This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/958fef-0d55-4c00-be8a-cc580521d00f/1/Z4y_2Ze8pod86J3vPA08NXBKRWM.roa File: Z4y_2Ze8pod86J3vPA08NXBKRWM.roa (raw, json) Hash identifier: +xSQ1tZeQyFMF0gRPs8YaAbFYlQoE0EcBp2gy/TwTvw= Subject key identifier: 67:8C:BF:D9:97:BC:A6:87:7C:E8:9D:EF:3C:0D:3C:35:70:4A:45:63 Certificate issuer: /CN=87943cb86e3a703813778fab790d65f0da21615a Certificate serial: 019B7F8357E2F090088B18A45689A818969A Authority key identifier: 87:94:3C:B8:6E:3A:70:38:13:77:8F:AB:79:0D:65:F0:DA:21:61:5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5Q8uG46cDgTd4-reQ1l8NohYVo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/958fef-0d55-4c00-be8a-cc580521d00f/1/Z4y_2Ze8pod86J3vPA08NXBKRWM.roa Signing time: Fri 02 Jan 2026 16:21:12 +0000 ROA not before: Fri 02 Jan 2026 16:21:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43882 IP address blocks: 79.133.160.0/21 maxlen: 24 79.133.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/958fef-0d55-4c00-be8a-cc580521d00f/1/h5Q8uG46cDgTd4-reQ1l8NohYVo.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/958fef-0d55-4c00-be8a-cc580521d00f/1/h5Q8uG46cDgTd4-reQ1l8NohYVo.mft rsync://rpki.ripe.net/repository/DEFAULT/h5Q8uG46cDgTd4-reQ1l8NohYVo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:57:e2:f0:90:08:8b:18:a4:56:89:a8:18:96:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87943cb86e3a703813778fab790d65f0da21615a Validity Not Before: Jan 2 16:21:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=678cbfd997bca6877ce89def3c0d3c35704a4563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:93:54:4d:dd:3a:53:57:04:a9:3a:b6:95:1c: ba:63:bb:78:b4:a6:dd:f1:95:60:80:5f:e1:72:aa: a9:c6:21:a0:f5:18:86:90:1e:1a:b9:45:f7:19:ef: 70:2c:be:94:cb:5d:a3:17:6b:ed:b7:04:53:04:33: f4:59:23:db:76:cc:36:6b:00:36:42:4a:6b:e8:15: 22:ee:5b:ad:7c:14:9f:04:f7:77:cc:94:6b:7c:30: a0:c6:d6:8b:93:96:f9:24:14:da:e9:39:9f:97:74: b5:bf:f6:73:ed:9e:7b:58:81:c5:d1:90:a5:b6:a8: 51:bc:07:6f:ed:e7:8f:7f:95:49:df:15:57:f7:1a: 44:c8:b3:78:85:5c:c1:42:46:07:21:d9:59:c1:ba: d7:05:b1:95:71:7d:32:5e:9b:a5:0e:e7:d5:78:2a: 84:fa:ff:35:eb:8a:95:9f:35:97:6d:65:c6:a5:a8: 2f:cb:84:b9:2f:0a:2d:15:b9:1a:56:0e:14:91:55: 69:e6:e2:f3:dd:4f:70:6d:04:3a:8e:6f:7f:f4:0a: 31:64:6d:1b:2d:4e:7d:45:62:b6:88:f6:c8:00:0e: 4f:27:34:05:4f:c0:68:58:76:a5:c5:ce:3f:e6:c9: ff:56:71:ef:be:a3:d5:92:19:0f:8d:36:e3:b8:71: 1b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:8C:BF:D9:97:BC:A6:87:7C:E8:9D:EF:3C:0D:3C:35:70:4A:45:63 X509v3 Authority Key Identifier: keyid:87:94:3C:B8:6E:3A:70:38:13:77:8F:AB:79:0D:65:F0:DA:21:61:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5Q8uG46cDgTd4-reQ1l8NohYVo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/958fef-0d55-4c00-be8a-cc580521d00f/1/Z4y_2Ze8pod86J3vPA08NXBKRWM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/958fef-0d55-4c00-be8a-cc580521d00f/1/h5Q8uG46cDgTd4-reQ1l8NohYVo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.133.160.0/21 79.133.172.0/22 Signature Algorithm: sha256WithRSAEncryption 03:b2:c5:4d:c7:70:74:c3:07:17:84:1e:9b:2d:2d:3b:8e:a0: d8:f1:df:55:50:10:3c:98:6a:d8:19:f4:04:13:62:1a:0f:d3: 54:ec:93:57:3b:69:f5:13:81:c1:aa:c5:fc:e2:f9:20:9e:71: a9:3d:68:9c:9c:6f:6a:25:99:93:4e:47:a2:0a:43:8f:c7:f0: 5f:97:c1:88:1d:76:9c:ab:31:d6:78:30:dd:63:0c:8d:82:5e: 03:78:d7:16:a4:55:0e:29:f8:80:e5:e0:17:62:89:3b:0b:c4: 5f:2b:11:1a:1a:54:40:8f:fc:06:c0:00:4f:d0:82:d7:d4:fd: bc:41:ed:3f:f4:21:e9:dd:8e:71:66:b6:97:87:6c:62:7c:8f: 5d:5c:ff:dc:ac:22:db:a4:c9:1c:00:3b:56:dc:5f:d4:78:4e: d7:46:b7:fd:30:34:41:a8:93:54:68:bf:34:37:b9:34:81:c1: 1d:91:68:31:a2:69:d2:13:88:5c:c4:a5:2e:69:2a:51:07:85: d4:a5:82:22:67:0e:33:7a:f7:c4:1c:49:c7:38:76:9e:73:c4: 85:bc:67:62:62:67:40:70:98:27:56:21:38:c7:bb:dd:3f:b0: 18:d1:51:d3:d0:ef:30:da:27:ff:c1:ae:7f:80:6b:96:12:c8: e0:64:f8:9c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/g1fi8JAIixikVomoGJaaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3OTQzY2I4NmUzYTcwMzgxMzc3OGZhYjc5MGQ2NWYwZGEy MTYxNWEwHhcNMjYwMTAyMTYyMTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NzhjYmZkOTk3YmNhNjg3N2NlODlkZWYzYzBkM2MzNTcwNGE0NTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz5NUTd06U1cEqTq2lRy6Y7t4tKbd 8ZVggF/hcqqpxiGg9RiGkB4auUX3Ge9wLL6Uy12jF2vttwRTBDP0WSPbdsw2awA2 Qkpr6BUi7lutfBSfBPd3zJRrfDCgxtaLk5b5JBTa6Tmfl3S1v/Zz7Z57WIHF0ZCl tqhRvAdv7eePf5VJ3xVX9xpEyLN4hVzBQkYHIdlZwbrXBbGVcX0yXpulDufVeCqE +v8164qVnzWXbWXGpagvy4S5LwotFbkaVg4UkVVp5uLz3U9wbQQ6jm9/9AoxZG0b LU59RWK2iPbIAA5PJzQFT8BoWHalxc4/5sn/VnHvvqPVkhkPjTbjuHEbRQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGeMv9mXvKaHfOid7zwNPDVwSkVjMB8GA1UdIwQY MBaAFIeUPLhuOnA4E3ePq3kNZfDaIWFaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDVROHVHNDZjRGdUZDQtcmVRMWw4Tm9oWVZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi85NThmZWYtMGQ1NS00YzAwLWJlOGEt Y2M1ODA1MjFkMDBmLzEvWjR5XzJaZThwb2Q4NkozdlBBMDhOWEJLUldNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi85NThmZWYtMGQ1NS00YzAwLWJlOGEtY2M1ODA1MjFkMDBm LzEvaDVROHVHNDZjRGdUZDQtcmVRMWw4Tm9oWVZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDT4WgAwQC T4WsMA0GCSqGSIb3DQEBCwUAA4IBAQADssVNx3B0wwcXhB6bLS07jqDY8d9VUBA8 mGrYGfQEE2IaD9NU7JNXO2n1E4HBqsX84vkgnnGpPWicnG9qJZmTTkeiCkOPx/Bf l8GIHXacqzHWeDDdYwyNgl4DeNcWpFUOKfiA5eAXYok7C8RfKxEaGlRAj/wGwABP 0ILX1P28Qe0/9CHp3Y5xZraXh2xifI9dXP/crCLbpMkcADtW3F/UeE7XRrf9MDRB qJNUaL80N7k0gcEdkWgxomnSE4hcxKUuaSpRB4XUpYIiZw4zevfEHEnHOHaec8SF vGdiYmdAcJgnViE4x7vdP7AY0VHT0O8w2if/wa5/gGuWEsjgZPic -----END CERTIFICATE-----Generated at Mon Jan 26 21:17:36 2026 by rpki-client