This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ZRcGchvEyz9eaow7iQhtDvBQWRc.roa File: ZRcGchvEyz9eaow7iQhtDvBQWRc.roa (raw, json) Hash identifier: ju5JXHKvHzNIumRSl00URIsdKJU2GAcjd5z7XwD8tbs= Subject key identifier: 65:17:06:72:1B:C4:CB:3F:5E:6A:8C:3B:89:08:6D:0E:F0:50:59:17 Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2 Certificate serial: 019B7D5D50AE0BB96B72A96EC938DFFF3ABA Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ZRcGchvEyz9eaow7iQhtDvBQWRc.roa Signing time: Fri 02 Jan 2026 06:20:26 +0000 ROA not before: Fri 02 Jan 2026 06:20:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199700 IP address blocks: 194.5.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.mft rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 11:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:50:ae:0b:b9:6b:72:a9:6e:c9:38:df:ff:3a:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2 Validity Not Before: Jan 2 06:20:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=651706721bc4cb3f5e6a8c3b89086d0ef0505917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7a:01:46:c4:e0:d9:38:80:6c:0f:4d:4f:7f: a5:f0:02:80:42:c3:61:aa:c4:e0:de:ca:3b:c4:58: d7:30:15:6f:1c:c9:20:ed:52:b3:27:09:f4:51:4a: 34:26:67:e3:26:c3:21:bc:5e:5f:53:81:4c:07:2a: 8c:d8:11:29:e5:d3:e5:5c:56:12:b8:9b:42:a6:b8: 2b:fa:be:d1:1f:3c:af:53:3f:10:fd:a4:0d:0c:66: a9:b0:28:27:3b:a7:19:3e:fa:1e:1b:bd:39:41:8b: d2:5f:2b:70:7b:9c:dc:08:c9:b5:63:01:56:e6:d9: 6b:a8:76:70:90:8b:f8:5f:d2:8a:a9:0f:ef:fd:9f: f4:0b:ef:d1:bc:32:2b:e4:5c:67:86:49:e6:c6:22: f3:2b:ce:f0:80:da:94:67:bf:6b:84:e1:62:7e:12: bb:de:38:23:40:3b:47:bd:3c:9e:ef:e2:40:d2:2a: 63:fd:83:b6:45:5b:63:30:f4:3f:cc:03:d6:06:d4: f7:7d:5e:0b:12:f0:6d:8f:ed:61:be:2c:3f:11:08: cd:17:d7:02:a4:7b:b6:be:6d:3c:2d:12:71:d7:57: b4:85:90:92:ac:98:70:83:f4:f7:72:89:2d:a9:a6: 6e:ad:4e:88:37:6b:e9:65:c2:65:43:1a:bd:13:84: 93:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:17:06:72:1B:C4:CB:3F:5E:6A:8C:3B:89:08:6D:0E:F0:50:59:17 X509v3 Authority Key Identifier: keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ZRcGchvEyz9eaow7iQhtDvBQWRc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.5.85.0/24 Signature Algorithm: sha256WithRSAEncryption 89:f3:ea:da:23:55:39:91:78:7b:7b:92:73:80:86:1d:70:54: 75:39:3f:20:0e:58:dd:98:bf:aa:93:9b:77:c2:6b:8f:8c:ff: 58:00:58:fa:1e:79:67:43:33:4f:e8:99:55:2b:80:8c:e1:cc: b9:dc:e8:ae:6f:9d:e9:56:14:fd:3b:ae:a6:09:b6:2c:9b:28: fe:7b:cb:e4:ea:ff:3f:4e:de:a3:ba:b8:7d:84:bc:55:b4:e7: f8:f0:d8:69:a8:28:29:9a:29:48:4a:c7:74:9f:1f:8e:04:d3: 78:9b:08:f3:50:c4:cd:a5:74:23:5d:cf:72:79:77:39:b0:57: d7:09:70:fe:ed:82:aa:9b:28:39:98:4a:13:a0:be:c3:66:43: fa:9b:fa:a3:50:06:ea:df:74:e2:25:b4:5b:48:d0:82:f3:a9: f0:15:91:bf:61:d6:0c:30:0f:a4:24:b4:7e:fe:17:85:e8:2e: 43:02:20:e7:94:1b:79:91:90:7c:bd:28:76:dd:a9:2b:70:b2: 0e:55:a9:5f:cc:09:7f:8b:98:7d:f3:c0:25:c7:3b:2f:82:17: 0d:70:ea:cc:cb:6a:4d:1a:bf:43:75:f4:c0:37:43:e4:39:0d: 3b:54:b8:37:ff:69:50:60:c5:74:24:65:65:0d:e8:27:d6:bc: 90:04:8b:fc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XVCuC7lrcqluyTjf/zq6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw NWIwZTIwHhcNMjYwMTAyMDYyMDI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NTE3MDY3MjFiYzRjYjNmNWU2YThjM2I4OTA4NmQwZWYwNTA1OTE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3XoBRsTg2TiAbA9NT3+l8AKAQsNh qsTg3so7xFjXMBVvHMkg7VKzJwn0UUo0JmfjJsMhvF5fU4FMByqM2BEp5dPlXFYS uJtCprgr+r7RHzyvUz8Q/aQNDGapsCgnO6cZPvoeG705QYvSXytwe5zcCMm1YwFW 5tlrqHZwkIv4X9KKqQ/v/Z/0C+/RvDIr5FxnhknmxiLzK87wgNqUZ79rhOFifhK7 3jgjQDtHvTye7+JA0ipj/YO2RVtjMPQ/zAPWBtT3fV4LEvBtj+1hviw/EQjNF9cC pHu2vm08LRJx11e0hZCSrJhwg/T3coktqaZurU6IN2vpZcJlQxq9E4STXQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGUXBnIbxMs/XmqMO4kIbQ7wUFkXMB8GA1UdIwQY MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt MmNjZWRiOTY2YTU4LzEvWlJjR2NodkV5ejllYW93N2lRaHREdkJRV1JjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4 LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgVVMA0G CSqGSIb3DQEBCwUAA4IBAQCJ8+raI1U5kXh7e5JzgIYdcFR1OT8gDljdmL+qk5t3 wmuPjP9YAFj6HnlnQzNP6JlVK4CM4cy53Oiub53pVhT9O66mCbYsmyj+e8vk6v8/ Tt6jurh9hLxVtOf48NhpqCgpmilISsd0nx+OBNN4mwjzUMTNpXQjXc9yeXc5sFfX CXD+7YKqmyg5mEoToL7DZkP6m/qjUAbq33TiJbRbSNCC86nwFZG/YdYMMA+kJLR+ /heF6C5DAiDnlBt5kZB8vSh23akrcLIOValfzAl/i5h988AlxzsvghcNcOrMy2pN Gr9DdfTAN0PkOQ07VLg3/2lQYMV0JGVlDegn1ryQBIv8 -----END CERTIFICATE-----Generated at Mon Jan 19 19:57:19 2026 by rpki-client