This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/zGS1iGBGVdelcYyC8IZVLuo4YF8.roa File: zGS1iGBGVdelcYyC8IZVLuo4YF8.roa (raw, json) Hash identifier: xNhCCvgxABfH6yRt+p+v0793m+1n0z/VA8lzriBuOf4= Subject key identifier: CC:64:B5:88:60:46:55:D7:A5:71:8C:82:F0:86:55:2E:EA:38:60:5F Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958 Certificate serial: 019B7DCB4DCE11395D8B6B5D2460FB3068C7 Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/zGS1iGBGVdelcYyC8IZVLuo4YF8.roa Signing time: Fri 02 Jan 2026 08:20:34 +0000 ROA not before: Fri 02 Jan 2026 08:20:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59909 IP address blocks: 45.90.76.0/22 maxlen: 24 2a0c:b5c0::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:4d:ce:11:39:5d:8b:6b:5d:24:60:fb:30:68:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958 Validity Not Before: Jan 2 08:20:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cc64b588604655d7a5718c82f086552eea38605f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:28:46:12:70:b8:4f:85:c8:0d:dd:78:30:cd: 91:bc:db:df:1b:f6:a1:90:32:5a:05:2c:a8:9a:57: ac:c3:11:40:e0:4c:72:ee:25:22:ec:b1:0b:ca:6e: 49:6a:e4:9c:f3:06:4e:ed:7c:72:10:bf:1d:55:b7: dd:c8:99:fb:2c:95:6a:4d:81:9e:f5:3b:2d:13:2e: 74:aa:13:a2:3f:24:62:68:ed:a1:b3:d6:68:8b:28: 1c:e7:94:94:d4:5b:73:77:36:88:ed:c4:19:fd:86: 1c:27:bc:a2:1b:57:16:55:78:d3:43:88:4f:20:20: 14:0b:4b:4f:2c:38:8c:90:f5:29:14:b6:10:0d:06: 75:ab:50:08:8b:9e:3a:62:8a:a7:bb:d2:05:25:ae: b5:ce:a8:82:a0:6b:1d:49:00:d1:a2:05:07:32:de: 30:cf:3c:95:fe:fe:c0:fe:e3:90:a1:15:e4:7e:ef: ff:1f:f2:fe:3d:6c:f4:b4:5e:af:c4:44:2d:92:ff: 5d:f3:fd:e5:bf:d9:3b:a5:a0:86:78:ed:5f:da:11: 12:92:bf:91:fc:e3:bf:a5:26:e1:26:a7:89:b9:8c: 72:a4:f2:aa:0c:e9:d5:33:34:5c:ee:c8:43:4f:a3: b3:36:8e:2c:66:41:2b:b9:0e:d5:53:18:4d:43:79: 30:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:64:B5:88:60:46:55:D7:A5:71:8C:82:F0:86:55:2E:EA:38:60:5F X509v3 Authority Key Identifier: keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/zGS1iGBGVdelcYyC8IZVLuo4YF8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.90.76.0/22 IPv6: 2a0c:b5c0::/29 Signature Algorithm: sha256WithRSAEncryption 4d:5c:67:de:39:5f:e6:68:a7:00:35:2a:bd:02:5d:40:64:51: da:ea:1c:e0:d5:e6:0f:0a:c9:c4:0d:63:43:e0:d5:d3:8c:8c: be:b5:fa:d7:f3:27:19:7e:39:c7:d6:fb:2f:4d:1d:79:22:e7: fd:98:9c:53:7e:b5:49:29:a9:ae:17:8e:eb:f8:3e:00:af:2d: 15:0d:64:9f:82:20:ee:b3:50:71:2a:ca:06:fc:f8:a6:6d:cc: b8:9c:8b:74:9d:9e:79:25:a0:a2:23:52:16:7d:5f:84:8d:57: f8:7e:23:ac:3b:04:46:5a:76:c1:8e:05:3f:c4:f9:81:09:c0: 0e:21:81:cb:50:ee:8d:d2:ec:65:8d:2c:c1:0b:a0:fd:a0:ff: b6:8c:c2:80:dd:95:f6:76:13:ba:98:5d:ee:3e:98:f8:eb:d3: d1:0a:ec:3f:c3:a3:d2:b4:05:b6:f1:ec:9c:60:39:12:2d:f5: ad:a8:ab:8a:c8:86:f7:50:e0:c8:10:70:e4:a0:18:18:a6:44: 58:85:1f:4b:a3:65:e6:13:e9:b6:83:0d:e3:f2:b4:c0:84:bb: 96:8a:9f:db:8f:13:cf:b2:90:e8:ce:a4:0b:65:2b:c2:6e:00: 6b:37:ab:b4:e8:85:ce:bc:5b:38:42:2f:28:f3:ba:2d:3e:4a: 1f:8d:b1:6f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9y03OETldi2tdJGD7MGjHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5NzMyZGNkMGMzNTQyNjE0NGY5ZjAyNjc1NDE3OWRmYWVi ZTg5NTgwHhcNMjYwMTAyMDgyMDM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYzY0YjU4ODYwNDY1NWQ3YTU3MThjODJmMDg2NTUyZWVhMzg2MDVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwyhGEnC4T4XIDd14MM2RvNvfG/ah kDJaBSyomleswxFA4Exy7iUi7LELym5JauSc8wZO7XxyEL8dVbfdyJn7LJVqTYGe 9TstEy50qhOiPyRiaO2hs9Zoiygc55SU1FtzdzaI7cQZ/YYcJ7yiG1cWVXjTQ4hP ICAUC0tPLDiMkPUpFLYQDQZ1q1AIi546Yoqnu9IFJa61zqiCoGsdSQDRogUHMt4w zzyV/v7A/uOQoRXkfu//H/L+PWz0tF6vxEQtkv9d8/3lv9k7paCGeO1f2hESkr+R /OO/pSbhJqeJuYxypPKqDOnVMzRc7shDT6OzNo4sZkEruQ7VUxhNQ3kwewIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMxktYhgRlXXpXGMgvCGVS7qOGBfMB8GA1UdIwQY MBaAFDlzLc0MNUJhRPnwJnVBed+uvolYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODIt ZjYwYWYyYTgyMDYwLzEvekdTMWlHQkdWZGVsY1l5QzhJWlZMdW80WUY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODItZjYwYWYyYTgyMDYw LzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLVpMMA0E AgACMAcDBQMqDLXAMA0GCSqGSIb3DQEBCwUAA4IBAQBNXGfeOV/maKcANSq9Al1A ZFHa6hzg1eYPCsnEDWND4NXTjIy+tfrX8ycZfjnH1vsvTR15Iuf9mJxTfrVJKamu F47r+D4Ary0VDWSfgiDus1BxKsoG/Pimbcy4nIt0nZ55JaCiI1IWfV+EjVf4fiOs OwRGWnbBjgU/xPmBCcAOIYHLUO6N0uxljSzBC6D9oP+2jMKA3ZX2dhO6mF3uPpj4 69PRCuw/w6PStAW28eycYDkSLfWtqKuKyIb3UODIEHDkoBgYpkRYhR9Lo2XmE+m2 gw3j8rTAhLuWip/bjxPPspDozqQLZSvCbgBrN6u06IXOvFs4Qi8o87otPkofjbFv -----END CERTIFICATE-----Generated at Mon Feb 9 21:20:23 2026 by rpki-client