This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/z9XB5hGgaOmBuEO-Dz5QRBmeAks.roa File: z9XB5hGgaOmBuEO-Dz5QRBmeAks.roa (raw, json) Hash identifier: 2ECBZl5uI+4aqCeiR9AYAgadSZzAc8zxKgfahb2aHj8= Subject key identifier: CF:D5:C1:E6:11:A0:68:E9:81:B8:43:BE:0F:3E:50:44:19:9E:02:4B Certificate issuer: /CN=16055801b775e774306321455fd463fbd9273c4c Certificate serial: 019B928EECE892EA656A03B3E81DE4E93BE8 Authority key identifier: 16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/z9XB5hGgaOmBuEO-Dz5QRBmeAks.roa Signing time: Tue 06 Jan 2026 09:06:38 +0000 ROA not before: Tue 06 Jan 2026 09:06:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 64267 IP address blocks: 144.56.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.mft rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 05:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:92:8e:ec:e8:92:ea:65:6a:03:b3:e8:1d:e4:e9:3b:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16055801b775e774306321455fd463fbd9273c4c Validity Not Before: Jan 6 09:06:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cfd5c1e611a068e981b843be0f3e5044199e024b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:94:8c:6f:f4:9f:d7:30:dd:0e:87:9f:7d:62: 46:1e:40:99:ef:65:70:28:c8:14:55:91:ee:95:a8: 9a:d3:e3:b6:c2:f9:e6:be:bd:41:02:d0:00:ba:5c: a6:40:cd:6c:df:40:b1:ce:38:6f:27:0c:b7:93:bc: 1e:b0:8f:25:29:39:8f:b6:34:e3:40:87:0c:3c:87: f4:50:87:f4:84:84:30:60:09:c5:f4:55:b8:33:82: 05:24:64:84:20:32:0f:44:a1:28:a1:81:e8:76:ee: c9:70:4c:5a:79:05:8f:f0:f2:46:40:66:0f:73:6e: 5f:df:a1:3c:69:f5:0f:56:f5:60:2e:75:05:05:07: 6c:2b:df:f0:e4:5c:2f:c9:b6:14:a6:30:69:9e:c6: c3:4e:b0:3f:73:96:fe:52:16:a7:c6:97:2b:47:bb: aa:fb:ef:37:28:c7:9f:56:44:ff:35:cc:44:20:95: 0e:35:40:ae:d7:2f:cd:ca:5b:49:07:c0:a9:63:e8: 3c:57:e2:3e:38:86:91:5f:c1:de:6b:14:8a:be:58: 30:73:2d:c4:38:0d:a4:ee:d2:56:ca:cd:0c:20:c3: c0:b6:a2:84:07:b7:f9:78:a1:73:89:31:cc:b5:46: a5:fa:76:d7:b1:a1:99:c6:0a:6e:90:ed:b4:aa:84: ef:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D5:C1:E6:11:A0:68:E9:81:B8:43:BE:0F:3E:50:44:19:9E:02:4B X509v3 Authority Key Identifier: keyid:16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/z9XB5hGgaOmBuEO-Dz5QRBmeAks.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.56.7.0/24 Signature Algorithm: sha256WithRSAEncryption 62:6f:2b:c0:8e:10:6d:e0:bb:29:da:0f:cc:d2:b6:eb:8c:49: 41:e8:5e:ab:64:16:f0:27:d7:92:b9:83:45:97:6a:a0:54:dc: 15:c4:4e:5a:c5:c3:4b:06:8f:d7:32:be:6c:83:ef:7e:42:c7: e2:68:67:d1:6d:bd:b3:6e:5f:ed:cd:8e:5c:de:ca:82:47:b1: ec:bc:63:42:cc:b6:ef:98:f2:19:f0:14:ed:3c:31:66:03:a9: 53:d9:1f:18:7c:c0:c0:60:82:12:6e:8f:29:24:db:5a:bd:ce: ba:80:5f:ff:f8:75:3b:81:90:6e:90:f5:59:4f:0d:55:ea:96: bd:36:24:c0:57:60:4b:7e:fd:4e:80:e8:fb:7a:f3:b9:dd:58: 33:04:6f:59:7f:fe:a4:4d:0b:d0:57:4e:35:3b:f6:25:ce:dd: 96:21:2b:54:c5:29:6f:42:93:2e:15:ce:93:52:6f:b2:b2:73: 1e:4c:ff:39:79:0e:00:4d:86:7c:6b:4a:aa:86:3c:02:44:bf: 84:6a:32:91:26:d9:e6:b1:63:a6:fb:40:6f:e5:24:98:a5:fb: 10:8e:ef:26:98:6a:b3:03:81:b3:4e:3b:16:b3:e4:8e:8d:ff: 08:55:46:f9:f8:71:87:9d:87:2a:46:f1:ac:5d:6f:4e:03:fa: c8:8a:48:83 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZuSjuzokuplagOz6B3k6TvoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2MDU1ODAxYjc3NWU3NzQzMDYzMjE0NTVmZDQ2M2ZiZDky NzNjNGMwHhcNMjYwMTA2MDkwNjM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZmQ1YzFlNjExYTA2OGU5ODFiODQzYmUwZjNlNTA0NDE5OWUwMjRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5SMb/Sf1zDdDoeffWJGHkCZ72Vw KMgUVZHulaia0+O2wvnmvr1BAtAAulymQM1s30CxzjhvJwy3k7wesI8lKTmPtjTj QIcMPIf0UIf0hIQwYAnF9FW4M4IFJGSEIDIPRKEooYHodu7JcExaeQWP8PJGQGYP c25f36E8afUPVvVgLnUFBQdsK9/w5FwvybYUpjBpnsbDTrA/c5b+UhanxpcrR7uq ++83KMefVkT/NcxEIJUONUCu1y/NyltJB8CpY+g8V+I+OIaRX8HeaxSKvlgwcy3E OA2k7tJWys0MIMPAtqKEB7f5eKFziTHMtUal+nbXsaGZxgpukO20qoTvywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFM/VweYRoGjpgbhDvg8+UEQZngJLMB8GA1UdIwQY MBaAFBYFWAG3ded0MGMhRV/UY/vZJzxMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmdWWUFiZDE1M1F3WXlGRlg5UmotOWtuUEV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9mMDM0MGItMzMwZS00NWQ3LWJlNTgt MTM1NzE3ZWYzODhhLzEvejlYQjVoR2dhT21CdUVPLUR6NVFSQm1lQWtzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9mMDM0MGItMzMwZS00NWQ3LWJlNTgtMTM1NzE3ZWYzODhh LzEvRmdWWUFiZDE1M1F3WXlGRlg5UmotOWtuUEV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkDgHMA0G CSqGSIb3DQEBCwUAA4IBAQBibyvAjhBt4Lsp2g/M0rbrjElB6F6rZBbwJ9eSuYNF l2qgVNwVxE5axcNLBo/XMr5sg+9+QsfiaGfRbb2zbl/tzY5c3sqCR7HsvGNCzLbv mPIZ8BTtPDFmA6lT2R8YfMDAYIISbo8pJNtavc66gF//+HU7gZBukPVZTw1V6pa9 NiTAV2BLfv1OgOj7evO53VgzBG9Zf/6kTQvQV041O/Ylzt2WIStUxSlvQpMuFc6T Um+ysnMeTP85eQ4ATYZ8a0qqhjwCRL+EajKRJtnmsWOm+0Bv5SSYpfsQju8mmGqz A4GzTjsWs+SOjf8IVUb5+HGHnYcqRvGsXW9OA/rIikiD -----END CERTIFICATE-----Generated at Mon Jan 19 10:38:39 2026 by rpki-client