This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/7d43ea-1ef7-4bdd-8d4d-f277745cf5a3/1/ZskxnuDG6fMgD-H_7uVUAYgrA_I.roa File: ZskxnuDG6fMgD-H_7uVUAYgrA_I.roa (raw, json) Hash identifier: 8wU9ul7S+8AZLJpKxnijl5gAw5JCYACT07glI9IgGUo= Subject key identifier: 66:C9:31:9E:E0:C6:E9:F3:20:0F:E1:FF:EE:E5:54:01:88:2B:03:F2 Certificate issuer: /CN=66118b4e1c9e5543d1ea70c3b73f8e3fee02dea2 Certificate serial: 019B7B35E6B22D8D71EF620C4C540C5821B0 Authority key identifier: 66:11:8B:4E:1C:9E:55:43:D1:EA:70:C3:B7:3F:8E:3F:EE:02:DE:A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhGLThyeVUPR6nDDtz-OP-4C3qI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/7d43ea-1ef7-4bdd-8d4d-f277745cf5a3/1/ZskxnuDG6fMgD-H_7uVUAYgrA_I.roa Signing time: Thu 01 Jan 2026 20:18:08 +0000 ROA not before: Thu 01 Jan 2026 20:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207045 IP address blocks: 185.123.113.0/24 maxlen: 24 2a0c:6400::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/7d43ea-1ef7-4bdd-8d4d-f277745cf5a3/1/ZhGLThyeVUPR6nDDtz-OP-4C3qI.crl rsync://rpki.ripe.net/repository/DEFAULT/94/7d43ea-1ef7-4bdd-8d4d-f277745cf5a3/1/ZhGLThyeVUPR6nDDtz-OP-4C3qI.mft rsync://rpki.ripe.net/repository/DEFAULT/ZhGLThyeVUPR6nDDtz-OP-4C3qI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:e6:b2:2d:8d:71:ef:62:0c:4c:54:0c:58:21:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66118b4e1c9e5543d1ea70c3b73f8e3fee02dea2 Validity Not Before: Jan 1 20:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=66c9319ee0c6e9f3200fe1ffeee55401882b03f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bf:05:73:5a:c2:11:6a:96:a3:71:1a:c5:78: 2b:fe:08:49:38:45:76:59:e1:dc:43:7d:08:c9:f6: 5e:a3:10:15:2e:4d:3d:31:d1:b4:47:16:7b:ba:3d: b3:79:ee:c8:e4:e2:3d:7d:97:8d:bf:31:4b:48:13: 1d:aa:22:ed:ae:fb:64:21:aa:df:96:39:c8:7f:a3: 15:61:8f:eb:4c:f2:48:e8:8b:2d:a4:4d:d1:7b:bd: 1f:82:39:91:cb:d4:4f:b7:75:44:ec:35:26:6c:23: 2b:30:71:8b:b6:83:b4:ea:b2:ae:0e:ed:44:0d:84: 97:99:8b:9c:c6:59:02:e3:bb:1f:b1:06:89:09:a8: 60:39:51:9e:3a:84:bd:14:29:f6:97:94:3a:e7:3c: 19:ec:56:25:5a:0d:a5:75:da:a3:cd:10:6c:07:94: 0b:11:6f:57:d9:33:78:14:64:e0:34:ac:e5:07:78: 93:59:8e:6a:9e:62:e6:ba:fc:be:84:3a:0d:3d:ce: 18:51:b8:bc:9d:8d:5d:fa:27:b7:77:83:25:9f:57: 30:6c:1c:3a:d4:13:9b:fd:43:41:df:96:34:d3:19: 2f:ac:3f:18:86:1b:c2:67:34:3c:27:89:9a:76:12: a9:8d:5b:22:b5:be:44:d8:c6:2c:38:4d:a6:c8:e6: ce:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:C9:31:9E:E0:C6:E9:F3:20:0F:E1:FF:EE:E5:54:01:88:2B:03:F2 X509v3 Authority Key Identifier: keyid:66:11:8B:4E:1C:9E:55:43:D1:EA:70:C3:B7:3F:8E:3F:EE:02:DE:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhGLThyeVUPR6nDDtz-OP-4C3qI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/7d43ea-1ef7-4bdd-8d4d-f277745cf5a3/1/ZskxnuDG6fMgD-H_7uVUAYgrA_I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/7d43ea-1ef7-4bdd-8d4d-f277745cf5a3/1/ZhGLThyeVUPR6nDDtz-OP-4C3qI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.123.113.0/24 IPv6: 2a0c:6400::/32 Signature Algorithm: sha256WithRSAEncryption 84:94:09:5a:9f:91:cc:6a:ca:46:37:b8:5e:30:29:ed:43:a0: 9c:c6:88:9b:46:b5:e6:85:5d:22:ee:ed:cb:24:91:fc:29:b5: b3:71:a5:58:ae:0e:8e:b1:08:54:20:50:e1:52:4c:24:f3:de: fb:04:40:0a:90:00:f9:61:82:dc:7a:15:8b:3d:fb:c9:33:65: 81:f8:dd:3d:b2:ab:c1:d7:51:bd:df:62:d1:9e:30:ac:eb:ff: 7f:82:54:92:d8:c8:18:a5:1d:3f:5e:5d:7e:e6:bf:52:90:98: ba:12:da:ad:9d:27:ae:61:78:cb:07:a1:b0:e4:9e:cc:88:8f: 9f:14:89:38:b4:40:ea:50:76:98:bf:7c:36:fd:f9:57:23:76: ae:e5:ff:0f:bc:4f:a7:95:ec:3d:e6:0a:57:4d:e3:34:f5:15: 81:32:50:9a:ac:f1:9e:c6:f5:38:6e:19:e9:a0:d0:7d:4f:11: b9:ac:87:fc:15:4b:b5:a2:71:30:23:c4:83:d6:17:76:2a:b2: b9:02:b7:36:17:40:25:ec:80:03:fd:60:e5:d9:fa:dc:5d:6d: d8:74:e6:fc:42:b1:a5:8f:67:8a:1f:89:6c:a5:f7:c9:6a:e4: 5b:d8:e9:c0:d3:d4:35:1b:2e:72:c2:3c:f1:14:36:68:bf:b5: 23:52:45:80 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7NeayLY1x72IMTFQMWCGwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2MTE4YjRlMWM5ZTU1NDNkMWVhNzBjM2I3M2Y4ZTNmZWUw MmRlYTIwHhcNMjYwMTAxMjAxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NmM5MzE5ZWUwYzZlOWYzMjAwZmUxZmZlZWU1NTQwMTg4MmIwM2YyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArL8Fc1rCEWqWo3EaxXgr/ghJOEV2 WeHcQ30IyfZeoxAVLk09MdG0RxZ7uj2zee7I5OI9fZeNvzFLSBMdqiLtrvtkIarf ljnIf6MVYY/rTPJI6IstpE3Re70fgjmRy9RPt3VE7DUmbCMrMHGLtoO06rKuDu1E DYSXmYucxlkC47sfsQaJCahgOVGeOoS9FCn2l5Q65zwZ7FYlWg2lddqjzRBsB5QL EW9X2TN4FGTgNKzlB3iTWY5qnmLmuvy+hDoNPc4YUbi8nY1d+ie3d4Mln1cwbBw6 1BOb/UNB35Y00xkvrD8YhhvCZzQ8J4madhKpjVsitb5E2MYsOE2myObOowIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGbJMZ7gxunzIA/h/+7lVAGIKwPyMB8GA1UdIwQY MBaAFGYRi04cnlVD0epww7c/jj/uAt6iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmhHTFRoeWVWVVBSNm5ERHR6LU9QLTRDM3FJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC83ZDQzZWEtMWVmNy00YmRkLThkNGQt ZjI3Nzc0NWNmNWEzLzEvWnNreG51REc2Zk1nRC1IXzd1VlVBWWdyQV9JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC83ZDQzZWEtMWVmNy00YmRkLThkNGQtZjI3Nzc0NWNmNWEz LzEvWmhHTFRoeWVWVVBSNm5ERHR6LU9QLTRDM3FJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuXtxMA0E AgACMAcDBQAqDGQAMA0GCSqGSIb3DQEBCwUAA4IBAQCElAlan5HMaspGN7heMCnt Q6CcxoibRrXmhV0i7u3LJJH8KbWzcaVYrg6OsQhUIFDhUkwk8977BEAKkAD5YYLc ehWLPfvJM2WB+N09sqvB11G932LRnjCs6/9/glSS2MgYpR0/Xl1+5r9SkJi6Etqt nSeuYXjLB6Gw5J7MiI+fFIk4tEDqUHaYv3w2/flXI3au5f8PvE+nlew95gpXTeM0 9RWBMlCarPGexvU4bhnpoNB9TxG5rIf8FUu1onEwI8SD1hd2KrK5Arc2F0Al7IAD /WDl2frcXW3YdOb8QrGlj2eKH4lspffJauRb2OnA09Q1Gy5ywjzxFDZov7UjUkWA -----END CERTIFICATE-----Generated at Mon Feb 9 23:55:41 2026 by rpki-client