This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/Zb4Ij_hMGa1ilvaWObjMwHclRDE.roa File: Zb4Ij_hMGa1ilvaWObjMwHclRDE.roa (raw, json) Hash identifier: If8N6EDsF+UhEPWFW/JnMXLAzEY0FwsOU0DEOqRs9F4= Subject key identifier: 65:BE:08:8F:F8:4C:19:AD:62:96:F6:96:39:B8:CC:C0:77:25:44:31 Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a Certificate serial: 019B7BA4143D82464B791DAABC3083FBB243 Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/Zb4Ij_hMGa1ilvaWObjMwHclRDE.roa Signing time: Thu 01 Jan 2026 22:18:29 +0000 ROA not before: Thu 01 Jan 2026 22:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207577 IP address blocks: 45.142.123.0/24 maxlen: 24 195.66.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.mft rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:14:3d:82:46:4b:79:1d:aa:bc:30:83:fb:b2:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a Validity Not Before: Jan 1 22:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=65be088ff84c19ad6296f69639b8ccc077254431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:86:cd:ce:11:ed:73:7a:ff:23:b3:9d:da:82: f8:03:e4:bb:3c:fd:25:aa:05:f8:bc:12:66:3c:7a: a6:22:c8:cc:62:12:f7:dd:f3:2e:9c:78:f8:59:ef: 05:22:f4:2d:7d:15:99:1a:d2:11:db:9f:7a:2b:ea: 6a:28:18:93:aa:35:9f:d3:40:2b:42:8e:93:ea:ad: 96:e5:f6:cc:ae:82:df:4e:64:39:72:da:99:63:f9: b1:0f:c5:11:e1:9b:47:a1:02:8a:a2:dc:36:e2:7b: 30:3e:08:c0:0b:dd:39:f4:d3:db:1c:b3:96:55:11: 6a:e3:69:06:54:fd:79:8c:a5:5b:b3:07:e6:b8:8c: 5d:8b:ed:4b:76:b4:6b:d3:b1:7d:3a:2e:3b:4c:22: a0:39:f7:47:84:14:05:ec:1d:1a:d8:8f:2d:bc:7d: 14:85:40:ac:fc:43:28:dc:9e:ae:98:ff:85:5a:9b: a2:95:d9:bb:0f:12:9a:8b:3c:7e:94:39:71:3c:b4: 72:ed:5a:2e:24:24:5d:90:2f:ed:4d:62:21:ef:5c: 4f:e0:07:ad:16:a5:a3:ad:14:4d:64:fc:3e:ac:9f: 33:04:22:05:d4:c7:9a:e4:08:b3:5f:30:bc:3c:1b: 22:0a:78:2a:03:9c:b7:0b:ed:f3:ea:b6:19:c2:af: 68:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:BE:08:8F:F8:4C:19:AD:62:96:F6:96:39:B8:CC:C0:77:25:44:31 X509v3 Authority Key Identifier: keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/Zb4Ij_hMGa1ilvaWObjMwHclRDE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.142.123.0/24 195.66.104.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:48:d1:ef:97:23:f6:5b:1a:98:7f:e0:18:86:af:97:24:fd: ce:0f:f6:62:97:33:e0:de:72:54:69:31:dc:1c:93:fc:1d:50: c0:db:2d:75:bd:d6:1f:04:f3:40:f6:f6:a4:17:f6:eb:c5:dc: f8:24:c2:6f:80:d6:18:d6:c6:64:f4:24:85:31:d0:f5:ce:a2: e3:1a:3f:a7:79:4d:0d:5b:d0:2b:6f:f2:bc:f0:ef:25:51:33: 93:7b:3b:3e:fc:8a:3d:a8:4f:b9:bd:4a:f4:71:e5:b8:fa:41: 7e:21:b5:68:fc:87:61:73:d1:85:c5:10:6b:e7:67:10:64:c9: 36:21:fe:7e:47:6b:0d:e4:6a:f2:dd:eb:93:67:ac:95:26:c0: ba:e7:93:9d:fd:8c:eb:1e:17:e1:62:8f:29:d6:85:bd:d0:36: 84:b4:7d:4c:d1:0e:62:37:28:1e:64:d6:cb:d3:a4:42:b2:83: 7f:61:4f:72:8f:06:97:b9:6f:f1:68:8f:fd:0b:16:cb:ca:67: 71:f8:da:89:33:dc:a5:46:68:0b:09:8d:ab:8d:d0:21:94:89: 89:12:6c:e6:b2:06:af:ee:8a:14:3a:38:b8:a8:92:5b:16:35: 92:3f:de:12:95:42:f2:00:ee:91:5f:ee:50:e1:ce:b4:3a:7e: f1:7a:ef:bb -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7pBQ9gkZLeR2qvDCD+7JDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NzA5MGMyNzVjMzRjMDVjMzA2ZjNiMzYwNjM4OTNhMGQ3 Mjc4MmEwHhcNMjYwMTAxMjIxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NWJlMDg4ZmY4NGMxOWFkNjI5NmY2OTYzOWI4Y2NjMDc3MjU0NDMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYbNzhHtc3r/I7Od2oL4A+S7PP0l qgX4vBJmPHqmIsjMYhL33fMunHj4We8FIvQtfRWZGtIR2596K+pqKBiTqjWf00Ar Qo6T6q2W5fbMroLfTmQ5ctqZY/mxD8UR4ZtHoQKKotw24nswPgjAC9059NPbHLOW VRFq42kGVP15jKVbswfmuIxdi+1LdrRr07F9Oi47TCKgOfdHhBQF7B0a2I8tvH0U hUCs/EMo3J6umP+FWpuildm7DxKaizx+lDlxPLRy7VouJCRdkC/tTWIh71xP4Aet FqWjrRRNZPw+rJ8zBCIF1Mea5AizXzC8PBsiCngqA5y3C+3z6rYZwq9oiwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGW+CI/4TBmtYpb2ljm4zMB3JUQxMB8GA1UdIwQY MBaAFKhwkMJ1w0wFwwbzs2BjiToNcngqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEt YjU3YTM2ZjJhZmNkLzEvWmI0SWpfaE1HYTFpbHZhV09iak13SGNsUkRFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEtYjU3YTM2ZjJhZmNk LzEvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALY57AwQA w0JoMA0GCSqGSIb3DQEBCwUAA4IBAQCMSNHvlyP2WxqYf+AYhq+XJP3OD/ZilzPg 3nJUaTHcHJP8HVDA2y11vdYfBPNA9vakF/brxdz4JMJvgNYY1sZk9CSFMdD1zqLj Gj+neU0NW9Arb/K88O8lUTOTezs+/Io9qE+5vUr0ceW4+kF+IbVo/Idhc9GFxRBr 52cQZMk2If5+R2sN5Gry3euTZ6yVJsC655Od/YzrHhfhYo8p1oW90DaEtH1M0Q5i NygeZNbL06RCsoN/YU9yjwaXuW/xaI/9CxbLymdx+NqJM9ylRmgLCY2rjdAhlImJ Emzmsgav7ooUOji4qJJbFjWSP94SlULyAO6RX+5Q4c60On7xeu+7 -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:31 2026 by rpki-client