f3:0d:da:17:dd:25:05:07:74:a1:8f:14:e8:fd: b6:a5:f7:59:ad:c4:e1:ca:d1:25:cd:52:59:08:b7: 7c:1d:3c:74:75:52:60:90:3e:a3:1f:af:6d:4b:cd: 6c:0a:be:d2:2e:f6:1a:fc:fb:27:99:d9:7d:12:e4: 09:05:0a:56:bd:59:c2:e5:08:df:26:a3:8d:3e:4e: 09:b1:1b:01:c1:7d:6a:79:de:cb:7f:0c:cc:7f:b1: 88:9e:39:ff:f0:0a:f0:1f:d9:55:17:b1:ef:cc:3e: 62:e2:dc:ba:3f:cc:92:ad:b3:80:f7:8b:83:bd:52: 41:50:fb:ef:ad:0e:f7:c9:78:30:c1:7c:69:e8:4d: a2:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:88:2E:A6:16:EA:FC:E5:59:5E:A9:D2:55:73:DC:C9:8F:8C:AD:65 X509v3 Authority Key Identifier: keyid:09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/ZYguphbq_OVZXqnSVXPcyY-MrWU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.85.201.0/24 195.85.205.0/24 Signature Algorithm: sha256WithRSAEncryption 33:a8:be:d7:7a:e1:bc:8e:11:30:ef:e8:49:8b:a5:85:65:d7: cd:d3:33:b4:8f:fd:20:da:c7:b7:4e:85:8b:d3:c3:d0:cb:af: 32:ba:78:1e:46:7d:b0:7b:15:0d:e4:19:68:9d:39:44:2f:ae: 60:5b:57:47:2a:c1:b5:38:3f:d6:af:d3:b6:79:45:48:1d:6a: ec:52:d1:46:92:a9:bf:88:a8:c1:ec:d0:b5:a4:fc:b3:1d:af: 42:23:4c:e2:4b:3d:a9:b5:f9:36:bd:be:13:4c:42:77:7a:b0: 03:97:7c:c7:e1:bb:4d:ab:95:83:a5:7b:d9:7d:39:61:16:e3: 70:32:26:55:ad:d5:75:44:b6:b7:f9:7d:f3:4a:b1:e9:03:37: 4b:5f:b5:a2:ba:e2:e0:11:60:ac:29:12:ef:76:1c:90:da:88: 90:a8:4c:c4:e7:7e:79:4a:2a:f1:a6:7a:a6:5f:b5:f0:0c:e2: 6b:d5:c2:fa:d7:d7:de:3b:13:c1:53:f4:94:69:98:da:20:b0: 15:3e:4c:a7:aa:e1:61:94:35:a6:7a:7f:18:5f:b7:f7:7e:ea: 34:04:c1:32:f4:f7:13:95:cf:1d:1c:fe:a8:7d:52:0c:78:d3: 0f:db:f2:9e:4e:40:0d:38:b5:ec:ed:0b:dd:05:2b:dc:76:18: 63:1c:ac:44 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3x2LwIRz4DvagZwl0Duw8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NjlhMmEzOTYzNWI3OTc0NzZmMWYxNjMzYWU4ZjI3YmYz M2I1MzMwHhcNMjYwMTAxMDQxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NTg4MmVhNjE2ZWFmY2U1NTk1ZWE5ZDI1NTczZGNjOThmOGNhZDY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3mqINJhX502iMrIm/5lw4YkigXZd 3T9yV/WKSZZFsJTpGOFcVHpm2j9WAJuUxr8SEbMHagZtQSoSQ07ld8CSMfAzVinE wOJzm04EGTwBqxvold98Lb3w6if//9Go5qDG7czl+gq+TuAWOf+cRUTz2PTBZaz5 60Kn8w3aF90lBQd0oY8U6P22pfdZrcThytElzVJZCLd8HTx0dVJgkD6jH69tS81s Cr7SLvYa/Psnmdl9EuQJBQpWvVnC5QjfJqONPk4JsRsBwX1qed7LfwzMf7GInjn/ 8ArwH9lVF7HvzD5i4ty6P8ySrbOA94uDvVJBUPvvrQ73yXgwwXxp6E2isQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGWILqYW6vzlWV6p0lVz3MmPjK1lMB8GA1UdIwQY MBaAFAlpoqOWNbeXR28fFjOujye/M7UzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1dtaW81WTF0NWRIYng4V002NlBKNzh6dFRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC82ZGI0MjctZjdkYy00ZWE5LWFlOTUt NDE0OTA4NzJmYzRlLzEvWllndXBoYnFfT1ZaWHFuU1ZYUGN5WS1NcldVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC82ZGI0MjctZjdkYy00ZWE5LWFlOTUtNDE0OTA4NzJmYzRl LzEvQ1dtaW81WTF0NWRIYng4V002NlBKNzh6dFRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAw1XJAwQA w1XNMA0GCSqGSIb3DQEBCwUAA4IBAQAzqL7XeuG8jhEw7+hJi6WFZdfN0zO0j/0g 2se3ToWL08PQy68yungeRn2wexUN5BlonTlEL65gW1dHKsG1OD/Wr9O2eUVIHWrs UtFGkqm/iKjB7NC1pPyzHa9CI0ziSz2ptfk2vb4TTEJ3erADl3zH4btNq5WDpXvZ fTlhFuNwMiZVrdV1RLa3+X3zSrHpAzdLX7WiuuLgEWCsKRLvdhyQ2oiQqEzE5355 SirxpnqmX7XwDOJr1cL619feOxPBU/SUaZjaILAVPkynquFhlDWmen8YX7f3fuo0 BMEy9PcTlc8dHP6ofVIMeNMP2/KeTkANOLXs7QvdBSvcdhhjHKxE -----END CERTIFICATE-----Generated at Wed Jan 21 11:14:24 2026 by rpki-client