This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/ZQDRmVSAS-VQjlQwPz6YndLHMAk.roa File: ZQDRmVSAS-VQjlQwPz6YndLHMAk.roa (raw, json) Hash identifier: HlwMeTdyXew+ZhiKaF8HUzGdDR+H+dDeb0Vxy+YC2Vo= Subject key identifier: 65:00:D1:99:54:80:4B:E5:50:8E:54:30:3F:3E:98:9D:D2:C7:30:09 Certificate issuer: /CN=6d8e0e7e86775b415d3d5780ce4cfec0c859189c Certificate serial: 019B7835103171B06F9179B96254975BE861 Authority key identifier: 6D:8E:0E:7E:86:77:5B:41:5D:3D:57:80:CE:4C:FE:C0:C8:59:18:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/ZQDRmVSAS-VQjlQwPz6YndLHMAk.roa Signing time: Thu 01 Jan 2026 06:18:21 +0000 ROA not before: Thu 01 Jan 2026 06:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212976 IP address blocks: 185.45.254.0/23 maxlen: 23 185.45.254.0/24 maxlen: 24 185.45.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:10:31:71:b0:6f:91:79:b9:62:54:97:5b:e8:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d8e0e7e86775b415d3d5780ce4cfec0c859189c Validity Not Before: Jan 1 06:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6500d19954804be5508e54303f3e989dd2c73009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:fe:47:05:20:57:52:4d:4c:ac:36:86:66:60: f3:b5:43:88:61:dc:b4:b0:a0:8a:fb:df:5c:7c:81: b5:dc:30:9f:33:6f:ab:54:07:b2:9a:35:a9:c5:f2: a6:e7:c7:52:78:ff:6a:88:cc:44:aa:ab:44:2a:ce: dd:01:87:40:7c:07:af:cb:28:0f:9e:78:60:fa:fa: 27:41:d2:4d:c4:64:a5:42:94:79:75:d4:fb:21:a6: 0a:ab:2c:8a:44:be:d1:d6:e7:f8:3f:1a:a0:94:eb: 47:25:8e:86:91:e5:46:b0:d6:0d:a0:a5:d6:93:04: 38:9b:52:44:aa:94:ce:0f:89:9e:53:31:4e:5f:66: e8:ea:41:1a:a6:55:75:65:b5:dd:08:8c:a4:67:89: 5e:ad:65:d7:59:1d:4f:41:03:e5:3a:de:79:30:ca: b8:2a:33:bf:e5:e2:ec:9f:5b:af:a5:35:2a:7c:9c: 9b:1e:0a:fd:ab:73:11:20:86:72:b4:aa:4b:ea:45: 72:15:41:a0:53:e3:4b:0f:df:89:b1:b5:ad:a6:8f: 31:db:93:6d:cb:56:24:08:da:0c:1a:3a:9e:fd:4b: af:49:8e:5c:02:e7:f9:81:86:02:7e:c4:7c:7f:16: e2:91:ae:be:21:90:7e:48:fc:4a:d9:f6:15:f4:11: ce:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:00:D1:99:54:80:4B:E5:50:8E:54:30:3F:3E:98:9D:D2:C7:30:09 X509v3 Authority Key Identifier: keyid:6D:8E:0E:7E:86:77:5B:41:5D:3D:57:80:CE:4C:FE:C0:C8:59:18:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/ZQDRmVSAS-VQjlQwPz6YndLHMAk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.45.254.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:02:c5:b1:0e:d5:43:59:90:d6:fb:0d:7a:f3:7c:49:94:44: ac:d6:a5:e9:8e:6c:f1:b0:37:53:86:90:08:48:98:23:36:4a: 8a:91:be:30:a2:ca:1e:35:5c:2a:f0:3f:d4:58:f2:61:65:c6: f4:66:c6:b6:8e:81:2c:c6:d4:42:e1:d6:10:8f:93:48:a0:aa: 07:b8:48:b0:ac:dc:3a:1c:6f:69:8d:41:fd:5e:a4:0c:69:ed: f9:45:cb:cd:19:06:86:ba:34:1b:5d:a3:d0:50:e3:8b:45:2c: 6d:2e:49:78:6f:76:14:48:d4:26:32:b3:9a:b1:b5:22:20:00: cd:a3:51:62:53:e1:c3:33:b4:77:67:83:d2:ba:96:33:49:2f: 47:6a:90:59:bb:cb:2d:86:d4:02:a1:27:9f:c1:dd:24:f1:7b: 63:83:9e:e9:91:43:bf:37:4f:74:14:3c:04:5b:60:9e:a2:90: 2d:7f:11:9d:cd:23:c0:f5:c0:5e:d5:a8:79:52:b7:2e:77:4d: c5:10:5f:21:7e:7e:44:54:2c:01:48:e6:2a:d6:a7:26:86:a8: 53:63:30:55:f6:79:7a:64:7f:6a:40:be:22:f1:2d:03:54:6a: 79:9e:09:be:48:5f:39:ae:8d:31:6f:a4:91:e4:7f:2f:2f:1a: 09:ac:c0:99 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NRAxcbBvkXm5YlSXW+hhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkOGUwZTdlODY3NzViNDE1ZDNkNTc4MGNlNGNmZWMwYzg1 OTE4OWMwHhcNMjYwMTAxMDYxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NTAwZDE5OTU0ODA0YmU1NTA4ZTU0MzAzZjNlOTg5ZGQyYzczMDA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAov5HBSBXUk1MrDaGZmDztUOIYdy0 sKCK+99cfIG13DCfM2+rVAeymjWpxfKm58dSeP9qiMxEqqtEKs7dAYdAfAevyygP nnhg+vonQdJNxGSlQpR5ddT7IaYKqyyKRL7R1uf4PxqglOtHJY6GkeVGsNYNoKXW kwQ4m1JEqpTOD4meUzFOX2bo6kEaplV1ZbXdCIykZ4lerWXXWR1PQQPlOt55MMq4 KjO/5eLsn1uvpTUqfJybHgr9q3MRIIZytKpL6kVyFUGgU+NLD9+JsbWtpo8x25Nt y1YkCNoMGjqe/UuvSY5cAuf5gYYCfsR8fxbika6+IZB+SPxK2fYV9BHOcwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGUA0ZlUgEvlUI5UMD8+mJ3SxzAJMB8GA1UdIwQY MBaAFG2ODn6Gd1tBXT1XgM5M/sDIWRicMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlk0T2ZvWjNXMEZkUFZlQXprei13TWhaR0p3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8wNTYyMzUtZGYzNi00ODcwLTg3NDYt YWU1ZjRjMTJkZTc5LzEvWlFEUm1WU0FTLVZRamxRd1B6NlluZExITUFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi8wNTYyMzUtZGYzNi00ODcwLTg3NDYtYWU1ZjRjMTJkZTc5 LzEvYlk0T2ZvWjNXMEZkUFZlQXprei13TWhaR0p3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuS3+MA0G CSqGSIb3DQEBCwUAA4IBAQAfAsWxDtVDWZDW+w1683xJlESs1qXpjmzxsDdThpAI SJgjNkqKkb4wosoeNVwq8D/UWPJhZcb0Zsa2joEsxtRC4dYQj5NIoKoHuEiwrNw6 HG9pjUH9XqQMae35RcvNGQaGujQbXaPQUOOLRSxtLkl4b3YUSNQmMrOasbUiIADN o1FiU+HDM7R3Z4PSupYzSS9HapBZu8sthtQCoSefwd0k8Xtjg57pkUO/N090FDwE W2CeopAtfxGdzSPA9cBe1ah5Urcud03FEF8hfn5EVCwBSOYq1qcmhqhTYzBV9nl6 ZH9qQL4i8S0DVGp5ngm+SF85ro0xb6SR5H8vLxoJrMCZ -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:36 2026 by rpki-client