This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/ZOMeU4IshtUmjEbSS88xo1RuAms.roa File: ZOMeU4IshtUmjEbSS88xo1RuAms.roa (raw, json) Hash identifier: QfLlvOP77Dc3xNfxz6UcLcWmqnbBYYFTUyNVPGL3f38= Subject key identifier: 64:E3:1E:53:82:2C:86:D5:26:8C:46:D2:4B:CF:31:A3:54:6E:02:6B Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171 Certificate serial: 019B7F14AEB9CAE57919C79C7B3EBB965C27 Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/ZOMeU4IshtUmjEbSS88xo1RuAms.roa Signing time: Fri 02 Jan 2026 14:20:20 +0000 ROA not before: Fri 02 Jan 2026 14:20:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30633 IP address blocks: 92.71.32.0/23 maxlen: 24 92.71.38.0/23 maxlen: 24 92.71.46.0/23 maxlen: 24 92.71.64.0/23 maxlen: 24 92.71.96.0/23 maxlen: 24 92.71.126.0/23 maxlen: 24 213.201.240.0/23 maxlen: 24 213.201.248.0/23 maxlen: 24 213.201.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.mft rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:ae:b9:ca:e5:79:19:c7:9c:7b:3e:bb:96:5c:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171 Validity Not Before: Jan 2 14:20:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=64e31e53822c86d5268c46d24bcf31a3546e026b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:81:d7:69:3c:b3:9c:ac:ab:2e:8e:da:1a:5f: 81:ec:91:45:fc:14:41:87:eb:5f:74:58:af:b5:53: 45:35:06:d3:fb:32:0a:ec:b0:b9:34:a2:58:10:ab: d8:5e:37:f8:6b:50:a1:a6:b9:c6:ba:0e:d8:2f:fa: c9:df:a0:ba:7b:72:ed:cb:0e:f9:be:b6:46:18:ad: d9:f6:a0:26:31:55:ec:1a:75:b4:58:eb:54:16:59: 33:5b:21:ce:81:7e:38:9b:a7:a9:cb:b1:71:0f:48: cc:61:f7:eb:3e:86:d7:87:ed:91:18:18:c5:dd:08: fa:27:0a:30:e2:40:0b:69:d3:b9:3b:61:6c:07:93: fd:42:ff:fc:ab:50:2c:a5:55:50:1e:d9:3a:01:b2: 02:a6:ec:9a:e1:dd:b4:cb:60:da:cb:ba:78:a9:b3: bb:b9:5f:92:2a:0b:e1:20:3b:4a:e2:8d:c1:ca:57: f7:df:28:fd:29:8a:77:b1:7c:7e:54:52:d4:b9:b9: fd:bc:58:69:ef:9b:f0:a4:1a:7d:6e:2b:dc:1a:f1: 9a:5f:a1:fb:11:7b:e6:2a:98:fe:21:da:fa:3e:25: 3d:6f:90:53:5d:7f:65:ab:0f:25:51:cd:ac:63:8b: 3d:66:bc:ff:92:57:1e:02:a2:0e:4f:7a:16:3b:a3: 21:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:E3:1E:53:82:2C:86:D5:26:8C:46:D2:4B:CF:31:A3:54:6E:02:6B X509v3 Authority Key Identifier: keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/ZOMeU4IshtUmjEbSS88xo1RuAms.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.71.32.0/23 92.71.38.0/23 92.71.46.0/23 92.71.64.0/23 92.71.96.0/23 92.71.126.0/23 213.201.240.0/23 213.201.248.0/23 213.201.254.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:e3:87:f8:32:db:e6:58:24:d3:86:69:c1:9b:ee:7e:50:c9: 7a:c6:29:6f:18:1c:a1:e2:e3:49:4d:e8:da:ec:23:b9:5b:cc: 9d:fe:59:4c:37:5b:cc:d0:0c:6c:d3:0a:e8:a4:81:85:d1:13: 78:e1:c6:ac:9d:42:b8:d7:8a:f0:54:19:69:34:1b:f2:4a:48: 22:b0:02:11:f2:57:9c:f0:da:46:63:41:dc:53:20:18:96:83: ea:f2:c8:80:49:dd:e8:fb:3c:02:b6:92:54:57:6c:60:ea:eb: 5c:c3:f0:97:7a:dd:9b:a9:ee:b6:74:9f:09:6d:56:11:d1:6c: 4b:56:a5:0b:29:80:ca:41:25:06:ff:cf:41:73:4e:52:d7:c7: 4d:9e:6e:09:cf:ec:2c:40:ce:57:ef:6d:52:c5:60:cf:57:8d: 6d:79:9a:40:f1:0d:0b:18:3b:a6:7d:af:7f:3b:8b:d7:78:dc: 98:79:2a:51:80:9e:53:41:5e:1e:fe:a2:97:34:5e:11:b3:f6: bb:c3:8a:36:de:0d:b0:ef:5e:e6:5a:f1:24:a3:33:a1:e1:2c: 97:6a:a8:b0:e0:9a:4f:7f:74:2a:73:0d:a2:5f:c0:0a:40:a1: 1b:de:06:66:41:32:e9:38:d8:d4:c4:c4:b9:3c:9c:84:52:6a: 81:94:d5:6e -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISAZt/FK65yuV5Gcecez67llwnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3OWRiZmRmNGMyMGJkYWU4ZDYxMTg1NjZlY2U3NjQ0NGU0 NmQxNzEwHhcNMjYwMTAyMTQyMDIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NGUzMWU1MzgyMmM4NmQ1MjY4YzQ2ZDI0YmNmMzFhMzU0NmUwMjZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn4HXaTyznKyrLo7aGl+B7JFF/BRB h+tfdFivtVNFNQbT+zIK7LC5NKJYEKvYXjf4a1ChprnGug7YL/rJ36C6e3Ltyw75 vrZGGK3Z9qAmMVXsGnW0WOtUFlkzWyHOgX44m6epy7FxD0jMYffrPobXh+2RGBjF 3Qj6Jwow4kALadO5O2FsB5P9Qv/8q1AspVVQHtk6AbICpuya4d20y2Day7p4qbO7 uV+SKgvhIDtK4o3Bylf33yj9KYp3sXx+VFLUubn9vFhp75vwpBp9bivcGvGaX6H7 EXvmKpj+Idr6PiU9b5BTXX9lqw8lUc2sY4s9Zrz/klceAqIOT3oWO6MhoQIDAQAB o4ICOTCCAjUwHQYDVR0OBBYEFGTjHlOCLIbVJoxG0kvPMaNUbgJrMB8GA1UdIwQY MBaAFCedv99MIL2ujWEYVm7OdkRORtFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEt MGNmMTA5M2Q0NTQ4LzEvWk9NZVU0SXNodFVtakViU1M4OHhvMVJ1QW1zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEtMGNmMTA5M2Q0NTQ4 LzEvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQBXEcgAwQB XEcmAwQBXEcuAwQBXEdAAwQBXEdgAwQBXEd+AwQB1cnwAwQB1cn4AwQB1cn+MA0G CSqGSIb3DQEBCwUAA4IBAQCO44f4MtvmWCTThmnBm+5+UMl6xilvGByh4uNJTeja 7CO5W8yd/llMN1vM0Axs0wropIGF0RN44casnUK414rwVBlpNBvySkgisAIR8lec 8NpGY0HcUyAYloPq8siASd3o+zwCtpJUV2xg6utcw/CXet2bqe62dJ8JbVYR0WxL VqULKYDKQSUG/89Bc05S18dNnm4Jz+wsQM5X721SxWDPV41teZpA8Q0LGDumfa9/ O4vXeNyYeSpRgJ5TQV4e/qKXNF4Rs/a7w4o23g2w717mWvEkozOh4SyXaqiw4JpP f3Qqcw2iX8AKQKEb3gZmQTLpONjUxMS5PJyEUmqBlNVu -----END CERTIFICATE-----Generated at Tue Jan 20 12:27:23 2026 by rpki-client