This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/6efd1b-3e10-4446-92c7-b92cb6113035/1/zKQ09Wpk_sKjI1YhqBd22SglJPI.roa File: zKQ09Wpk_sKjI1YhqBd22SglJPI.roa (raw, json) Hash identifier: sGEPj5oiG+Z1hsWttL/M7GZNmLLDhgxlhH4HT0fE8Q4= Subject key identifier: CC:A4:34:F5:6A:64:FE:C2:A3:23:56:21:A8:17:76:D9:28:25:24:F2 Certificate issuer: /CN=aa88fae35b66b4de2e41ca5ee077b5ef0b4ab649 Certificate serial: 019B79113917D90C6643E95503AB54C5AF39 Authority key identifier: AA:88:FA:E3:5B:66:B4:DE:2E:41:CA:5E:E0:77:B5:EF:0B:4A:B6:49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoj641tmtN4uQcpe4He17wtKtkk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/6efd1b-3e10-4446-92c7-b92cb6113035/1/zKQ09Wpk_sKjI1YhqBd22SglJPI.roa Signing time: Thu 01 Jan 2026 10:18:50 +0000 ROA not before: Thu 01 Jan 2026 10:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50631 IP address blocks: 185.159.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/6efd1b-3e10-4446-92c7-b92cb6113035/1/qoj641tmtN4uQcpe4He17wtKtkk.crl rsync://rpki.ripe.net/repository/DEFAULT/69/6efd1b-3e10-4446-92c7-b92cb6113035/1/qoj641tmtN4uQcpe4He17wtKtkk.mft rsync://rpki.ripe.net/repository/DEFAULT/qoj641tmtN4uQcpe4He17wtKtkk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:39:17:d9:0c:66:43:e9:55:03:ab:54:c5:af:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa88fae35b66b4de2e41ca5ee077b5ef0b4ab649 Validity Not Before: Jan 1 10:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cca434f56a64fec2a3235621a81776d9282524f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:fa:4d:ab:e5:d7:db:da:80:79:83:2b:19:db: 3d:9f:ad:a3:65:1c:32:85:43:ad:c6:08:00:00:31: 3f:95:88:dd:b7:ad:90:a7:37:66:fe:e5:7d:a5:ef: b8:5e:80:36:6f:34:cd:47:a6:56:bd:d1:f4:3d:07: b2:0f:a3:b4:ed:25:23:bd:96:d8:4d:0c:29:2e:7e: 19:56:36:03:e0:1f:e5:40:95:de:6c:ff:b3:f6:c5: 16:7c:1b:98:4b:48:0a:53:2d:46:f4:b8:09:cd:20: 00:fb:e3:01:5a:8d:90:0a:66:3a:f8:db:77:a4:9e: 24:f6:14:5b:bd:2b:c3:21:77:9b:aa:c7:82:ce:9c: 4e:4b:70:19:0d:12:96:51:fe:3d:99:ea:4b:d6:92: d9:2b:e2:4d:b1:e4:40:28:a5:05:f7:6e:6c:9d:7f: 17:cb:c4:5c:70:80:aa:0a:82:88:49:a0:9c:06:de: c7:69:17:b9:89:92:d4:24:98:1b:f1:e6:58:86:79: ff:23:8b:28:26:a1:49:fc:73:95:3b:b9:61:f0:a6: 45:d4:dc:4c:d5:5c:14:ca:d3:8d:d1:4b:35:18:3a: 2c:0b:5d:e5:85:cb:85:e2:d4:b7:ac:b0:ae:14:89: bf:37:f2:31:ab:b0:a8:43:ef:7e:8c:ab:0d:8c:72: 8d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A4:34:F5:6A:64:FE:C2:A3:23:56:21:A8:17:76:D9:28:25:24:F2 X509v3 Authority Key Identifier: keyid:AA:88:FA:E3:5B:66:B4:DE:2E:41:CA:5E:E0:77:B5:EF:0B:4A:B6:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoj641tmtN4uQcpe4He17wtKtkk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6efd1b-3e10-4446-92c7-b92cb6113035/1/zKQ09Wpk_sKjI1YhqBd22SglJPI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6efd1b-3e10-4446-92c7-b92cb6113035/1/qoj641tmtN4uQcpe4He17wtKtkk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.159.248.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:6b:76:e9:c7:99:42:4a:ec:4c:b1:24:63:80:c9:b3:bb:6f: 5e:c3:90:68:a9:68:92:09:d9:f5:e9:f1:ea:4e:c8:c0:2d:a2: a7:74:ae:e8:14:84:4a:9f:b2:c4:fa:56:1d:a4:59:b1:fb:b3: 21:04:69:89:05:f7:70:a5:91:24:d0:c9:61:46:c4:9c:bb:4a: 42:83:65:f1:d8:1d:2c:22:17:52:0c:53:f8:db:d2:ef:ef:20: d3:bc:3c:32:05:e2:5b:12:c4:ee:52:17:47:da:a8:84:49:f2: 9f:18:a2:be:ea:93:8d:bf:11:3e:28:7e:91:c2:5e:d6:b4:85: 4a:f8:ac:d8:1e:f8:e7:0d:57:4c:7d:92:22:67:50:d5:61:98: e3:e2:31:b2:51:f1:f0:9c:d8:fe:50:6b:eb:57:c4:2e:d4:df: 06:c7:13:47:53:4f:29:4a:c6:b1:9a:18:88:f0:35:30:56:cd: 64:f6:a3:ca:b4:8c:3a:ba:97:82:ec:51:56:b5:70:a2:3b:6f: c5:e1:49:39:00:de:ea:d5:dc:52:f9:e9:a5:65:d6:7c:78:01: 31:3b:e9:21:9a:51:6f:e9:66:82:98:11:f6:95:9c:b8:45:7d: 28:dd:57:27:1d:95:94:a9:c9:7d:5f:6c:45:0d:bd:fe:6b:9d: 39:3d:ce:82 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5ETkX2QxmQ+lVA6tUxa85MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhODhmYWUzNWI2NmI0ZGUyZTQxY2E1ZWUwNzdiNWVmMGI0 YWI2NDkwHhcNMjYwMTAxMTAxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjY2E0MzRmNTZhNjRmZWMyYTMyMzU2MjFhODE3NzZkOTI4MjUyNGYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkfpNq+XX29qAeYMrGds9n62jZRwy hUOtxggAADE/lYjdt62Qpzdm/uV9pe+4XoA2bzTNR6ZWvdH0PQeyD6O07SUjvZbY TQwpLn4ZVjYD4B/lQJXebP+z9sUWfBuYS0gKUy1G9LgJzSAA++MBWo2QCmY6+Nt3 pJ4k9hRbvSvDIXebqseCzpxOS3AZDRKWUf49mepL1pLZK+JNseRAKKUF925snX8X y8RccICqCoKISaCcBt7HaRe5iZLUJJgb8eZYhnn/I4soJqFJ/HOVO7lh8KZF1NxM 1VwUytON0Us1GDosC13lhcuF4tS3rLCuFIm/N/Ixq7CoQ+9+jKsNjHKNbQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMykNPVqZP7CoyNWIagXdtkoJSTyMB8GA1UdIwQY MBaAFKqI+uNbZrTeLkHKXuB3te8LSrZJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcW9qNjQxdG10TjR1UWNwZTRIZTE3d3RLdGtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS82ZWZkMWItM2UxMC00NDQ2LTkyYzct YjkyY2I2MTEzMDM1LzEvektRMDlXcGtfc0tqSTFZaHFCZDIyU2dsSlBJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS82ZWZkMWItM2UxMC00NDQ2LTkyYzctYjkyY2I2MTEzMDM1 LzEvcW9qNjQxdG10TjR1UWNwZTRIZTE3d3RLdGtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZ/4MA0G CSqGSIb3DQEBCwUAA4IBAQBLa3bpx5lCSuxMsSRjgMmzu29ew5BoqWiSCdn16fHq TsjALaKndK7oFIRKn7LE+lYdpFmx+7MhBGmJBfdwpZEk0MlhRsScu0pCg2Xx2B0s IhdSDFP429Lv7yDTvDwyBeJbEsTuUhdH2qiESfKfGKK+6pONvxE+KH6Rwl7WtIVK +KzYHvjnDVdMfZIiZ1DVYZjj4jGyUfHwnNj+UGvrV8Qu1N8GxxNHU08pSsaxmhiI 8DUwVs1k9qPKtIw6upeC7FFWtXCiO2/F4Uk5AN7q1dxS+emlZdZ8eAExO+khmlFv 6WaCmBH2lZy4RX0o3VcnHZWUqcl9X2xFDb3+a505Pc6C -----END CERTIFICATE-----Generated at Mon Feb 9 20:46:47 2026 by rpki-client