This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/ZIb3BXGAKVujBcIp_T3nsT6a47w.roa File: ZIb3BXGAKVujBcIp_T3nsT6a47w.roa (raw, json) Hash identifier: S8pZt9z+TDNzYyAimANgeNTXam6MeIWw7qjfFLhQu0k= Subject key identifier: 64:86:F7:05:71:80:29:5B:A3:05:C2:29:FD:3D:E7:B1:3E:9A:E3:BC Certificate issuer: /CN=6fccdffda6a4c48914b5e8cde7da5d820b9c9718 Certificate serial: 019B7F1503EC35C01BC0A51C2A6228330584 Authority key identifier: 6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/ZIb3BXGAKVujBcIp_T3nsT6a47w.roa Signing time: Fri 02 Jan 2026 14:20:42 +0000 ROA not before: Fri 02 Jan 2026 14:20:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47447 IP address blocks: 185.230.44.0/24 maxlen: 24 2a06:fcc0:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.crl rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.mft rsync://rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:03:ec:35:c0:1b:c0:a5:1c:2a:62:28:33:05:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6fccdffda6a4c48914b5e8cde7da5d820b9c9718 Validity Not Before: Jan 2 14:20:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6486f7057180295ba305c229fd3de7b13e9ae3bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:88:23:2b:27:8a:1d:98:35:1e:26:71:57:61: a8:81:7f:36:f9:d6:b1:cb:f3:90:01:ec:c3:af:39: 10:3c:28:0e:94:31:81:79:18:53:6d:fa:b3:84:d3: b1:66:15:cc:0f:73:b2:b0:2e:27:b1:c3:0a:dc:ce: c4:05:f2:e5:bc:88:75:79:e2:d2:68:b5:f7:17:7c: d1:1d:09:11:d5:eb:4c:45:a5:b1:cf:74:47:f2:84: 07:3e:42:a6:cd:fa:77:73:9a:3c:33:19:49:d2:e7: 45:f1:f2:01:af:e0:50:ec:d4:49:77:82:fa:5b:be: ea:ae:32:2b:38:15:c3:74:9c:47:77:37:a0:2d:57: 2d:32:f0:45:b7:6d:fa:ac:a6:f0:1a:16:9f:c3:fd: f1:71:b2:2d:a5:8e:9c:f4:eb:3f:db:81:f1:00:77: 3d:ca:75:bc:0b:87:1d:74:19:d5:38:d2:ad:39:ef: 71:4d:95:e1:a0:a8:05:2b:ec:d4:11:fe:e2:d0:e3: 16:41:1d:4b:78:c5:06:b1:e4:64:5a:31:f5:8e:12: e7:35:f0:d6:a8:91:93:fd:1f:e5:78:5f:a4:3b:b6: ab:e5:69:9b:36:c9:cd:ef:e8:a5:8c:0c:8c:9f:87: 97:fc:91:a5:58:3a:ba:64:5c:3e:a4:e6:1f:b7:a8: 93:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:86:F7:05:71:80:29:5B:A3:05:C2:29:FD:3D:E7:B1:3E:9A:E3:BC X509v3 Authority Key Identifier: keyid:6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/ZIb3BXGAKVujBcIp_T3nsT6a47w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.230.44.0/24 IPv6: 2a06:fcc0:a::/48 Signature Algorithm: sha256WithRSAEncryption 2b:8e:c5:aa:82:f2:b7:05:98:4a:02:34:6f:52:94:07:76:1a: e8:3c:f8:cb:05:d5:2c:8a:3c:75:f7:48:01:98:e6:70:ef:12: a8:31:df:2b:0a:bf:a9:d9:e4:27:0c:03:3b:4e:90:75:44:86: be:43:1e:68:17:5a:e5:03:a3:29:e7:ef:37:a2:63:9d:41:1c: 75:64:22:cf:fc:48:8c:ce:36:d7:1e:00:b9:01:10:ef:2a:91: 84:86:7b:f8:ce:20:d6:4f:16:db:77:26:60:67:a3:88:d8:b3: c8:53:02:13:0f:2b:6f:0c:2b:70:f6:78:ec:93:59:29:c0:2c: b5:07:73:c5:b9:03:10:75:4f:e3:db:d4:25:4e:ad:5d:05:06: 9e:39:16:d1:f8:32:ae:d5:8e:54:62:52:51:74:52:e0:e4:4d: 9c:48:08:6c:0f:40:ee:89:dc:63:1d:a3:99:4d:11:10:74:36: 6c:52:ff:7a:c1:d4:2c:63:84:cc:81:54:d0:79:64:ab:84:a6: 54:89:ec:c5:1f:e9:c8:7a:4b:df:05:6c:f2:dc:fa:b0:e4:89: 97:67:c1:f1:4a:4d:b9:40:81:3f:1b:a1:a0:71:0b:e7:0e:8a: 4e:e8:2e:d9:97:8e:a6:8e:d1:09:65:3e:a4:16:f2:93:d0:a2: 75:c3:46:05 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/FQPsNcAbwKUcKmIoMwWEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmY2NkZmZkYTZhNGM0ODkxNGI1ZThjZGU3ZGE1ZDgyMGI5 Yzk3MTgwHhcNMjYwMTAyMTQyMDQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NDg2ZjcwNTcxODAyOTViYTMwNWMyMjlmZDNkZTdiMTNlOWFlM2JjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgIgjKyeKHZg1HiZxV2GogX82+dax y/OQAezDrzkQPCgOlDGBeRhTbfqzhNOxZhXMD3OysC4nscMK3M7EBfLlvIh1eeLS aLX3F3zRHQkR1etMRaWxz3RH8oQHPkKmzfp3c5o8MxlJ0udF8fIBr+BQ7NRJd4L6 W77qrjIrOBXDdJxHdzegLVctMvBFt236rKbwGhafw/3xcbItpY6c9Os/24HxAHc9 ynW8C4cddBnVONKtOe9xTZXhoKgFK+zUEf7i0OMWQR1LeMUGseRkWjH1jhLnNfDW qJGT/R/leF+kO7ar5WmbNsnN7+iljAyMn4eX/JGlWDq6ZFw+pOYft6iTEQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFGSG9wVxgClbowXCKf0957E+muO8MB8GA1UdIwQY MBaAFG/M3/2mpMSJFLXozefaXYILnJcYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjh6Zl9hYWt4SWtVdGVqTjU5cGRnZ3VjbHhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi9jYjAxNTMtODAzYS00YmI2LWIxOWQt YTc3NGU0MWQyNjRjLzEvWkliM0JYR0FLVnVqQmNJcF9UM25zVDZhNDd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi9jYjAxNTMtODAzYS00YmI2LWIxOWQtYTc3NGU0MWQyNjRj LzEvYjh6Zl9hYWt4SWtVdGVqTjU5cGRnZ3VjbHhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAueYsMA8E AgACMAkDBwAqBvzAAAowDQYJKoZIhvcNAQELBQADggEBACuOxaqC8rcFmEoCNG9S lAd2Gug8+MsF1SyKPHX3SAGY5nDvEqgx3ysKv6nZ5CcMAztOkHVEhr5DHmgXWuUD oynn7zeiY51BHHVkIs/8SIzONtceALkBEO8qkYSGe/jOINZPFtt3JmBno4jYs8hT AhMPK28MK3D2eOyTWSnALLUHc8W5AxB1T+Pb1CVOrV0FBp45FtH4Mq7VjlRiUlF0 UuDkTZxICGwPQO6J3GMdo5lNERB0NmxS/3rB1CxjhMyBVNB5ZKuEplSJ7MUf6ch6 S98FbPLc+rDkiZdnwfFKTblAgT8boaBxC+cOik7oLtmXjqaO0QllPqQW8pPQonXD RgU= -----END CERTIFICATE-----Generated at Wed Jan 21 20:24:08 2026 by rpki-client