This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/35ff32-a687-4f50-969a-98648901688f/1/zn5qo0nWrzLZmASHG4XfqLmagKc.roa File: zn5qo0nWrzLZmASHG4XfqLmagKc.roa (raw, json) Hash identifier: lbZiqoyBwXfTKlcc0WAFe6dfCHt4tuz6Zs1OJOLtDmc= Subject key identifier: CE:7E:6A:A3:49:D6:AF:32:D9:98:04:87:1B:85:DF:A8:B9:9A:80:A7 Certificate issuer: /CN=b56a8c91ad31745ff727da0482ede1b2fab462e7 Certificate serial: 019B77C6DD3290541B63BDC7B2CD965CBC82 Authority key identifier: B5:6A:8C:91:AD:31:74:5F:F7:27:DA:04:82:ED:E1:B2:FA:B4:62:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tWqMka0xdF_3J9oEgu3hsvq0Yuc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/35ff32-a687-4f50-969a-98648901688f/1/zn5qo0nWrzLZmASHG4XfqLmagKc.roa Signing time: Thu 01 Jan 2026 04:18:00 +0000 ROA not before: Thu 01 Jan 2026 04:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51625 IP address blocks: 46.31.112.0/24 maxlen: 24 46.31.113.0/24 maxlen: 24 46.31.114.0/24 maxlen: 24 46.31.115.0/24 maxlen: 24 46.31.116.0/24 maxlen: 24 46.31.117.0/24 maxlen: 24 46.31.118.0/24 maxlen: 24 46.31.119.0/24 maxlen: 24 185.204.232.0/24 maxlen: 24 185.204.233.0/24 maxlen: 24 185.204.234.0/24 maxlen: 24 185.204.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/35ff32-a687-4f50-969a-98648901688f/1/tWqMka0xdF_3J9oEgu3hsvq0Yuc.crl rsync://rpki.ripe.net/repository/DEFAULT/58/35ff32-a687-4f50-969a-98648901688f/1/tWqMka0xdF_3J9oEgu3hsvq0Yuc.mft rsync://rpki.ripe.net/repository/DEFAULT/tWqMka0xdF_3J9oEgu3hsvq0Yuc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:dd:32:90:54:1b:63:bd:c7:b2:cd:96:5c:bc:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b56a8c91ad31745ff727da0482ede1b2fab462e7 Validity Not Before: Jan 1 04:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ce7e6aa349d6af32d99804871b85dfa8b99a80a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:94:1b:58:e7:02:78:24:1b:74:d7:c0:1c:c5: 03:72:a5:d7:c2:23:cc:8b:7b:8d:c5:93:94:cc:50: d5:52:72:62:80:d5:38:71:a6:aa:81:32:2a:0d:a8: f7:a8:69:db:3c:3e:8f:c4:69:51:62:b5:63:ef:bc: 5b:5f:4e:9e:fe:6f:be:66:b6:70:da:c4:ec:aa:23: 33:f6:47:7a:01:be:af:d7:5e:72:2c:c0:65:f6:6c: 68:1f:04:e6:1a:c7:82:b9:0e:99:cd:60:30:a4:46: a3:11:34:cb:bd:36:07:3d:c1:36:f0:af:1c:44:a2: 90:6e:49:7e:24:5f:f4:f9:9a:34:55:4f:ef:d0:6e: 8a:3b:6a:5c:d0:4c:39:21:52:5c:ab:dd:13:47:b4: 5b:f8:36:bc:81:17:1d:85:60:9e:ac:4a:4b:d3:e1: 5f:f2:b3:0f:15:c2:8e:66:bb:fb:61:54:4c:3b:0e: cb:32:7c:de:cf:1c:30:50:b9:4a:35:b5:77:cf:11: 8a:c4:e5:cd:e2:20:2d:fd:53:87:9e:50:d0:d6:8e: d5:fc:68:66:54:93:08:6b:83:f7:f4:23:8c:84:f1: 99:c1:ca:4c:11:11:3f:9b:1f:d3:db:18:ee:2e:82: 44:71:2a:0e:20:fc:5d:f3:9b:e7:09:12:9d:2a:76: 0a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:7E:6A:A3:49:D6:AF:32:D9:98:04:87:1B:85:DF:A8:B9:9A:80:A7 X509v3 Authority Key Identifier: keyid:B5:6A:8C:91:AD:31:74:5F:F7:27:DA:04:82:ED:E1:B2:FA:B4:62:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tWqMka0xdF_3J9oEgu3hsvq0Yuc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/35ff32-a687-4f50-969a-98648901688f/1/zn5qo0nWrzLZmASHG4XfqLmagKc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/35ff32-a687-4f50-969a-98648901688f/1/tWqMka0xdF_3J9oEgu3hsvq0Yuc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.31.112.0/21 185.204.232.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:b0:49:e9:af:aa:cb:05:b6:5e:9a:fe:40:2c:54:f6:28:6a: 56:dc:e0:0b:5b:cf:2c:23:98:03:2e:30:04:88:3f:5a:3b:e8: 05:c8:81:36:c2:af:bd:71:d5:d7:66:49:e9:18:a3:bb:c3:15: a8:9c:48:79:d7:d3:65:72:7a:8b:d9:9d:b0:24:84:ff:10:d8: 87:3f:3c:74:9d:11:d1:1d:a3:d8:5b:51:2f:e7:4c:e2:bc:0e: ef:10:97:21:f3:a9:ca:af:e5:6c:1f:50:42:5e:a1:20:20:c2: 54:5c:00:e8:72:55:4e:c6:e9:9d:a4:6c:56:d6:cb:09:9c:9d: d9:ad:fe:90:dc:65:80:e5:5b:ba:51:d3:41:a3:c8:5c:3e:0c: 59:01:65:52:e5:39:ab:44:da:ac:6a:04:bd:1f:28:41:e1:23: 10:58:99:f4:62:53:d6:0e:a8:44:20:bf:34:26:41:da:b9:e4: 17:6a:5a:b0:3e:32:57:06:8a:50:4a:ae:28:54:7b:b9:93:a6: 17:1c:c0:57:50:db:f6:ba:14:bd:64:0f:96:85:7b:6d:5b:5c: 4e:19:80:81:aa:36:49:cb:f5:0d:57:21:0c:da:58:27:30:94: b1:86:56:ff:82:45:d6:a3:52:14:d8:ae:dc:ee:3e:a3:1e:0c: 2c:ec:c6:43 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3xt0ykFQbY73Hss2WXLyCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NmE4YzkxYWQzMTc0NWZmNzI3ZGEwNDgyZWRlMWIyZmFi NDYyZTcwHhcNMjYwMTAxMDQxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZTdlNmFhMzQ5ZDZhZjMyZDk5ODA0ODcxYjg1ZGZhOGI5OWE4MGE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZQbWOcCeCQbdNfAHMUDcqXXwiPM i3uNxZOUzFDVUnJigNU4caaqgTIqDaj3qGnbPD6PxGlRYrVj77xbX06e/m++ZrZw 2sTsqiMz9kd6Ab6v115yLMBl9mxoHwTmGseCuQ6ZzWAwpEajETTLvTYHPcE28K8c RKKQbkl+JF/0+Zo0VU/v0G6KO2pc0Ew5IVJcq90TR7Rb+Da8gRcdhWCerEpL0+Ff 8rMPFcKOZrv7YVRMOw7LMnzezxwwULlKNbV3zxGKxOXN4iAt/VOHnlDQ1o7V/Ghm VJMIa4P39COMhPGZwcpMERE/mx/T2xjuLoJEcSoOIPxd85vnCRKdKnYKQwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFM5+aqNJ1q8y2ZgEhxuF36i5moCnMB8GA1UdIwQY MBaAFLVqjJGtMXRf9yfaBILt4bL6tGLnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFdxTWthMHhkRl8zSjlvRWd1M2hzdnEwWXVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8zNWZmMzItYTY4Ny00ZjUwLTk2OWEt OTg2NDg5MDE2ODhmLzEvem41cW8wbldyekxabUFTSEc0WGZxTG1hZ0tjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8zNWZmMzItYTY4Ny00ZjUwLTk2OWEtOTg2NDg5MDE2ODhm LzEvdFdxTWthMHhkRl8zSjlvRWd1M2hzdnEwWXVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDLh9wAwQC uczoMA0GCSqGSIb3DQEBCwUAA4IBAQB6sEnpr6rLBbZemv5ALFT2KGpW3OALW88s I5gDLjAEiD9aO+gFyIE2wq+9cdXXZknpGKO7wxWonEh519NlcnqL2Z2wJIT/ENiH Pzx0nRHRHaPYW1Ev50zivA7vEJch86nKr+VsH1BCXqEgIMJUXADoclVOxumdpGxW 1ssJnJ3Zrf6Q3GWA5Vu6UdNBo8hcPgxZAWVS5TmrRNqsagS9HyhB4SMQWJn0YlPW DqhEIL80JkHaueQXalqwPjJXBopQSq4oVHu5k6YXHMBXUNv2uhS9ZA+WhXttW1xO GYCBqjZJy/UNVyEM2lgnMJSxhlb/gkXWo1IU2K7c7j6jHgws7MZD -----END CERTIFICATE-----Generated at Wed Jan 21 16:04:51 2026 by rpki-client