This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ZbaIP8cvuS8zpzv6xudtCXt8aWM.roa File: ZbaIP8cvuS8zpzv6xudtCXt8aWM.roa (raw, json) Hash identifier: WGjxBlTsgH3FaMAIGSGoFth7iD4TPW8WnYU9l0DAHKQ= Subject key identifier: 65:B6:88:3F:C7:2F:B9:2F:33:A7:3B:FA:C6:E7:6D:09:7B:7C:69:63 Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704 Certificate serial: 019B93F4E5AE18AA85C0668ADE091F9757FB Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ZbaIP8cvuS8zpzv6xudtCXt8aWM.roa Signing time: Tue 06 Jan 2026 15:37:38 +0000 ROA not before: Tue 06 Jan 2026 15:37:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25198 IP address blocks: 5.180.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 06:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:93:f4:e5:ae:18:aa:85:c0:66:8a:de:09:1f:97:57:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704 Validity Not Before: Jan 6 15:37:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=65b6883fc72fb92f33a73bfac6e76d097b7c6963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:27:f4:bb:0c:60:12:17:24:4f:53:45:74:e0: 31:89:14:ac:54:52:80:7d:59:e4:b5:8d:13:83:d6: b5:33:1c:72:4a:a8:55:07:ea:d2:2d:cb:92:2e:e8: 72:9a:82:5b:53:09:2c:62:01:7e:ab:73:81:97:87: fc:e8:bd:8a:13:6f:3b:e0:d3:98:94:88:3a:9f:ba: 7f:f1:17:8b:8e:78:56:71:dd:a4:c2:9f:fc:2b:04: 5b:39:a6:1d:76:57:b2:00:8e:e3:27:4f:94:4e:57: 2c:ef:aa:16:69:df:76:fe:5f:a5:70:b3:ec:06:39: 84:8e:62:18:29:1e:33:1b:7c:62:06:a3:7d:50:0d: d7:3c:d5:58:92:78:6c:cf:ce:8d:1f:05:42:1a:eb: b0:14:2e:5a:53:15:8a:fa:b4:eb:53:5d:ec:5c:49: 0b:86:82:ab:9c:7a:9e:bf:fd:80:3c:f9:f6:0e:1d: 53:dc:fe:e9:f6:c7:20:80:20:86:5c:d7:cf:35:bc: b6:56:a2:ed:e9:5e:25:98:90:c4:94:56:02:fa:85: 96:90:00:ab:a2:dd:d3:4e:5d:de:48:fd:9a:f9:66: ed:26:a5:9d:a4:0e:84:51:0a:b3:ef:08:6c:c1:06: 04:51:43:1d:df:4c:2e:09:cb:60:4c:45:08:6d:1d: d4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B6:88:3F:C7:2F:B9:2F:33:A7:3B:FA:C6:E7:6D:09:7B:7C:69:63 X509v3 Authority Key Identifier: keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ZbaIP8cvuS8zpzv6xudtCXt8aWM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.33.0/24 Signature Algorithm: sha256WithRSAEncryption ab:14:85:a6:87:7b:b5:99:bc:dd:68:89:02:c6:e8:24:a2:06: 08:0a:13:ca:c1:89:64:ed:12:f5:d7:f6:eb:9e:82:cf:76:67: 16:90:c2:41:7a:44:2b:c3:1a:dc:b0:21:bb:70:0b:50:4a:a2: 55:13:2f:19:d5:e4:27:59:47:99:e3:7d:b9:ae:dc:28:9b:f6: 38:c7:23:7e:94:11:af:24:25:b8:96:12:88:0c:f0:34:50:eb: 51:5d:6e:cb:2b:44:29:6d:33:75:27:14:03:47:86:ea:cd:3c: c2:b4:4b:4d:ed:07:c2:cb:7d:04:9d:b9:95:64:c6:9b:ac:5e: c9:b9:f2:1c:f9:f7:7f:f4:24:75:73:f5:8f:8e:64:c7:4e:a5: 3c:9e:c2:10:b6:28:2b:86:2e:e9:b5:b0:cf:a7:c0:36:25:57: 94:76:15:1e:a0:80:13:a0:d9:c9:5b:f7:74:41:f1:e6:0b:69: ee:98:06:98:7c:57:fc:cb:77:8c:3c:6e:7a:5f:39:da:45:14: 25:4e:49:75:fa:2a:60:c8:1e:7a:fa:f4:3c:12:23:de:6d:75: 00:04:6e:f8:d0:9b:90:0c:50:ca:fe:fe:99:05:4e:de:5a:e3: 50:b7:ec:f3:28:6c:7a:f0:e4:bb:b1:87:16:0b:de:b4:9b:5d: f9:5e:bd:65 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZuT9OWuGKqFwGaK3gkfl1f7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj Zjk3MDQwHhcNMjYwMTA2MTUzNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NWI2ODgzZmM3MmZiOTJmMzNhNzNiZmFjNmU3NmQwOTdiN2M2OTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnSf0uwxgEhckT1NFdOAxiRSsVFKA fVnktY0Tg9a1MxxySqhVB+rSLcuSLuhymoJbUwksYgF+q3OBl4f86L2KE2874NOY lIg6n7p/8ReLjnhWcd2kwp/8KwRbOaYddleyAI7jJ0+UTlcs76oWad92/l+lcLPs BjmEjmIYKR4zG3xiBqN9UA3XPNVYknhsz86NHwVCGuuwFC5aUxWK+rTrU13sXEkL hoKrnHqev/2APPn2Dh1T3P7p9scggCCGXNfPNby2VqLt6V4lmJDElFYC+oWWkACr ot3TTl3eSP2a+WbtJqWdpA6EUQqz7whswQYEUUMd30wuCctgTEUIbR3UmQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGW2iD/HL7kvM6c7+sbnbQl7fGljMB8GA1UdIwQY MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct ZTg2MTIxYzU5NGRmLzEvWmJhSVA4Y3Z1Uzh6cHp2Nnh1ZHRDWHQ4YVdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbQhMA0G CSqGSIb3DQEBCwUAA4IBAQCrFIWmh3u1mbzdaIkCxugkogYIChPKwYlk7RL11/br noLPdmcWkMJBekQrwxrcsCG7cAtQSqJVEy8Z1eQnWUeZ4325rtwom/Y4xyN+lBGv JCW4lhKIDPA0UOtRXW7LK0QpbTN1JxQDR4bqzTzCtEtN7QfCy30EnbmVZMabrF7J ufIc+fd/9CR1c/WPjmTHTqU8nsIQtigrhi7ptbDPp8A2JVeUdhUeoIAToNnJW/d0 QfHmC2numAaYfFf8y3eMPG56XznaRRQlTkl1+ipgyB56+vQ8EiPebXUABG740JuQ DFDK/v6ZBU7eWuNQt+zzKGx68OS7sYcWC960m135Xr1l -----END CERTIFICATE-----Generated at Mon Jan 19 16:51:35 2026 by rpki-client