This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/ZoMbhLRe32uOkMK8hwS9ali-Eqw.roa File: ZoMbhLRe32uOkMK8hwS9ali-Eqw.roa (raw, json) Hash identifier: JRuU+ZyopWBcMt/8KJluZ75llM4qdJd/sZ4QglM1TbE= Subject key identifier: 66:83:1B:84:B4:5E:DF:6B:8E:90:C2:BC:87:04:BD:6A:58:BE:12:AC Certificate issuer: /CN=1c344f11597594882853a79581dd2bf789eeb31f Certificate serial: 019B7F13CBDE6E446A2C5BEEC31A63E27F75 Authority key identifier: 1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/ZoMbhLRe32uOkMK8hwS9ali-Eqw.roa Signing time: Fri 02 Jan 2026 14:19:22 +0000 ROA not before: Fri 02 Jan 2026 14:19:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24641 IP address blocks: 185.50.228.0/22 maxlen: 22 2a01:ade0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:cb:de:6e:44:6a:2c:5b:ee:c3:1a:63:e2:7f:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c344f11597594882853a79581dd2bf789eeb31f Validity Not Before: Jan 2 14:19:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=66831b84b45edf6b8e90c2bc8704bd6a58be12ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:42:ed:de:21:6e:ab:cd:48:84:b1:b5:ae:12: 88:06:29:9f:e2:b5:22:ff:2d:2f:d4:d2:0b:4c:27: f6:41:fe:87:23:db:41:86:e7:28:89:61:54:64:e4: b9:86:8d:24:d6:9b:de:bc:de:56:93:ba:95:57:5f: 1e:57:cf:94:1f:ed:e9:40:98:4c:22:d1:a3:14:40: 4d:77:77:fe:78:c5:78:94:ec:64:f0:b8:6f:67:10: 4f:1a:05:f3:7f:17:56:cb:0f:42:8b:09:32:18:58: 44:85:c4:35:5d:17:a1:36:06:a7:7f:f2:f6:48:00: 1d:e3:7d:b8:9a:7d:7a:ab:ea:f4:58:38:ea:44:8c: b9:86:fb:1b:75:19:8e:57:42:bb:d6:61:6c:1d:2c: ce:d0:cc:69:4a:7d:f7:c2:bc:bd:5f:6c:6e:21:98: 1a:7a:79:29:cc:5e:80:be:73:d1:47:e7:ef:26:c5: 1f:7e:04:ed:83:f4:67:f2:39:45:d2:55:52:31:ff: c2:9b:c6:76:1d:2d:c8:fa:6f:af:93:7c:82:01:ce: 13:c2:62:77:7d:6d:a7:d3:4c:f2:35:37:4a:41:62: 63:b2:0b:a3:ba:b5:8f:6d:48:cf:85:33:32:dd:f9: ad:44:48:cd:41:be:db:c8:9d:70:c5:b7:37:02:c7: f8:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:83:1B:84:B4:5E:DF:6B:8E:90:C2:BC:87:04:BD:6A:58:BE:12:AC X509v3 Authority Key Identifier: keyid:1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/ZoMbhLRe32uOkMK8hwS9ali-Eqw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.50.228.0/22 IPv6: 2a01:ade0::/32 Signature Algorithm: sha256WithRSAEncryption 76:c1:22:42:22:eb:19:b9:95:63:ca:39:ec:4f:95:de:2c:8a: 32:62:9e:bf:51:e5:51:c7:18:5b:5d:84:5f:0c:91:8b:9a:e1: 25:ee:ff:b7:b3:6d:35:b5:15:45:01:86:37:18:1b:80:05:1c: ab:45:d5:c4:bc:eb:ae:5d:26:f4:23:1a:20:5c:a5:2e:93:48: 0c:28:e8:89:58:44:0a:0c:b5:b8:d2:86:4f:36:0a:b7:83:df: f3:29:55:ed:2a:ae:72:42:aa:ca:db:01:37:5d:21:f3:ac:da: 1d:a5:02:92:1e:6f:fd:b0:ff:64:13:24:43:75:52:de:5e:9f: ee:04:94:7a:ba:8a:b5:d8:ff:cc:42:f5:52:b8:9e:00:dd:96: 56:41:28:78:ed:02:d0:f9:1c:39:c2:fd:b6:4a:cd:1f:05:21: ac:36:7e:da:d4:16:e8:ad:80:f2:90:3d:32:48:79:9e:c1:fd: a0:25:88:5b:ea:8d:a2:5c:d7:13:b1:aa:7f:e1:38:83:74:58: 8c:52:e3:35:05:dc:c2:f1:ba:3e:ef:be:b5:e4:fb:80:c7:6e: e7:e9:6a:04:04:e3:7d:d4:2d:fb:23:46:89:34:25:c1:22:3b: 5c:c6:f0:eb:fc:77:6d:45:ca:72:c7:e6:1b:a9:37:ec:a1:c5: 65:67:6f:7d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/E8vebkRqLFvuwxpj4n91MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMzQ0ZjExNTk3NTk0ODgyODUzYTc5NTgxZGQyYmY3ODll ZWIzMWYwHhcNMjYwMTAyMTQxOTIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NjgzMWI4NGI0NWVkZjZiOGU5MGMyYmM4NzA0YmQ2YTU4YmUxMmFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAukLt3iFuq81IhLG1rhKIBimf4rUi /y0v1NILTCf2Qf6HI9tBhucoiWFUZOS5ho0k1pvevN5Wk7qVV18eV8+UH+3pQJhM ItGjFEBNd3f+eMV4lOxk8LhvZxBPGgXzfxdWyw9CiwkyGFhEhcQ1XRehNganf/L2 SAAd4324mn16q+r0WDjqRIy5hvsbdRmOV0K71mFsHSzO0MxpSn33wry9X2xuIZga enkpzF6AvnPRR+fvJsUffgTtg/Rn8jlF0lVSMf/Cm8Z2HS3I+m+vk3yCAc4TwmJ3 fW2n00zyNTdKQWJjsgujurWPbUjPhTMy3fmtREjNQb7byJ1wxbc3Asf4cQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGaDG4S0Xt9rjpDCvIcEvWpYvhKsMB8GA1UdIwQY MBaAFBw0TxFZdZSIKFOnlYHdK/eJ7rMfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSERSUEVWbDFsSWdvVTZlVmdkMHI5NG51c3g4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9mMDYxOTEtYjBhOC00OTUwLWIwMjct ZGVlYzZmY2YyZDk1LzEvWm9NYmhMUmUzMnVPa01LOGh3UzlhbGktRXF3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC9mMDYxOTEtYjBhOC00OTUwLWIwMjctZGVlYzZmY2YyZDk1 LzEvSERSUEVWbDFsSWdvVTZlVmdkMHI5NG51c3g4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTLkMA0E AgACMAcDBQAqAa3gMA0GCSqGSIb3DQEBCwUAA4IBAQB2wSJCIusZuZVjyjnsT5Xe LIoyYp6/UeVRxxhbXYRfDJGLmuEl7v+3s201tRVFAYY3GBuABRyrRdXEvOuuXSb0 IxogXKUuk0gMKOiJWEQKDLW40oZPNgq3g9/zKVXtKq5yQqrK2wE3XSHzrNodpQKS Hm/9sP9kEyRDdVLeXp/uBJR6uoq12P/MQvVSuJ4A3ZZWQSh47QLQ+Rw5wv22Ss0f BSGsNn7a1BborYDykD0ySHmewf2gJYhb6o2iXNcTsap/4TiDdFiMUuM1BdzC8bo+ 77615PuAx27n6WoEBON91C37I0aJNCXBIjtcxvDr/HdtRcpyx+YbqTfsocVlZ299 -----END CERTIFICATE-----Generated at Mon Jan 26 22:36:21 2026 by rpki-client