This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/ZEMqj3tb1ybXDKr5XlxXEL_WdLM.roa File: ZEMqj3tb1ybXDKr5XlxXEL_WdLM.roa (raw, json) Hash identifier: rTSw7EgVmlH/cwLSzDAynJz/mTmMnyEjwe5X2k2ZIyU= Subject key identifier: 64:43:2A:8F:7B:5B:D7:26:D7:0C:AA:F9:5E:5C:57:10:BF:D6:74:B3 Certificate issuer: /CN=92503aaf126af7cd031cac3ce1e398c174b82e02 Certificate serial: 019B79ED455A543BFDD0DC9A6675DF70DCCA Authority key identifier: 92:50:3A:AF:12:6A:F7:CD:03:1C:AC:3C:E1:E3:98:C1:74:B8:2E:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/ZEMqj3tb1ybXDKr5XlxXEL_WdLM.roa Signing time: Thu 01 Jan 2026 14:19:11 +0000 ROA not before: Thu 01 Jan 2026 14:19:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43805 IP address blocks: 194.107.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.mft rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:45:5a:54:3b:fd:d0:dc:9a:66:75:df:70:dc:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92503aaf126af7cd031cac3ce1e398c174b82e02 Validity Not Before: Jan 1 14:19:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=64432a8f7b5bd726d70caaf95e5c5710bfd674b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ce:82:05:29:83:1d:d3:1a:9a:b8:41:e7:40: a8:7b:54:60:fb:18:f8:ee:95:2c:83:cd:86:33:6c: 7d:54:95:cc:5a:c8:1f:00:b5:31:32:d8:e1:e4:b0: 15:91:7c:a0:e1:d1:67:7e:bd:88:a2:8d:b7:b6:22: 33:ad:50:bf:f5:22:14:42:89:9f:aa:c3:71:5e:5e: b2:d1:c5:64:a9:15:f5:c3:96:c2:f8:20:b0:14:92: 1f:c3:88:01:7d:87:55:03:45:9d:b0:cd:fd:46:62: 55:a0:84:a2:af:2a:ac:99:57:f6:f1:4c:e0:1c:73: 24:a8:01:b6:ed:52:80:6f:74:d4:c6:86:cc:37:c2: 81:33:30:c9:28:21:ca:c5:d5:30:9c:5a:fb:2e:95: 58:8c:2c:b8:a6:82:63:ca:72:b1:e1:ce:06:7d:f0: 52:50:0a:9c:d9:96:c9:01:b2:a9:04:2b:48:f7:d1: f8:fd:ff:20:2c:bd:78:2b:bd:6d:d2:41:c1:92:21: 53:74:09:41:86:ec:b8:4b:1f:da:47:cc:7b:c2:00: bf:25:86:b3:da:cc:ae:6a:d4:96:2e:b8:61:2f:62: 59:44:23:e6:7f:a2:ee:10:26:76:d7:d7:c9:37:df: 3e:be:0b:dc:fc:b0:b1:25:f1:be:b1:b7:55:ab:5d: e4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:43:2A:8F:7B:5B:D7:26:D7:0C:AA:F9:5E:5C:57:10:BF:D6:74:B3 X509v3 Authority Key Identifier: keyid:92:50:3A:AF:12:6A:F7:CD:03:1C:AC:3C:E1:E3:98:C1:74:B8:2E:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/ZEMqj3tb1ybXDKr5XlxXEL_WdLM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.107.23.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:3b:ae:57:8c:6d:61:b1:4a:61:1f:9a:9e:76:ba:e7:aa:f4: 9d:03:18:4d:2e:68:87:03:7e:19:d3:3e:55:c5:bb:e6:93:89: 07:40:7e:27:60:d7:16:dc:2c:48:9e:6f:ba:95:dc:98:69:f2: 71:58:12:00:7b:bf:5b:96:9e:42:e6:55:c3:fb:5d:38:86:b8: 86:5d:bc:2c:8a:43:21:44:70:59:fe:21:82:c2:04:23:7a:96: ee:15:15:c2:f7:cc:50:a1:59:b1:c0:0b:ec:56:fe:df:12:4f: a9:e8:87:6d:db:47:f4:98:ae:9e:a6:41:75:5e:67:02:f9:b7: 18:26:26:9f:dd:8c:eb:91:45:be:cd:47:a7:8d:bf:df:3a:54: f3:a3:50:46:76:4c:8b:ea:cc:d1:a5:7d:13:47:ed:ad:ee:f4: be:71:d7:b1:22:74:fe:3b:30:65:1c:2a:80:aa:1d:7b:c1:cd: a2:46:b9:f4:ce:1b:60:98:98:56:46:e0:bf:35:70:ad:ea:47: 1e:03:da:25:f6:90:d6:b7:4c:6c:14:09:53:ad:db:ad:61:3c: 96:51:08:a1:9d:53:28:ad:a6:a8:64:55:40:26:3f:49:99:91: 2e:de:cc:23:e8:37:db:b7:3c:40:2b:29:d7:d5:22:7f:b3:52: 38:3d:c9:01 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57UVaVDv90NyaZnXfcNzKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNTAzYWFmMTI2YWY3Y2QwMzFjYWMzY2UxZTM5OGMxNzRi ODJlMDIwHhcNMjYwMTAxMTQxOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NDQzMmE4ZjdiNWJkNzI2ZDcwY2FhZjk1ZTVjNTcxMGJmZDY3NGIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAos6CBSmDHdMamrhB50Coe1Rg+xj4 7pUsg82GM2x9VJXMWsgfALUxMtjh5LAVkXyg4dFnfr2Ioo23tiIzrVC/9SIUQomf qsNxXl6y0cVkqRX1w5bC+CCwFJIfw4gBfYdVA0WdsM39RmJVoISiryqsmVf28Uzg HHMkqAG27VKAb3TUxobMN8KBMzDJKCHKxdUwnFr7LpVYjCy4poJjynKx4c4GffBS UAqc2ZbJAbKpBCtI99H4/f8gLL14K71t0kHBkiFTdAlBhuy4Sx/aR8x7wgC/JYaz 2syuatSWLrhhL2JZRCPmf6LuECZ219fJN98+vgvc/LCxJfG+sbdVq13ktwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGRDKo97W9cm1wyq+V5cVxC/1nSzMB8GA1UdIwQY MBaAFJJQOq8SavfNAxysPOHjmMF0uC4CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2xBNnJ4SnE5ODBESEt3ODRlT1l3WFM0TGdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83OWJkYjAtYmQ1Yy00ODAwLTk3Njgt YWZkMTI2OGZkYmZkLzEvWkVNcWozdGIxeWJYREtyNVhseFhFTF9XZExNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS83OWJkYjAtYmQ1Yy00ODAwLTk3NjgtYWZkMTI2OGZkYmZk LzEva2xBNnJ4SnE5ODBESEt3ODRlT1l3WFM0TGdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwmsXMA0G CSqGSIb3DQEBCwUAA4IBAQAuO65XjG1hsUphH5qedrrnqvSdAxhNLmiHA34Z0z5V xbvmk4kHQH4nYNcW3CxInm+6ldyYafJxWBIAe79blp5C5lXD+104hriGXbwsikMh RHBZ/iGCwgQjepbuFRXC98xQoVmxwAvsVv7fEk+p6Idt20f0mK6epkF1XmcC+bcY Jiaf3YzrkUW+zUenjb/fOlTzo1BGdkyL6szRpX0TR+2t7vS+cdexInT+OzBlHCqA qh17wc2iRrn0zhtgmJhWRuC/NXCt6kceA9ol9pDWt0xsFAlTrdutYTyWUQihnVMo raaoZFVAJj9JmZEu3swj6DfbtzxAKynX1SJ/s1I4PckB -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:26 2026 by rpki-client