This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/1f01e3-77d3-4cf7-aea8-122feecde3ea/1/sZ_wJd4obInjvojttLVzF1c-iho.roa File: sZ_wJd4obInjvojttLVzF1c-iho.roa (raw, json) Hash identifier: 3arQ7GDjRVulm35+QdBtPgi507F8KwHTfe7c2qEyJ4o= Subject key identifier: B1:9F:F0:25:DE:28:6C:89:E3:BE:88:ED:B4:B5:73:17:57:3E:8A:1A Certificate issuer: /CN=e7fd9909d16baf11cb958c8d274e24ec9947422f Certificate serial: 019B7A5B6DB8C8DA7A604B3FB25B087605BD Authority key identifier: E7:FD:99:09:D1:6B:AF:11:CB:95:8C:8D:27:4E:24:EC:99:47:42:2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_2ZCdFrrxHLlYyNJ04k7JlHQi8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/1f01e3-77d3-4cf7-aea8-122feecde3ea/1/sZ_wJd4obInjvojttLVzF1c-iho.roa Signing time: Thu 01 Jan 2026 16:19:30 +0000 ROA not before: Thu 01 Jan 2026 16:19:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60167 IP address blocks: 185.192.48.0/22 maxlen: 22 2a0a:22c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/1f01e3-77d3-4cf7-aea8-122feecde3ea/1/5_2ZCdFrrxHLlYyNJ04k7JlHQi8.crl rsync://rpki.ripe.net/repository/DEFAULT/31/1f01e3-77d3-4cf7-aea8-122feecde3ea/1/5_2ZCdFrrxHLlYyNJ04k7JlHQi8.mft rsync://rpki.ripe.net/repository/DEFAULT/5_2ZCdFrrxHLlYyNJ04k7JlHQi8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:6d:b8:c8:da:7a:60:4b:3f:b2:5b:08:76:05:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e7fd9909d16baf11cb958c8d274e24ec9947422f Validity Not Before: Jan 1 16:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b19ff025de286c89e3be88edb4b57317573e8a1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:9b:de:10:18:90:7b:ad:36:3c:8b:d9:5e:d4: b2:e1:3d:b8:18:5a:09:2a:93:73:a5:50:dc:e7:62: fb:30:bc:af:74:2a:1e:66:a0:ce:d6:bb:08:41:12: ac:96:b6:68:5d:0b:91:45:b4:88:e2:9c:b8:9e:8e: 1b:74:95:b0:78:77:1e:66:a7:c4:54:0c:08:a6:a9: 9c:79:7e:f8:1b:1e:58:ea:b7:9c:48:77:75:25:5c: 1e:c8:fd:01:d7:2a:42:c2:6c:64:2d:c6:39:3d:fc: 92:02:81:34:4d:26:c4:a5:23:72:a3:36:ef:1c:45: 7f:8e:5d:71:a8:ee:af:5d:1d:cf:d5:6f:98:17:bb: 0b:c8:3f:33:b9:ef:6b:a6:98:f6:82:25:33:43:c5: 66:38:6d:78:7c:fa:e3:eb:4c:69:27:6c:f9:91:40: d9:63:aa:47:35:e0:49:8f:b8:dd:12:d6:92:c1:a3: 9a:45:8e:c5:30:b3:c1:5c:fa:54:3d:2b:11:68:7f: a5:8c:e3:03:bd:fc:ba:3e:b0:5b:f6:27:1f:1c:64: ed:e2:b0:47:a9:df:1f:fe:09:46:f2:9f:79:4e:3f: 75:69:82:cf:bf:2d:f2:8b:1f:c0:fe:ff:b2:0c:dc: 59:90:6a:fd:33:d6:50:a9:b6:7e:dd:e2:36:e9:ec: cc:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:9F:F0:25:DE:28:6C:89:E3:BE:88:ED:B4:B5:73:17:57:3E:8A:1A X509v3 Authority Key Identifier: keyid:E7:FD:99:09:D1:6B:AF:11:CB:95:8C:8D:27:4E:24:EC:99:47:42:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_2ZCdFrrxHLlYyNJ04k7JlHQi8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/1f01e3-77d3-4cf7-aea8-122feecde3ea/1/sZ_wJd4obInjvojttLVzF1c-iho.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/1f01e3-77d3-4cf7-aea8-122feecde3ea/1/5_2ZCdFrrxHLlYyNJ04k7JlHQi8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.192.48.0/22 IPv6: 2a0a:22c0::/29 Signature Algorithm: sha256WithRSAEncryption 08:d7:2f:08:db:66:55:43:a3:25:28:55:0b:ba:c2:d3:47:05: 7b:1f:6b:c0:78:c3:57:6c:6a:77:3a:e0:8c:e0:88:84:2b:04: 0d:37:a7:05:fd:23:8f:57:ef:f9:27:ad:95:c5:ce:5f:02:3e: 69:1f:6b:02:20:88:bd:c1:68:b9:ca:d7:a2:a3:2a:6f:85:03: 0b:4b:d8:c5:9f:ab:ff:29:11:27:5b:74:f4:03:2f:9b:15:c9: 5c:f5:06:ab:1b:e6:c3:fa:ac:d0:5c:e4:81:39:8d:14:cb:74: 41:68:e9:6e:07:7d:de:7f:1f:dd:0e:7f:e0:4b:52:b8:8f:b6: 38:49:58:fb:de:cd:d4:97:a2:07:e5:72:2c:d4:a0:0f:e1:db: 87:22:c8:bc:48:ec:a3:57:ac:c3:a8:3b:1d:ab:c4:4f:d2:86: 7e:ae:d7:1a:dc:14:1b:11:3c:fd:cd:97:d2:1c:4d:fb:aa:3f: 13:04:5e:7b:b6:ff:c7:7c:55:e0:86:14:9d:bb:fe:39:d6:d6: f1:d1:f6:1a:a6:8a:93:58:8a:8a:7f:03:19:f6:e9:f2:33:47: d3:26:e9:27:e5:fa:4a:83:c3:1d:2d:93:a6:29:81:0a:d0:88: fc:ed:03:1a:9d:1d:6b:aa:be:c2:4c:77:c3:0d:62:76:b4:37: 16:d7:a4:e2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6W224yNp6YEs/slsIdgW9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3ZmQ5OTA5ZDE2YmFmMTFjYjk1OGM4ZDI3NGUyNGVjOTk0 NzQyMmYwHhcNMjYwMTAxMTYxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTlmZjAyNWRlMjg2Yzg5ZTNiZTg4ZWRiNGI1NzMxNzU3M2U4YTFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi5veEBiQe602PIvZXtSy4T24GFoJ KpNzpVDc52L7MLyvdCoeZqDO1rsIQRKslrZoXQuRRbSI4py4no4bdJWweHceZqfE VAwIpqmceX74Gx5Y6recSHd1JVweyP0B1ypCwmxkLcY5PfySAoE0TSbEpSNyozbv HEV/jl1xqO6vXR3P1W+YF7sLyD8zue9rppj2giUzQ8VmOG14fPrj60xpJ2z5kUDZ Y6pHNeBJj7jdEtaSwaOaRY7FMLPBXPpUPSsRaH+ljOMDvfy6PrBb9icfHGTt4rBH qd8f/glG8p95Tj91aYLPvy3yix/A/v+yDNxZkGr9M9ZQqbZ+3eI26ezM1wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLGf8CXeKGyJ476I7bS1cxdXPooaMB8GA1UdIwQY MBaAFOf9mQnRa68Ry5WMjSdOJOyZR0IvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNV8yWkNkRnJyeEhMbFl5TkowNGs3SmxIUWk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8xZjAxZTMtNzdkMy00Y2Y3LWFlYTgt MTIyZmVlY2RlM2VhLzEvc1pfd0pkNG9iSW5qdm9qdHRMVnpGMWMtaWhvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS8xZjAxZTMtNzdkMy00Y2Y3LWFlYTgtMTIyZmVlY2RlM2Vh LzEvNV8yWkNkRnJyeEhMbFl5TkowNGs3SmxIUWk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCucAwMA0E AgACMAcDBQMqCiLAMA0GCSqGSIb3DQEBCwUAA4IBAQAI1y8I22ZVQ6MlKFULusLT RwV7H2vAeMNXbGp3OuCM4IiEKwQNN6cF/SOPV+/5J62Vxc5fAj5pH2sCIIi9wWi5 yteioypvhQMLS9jFn6v/KREnW3T0Ay+bFclc9QarG+bD+qzQXOSBOY0Uy3RBaOlu B33efx/dDn/gS1K4j7Y4SVj73s3Ul6IH5XIs1KAP4duHIsi8SOyjV6zDqDsdq8RP 0oZ+rtca3BQbETz9zZfSHE37qj8TBF57tv/HfFXghhSdu/451tbx0fYapoqTWIqK fwMZ9unyM0fTJukn5fpKg8MdLZOmKYEK0Ij87QManR1rqr7CTHfDDWJ2tDcW16Ti -----END CERTIFICATE-----Generated at Tue Feb 10 03:10:17 2026 by rpki-client