This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/ZHTPMXBOpdp05MOA2aKrzlYilrs.roa File: ZHTPMXBOpdp05MOA2aKrzlYilrs.roa (raw, json) Hash identifier: QCNP42k/GUDd67H/ZxLk93Isvk0s3AXWCiuNHUZgsoY= Subject key identifier: 64:74:CF:31:70:4E:A5:DA:74:E4:C3:80:D9:A2:AB:CE:56:22:96:BB Certificate issuer: /CN=9aeafa96c9d563e650ba592ffb06e2ceeb6a0859 Certificate serial: 019B77C74AB4608FF9DEDFA5F68B79F6358C Authority key identifier: 9A:EA:FA:96:C9:D5:63:E6:50:BA:59:2F:FB:06:E2:CE:EB:6A:08:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mur6lsnVY-ZQulkv-wbizutqCFk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/ZHTPMXBOpdp05MOA2aKrzlYilrs.roa Signing time: Thu 01 Jan 2026 04:18:28 +0000 ROA not before: Thu 01 Jan 2026 04:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5539 IP address blocks: 195.230.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/mur6lsnVY-ZQulkv-wbizutqCFk.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/mur6lsnVY-ZQulkv-wbizutqCFk.mft rsync://rpki.ripe.net/repository/DEFAULT/mur6lsnVY-ZQulkv-wbizutqCFk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:4a:b4:60:8f:f9:de:df:a5:f6:8b:79:f6:35:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9aeafa96c9d563e650ba592ffb06e2ceeb6a0859 Validity Not Before: Jan 1 04:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6474cf31704ea5da74e4c380d9a2abce562296bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:26:31:46:0c:1d:5c:3f:ea:9e:d4:1a:42:82: da:51:33:73:04:51:24:d5:15:de:41:7a:2a:4a:34: fa:8e:0d:52:8b:f3:1b:4a:65:74:3f:f2:8d:5b:95: 95:2f:93:25:8b:59:ab:98:f8:19:a3:0a:86:1d:99: 85:72:61:b0:fc:d6:44:12:c4:df:18:c9:94:86:9f: c6:3b:01:90:f0:6f:53:a2:47:fa:80:5a:f0:a1:26: e3:8c:19:7f:f7:52:26:ab:d1:2d:4d:e1:19:ee:c9: 14:37:2b:ab:4c:c5:41:4d:2c:32:36:0e:68:64:fa: 07:21:a7:ed:40:bb:e0:61:24:b3:cf:c1:f4:54:30: 40:e0:e3:01:99:c8:71:81:ab:39:1e:dc:9a:af:83: 3b:69:4e:b0:8e:37:e3:47:19:c0:0d:72:51:04:5d: 82:a5:82:16:19:7a:e3:e8:36:3b:ec:71:b1:c9:f6: bb:00:57:f7:b3:55:c2:b7:ce:ad:48:c6:cd:2e:2c: 24:56:b6:ec:82:f5:e0:bb:10:a6:f2:9b:3e:18:3c: 89:19:39:0a:1e:4a:19:20:8c:5c:ac:cd:1b:ea:8e: f8:9c:b1:61:10:6a:0c:ec:4a:ba:e0:29:ee:90:14: 62:47:00:89:6f:fc:48:6c:82:46:07:21:12:df:07: 3f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:74:CF:31:70:4E:A5:DA:74:E4:C3:80:D9:A2:AB:CE:56:22:96:BB X509v3 Authority Key Identifier: keyid:9A:EA:FA:96:C9:D5:63:E6:50:BA:59:2F:FB:06:E2:CE:EB:6A:08:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mur6lsnVY-ZQulkv-wbizutqCFk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/ZHTPMXBOpdp05MOA2aKrzlYilrs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/mur6lsnVY-ZQulkv-wbizutqCFk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.230.114.0/24 Signature Algorithm: sha256WithRSAEncryption 97:aa:48:5a:34:71:f4:ce:ae:a4:e9:6c:bc:77:7f:33:d5:80: 3f:e9:e5:6e:27:65:90:86:0c:cb:02:7c:09:db:62:f6:c1:8f: 10:4d:28:3a:be:a0:c9:df:b0:cd:e0:6d:06:6c:7d:fc:5c:f5: f7:a1:b1:cf:ba:44:03:f4:1e:cf:c1:31:a6:66:40:9e:31:ee: 2c:b2:97:6d:88:66:db:01:fd:48:32:34:66:1d:4f:3e:cc:5b: f4:ff:38:55:e3:8e:95:ae:87:d3:42:40:b0:6a:88:25:99:f1: 36:b2:38:61:b3:e0:aa:8c:3b:11:9e:2e:49:8e:80:56:7a:62: 09:36:e2:82:bb:07:2c:60:21:45:44:03:81:c7:96:4d:2f:29: 32:43:fd:21:55:16:77:19:00:39:18:d4:24:c6:47:71:c9:1b: e2:bd:59:a8:f2:34:b2:a3:00:e2:5d:1e:49:6e:cb:7a:ed:e8: a3:5f:c5:64:9f:c4:f9:2d:34:e3:42:51:ae:f4:3d:03:d7:34: ae:2c:0f:1c:19:96:18:df:77:66:d7:62:07:09:3f:31:07:49: df:5e:3f:67:4a:43:4c:9f:12:84:20:ee:a9:6f:63:3f:5c:c2: 32:66:a9:0f:ef:a2:76:7b:07:79:ab:63:8f:c3:85:b9:6c:a7: 3f:80:89:fc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x0q0YI/53t+l9ot59jWMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhZWFmYTk2YzlkNTYzZTY1MGJhNTkyZmZiMDZlMmNlZWI2 YTA4NTkwHhcNMjYwMTAxMDQxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NDc0Y2YzMTcwNGVhNWRhNzRlNGMzODBkOWEyYWJjZTU2MjI5NmJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2iYxRgwdXD/qntQaQoLaUTNzBFEk 1RXeQXoqSjT6jg1Si/MbSmV0P/KNW5WVL5Mli1mrmPgZowqGHZmFcmGw/NZEEsTf GMmUhp/GOwGQ8G9Tokf6gFrwoSbjjBl/91Imq9EtTeEZ7skUNyurTMVBTSwyNg5o ZPoHIaftQLvgYSSzz8H0VDBA4OMBmchxgas5Htyar4M7aU6wjjfjRxnADXJRBF2C pYIWGXrj6DY77HGxyfa7AFf3s1XCt86tSMbNLiwkVrbsgvXguxCm8ps+GDyJGTkK HkoZIIxcrM0b6o74nLFhEGoM7Eq64CnukBRiRwCJb/xIbIJGByES3wc/sQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGR0zzFwTqXadOTDgNmiq85WIpa7MB8GA1UdIwQY MBaAFJrq+pbJ1WPmULpZL/sG4s7raghZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbXVyNmxzblZZLVpRdWxrdi13Yml6dXRxQ0ZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy80NzI3NWQtNWZhNy00YmIyLTk5ZWIt MWYwMDczN2NiMmEyLzEvWkhUUE1YQk9wZHAwNU1PQTJhS3J6bFlpbHJzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy80NzI3NWQtNWZhNy00YmIyLTk5ZWItMWYwMDczN2NiMmEy LzEvbXVyNmxzblZZLVpRdWxrdi13Yml6dXRxQ0ZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw+ZyMA0G CSqGSIb3DQEBCwUAA4IBAQCXqkhaNHH0zq6k6Wy8d38z1YA/6eVuJ2WQhgzLAnwJ 22L2wY8QTSg6vqDJ37DN4G0GbH38XPX3obHPukQD9B7PwTGmZkCeMe4sspdtiGbb Af1IMjRmHU8+zFv0/zhV446VrofTQkCwaoglmfE2sjhhs+CqjDsRni5JjoBWemIJ NuKCuwcsYCFFRAOBx5ZNLykyQ/0hVRZ3GQA5GNQkxkdxyRvivVmo8jSyowDiXR5J bst67eijX8Vkn8T5LTTjQlGu9D0D1zSuLA8cGZYY33dm12IHCT8xB0nfXj9nSkNM nxKEIO6pb2M/XMIyZqkP76J2ewd5q2OPw4W5bKc/gIn8 -----END CERTIFICATE-----Generated at Mon Jan 26 22:36:07 2026 by rpki-client