This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/ZgmGF0xyruYag3oLwVeIssRnGzA.roa File: ZgmGF0xyruYag3oLwVeIssRnGzA.roa (raw, json) Hash identifier: ZGrhqDqWep/rissiscgLJfcqAEbcRvWxXS2En1y9Bvw= Subject key identifier: 66:09:86:17:4C:72:AE:E6:1A:83:7A:0B:C1:57:88:B2:C4:67:1B:30 Certificate issuer: /CN=b154b4611b8ce8287275bc47a69afa378b4140bf Certificate serial: 019B7C80A79685A2C806BCE0713E4DE5C3EF Authority key identifier: B1:54:B4:61:1B:8C:E8:28:72:75:BC:47:A6:9A:FA:37:8B:41:40:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVS0YRuM6ChydbxHppr6N4tBQL8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/ZgmGF0xyruYag3oLwVeIssRnGzA.roa Signing time: Fri 02 Jan 2026 02:19:24 +0000 ROA not before: Fri 02 Jan 2026 02:19:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214683 IP address blocks: 176.112.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.mft rsync://rpki.ripe.net/repository/DEFAULT/sVS0YRuM6ChydbxHppr6N4tBQL8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:a7:96:85:a2:c8:06:bc:e0:71:3e:4d:e5:c3:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b154b4611b8ce8287275bc47a69afa378b4140bf Validity Not Before: Jan 2 02:19:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=660986174c72aee61a837a0bc15788b2c4671b30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:23:95:84:5d:af:b4:58:7a:09:42:ca:54:db: be:47:42:a2:3d:8e:87:64:10:52:58:a6:93:2b:6f: fa:cf:8b:90:30:c4:6f:6c:68:f9:5f:07:89:b0:d7: ee:ed:19:8f:36:49:93:95:b9:b4:36:62:39:03:1a: c2:90:2c:5e:15:9c:9b:77:0d:41:69:24:e7:6d:c2: c9:dc:d1:17:4e:4b:c2:b0:99:fb:ee:53:30:28:b8: 9b:e5:69:14:99:91:e6:f9:a5:f2:7c:12:8d:31:4a: b7:9f:c8:4d:aa:e4:5b:46:41:34:9a:d2:e6:5b:4a: 0f:19:bb:bc:fd:8e:9a:65:30:78:da:aa:d8:7d:6f: 7b:b0:05:0a:94:65:8e:74:63:4f:c1:01:ef:9d:0b: 50:fc:2b:09:71:8e:50:d5:33:dd:1e:dd:ae:84:16: 9e:cd:29:88:b5:d8:cd:a1:d4:8e:b3:e1:83:53:63: a9:64:3a:b1:6a:fc:19:e6:97:65:ac:43:63:82:aa: 6e:fd:d8:41:c6:99:a0:ca:f1:92:00:f5:cd:39:64: bc:0f:7e:84:0e:ad:72:ee:f1:2c:9e:34:9b:0e:91: 24:a3:d8:0e:07:4c:c7:b5:7e:9c:d4:9f:ca:6a:fe: f5:7f:8c:6b:f5:67:3d:f5:7c:9a:34:46:3f:6d:38: c2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:09:86:17:4C:72:AE:E6:1A:83:7A:0B:C1:57:88:B2:C4:67:1B:30 X509v3 Authority Key Identifier: keyid:B1:54:B4:61:1B:8C:E8:28:72:75:BC:47:A6:9A:FA:37:8B:41:40:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVS0YRuM6ChydbxHppr6N4tBQL8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/ZgmGF0xyruYag3oLwVeIssRnGzA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.112.91.0/24 Signature Algorithm: sha256WithRSAEncryption 28:81:34:ba:82:81:6f:c5:b0:6c:b5:46:21:12:ed:f9:44:47: e5:a2:32:44:f7:ae:7d:0f:9d:b0:9d:5b:8f:5a:5b:cf:c8:f5: f6:dd:95:cf:99:84:9c:89:21:5b:6c:50:36:fd:4a:63:e6:4b: 54:a0:59:aa:cf:28:15:2c:3c:bf:bc:1a:dd:1f:2f:ea:18:53: 03:27:1c:23:51:28:3f:58:c2:95:92:f4:e8:b5:39:41:24:1f: 22:c6:90:6f:89:54:e0:8c:63:e3:5d:8f:02:47:5a:42:6c:f2: ed:de:b6:e8:7e:b4:be:54:97:17:50:79:49:d4:a1:f7:8a:77: 20:45:70:22:b8:d2:0e:b9:e3:77:70:b1:cf:85:5f:4e:f6:4f: 5a:8b:0c:c9:19:38:07:41:6d:cf:0d:74:ec:ec:5a:99:14:bd: 08:eb:79:e0:18:78:ab:bc:63:c8:ac:ea:1b:fd:92:85:49:2c: 10:6c:d6:ed:02:c2:8b:e4:5c:42:2a:db:47:92:09:3c:19:ef: e6:7d:63:49:d6:d6:9e:87:1c:1c:c6:c8:4c:11:31:29:35:0b: d3:d4:b8:5b:0d:72:c4:03:79:2a:e7:4d:ac:38:7d:f7:2e:1e: d5:3b:fa:47:c0:b2:0f:77:aa:59:05:60:53:ee:9d:17:50:37: 35:15:07:ac -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gKeWhaLIBrzgcT5N5cPvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNTRiNDYxMWI4Y2U4Mjg3Mjc1YmM0N2E2OWFmYTM3OGI0 MTQwYmYwHhcNMjYwMTAyMDIxOTI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NjA5ODYxNzRjNzJhZWU2MWE4MzdhMGJjMTU3ODhiMmM0NjcxYjMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoyOVhF2vtFh6CULKVNu+R0KiPY6H ZBBSWKaTK2/6z4uQMMRvbGj5XweJsNfu7RmPNkmTlbm0NmI5AxrCkCxeFZybdw1B aSTnbcLJ3NEXTkvCsJn77lMwKLib5WkUmZHm+aXyfBKNMUq3n8hNquRbRkE0mtLm W0oPGbu8/Y6aZTB42qrYfW97sAUKlGWOdGNPwQHvnQtQ/CsJcY5Q1TPdHt2uhBae zSmItdjNodSOs+GDU2OpZDqxavwZ5pdlrENjgqpu/dhBxpmgyvGSAPXNOWS8D36E Dq1y7vEsnjSbDpEko9gOB0zHtX6c1J/Kav71f4xr9Wc99XyaNEY/bTjCbQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGYJhhdMcq7mGoN6C8FXiLLEZxswMB8GA1UdIwQY MBaAFLFUtGEbjOgocnW8R6aa+jeLQUC/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1ZTMFlSdU02Q2h5ZGJ4SHBwcjZONHRCUUw4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9iZjJjMjUtNjkyOC00YmNiLTg0ZmIt NGIxMjQ3NTg1MWI4LzEvWmdtR0YweHlydVlhZzNvTHdWZUlzc1JuR3pBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi9iZjJjMjUtNjkyOC00YmNiLTg0ZmItNGIxMjQ3NTg1MWI4 LzEvc1ZTMFlSdU02Q2h5ZGJ4SHBwcjZONHRCUUw4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHBbMA0G CSqGSIb3DQEBCwUAA4IBAQAogTS6goFvxbBstUYhEu35REflojJE9659D52wnVuP WlvPyPX23ZXPmYSciSFbbFA2/Upj5ktUoFmqzygVLDy/vBrdHy/qGFMDJxwjUSg/ WMKVkvTotTlBJB8ixpBviVTgjGPjXY8CR1pCbPLt3rbofrS+VJcXUHlJ1KH3incg RXAiuNIOueN3cLHPhV9O9k9aiwzJGTgHQW3PDXTs7FqZFL0I63ngGHirvGPIrOob /ZKFSSwQbNbtAsKL5FxCKttHkgk8Ge/mfWNJ1taehxwcxshMETEpNQvT1LhbDXLE A3kq502sOH33Lh7VO/pHwLIPd6pZBWBT7p0XUDc1FQes -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:12 2026 by rpki-client