This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/ZsGtqMxH4nL8S3-yctBXEQDc62g.roa File: ZsGtqMxH4nL8S3-yctBXEQDc62g.roa (raw, json) Hash identifier: +ZsU9QUE73+Gn9nFEGhVwL2RW/GlaE2Pf3U5DjyGOtE= Subject key identifier: 66:C1:AD:A8:CC:47:E2:72:FC:4B:7F:B2:72:D0:57:11:00:DC:EB:68 Certificate issuer: /CN=89008da41922728bc5bedbbd7088701c529b99ed Certificate serial: 019B8002AC9FDB615518E7BCB7CE45899B1A Authority key identifier: 89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/ZsGtqMxH4nL8S3-yctBXEQDc62g.roa Signing time: Fri 02 Jan 2026 18:40:17 +0000 ROA not before: Fri 02 Jan 2026 18:40:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213418 IP address blocks: 185.231.52.0/24 maxlen: 24 185.231.53.0/24 maxlen: 24 185.231.54.0/24 maxlen: 24 185.231.55.0/24 maxlen: 24 2a13:bc80::/32 maxlen: 32 2a13:bc81::/32 maxlen: 32 2a13:bc82::/32 maxlen: 32 2a13:bc83::/32 maxlen: 32 2a13:bc84::/32 maxlen: 32 2a13:bc85::/32 maxlen: 32 2a13:bc86::/32 maxlen: 32 2a13:bc87::/32 maxlen: 32 2a14:b700::/32 maxlen: 32 2a14:b701::/32 maxlen: 32 2a14:b702::/32 maxlen: 32 2a14:b703::/32 maxlen: 32 2a14:b704::/32 maxlen: 32 2a14:b705::/32 maxlen: 32 2a14:b706::/32 maxlen: 32 2a14:b707::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:80:02:ac:9f:db:61:55:18:e7:bc:b7:ce:45:89:9b:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89008da41922728bc5bedbbd7088701c529b99ed Validity Not Before: Jan 2 18:40:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=66c1ada8cc47e272fc4b7fb272d0571100dceb68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c4:8f:84:c4:7a:7d:33:09:3c:d0:f2:a8:c8: b2:21:09:16:01:ab:aa:e0:4a:bc:b0:94:1c:ac:ed: 6b:ef:ce:d2:fc:f7:5f:a2:e6:75:8b:62:01:66:31: 72:6a:b0:67:b3:6e:e8:23:fa:31:c0:d6:92:f8:0a: a3:2b:f7:de:48:08:84:5f:35:8d:b7:ea:aa:bf:bb: 8e:02:5c:a0:1e:a7:f1:cf:85:a4:aa:04:bd:7c:21: bc:f2:68:4c:d2:73:1c:0b:ba:3a:d0:b3:99:e2:61: 6d:9b:cb:86:ae:2a:10:74:c8:5d:14:0d:c7:c4:40: 99:07:30:ca:f9:cb:c3:60:69:c3:94:cc:bf:82:9f: 93:e1:8a:0c:22:1d:12:dc:bf:90:bb:88:a2:1b:43: 4f:88:07:de:db:f4:0f:7c:62:b1:47:ec:94:3d:2b: 57:13:da:3c:19:18:9c:91:50:4c:ae:5f:da:aa:f4: 47:1e:73:f7:a4:12:f9:f3:92:92:fa:5c:bd:0e:51: 16:bd:bb:94:2e:33:f7:d3:e5:11:29:0b:13:a7:b5: e9:ad:4b:bc:74:64:0e:a1:b4:6f:9b:24:a3:aa:62: a4:a6:36:4a:52:85:77:6c:2c:a6:b2:b0:be:4e:0d: 5b:cf:8b:a1:6f:47:bc:ec:99:78:18:c2:55:7a:97: 87:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:C1:AD:A8:CC:47:E2:72:FC:4B:7F:B2:72:D0:57:11:00:DC:EB:68 X509v3 Authority Key Identifier: keyid:89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/ZsGtqMxH4nL8S3-yctBXEQDc62g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.231.52.0/22 IPv6: 2a13:bc80::/29 2a14:b700::/29 Signature Algorithm: sha256WithRSAEncryption 79:24:3d:18:e8:6e:63:98:8d:f7:ef:ca:11:c8:db:25:36:79: 5d:5b:87:13:4c:30:be:05:bb:0a:4e:02:b6:66:66:5a:5e:d7: 3a:56:69:a5:e6:57:11:7e:e3:99:d1:88:9c:66:2e:69:af:59: 17:0d:8b:61:72:49:a2:37:e5:60:cc:c4:44:b1:03:29:32:d4: 54:96:47:bd:85:9a:62:86:36:09:20:8f:76:a2:2a:d9:b3:8c: e1:2a:63:9c:0e:77:99:30:08:4e:13:22:a2:c9:63:73:b3:b8: 67:93:78:62:82:85:25:63:dd:f7:17:01:74:b6:17:1e:8d:d1: d2:a7:c5:2c:33:12:55:ba:3f:72:e4:93:4c:61:89:e3:e4:64: bb:e0:f5:08:a7:c2:dd:8a:0f:e0:f4:25:3e:8a:69:69:06:a9: 18:b1:7d:48:19:dd:53:61:bb:1b:68:d2:bc:28:e8:8b:57:b1: 27:77:1b:ac:ad:aa:aa:7b:8b:0f:a4:1f:cc:22:15:b4:23:07: 9c:52:6e:60:54:59:f6:09:5b:9a:de:b7:b9:3a:4e:1e:f3:9e: 17:0f:00:7e:28:95:41:49:e9:7b:5a:9f:d9:b2:53:63:ba:04: 5a:4c:94:1a:e5:3a:a3:fa:ec:6c:9e:91:5e:bb:37:9e:8e:60: 1c:3e:d5:aa -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgISAZuAAqyf22FVGOe8t85FiZsaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5MDA4ZGE0MTkyMjcyOGJjNWJlZGJiZDcwODg3MDFjNTI5 Yjk5ZWQwHhcNMjYwMTAyMTg0MDE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NmMxYWRhOGNjNDdlMjcyZmM0YjdmYjI3MmQwNTcxMTAwZGNlYjY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5sSPhMR6fTMJPNDyqMiyIQkWAauq 4Eq8sJQcrO1r787S/PdfouZ1i2IBZjFyarBns27oI/oxwNaS+AqjK/feSAiEXzWN t+qqv7uOAlygHqfxz4WkqgS9fCG88mhM0nMcC7o60LOZ4mFtm8uGrioQdMhdFA3H xECZBzDK+cvDYGnDlMy/gp+T4YoMIh0S3L+Qu4iiG0NPiAfe2/QPfGKxR+yUPStX E9o8GRickVBMrl/aqvRHHnP3pBL585KS+ly9DlEWvbuULjP30+URKQsTp7XprUu8 dGQOobRvmySjqmKkpjZKUoV3bCymsrC+Tg1bz4uhb0e87Jl4GMJVepeHEwIDAQAB o4ICHzCCAhswHQYDVR0OBBYEFGbBrajMR+Jy/Et/snLQVxEA3OtoMB8GA1UdIwQY MBaAFIkAjaQZInKLxb7bvXCIcBxSm5ntMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVFDTnBCa2ljb3ZGdnR1OWNJaHdIRktibWUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9lNWIxNGItOWQ1Yi00MzQ2LThlODUt NjM3MjlmZTU4OGEyLzEvWnNHdHFNeEg0bkw4UzMteWN0QlhFUURjNjJnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC9lNWIxNGItOWQ1Yi00MzQ2LThlODUtNjM3MjlmZTU4OGEy LzEvaVFDTnBCa2ljb3ZGdnR1OWNJaHdIRktibWUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAMBAIAATAGAwQCuec0MBQE AgACMA4DBQMqE7yAAwUDKhS3ADANBgkqhkiG9w0BAQsFAAOCAQEAeSQ9GOhuY5iN 9+/KEcjbJTZ5XVuHE0wwvgW7Ck4CtmZmWl7XOlZppeZXEX7jmdGInGYuaa9ZFw2L YXJJojflYMzERLEDKTLUVJZHvYWaYoY2CSCPdqIq2bOM4SpjnA53mTAIThMioslj c7O4Z5N4YoKFJWPd9xcBdLYXHo3R0qfFLDMSVbo/cuSTTGGJ4+Rku+D1CKfC3YoP 4PQlPoppaQapGLF9SBndU2G7G2jSvCjoi1exJ3cbrK2qqnuLD6QfzCIVtCMHnFJu YFRZ9glbmt63uTpOHvOeFw8AfiiVQUnpe1qf2bJTY7oEWkyUGuU6o/rsbJ6RXrs3 no5gHD7Vqg== -----END CERTIFICATE-----Generated at Mon Feb 2 08:09:17 2026 by rpki-client