This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/Zaa1ETdAWKfFJ07i5VWdeKJq1Y8.roa File: Zaa1ETdAWKfFJ07i5VWdeKJq1Y8.roa (raw, json) Hash identifier: HTBLtFAfHFVHfxP1ldP56H7tmRP+j3VLoPGVIHLY2sI= Subject key identifier: 65:A6:B5:11:37:40:58:A7:C5:27:4E:E2:E5:55:9D:78:A2:6A:D5:8F Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6 Certificate serial: 019B7F80C094E101F052A541E9307EC5CC2F Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/Zaa1ETdAWKfFJ07i5VWdeKJq1Y8.roa Signing time: Fri 02 Jan 2026 16:18:22 +0000 ROA not before: Fri 02 Jan 2026 16:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9009 IP address blocks: 109.111.42.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.mft rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:80:c0:94:e1:01:f0:52:a5:41:e9:30:7e:c5:cc:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6 Validity Not Before: Jan 2 16:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=65a6b511374058a7c5274ee2e5559d78a26ad58f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:93:d7:20:8f:a6:3b:e4:ae:0f:b4:f1:08:cb: e3:55:54:04:39:ea:dc:d8:a2:5c:94:68:67:14:de: 26:a0:65:1b:78:fd:0a:07:56:2b:c1:23:aa:89:83: e5:6e:3b:df:52:e0:85:fa:1f:01:89:42:29:df:4d: 09:ab:98:09:7b:4e:e2:7f:70:42:ec:e6:fc:23:eb: b3:65:b4:25:34:48:45:0a:9a:b8:1c:ea:4c:e1:d0: db:0a:4d:c8:b0:a9:a4:9d:eb:9b:b8:ae:47:eb:d9: 5e:04:be:d5:02:a0:b1:c6:ae:ed:05:52:37:07:a0: 8b:fa:dc:d6:db:45:ce:35:03:24:9e:02:47:d9:3b: 95:2c:2f:7d:16:be:fd:3e:9d:52:f0:03:b6:cc:e5: be:ff:05:3a:57:37:a1:36:06:5a:d1:87:b1:f4:a9: d7:27:a7:99:70:b3:8b:5d:a2:57:94:9f:3a:e4:87: 95:94:f3:de:57:ba:90:37:98:06:e5:c5:cc:b9:ed: 5a:db:6a:b3:39:34:a5:01:bc:cd:cb:d5:10:08:58: 0d:c7:77:45:e8:f6:ef:26:dc:db:29:91:1b:5b:7c: a8:60:37:5e:84:04:48:eb:f8:f4:16:8d:55:46:03: e6:5f:0f:27:11:3d:1d:30:a2:04:75:f0:63:fc:0f: 61:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A6:B5:11:37:40:58:A7:C5:27:4E:E2:E5:55:9D:78:A2:6A:D5:8F X509v3 Authority Key Identifier: keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/Zaa1ETdAWKfFJ07i5VWdeKJq1Y8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.111.42.0/23 Signature Algorithm: sha256WithRSAEncryption 00:64:47:46:7f:0f:d9:f3:86:b9:b3:54:17:9c:3a:b1:b9:d7: 4e:c7:ef:bf:2f:6d:07:ba:ed:8e:d7:02:41:aa:86:1d:36:72: 27:c2:fb:7a:80:0f:fd:26:32:d5:c6:0b:94:d2:02:f6:de:ae: 43:1c:23:2b:a4:f5:94:3f:93:c7:33:42:b8:d5:3e:5e:3e:1a: 0d:9d:56:87:1e:52:7d:e1:d5:81:dc:c3:0d:67:94:bb:0c:65: b9:2d:01:b4:e7:8f:3c:95:a0:3d:96:8f:16:25:f1:e0:3a:dd: 3c:3e:02:fd:1c:28:3a:ea:4a:24:02:de:84:49:36:34:da:12: 42:b1:c9:76:98:11:0d:cb:82:8f:39:01:fe:01:5c:66:e6:1b: ce:77:a9:fd:95:76:e8:fe:23:6f:da:21:93:31:3e:79:57:1a: c1:00:dd:87:de:1a:e0:94:ce:3e:82:47:e3:ae:16:00:2a:32: f5:19:82:52:a3:ac:7f:e3:de:50:92:b7:d7:23:14:d0:53:b0: a8:be:de:2e:09:66:1d:6b:dc:93:94:3f:d0:a1:39:52:59:f0: 84:c6:66:8b:2f:bb:10:71:85:5e:88:8f:4d:21:55:85:b1:ad: cd:a8:11:fa:81:cd:8e:6a:e8:06:bc:03:e8:42:12:92:66:d8: e8:92:fe:3f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gMCU4QHwUqVB6TB+xcwvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmNzVlNGU5NGI1Y2I3NDUxN2I3YjAxNTY4MDE1ZGE5ZTZl ZWNkYjYwHhcNMjYwMTAyMTYxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NWE2YjUxMTM3NDA1OGE3YzUyNzRlZTJlNTU1OWQ3OGEyNmFkNThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx5PXII+mO+SuD7TxCMvjVVQEOerc 2KJclGhnFN4moGUbeP0KB1YrwSOqiYPlbjvfUuCF+h8BiUIp300Jq5gJe07if3BC 7Ob8I+uzZbQlNEhFCpq4HOpM4dDbCk3IsKmkneubuK5H69leBL7VAqCxxq7tBVI3 B6CL+tzW20XONQMkngJH2TuVLC99Fr79Pp1S8AO2zOW+/wU6VzehNgZa0Yex9KnX J6eZcLOLXaJXlJ865IeVlPPeV7qQN5gG5cXMue1a22qzOTSlAbzNy9UQCFgNx3dF 6PbvJtzbKZEbW3yoYDdehARI6/j0Fo1VRgPmXw8nET0dMKIEdfBj/A9h0QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGWmtRE3QFinxSdO4uVVnXiiatWPMB8GA1UdIwQY MBaAFG915OlLXLdFF7ewFWgBXanm7s22MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjNYazZVdGN0MFVYdDdBVmFBRmRxZWJ1emJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi81N2EzNGYtZTMzYi00ZTE3LWJjMzIt NjY0NTc3MjRjMmQzLzEvWmFhMUVUZEFXS2ZGSjA3aTVWV2RlS0pxMVk4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi81N2EzNGYtZTMzYi00ZTE3LWJjMzItNjY0NTc3MjRjMmQz LzEvYjNYazZVdGN0MFVYdDdBVmFBRmRxZWJ1emJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBbW8qMA0G CSqGSIb3DQEBCwUAA4IBAQAAZEdGfw/Z84a5s1QXnDqxuddOx++/L20Huu2O1wJB qoYdNnInwvt6gA/9JjLVxguU0gL23q5DHCMrpPWUP5PHM0K41T5ePhoNnVaHHlJ9 4dWB3MMNZ5S7DGW5LQG05488laA9lo8WJfHgOt08PgL9HCg66kokAt6ESTY02hJC scl2mBENy4KPOQH+AVxm5hvOd6n9lXbo/iNv2iGTMT55VxrBAN2H3hrglM4+gkfj rhYAKjL1GYJSo6x/495QkrfXIxTQU7Covt4uCWYda9yTlD/QoTlSWfCExmaLL7sQ cYVeiI9NIVWFsa3NqBH6gc2OaugGvAPoQhKSZtjokv4/ -----END CERTIFICATE-----Generated at Sun Jan 18 08:53:04 2026 by rpki-client