This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/e417bd-14eb-4ca5-80f7-36c46f90d9a5/1/zOvOdvEFDu9Mo4Hd8BTTn_Gseog.roa File: zOvOdvEFDu9Mo4Hd8BTTn_Gseog.roa (raw, json) Hash identifier: i7r8dEO0PV70SWBxos0ykVviEGzZou2X66tLzrHIOKY= Subject key identifier: CC:EB:CE:76:F1:05:0E:EF:4C:A3:81:DD:F0:14:D3:9F:F1:AC:7A:88 Certificate issuer: /CN=92b5ac88f2cdb14934830c1ac096a5ef73098f12 Certificate serial: 019B7C1243D796708C9DD45AAF5B4E6EBB10 Authority key identifier: 92:B5:AC:88:F2:CD:B1:49:34:83:0C:1A:C0:96:A5:EF:73:09:8F:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/krWsiPLNsUk0gwwawJal73MJjxI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/e417bd-14eb-4ca5-80f7-36c46f90d9a5/1/zOvOdvEFDu9Mo4Hd8BTTn_Gseog.roa Signing time: Fri 02 Jan 2026 00:18:50 +0000 ROA not before: Fri 02 Jan 2026 00:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213300 IP address blocks: 2.56.170.0/24 maxlen: 24 2a10:4040::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/e417bd-14eb-4ca5-80f7-36c46f90d9a5/1/krWsiPLNsUk0gwwawJal73MJjxI.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/e417bd-14eb-4ca5-80f7-36c46f90d9a5/1/krWsiPLNsUk0gwwawJal73MJjxI.mft rsync://rpki.ripe.net/repository/DEFAULT/krWsiPLNsUk0gwwawJal73MJjxI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:43:d7:96:70:8c:9d:d4:5a:af:5b:4e:6e:bb:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92b5ac88f2cdb14934830c1ac096a5ef73098f12 Validity Not Before: Jan 2 00:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ccebce76f1050eef4ca381ddf014d39ff1ac7a88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c2:cd:0c:03:9d:4b:85:ab:c9:a2:03:fc:fc: aa:9d:2f:7f:a8:af:76:d8:c0:0e:63:dc:63:36:f2: 3f:b3:62:aa:08:4a:ed:5a:67:3c:d4:76:b1:be:c5: a7:33:f5:6f:3f:5a:94:9e:3b:00:8e:3b:22:46:a6: c1:66:58:d3:f6:f6:c8:4d:a5:0b:c5:93:ba:d9:c9: 52:2a:67:e2:f2:fa:82:fe:4d:30:4d:75:d2:61:b9: 96:79:15:c8:e2:cf:bb:83:e4:2a:2e:ff:44:70:40: 9b:9c:b0:a8:c2:b7:85:c1:9f:ca:95:93:9e:1f:3b: 9e:fe:b9:98:cc:ec:14:78:bc:06:2c:fa:a1:19:85: 22:a4:d1:cf:cf:ea:be:0f:a0:b5:0f:1a:6a:a8:cd: 24:aa:1a:81:d2:1d:02:e2:c2:31:3c:c2:cb:fe:d2: 59:05:74:5a:57:94:9f:09:ed:2f:40:84:fc:73:1d: f9:7f:53:4e:69:01:b1:c1:f8:19:8f:18:af:5f:02: ab:39:ec:56:db:9f:33:a4:28:b4:1e:59:9b:77:85: 77:93:c9:cb:90:cf:5b:a2:80:98:ee:b2:a4:ac:99: 0f:ad:de:cd:b7:e7:16:18:9a:b9:be:4d:51:de:8c: 58:0b:fd:2b:81:2f:e2:f4:81:3a:db:b2:1f:01:91: 62:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:EB:CE:76:F1:05:0E:EF:4C:A3:81:DD:F0:14:D3:9F:F1:AC:7A:88 X509v3 Authority Key Identifier: keyid:92:B5:AC:88:F2:CD:B1:49:34:83:0C:1A:C0:96:A5:EF:73:09:8F:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/krWsiPLNsUk0gwwawJal73MJjxI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/e417bd-14eb-4ca5-80f7-36c46f90d9a5/1/zOvOdvEFDu9Mo4Hd8BTTn_Gseog.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/e417bd-14eb-4ca5-80f7-36c46f90d9a5/1/krWsiPLNsUk0gwwawJal73MJjxI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.170.0/24 IPv6: 2a10:4040::/29 Signature Algorithm: sha256WithRSAEncryption 7d:fa:3f:43:f2:46:12:4c:99:2b:1d:a8:40:70:6e:53:c6:c1: b3:4d:4a:fa:51:bd:c3:be:77:8a:6c:14:7b:61:86:37:63:62: 59:f9:a2:28:54:83:b3:07:45:a9:88:a4:6e:c6:e1:e3:cb:06: 62:53:ca:1e:12:38:6e:18:b7:d3:c6:00:61:c7:7f:29:78:e7: 50:a2:af:61:ff:1e:f9:f9:22:1d:b3:2c:aa:66:2d:49:54:31: ed:eb:80:c0:f8:a2:19:85:0c:1e:bc:c3:7b:df:e6:13:01:16: 65:5e:9f:4a:23:c1:ec:03:16:ba:27:79:a5:2a:ee:55:0e:31: 63:f2:c0:58:8d:b3:09:45:b4:91:7a:8b:68:89:cc:b0:6b:52: 07:88:d1:27:b7:29:08:93:16:12:66:d5:71:07:4c:78:41:fb: 5f:be:ed:0e:2b:dd:5c:5d:d4:be:cb:7a:2b:94:9a:c4:d0:c1: 86:f3:69:2b:4a:1e:cf:ff:c6:6f:f3:59:1c:08:66:c7:24:22: 9b:e2:02:97:9c:b5:70:ac:ed:be:60:24:af:68:ce:17:a5:c9: 1d:98:39:27:5b:e6:c3:78:4e:4f:49:ee:5f:b3:b4:0d:cc:d1: 7f:45:ed:80:2d:aa:85:03:d6:5a:67:ba:81:9d:9e:36:8f:15: 12:26:84:de -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8EkPXlnCMndRar1tObrsQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyYjVhYzg4ZjJjZGIxNDkzNDgzMGMxYWMwOTZhNWVmNzMw OThmMTIwHhcNMjYwMTAyMDAxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjY2ViY2U3NmYxMDUwZWVmNGNhMzgxZGRmMDE0ZDM5ZmYxYWM3YTg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtsLNDAOdS4WryaID/PyqnS9/qK92 2MAOY9xjNvI/s2KqCErtWmc81HaxvsWnM/VvP1qUnjsAjjsiRqbBZljT9vbITaUL xZO62clSKmfi8vqC/k0wTXXSYbmWeRXI4s+7g+QqLv9EcECbnLCowreFwZ/KlZOe Hzue/rmYzOwUeLwGLPqhGYUipNHPz+q+D6C1DxpqqM0kqhqB0h0C4sIxPMLL/tJZ BXRaV5SfCe0vQIT8cx35f1NOaQGxwfgZjxivXwKrOexW258zpCi0Hlmbd4V3k8nL kM9booCY7rKkrJkPrd7Nt+cWGJq5vk1R3oxYC/0rgS/i9IE627IfAZFiTwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMzrznbxBQ7vTKOB3fAU05/xrHqIMB8GA1UdIwQY MBaAFJK1rIjyzbFJNIMMGsCWpe9zCY8SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3JXc2lQTE5zVWswZ3d3YXdKYWw3M01KanhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9lNDE3YmQtMTRlYi00Y2E1LTgwZjct MzZjNDZmOTBkOWE1LzEvek92T2R2RUZEdTlNbzRIZDhCVFRuX0dzZW9nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy9lNDE3YmQtMTRlYi00Y2E1LTgwZjctMzZjNDZmOTBkOWE1 LzEva3JXc2lQTE5zVWswZ3d3YXdKYWw3M01KanhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAAjiqMA0E AgACMAcDBQMqEEBAMA0GCSqGSIb3DQEBCwUAA4IBAQB9+j9D8kYSTJkrHahAcG5T xsGzTUr6Ub3DvneKbBR7YYY3Y2JZ+aIoVIOzB0WpiKRuxuHjywZiU8oeEjhuGLfT xgBhx38peOdQoq9h/x75+SIdsyyqZi1JVDHt64DA+KIZhQwevMN73+YTARZlXp9K I8HsAxa6J3mlKu5VDjFj8sBYjbMJRbSReotoicywa1IHiNEntykIkxYSZtVxB0x4 Qftfvu0OK91cXdS+y3orlJrE0MGG82krSh7P/8Zv81kcCGbHJCKb4gKXnLVwrO2+ YCSvaM4XpckdmDknW+bDeE5PSe5fs7QNzNF/Re2ALaqFA9ZaZ7qBnZ42jxUSJoTe -----END CERTIFICATE-----Generated at Mon Feb 9 23:46:20 2026 by rpki-client