This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/0f12f2-8a2b-4346-b6b6-2b78b19b5a87/1/ZMFhHdct1ay2ckIDWW29DVIUO9Y.roa File: ZMFhHdct1ay2ckIDWW29DVIUO9Y.roa (raw, json) Hash identifier: cULTButKO1Qr8LsfvEJV/B/XwfmJvmcWpfhHVwua4LI= Subject key identifier: 64:C1:61:1D:D7:2D:D5:AC:B6:72:42:03:59:6D:BD:0D:52:14:3B:D6 Certificate issuer: /CN=1a4dc22595fc1f588fbc4dde07c1c394998f33a7 Certificate serial: 019B7EA591F5339A41AF8E9AD1BA0A5BFE8B Authority key identifier: 1A:4D:C2:25:95:FC:1F:58:8F:BC:4D:DE:07:C1:C3:94:99:8F:33:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk3CJZX8H1iPvE3eB8HDlJmPM6c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/0f12f2-8a2b-4346-b6b6-2b78b19b5a87/1/ZMFhHdct1ay2ckIDWW29DVIUO9Y.roa Signing time: Fri 02 Jan 2026 12:18:58 +0000 ROA not before: Fri 02 Jan 2026 12:18:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59627 IP address blocks: 37.252.2.0/24 maxlen: 24 37.252.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/0f12f2-8a2b-4346-b6b6-2b78b19b5a87/1/Gk3CJZX8H1iPvE3eB8HDlJmPM6c.crl rsync://rpki.ripe.net/repository/DEFAULT/38/0f12f2-8a2b-4346-b6b6-2b78b19b5a87/1/Gk3CJZX8H1iPvE3eB8HDlJmPM6c.mft rsync://rpki.ripe.net/repository/DEFAULT/Gk3CJZX8H1iPvE3eB8HDlJmPM6c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:91:f5:33:9a:41:af:8e:9a:d1:ba:0a:5b:fe:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a4dc22595fc1f588fbc4dde07c1c394998f33a7 Validity Not Before: Jan 2 12:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=64c1611dd72dd5acb6724203596dbd0d52143bd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ad:e9:57:1b:a6:2f:31:21:73:69:0e:93:4a: ac:9e:43:07:e4:e3:9d:ae:e4:85:35:4b:7f:51:dc: eb:6d:c8:20:7c:bd:37:2a:0a:97:be:a4:34:fa:e4: cb:4c:f4:8e:c3:b7:58:08:34:0b:5c:4c:e7:23:17: 49:70:8a:e1:92:89:e0:4f:4b:64:6d:bd:a9:dc:7a: 08:19:79:5f:a1:b9:17:65:67:74:7b:5d:df:f0:e6: 69:3c:52:ca:25:8f:63:86:bd:96:78:bc:aa:6c:8a: c7:e6:6a:4b:27:b6:1e:93:02:ee:22:fb:ed:e8:9d: 8e:c5:3e:09:83:9e:30:64:7d:aa:8d:28:98:63:b8: 90:52:5a:e4:1a:5b:84:0e:99:dc:10:6c:79:a2:c2: f2:b9:00:98:06:91:ca:2d:24:c7:04:bc:3b:50:c2: e9:be:7c:df:10:7e:eb:64:b6:8f:6b:d0:ae:99:92: d5:12:a9:0c:bf:c6:e3:c4:d9:5e:4d:02:9f:e8:0e: bb:53:2e:d9:f8:03:10:a2:de:84:64:9c:5f:70:64: d0:f5:75:f2:aa:1b:86:47:b4:3c:d1:ea:b4:c3:1e: 9f:51:78:6d:07:c4:7b:b1:6d:15:d7:a4:dc:39:10: bf:61:2c:05:b8:4a:19:65:de:0b:c0:f4:5b:06:eb: cc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C1:61:1D:D7:2D:D5:AC:B6:72:42:03:59:6D:BD:0D:52:14:3B:D6 X509v3 Authority Key Identifier: keyid:1A:4D:C2:25:95:FC:1F:58:8F:BC:4D:DE:07:C1:C3:94:99:8F:33:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk3CJZX8H1iPvE3eB8HDlJmPM6c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/0f12f2-8a2b-4346-b6b6-2b78b19b5a87/1/ZMFhHdct1ay2ckIDWW29DVIUO9Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/0f12f2-8a2b-4346-b6b6-2b78b19b5a87/1/Gk3CJZX8H1iPvE3eB8HDlJmPM6c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.252.2.0/24 37.252.12.0/24 Signature Algorithm: sha256WithRSAEncryption 02:49:8b:3b:50:e3:34:e9:78:27:f6:04:0d:b9:4a:d5:a4:9f: 92:71:ec:4b:15:f6:57:4d:7b:74:ed:f0:e1:49:06:20:22:97: e5:1c:50:d8:f6:73:b2:12:81:88:66:52:bf:3e:3e:40:ea:59: ef:80:48:ca:5d:16:58:d0:af:c5:b9:ad:d2:99:19:ff:07:bf: e4:61:cd:9e:6c:1e:fe:2a:ab:4a:a2:af:f1:03:c8:85:47:68: 88:d6:15:92:a7:b8:3e:17:e0:42:f9:20:f9:32:97:97:c4:c9: ed:a4:bb:35:ee:4b:71:da:fe:69:71:b0:df:e7:0b:2d:d0:64: ae:f6:0b:d3:68:b8:84:59:29:27:d4:f4:e1:32:81:9a:8a:8e: 9a:cd:a6:42:a1:11:c4:29:ad:e5:9f:08:76:f2:94:a8:bb:de: 87:0c:bd:42:14:12:c5:89:3e:dc:c9:39:af:cd:fe:93:13:ab: 37:a3:fd:d6:41:c0:da:3c:48:f1:7d:33:ef:63:a3:ab:c2:3b: e4:ff:dc:7a:46:34:c8:55:37:3b:c1:58:7e:2d:81:09:3e:89: 13:72:27:5d:d9:e6:b3:0d:fd:10:f9:34:66:9d:0b:b9:33:0a: 5f:da:cf:cd:1a:4b:b0:71:17:16:37:25:7b:ef:d8:bd:74:3c: 69:a4:4f:6e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+pZH1M5pBr46a0boKW/6LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhNGRjMjI1OTVmYzFmNTg4ZmJjNGRkZTA3YzFjMzk0OTk4 ZjMzYTcwHhcNMjYwMTAyMTIxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NGMxNjExZGQ3MmRkNWFjYjY3MjQyMDM1OTZkYmQwZDUyMTQzYmQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApK3pVxumLzEhc2kOk0qsnkMH5OOd ruSFNUt/UdzrbcggfL03KgqXvqQ0+uTLTPSOw7dYCDQLXEznIxdJcIrhkongT0tk bb2p3HoIGXlfobkXZWd0e13f8OZpPFLKJY9jhr2WeLyqbIrH5mpLJ7YekwLuIvvt 6J2OxT4Jg54wZH2qjSiYY7iQUlrkGluEDpncEGx5osLyuQCYBpHKLSTHBLw7UMLp vnzfEH7rZLaPa9CumZLVEqkMv8bjxNleTQKf6A67Uy7Z+AMQot6EZJxfcGTQ9XXy qhuGR7Q80eq0wx6fUXhtB8R7sW0V16TcORC/YSwFuEoZZd4LwPRbBuvMmQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGTBYR3XLdWstnJCA1ltvQ1SFDvWMB8GA1UdIwQY MBaAFBpNwiWV/B9Yj7xN3gfBw5SZjzOnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR2szQ0paWDhIMWlQdkUzZUI4SERsSm1QTTZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8wZjEyZjItOGEyYi00MzQ2LWI2YjYt MmI3OGIxOWI1YTg3LzEvWk1GaEhkY3QxYXkyY2tJRFdXMjlEVklVTzlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8wZjEyZjItOGEyYi00MzQ2LWI2YjYtMmI3OGIxOWI1YTg3 LzEvR2szQ0paWDhIMWlQdkUzZUI4SERsSm1QTTZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAJfwCAwQA JfwMMA0GCSqGSIb3DQEBCwUAA4IBAQACSYs7UOM06Xgn9gQNuUrVpJ+ScexLFfZX TXt07fDhSQYgIpflHFDY9nOyEoGIZlK/Pj5A6lnvgEjKXRZY0K/Fua3SmRn/B7/k Yc2ebB7+KqtKoq/xA8iFR2iI1hWSp7g+F+BC+SD5MpeXxMntpLs17ktx2v5pcbDf 5wst0GSu9gvTaLiEWSkn1PThMoGaio6azaZCoRHEKa3lnwh28pSou96HDL1CFBLF iT7cyTmvzf6TE6s3o/3WQcDaPEjxfTPvY6Orwjvk/9x6RjTIVTc7wVh+LYEJPokT cidd2eazDf0Q+TRmnQu5Mwpf2s/NGkuwcRcWNyV779i9dDxppE9u -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:14 2026 by rpki-client