This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/zh2lJfC9-wfMTO9Kozt8KhhvQ6k.roa File: zh2lJfC9-wfMTO9Kozt8KhhvQ6k.roa (raw, json) Hash identifier: rv7yBHp8N5Gh/amJUvtJbCTehW8L+CBJUllqP/PiPaA= Subject key identifier: CE:1D:A5:25:F0:BD:FB:07:CC:4C:EF:4A:A3:3B:7C:2A:18:6F:43:A9 Certificate issuer: /CN=e5de0de73e73874bbc66738805d373cab833b7a5 Certificate serial: 019B783533860EDA72207F9EE801E3B2AC71 Authority key identifier: E5:DE:0D:E7:3E:73:87:4B:BC:66:73:88:05:D3:73:CA:B8:33:B7:A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/zh2lJfC9-wfMTO9Kozt8KhhvQ6k.roa Signing time: Thu 01 Jan 2026 06:18:31 +0000 ROA not before: Thu 01 Jan 2026 06:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 185.137.156.0/24 maxlen: 24 2a10:a100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.mft rsync://rpki.ripe.net/repository/DEFAULT/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:33:86:0e:da:72:20:7f:9e:e8:01:e3:b2:ac:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5de0de73e73874bbc66738805d373cab833b7a5 Validity Not Before: Jan 1 06:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ce1da525f0bdfb07cc4cef4aa33b7c2a186f43a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c6:27:16:81:26:d6:f5:b8:0d:7e:14:d8:07: 8a:5b:70:cc:7a:6a:eb:8e:2f:3e:72:a2:e0:57:b5: c4:5b:41:d5:4d:61:de:26:36:35:02:29:57:e3:b2: 04:19:38:72:b1:d2:79:01:09:b8:be:1e:e6:94:bc: a4:cb:de:2e:46:e7:7f:61:7c:e5:13:25:a6:5e:57: 2c:d2:83:0e:72:4d:a0:41:f2:64:37:cb:54:5a:2b: aa:a2:8f:45:00:00:7e:44:7d:36:9b:ef:d4:1c:4d: 7b:66:6c:8f:48:6f:03:46:5c:8e:fc:cc:a8:5e:f5: 2d:a6:a1:80:aa:92:c6:ed:29:5b:01:eb:2c:30:47: 28:9f:fa:e9:7e:50:a5:04:d4:df:a0:27:f6:29:c0: b4:47:f2:f1:5f:8c:c6:5b:46:52:4a:de:a9:3a:63: 46:74:b2:72:4c:c7:eb:75:d0:b0:b6:96:69:5d:99: 32:9b:dc:34:0a:8e:30:12:5c:ff:45:c3:87:80:c0: c2:fb:c1:2d:30:c6:69:b4:1e:4c:c7:fd:c1:6c:de: cd:12:26:51:3c:43:9f:f0:38:6c:b8:99:64:07:fc: c3:71:97:68:ec:8b:2f:11:3e:cd:a8:a1:aa:80:c3: fc:69:85:b7:d3:57:30:11:fd:44:f3:f6:36:fa:e2: ba:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:1D:A5:25:F0:BD:FB:07:CC:4C:EF:4A:A3:3B:7C:2A:18:6F:43:A9 X509v3 Authority Key Identifier: keyid:E5:DE:0D:E7:3E:73:87:4B:BC:66:73:88:05:D3:73:CA:B8:33:B7:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/zh2lJfC9-wfMTO9Kozt8KhhvQ6k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.137.156.0/24 IPv6: 2a10:a100::/40 Signature Algorithm: sha256WithRSAEncryption 9c:bd:2c:fe:42:06:2c:90:ac:b9:75:98:f6:ba:b4:73:9e:a8: 64:7f:0a:36:9a:d2:42:cc:e6:4c:40:f8:2f:1e:16:55:15:6d: dc:75:17:24:71:36:8f:9e:8d:30:99:a3:24:c0:22:91:a8:c3: c6:7e:4f:fe:fb:41:0e:88:c3:45:b2:28:a1:6d:9a:a5:bb:e8: 08:59:e6:c9:e5:ee:63:23:0e:2e:0a:3a:31:33:9f:ed:76:42: 07:8f:89:b9:ff:41:06:3f:cc:18:33:b0:ab:5b:e4:dc:93:9b: ae:01:b3:4f:4d:48:4e:69:a9:96:81:e0:f1:e7:75:36:22:0b: b9:eb:2f:82:77:c5:70:c6:9a:6f:62:35:a0:fb:c4:24:77:9e: a1:dc:d6:6c:a2:8b:89:cd:de:f7:b3:e5:bf:c0:6b:f4:d2:1e: e8:b0:ee:a0:cf:2e:1a:80:5c:ad:44:8c:8c:84:e0:21:ff:09: 77:6a:52:39:17:9b:4a:8b:15:7d:d6:0f:71:c9:b1:63:29:f2: 44:d3:82:e1:11:8f:4c:34:e4:29:06:ca:a8:fb:6e:51:f6:c0: 45:8d:10:bd:63:0e:67:52:2f:36:23:98:59:be:53:59:73:65: 23:d2:ab:d0:3d:e0:01:43:99:28:7a:91:08:66:a6:2a:eb:3d: 23:bd:08:91 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt4NTOGDtpyIH+e6AHjsqxxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ZGUwZGU3M2U3Mzg3NGJiYzY2NzM4ODA1ZDM3M2NhYjgz M2I3YTUwHhcNMjYwMTAxMDYxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZTFkYTUyNWYwYmRmYjA3Y2M0Y2VmNGFhMzNiN2MyYTE4NmY0M2E5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8YnFoEm1vW4DX4U2AeKW3DMemrr ji8+cqLgV7XEW0HVTWHeJjY1AilX47IEGThysdJ5AQm4vh7mlLyky94uRud/YXzl EyWmXlcs0oMOck2gQfJkN8tUWiuqoo9FAAB+RH02m+/UHE17ZmyPSG8DRlyO/Myo XvUtpqGAqpLG7SlbAessMEcon/rpflClBNTfoCf2KcC0R/LxX4zGW0ZSSt6pOmNG dLJyTMfrddCwtpZpXZkym9w0Co4wElz/RcOHgMDC+8EtMMZptB5Mx/3BbN7NEiZR PEOf8DhsuJlkB/zDcZdo7IsvET7NqKGqgMP8aYW301cwEf1E8/Y2+uK6gwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFM4dpSXwvfsHzEzvSqM7fCoYb0OpMB8GA1UdIwQY MBaAFOXeDec+c4dLvGZziAXTc8q4M7elMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWQ0TjV6NXpoMHU4Wm5PSUJkTnp5cmd6dDZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi81NWI5ZDctZjcwMy00NWZlLThiNjMt MTA1MzRjNjdiYmI4LzEvemgybEpmQzktd2ZNVE85S296dDhLaGh2UTZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi81NWI5ZDctZjcwMy00NWZlLThiNjMtMTA1MzRjNjdiYmI4 LzEvNWQ0TjV6NXpoMHU4Wm5PSUJkTnp5cmd6dDZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAuYmcMA4E AgACMAgDBgAqEKEAADANBgkqhkiG9w0BAQsFAAOCAQEAnL0s/kIGLJCsuXWY9rq0 c56oZH8KNprSQszmTED4Lx4WVRVt3HUXJHE2j56NMJmjJMAikajDxn5P/vtBDojD RbIooW2apbvoCFnmyeXuYyMOLgo6MTOf7XZCB4+Juf9BBj/MGDOwq1vk3JObrgGz T01ITmmploHg8ed1NiILuesvgnfFcMaab2I1oPvEJHeeodzWbKKLic3e97Plv8Br 9NIe6LDuoM8uGoBcrUSMjITgIf8Jd2pSORebSosVfdYPccmxYynyRNOC4RGPTDTk KQbKqPtuUfbARY0QvWMOZ1IvNiOYWb5TWXNlI9Kr0D3gAUOZKHqRCGamKus9I70I kQ== -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:11 2026 by rpki-client