This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/95ffd9-19d3-4517-8c47-c61661d1b71b/1/ZIfLwvSvOdji3MtHcGgMuSoqhAQ.roa File: ZIfLwvSvOdji3MtHcGgMuSoqhAQ.roa (raw, json) Hash identifier: JIFRgTtvZClZWs/BH3CyPh0KvLINAkB1ip40YGPLcQM= Subject key identifier: 64:87:CB:C2:F4:AF:39:D8:E2:DC:CB:47:70:68:0C:B9:2A:2A:84:04 Certificate issuer: /CN=3ee5a1dd0cee874c06e1ea1f72827d97cbc67187 Certificate serial: 019B7B35AE86E03073CA0EA6B46BA8313C84 Authority key identifier: 3E:E5:A1:DD:0C:EE:87:4C:06:E1:EA:1F:72:82:7D:97:CB:C6:71:87 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PuWh3Qzuh0wG4eofcoJ9l8vGcYc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/95ffd9-19d3-4517-8c47-c61661d1b71b/1/ZIfLwvSvOdji3MtHcGgMuSoqhAQ.roa Signing time: Thu 01 Jan 2026 20:17:54 +0000 ROA not before: Thu 01 Jan 2026 20:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198611 IP address blocks: 91.231.205.0/24 maxlen: 24 91.237.68.0/24 maxlen: 24 91.237.69.0/24 maxlen: 24 91.237.70.0/24 maxlen: 24 91.237.71.0/24 maxlen: 24 2001:67c:16f8::/48 maxlen: 48 2001:67c:2ad8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/95ffd9-19d3-4517-8c47-c61661d1b71b/1/PuWh3Qzuh0wG4eofcoJ9l8vGcYc.crl rsync://rpki.ripe.net/repository/DEFAULT/57/95ffd9-19d3-4517-8c47-c61661d1b71b/1/PuWh3Qzuh0wG4eofcoJ9l8vGcYc.mft rsync://rpki.ripe.net/repository/DEFAULT/PuWh3Qzuh0wG4eofcoJ9l8vGcYc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:ae:86:e0:30:73:ca:0e:a6:b4:6b:a8:31:3c:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ee5a1dd0cee874c06e1ea1f72827d97cbc67187 Validity Not Before: Jan 1 20:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6487cbc2f4af39d8e2dccb4770680cb92a2a8404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:e8:4d:2c:48:02:64:ec:8f:41:61:9f:24:4e: d9:0b:a0:65:6e:d2:29:ec:2d:30:44:dc:82:b2:5a: 38:1e:bc:17:75:a5:e4:26:0e:bf:f4:bb:d8:c8:45: 1d:44:c8:ea:fe:28:d3:ba:18:eb:99:90:83:dc:c7: 51:e6:a9:d4:0e:29:65:0a:ca:5c:f5:20:2d:5e:da: d2:a3:35:4f:b9:88:ae:84:8a:57:23:8d:39:98:31: ed:14:ff:22:17:43:9a:d3:00:a6:d0:62:ac:84:5b: a0:56:8e:cb:1d:c9:19:5c:a5:fb:2c:cb:4f:c2:12: e0:33:4b:f5:c0:e8:52:52:e1:6f:2a:86:c4:78:f1: 40:51:d2:91:db:42:ee:2d:5a:09:c5:de:7c:ab:0c: b1:e0:aa:e8:a9:0d:cd:4e:73:ca:3b:98:f7:8b:36: db:c4:d6:31:75:8a:f2:bd:48:4c:87:da:51:8f:d6: 5d:fd:2e:35:e1:55:b3:73:42:ee:81:fc:1f:08:4f: 34:87:f6:a0:bf:04:f1:1c:90:a4:44:88:ba:de:31: d6:4a:27:fc:a2:7c:43:bf:e4:93:61:9f:d3:8b:93: 6a:58:f7:6f:b2:12:fb:a6:f3:b8:70:af:0b:c2:cf: c0:b4:55:e2:58:ce:b4:2b:ca:b7:26:3b:df:0a:58: 3d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:87:CB:C2:F4:AF:39:D8:E2:DC:CB:47:70:68:0C:B9:2A:2A:84:04 X509v3 Authority Key Identifier: keyid:3E:E5:A1:DD:0C:EE:87:4C:06:E1:EA:1F:72:82:7D:97:CB:C6:71:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PuWh3Qzuh0wG4eofcoJ9l8vGcYc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/95ffd9-19d3-4517-8c47-c61661d1b71b/1/ZIfLwvSvOdji3MtHcGgMuSoqhAQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/95ffd9-19d3-4517-8c47-c61661d1b71b/1/PuWh3Qzuh0wG4eofcoJ9l8vGcYc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.231.205.0/24 91.237.68.0/22 IPv6: 2001:67c:16f8::/48 2001:67c:2ad8::/48 Signature Algorithm: sha256WithRSAEncryption 43:22:47:13:df:c4:ee:de:50:30:d3:be:9f:90:56:a1:90:b4: 11:93:3d:d0:82:50:50:b5:5a:30:61:e8:81:e2:6e:07:ab:85: b8:ea:56:5a:8b:70:87:98:e7:78:36:cf:47:2e:9a:af:07:77: 93:bb:36:55:f5:33:7a:02:77:2c:b0:32:cd:74:f5:c0:fb:41: ab:54:62:a5:19:36:ea:4a:34:63:aa:33:3b:e2:25:53:21:c5: 12:28:5c:3e:f2:b3:62:a4:b8:a2:c2:7b:90:f4:74:74:5c:51: 7f:46:98:5e:76:30:91:18:e7:26:b3:9e:eb:3c:bf:5d:bd:01: e2:af:7f:b4:54:05:ab:f9:06:1d:79:d1:b4:19:16:45:ef:9f: 04:05:77:cc:c7:d9:bd:87:53:35:99:50:77:bc:2b:65:bf:38: 82:a0:1f:a8:9b:0d:22:9b:86:ac:43:7f:2d:d0:a6:f9:8e:bc: a5:47:8d:9b:da:52:17:04:4e:cf:5b:54:80:b4:cb:fd:36:86: 48:f1:4d:d7:2f:6f:ce:01:50:78:d8:ae:08:5b:67:a8:0d:71: 6b:5f:b2:b2:38:c9:94:8a:a6:9f:d8:59:35:ce:6e:e1:23:82: 9b:e1:2f:d5:c8:28:61:22:2e:77:11:41:82:14:d6:45:0f:5c: bc:80:06:29 -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgISAZt7Na6G4DBzyg6mtGuoMTyEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlZTVhMWRkMGNlZTg3NGMwNmUxZWExZjcyODI3ZDk3Y2Jj NjcxODcwHhcNMjYwMTAxMjAxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NDg3Y2JjMmY0YWYzOWQ4ZTJkY2NiNDc3MDY4MGNiOTJhMmE4NDA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkehNLEgCZOyPQWGfJE7ZC6BlbtIp 7C0wRNyCslo4HrwXdaXkJg6/9LvYyEUdRMjq/ijTuhjrmZCD3MdR5qnUDillCspc 9SAtXtrSozVPuYiuhIpXI405mDHtFP8iF0Oa0wCm0GKshFugVo7LHckZXKX7LMtP whLgM0v1wOhSUuFvKobEePFAUdKR20LuLVoJxd58qwyx4KroqQ3NTnPKO5j3izbb xNYxdYryvUhMh9pRj9Zd/S414VWzc0LugfwfCE80h/agvwTxHJCkRIi63jHWSif8 onxDv+STYZ/Ti5NqWPdvshL7pvO4cK8Lws/AtFXiWM60K8q3JjvfClg9fwIDAQAB o4ICKTCCAiUwHQYDVR0OBBYEFGSHy8L0rznY4tzLR3BoDLkqKoQEMB8GA1UdIwQY MBaAFD7lod0M7odMBuHqH3KCfZfLxnGHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHVXaDNRenVoMHdHNGVvZmNvSjlsOHZHY1ljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny85NWZmZDktMTlkMy00NTE3LThjNDct YzYxNjYxZDFiNzFiLzEvWklmTHd2U3ZPZGppM010SGNHZ011U29xaEFRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny85NWZmZDktMTlkMy00NTE3LThjNDctYzYxNjYxZDFiNzFi LzEvUHVXaDNRenVoMHdHNGVvZmNvSjlsOHZHY1ljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjASBAIAATAMAwQAW+fNAwQC W+1EMBgEAgACMBIDBwAgAQZ8FvgDBwAgAQZ8KtgwDQYJKoZIhvcNAQELBQADggEB AEMiRxPfxO7eUDDTvp+QVqGQtBGTPdCCUFC1WjBh6IHibgerhbjqVlqLcIeY53g2 z0cumq8Hd5O7NlX1M3oCdyywMs109cD7QatUYqUZNupKNGOqMzviJVMhxRIoXD7y s2KkuKLCe5D0dHRcUX9GmF52MJEY5yaznus8v129AeKvf7RUBav5Bh150bQZFkXv nwQFd8zH2b2HUzWZUHe8K2W/OIKgH6ibDSKbhqxDfy3QpvmOvKVHjZvaUhcETs9b VIC0y/02hkjxTdcvb84BUHjYrghbZ6gNcWtfsrI4yZSKpp/YWTXObuEjgpvhL9XI KGEiLncRQYIU1kUPXLyABik= -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:08 2026 by rpki-client