This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/d983cd-3f8e-4d6e-a38c-4d8d62b18e89/1/zMOvlAxBWsTKC4R-FDCxda38PNI.roa File: zMOvlAxBWsTKC4R-FDCxda38PNI.roa (raw, json) Hash identifier: RZ8FhnDSP7KxAKJv1pV2jn4fr5uOUX+zk+OqfCpNUKU= Subject key identifier: CC:C3:AF:94:0C:41:5A:C4:CA:0B:84:7E:14:30:B1:75:AD:FC:3C:D2 Certificate issuer: /CN=6c5311a57ccfcb5135261ff39bd19a115ef3e7cf Certificate serial: 019B7DCAE9E3B58929096711B187672E40F7 Authority key identifier: 6C:53:11:A5:7C:CF:CB:51:35:26:1F:F3:9B:D1:9A:11:5E:F3:E7:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bFMRpXzPy1E1Jh_zm9GaEV7z588.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/d983cd-3f8e-4d6e-a38c-4d8d62b18e89/1/zMOvlAxBWsTKC4R-FDCxda38PNI.roa Signing time: Fri 02 Jan 2026 08:20:08 +0000 ROA not before: Fri 02 Jan 2026 08:20:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205187 IP address blocks: 185.226.248.0/22 maxlen: 24 2a0c:7e00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/d983cd-3f8e-4d6e-a38c-4d8d62b18e89/1/bFMRpXzPy1E1Jh_zm9GaEV7z588.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/d983cd-3f8e-4d6e-a38c-4d8d62b18e89/1/bFMRpXzPy1E1Jh_zm9GaEV7z588.mft rsync://rpki.ripe.net/repository/DEFAULT/bFMRpXzPy1E1Jh_zm9GaEV7z588.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 23:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:e9:e3:b5:89:29:09:67:11:b1:87:67:2e:40:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c5311a57ccfcb5135261ff39bd19a115ef3e7cf Validity Not Before: Jan 2 08:20:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ccc3af940c415ac4ca0b847e1430b175adfc3cd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a9:70:8c:bb:62:06:8d:20:29:6f:3d:39:f1: 83:93:fe:15:9c:7b:9a:12:f2:33:e7:e8:5e:09:52: 14:e9:f1:d4:fa:31:fe:a7:a4:11:85:66:11:de:97: 3a:c4:ae:19:84:7f:29:11:11:33:b9:7d:16:8b:dc: 02:8a:f2:b3:e0:9b:ec:f2:9f:db:19:15:09:79:50: e4:b8:c0:e6:65:ca:8f:5f:d3:1b:d4:e1:ab:7b:eb: ce:1f:a7:1c:3e:e9:14:8e:21:16:0f:26:31:12:99: 16:9c:37:d8:83:2b:a6:af:f0:2b:32:cf:da:93:d1: 05:90:c7:29:bb:4a:6e:7e:97:03:ca:16:51:b0:96: 21:c4:b4:a1:4c:d4:cf:65:ea:44:20:b1:01:f7:f7: 69:2e:e9:14:9f:98:6b:46:ce:9f:3c:92:5f:ad:c4: c8:cc:b3:ed:5e:68:45:7c:02:06:f0:dd:ff:1d:e2: 66:3a:8f:8c:9d:8d:33:b8:ea:11:bd:65:b3:f8:74: 82:bd:27:7c:7c:b9:75:d6:c8:93:3b:5a:00:bb:db: 89:3a:5f:65:f3:f1:7e:e6:b8:fa:9f:a4:29:ce:e9: 32:e9:e7:2d:b1:b2:b1:e9:11:2a:72:22:89:8f:db: 6e:f0:bf:22:73:04:3c:4e:dd:2d:42:47:ba:00:f9: 3e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:C3:AF:94:0C:41:5A:C4:CA:0B:84:7E:14:30:B1:75:AD:FC:3C:D2 X509v3 Authority Key Identifier: keyid:6C:53:11:A5:7C:CF:CB:51:35:26:1F:F3:9B:D1:9A:11:5E:F3:E7:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bFMRpXzPy1E1Jh_zm9GaEV7z588.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/d983cd-3f8e-4d6e-a38c-4d8d62b18e89/1/zMOvlAxBWsTKC4R-FDCxda38PNI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/d983cd-3f8e-4d6e-a38c-4d8d62b18e89/1/bFMRpXzPy1E1Jh_zm9GaEV7z588.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.226.248.0/22 IPv6: 2a0c:7e00::/29 Signature Algorithm: sha256WithRSAEncryption 37:99:7f:50:de:f1:c8:56:a3:fc:4b:8c:83:2e:f5:90:69:80: 2b:d5:54:1b:f2:60:a9:c3:b9:25:76:36:92:3f:56:d7:2b:6c: c3:eb:c7:f0:ce:cc:1a:08:58:ec:80:bf:1c:7b:b4:4e:e5:5c: 75:21:b0:26:2d:5e:07:9c:eb:a0:e2:b1:6b:14:ee:bd:f1:cc: 73:17:66:52:cd:69:ae:f6:77:31:31:93:e7:c3:22:6f:08:59: 96:0a:f6:b4:88:34:59:5c:92:e7:37:36:47:72:77:7d:37:a9: 0a:b2:93:47:1b:a1:6a:9e:5e:28:88:79:49:c7:d7:28:8d:25: 68:e7:85:26:b5:2a:b1:8e:1f:01:a5:71:55:2a:37:65:76:28: dd:a5:ee:5b:17:e3:c4:08:bc:4b:f3:9a:fa:bf:0e:ae:6f:eb: c6:f0:06:d9:1b:1c:7b:c0:47:e7:82:3e:79:84:1d:49:b6:a8: aa:a6:e0:12:f1:01:58:aa:be:8e:3e:bb:50:2d:ec:ca:cc:24: c7:f7:be:0d:cc:cd:b9:df:2c:02:0e:8c:09:6a:ec:99:8f:e6: f4:a8:7d:77:75:d8:f5:3c:2c:ed:0d:08:39:52:a6:a8:56:91: cf:26:64:74:f2:a7:7f:e7:d1:03:06:d0:5e:41:40:4e:e2:25: c9:70:0c:7a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9yunjtYkpCWcRsYdnLkD3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjNTMxMWE1N2NjZmNiNTEzNTI2MWZmMzliZDE5YTExNWVm M2U3Y2YwHhcNMjYwMTAyMDgyMDA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjY2MzYWY5NDBjNDE1YWM0Y2EwYjg0N2UxNDMwYjE3NWFkZmMzY2QyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6lwjLtiBo0gKW89OfGDk/4VnHua EvIz5+heCVIU6fHU+jH+p6QRhWYR3pc6xK4ZhH8pEREzuX0Wi9wCivKz4Jvs8p/b GRUJeVDkuMDmZcqPX9Mb1OGre+vOH6ccPukUjiEWDyYxEpkWnDfYgyumr/ArMs/a k9EFkMcpu0pufpcDyhZRsJYhxLShTNTPZepEILEB9/dpLukUn5hrRs6fPJJfrcTI zLPtXmhFfAIG8N3/HeJmOo+MnY0zuOoRvWWz+HSCvSd8fLl11siTO1oAu9uJOl9l 8/F+5rj6n6Qpzuky6ectsbKx6REqciKJj9tu8L8icwQ8Tt0tQke6APk+1QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMzDr5QMQVrEyguEfhQwsXWt/DzSMB8GA1UdIwQY MBaAFGxTEaV8z8tRNSYf85vRmhFe8+fPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkZNUnBYelB5MUUxSmhfem05R2FFVjd6NTg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi9kOTgzY2QtM2Y4ZS00ZDZlLWEzOGMt NGQ4ZDYyYjE4ZTg5LzEvek1PdmxBeEJXc1RLQzRSLUZEQ3hkYTM4UE5JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi9kOTgzY2QtM2Y4ZS00ZDZlLWEzOGMtNGQ4ZDYyYjE4ZTg5 LzEvYkZNUnBYelB5MUUxSmhfem05R2FFVjd6NTg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCueL4MA0E AgACMAcDBQMqDH4AMA0GCSqGSIb3DQEBCwUAA4IBAQA3mX9Q3vHIVqP8S4yDLvWQ aYAr1VQb8mCpw7kldjaSP1bXK2zD68fwzswaCFjsgL8ce7RO5Vx1IbAmLV4HnOug 4rFrFO698cxzF2ZSzWmu9ncxMZPnwyJvCFmWCva0iDRZXJLnNzZHcnd9N6kKspNH G6Fqnl4oiHlJx9cojSVo54UmtSqxjh8BpXFVKjdldijdpe5bF+PECLxL85r6vw6u b+vG8AbZGxx7wEfngj55hB1JtqiqpuAS8QFYqr6OPrtQLezKzCTH974NzM253ywC DowJauyZj+b0qH13ddj1PCztDQg5UqaoVpHPJmR08qd/59EDBtBeQUBO4iXJcAx6 -----END CERTIFICATE-----Generated at Tue Feb 10 08:36:59 2026 by rpki-client