This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/ZOocGxfRUY-ZdQMbvLZ_NjXdVTk.roa File: ZOocGxfRUY-ZdQMbvLZ_NjXdVTk.roa (raw, json) Hash identifier: GrEXKkEmP7szfXCEYL1TpbMhWg/OeEWq9BaM4Ey1R7Q= Subject key identifier: 64:EA:1C:1B:17:D1:51:8F:99:75:03:1B:BC:B6:7F:36:35:DD:55:39 Certificate issuer: /CN=4ee52752a81bdfe0a401f9a261d79fee4b617115 Certificate serial: 019B7F15B352523E0DB51565A6C5AFAF44BC Authority key identifier: 4E:E5:27:52:A8:1B:DF:E0:A4:01:F9:A2:61:D7:9F:EE:4B:61:71:15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuUnUqgb3-CkAfmiYdef7kthcRU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/ZOocGxfRUY-ZdQMbvLZ_NjXdVTk.roa Signing time: Fri 02 Jan 2026 14:21:27 +0000 ROA not before: Fri 02 Jan 2026 14:21:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43623 IP address blocks: 149.219.8.0/23 maxlen: 24 149.219.249.0/24 maxlen: 24 149.219.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/TuUnUqgb3-CkAfmiYdef7kthcRU.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/TuUnUqgb3-CkAfmiYdef7kthcRU.mft rsync://rpki.ripe.net/repository/DEFAULT/TuUnUqgb3-CkAfmiYdef7kthcRU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:b3:52:52:3e:0d:b5:15:65:a6:c5:af:af:44:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ee52752a81bdfe0a401f9a261d79fee4b617115 Validity Not Before: Jan 2 14:21:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=64ea1c1b17d1518f9975031bbcb67f3635dd5539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a7:59:4e:42:b8:29:62:07:cb:23:11:4f:2a: 88:09:37:28:98:50:8c:ac:64:56:ff:ae:f6:2e:2c: 16:32:57:7c:a7:ae:bc:c3:c1:7e:b6:04:05:0a:73: 56:3d:f2:bb:32:12:9d:79:1b:7e:b2:d8:0f:59:5d: 14:58:c4:fa:57:1d:98:d8:c8:d3:87:80:ca:21:cf: 24:36:f3:f7:bc:f5:41:6c:8b:42:a2:b9:71:81:b1: 6f:f3:80:36:46:5f:ae:13:96:17:a3:3f:be:3e:78: 95:ac:5d:83:1a:43:34:69:ac:7c:4f:90:b3:8c:3c: 0a:5e:2e:7e:de:3e:1f:6c:fb:56:0b:30:83:ad:94: a5:f5:14:16:d3:a7:2a:58:0c:8f:fe:df:54:cf:42: 72:a2:e9:54:59:fd:46:ce:6d:a9:08:e0:e7:07:e3: a8:ca:21:75:10:a3:2b:96:4b:40:74:37:c1:88:9b: 60:aa:71:de:cc:22:8d:34:6d:da:09:7b:36:0f:b7: ad:87:dc:10:54:30:ef:6c:48:d1:2d:8f:35:b1:f3: dd:07:be:69:f8:2b:e2:84:85:df:18:d6:3a:3d:b6: 1b:50:23:2b:89:5e:14:fc:8a:0d:c9:38:c5:83:32: f6:52:8b:ca:c4:02:09:9f:4f:05:a3:1c:75:86:9a: 2a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:EA:1C:1B:17:D1:51:8F:99:75:03:1B:BC:B6:7F:36:35:DD:55:39 X509v3 Authority Key Identifier: keyid:4E:E5:27:52:A8:1B:DF:E0:A4:01:F9:A2:61:D7:9F:EE:4B:61:71:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuUnUqgb3-CkAfmiYdef7kthcRU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/ZOocGxfRUY-ZdQMbvLZ_NjXdVTk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/TuUnUqgb3-CkAfmiYdef7kthcRU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.219.8.0/23 149.219.249.0-149.219.250.255 Signature Algorithm: sha256WithRSAEncryption 27:65:07:f2:11:a7:8d:02:9a:23:51:93:6d:91:57:be:8d:49: 5a:77:17:70:ba:d4:7b:69:7d:14:be:8f:a7:60:b4:ab:22:6e: 85:6b:00:3a:3b:66:d0:fe:1a:7b:d7:43:42:01:6c:1f:e4:a0: bc:9a:f7:bd:43:f3:3c:e1:dc:43:78:7f:8d:e8:5e:f9:b1:aa: 2e:c9:14:7e:53:e8:dc:f6:d6:50:c8:98:3e:e6:ea:48:7c:ca: 90:96:d7:bc:bf:52:1c:2c:79:10:63:dd:92:b4:d3:c2:26:61: b4:59:a6:b1:e7:72:fb:9d:1d:40:75:69:10:ab:aa:40:14:bb: 64:0b:c9:35:41:58:90:e7:e1:5e:7f:13:07:d5:b0:12:4e:19: 7b:4b:c4:b9:84:1e:79:95:75:20:5b:c7:42:0f:19:d0:0f:ff: 95:53:a5:77:6f:fa:ce:5c:be:f3:81:2d:c6:c6:cf:23:b4:0d: 7f:1f:43:eb:8c:da:e0:dc:c9:8b:61:fd:2d:b4:dc:ab:9b:6c: 45:31:1e:b4:a0:ca:6d:6c:1c:0f:22:cc:d5:af:dd:a3:7d:4a: c4:1b:09:8b:c4:74:c0:cb:01:a7:8a:88:dd:ba:59:c9:0b:9b: 40:ad:37:54:3e:37:04:48:09:de:d7:ff:df:cc:4c:44:13:ab: d7:d7:dd:28 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt/FbNSUj4NtRVlpsWvr0S8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlZTUyNzUyYTgxYmRmZTBhNDAxZjlhMjYxZDc5ZmVlNGI2 MTcxMTUwHhcNMjYwMTAyMTQyMTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NGVhMWMxYjE3ZDE1MThmOTk3NTAzMWJiY2I2N2YzNjM1ZGQ1NTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxKdZTkK4KWIHyyMRTyqICTcomFCM rGRW/672LiwWMld8p668w8F+tgQFCnNWPfK7MhKdeRt+stgPWV0UWMT6Vx2Y2MjT h4DKIc8kNvP3vPVBbItCorlxgbFv84A2Rl+uE5YXoz++PniVrF2DGkM0aax8T5Cz jDwKXi5+3j4fbPtWCzCDrZSl9RQW06cqWAyP/t9Uz0JyoulUWf1Gzm2pCODnB+Oo yiF1EKMrlktAdDfBiJtgqnHezCKNNG3aCXs2D7eth9wQVDDvbEjRLY81sfPdB75p +CvihIXfGNY6PbYbUCMriV4U/IoNyTjFgzL2UovKxAIJn08Foxx1hpoqEwIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFGTqHBsX0VGPmXUDG7y2fzY13VU5MB8GA1UdIwQY MBaAFE7lJ1KoG9/gpAH5omHXn+5LYXEVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHVVblVxZ2IzLUNrQWZtaVlkZWY3a3RoY1JVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8zMWUwZDQtMzVjZS00ZDAyLTk3MzQt ZDc4ZmI5N2Y5ODI4LzEvWk9vY0d4ZlJVWS1aZFFNYnZMWl9OalhkVlRrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy8zMWUwZDQtMzVjZS00ZDAyLTk3MzQtZDc4ZmI5N2Y5ODI4 LzEvVHVVblVxZ2IzLUNrQWZtaVlkZWY3a3RoY1JVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQBldsIMAwD BACV2/kDBACV2/owDQYJKoZIhvcNAQELBQADggEBACdlB/IRp40CmiNRk22RV76N SVp3F3C61HtpfRS+j6dgtKsiboVrADo7ZtD+GnvXQ0IBbB/koLya971D8zzh3EN4 f43oXvmxqi7JFH5T6Nz21lDImD7m6kh8ypCW17y/UhwseRBj3ZK008ImYbRZprHn cvudHUB1aRCrqkAUu2QLyTVBWJDn4V5/EwfVsBJOGXtLxLmEHnmVdSBbx0IPGdAP /5VTpXdv+s5cvvOBLcbGzyO0DX8fQ+uM2uDcyYth/S203KubbEUxHrSgym1sHA8i zNWv3aN9SsQbCYvEdMDLAaeKiN26WckLm0CtN1Q+NwRICd7X/9/MTEQTq9fX3Sg= -----END CERTIFICATE-----Generated at Mon Feb 9 22:32:20 2026 by rpki-client