This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/b3b106-774a-4690-a03c-35c1c79aa1dc/1/ZzwBIXUIf-pGbIiz_7UAqAEAXjw.roa File: ZzwBIXUIf-pGbIiz_7UAqAEAXjw.roa (raw, json) Hash identifier: Z1fTc8LEyy3vBAnK6iovMLGRojKde+nTCvKGqeFlN88= Subject key identifier: 67:3C:01:21:75:08:7F:EA:46:6C:88:B3:FF:B5:00:A8:01:00:5E:3C Certificate issuer: /CN=3e6a00bb3ed907c526addb5aabd9ad764b2c3d9e Certificate serial: 019B7C126D0A1F7BA038F3341B82AFB7D5FA Authority key identifier: 3E:6A:00:BB:3E:D9:07:C5:26:AD:DB:5A:AB:D9:AD:76:4B:2C:3D:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmoAuz7ZB8Umrdtaq9mtdkssPZ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/b3b106-774a-4690-a03c-35c1c79aa1dc/1/ZzwBIXUIf-pGbIiz_7UAqAEAXjw.roa Signing time: Fri 02 Jan 2026 00:19:00 +0000 ROA not before: Fri 02 Jan 2026 00:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215162 IP address blocks: 130.185.166.0/23 maxlen: 24 2a0c:d6c0::/39 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/b3b106-774a-4690-a03c-35c1c79aa1dc/1/PmoAuz7ZB8Umrdtaq9mtdkssPZ4.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/b3b106-774a-4690-a03c-35c1c79aa1dc/1/PmoAuz7ZB8Umrdtaq9mtdkssPZ4.mft rsync://rpki.ripe.net/repository/DEFAULT/PmoAuz7ZB8Umrdtaq9mtdkssPZ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:6d:0a:1f:7b:a0:38:f3:34:1b:82:af:b7:d5:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e6a00bb3ed907c526addb5aabd9ad764b2c3d9e Validity Not Before: Jan 2 00:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=673c012175087fea466c88b3ffb500a801005e3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:75:d4:90:b9:65:a6:89:4a:f7:10:56:8c:75: dc:65:f1:67:41:78:7e:41:5a:3c:4c:6d:6b:ba:06: 60:23:d0:1f:94:eb:72:c3:e4:19:e4:33:4e:1f:00: 53:14:8d:df:55:f7:f4:3c:bb:8e:2e:ba:4f:3c:28: 2f:c8:8d:18:73:62:86:42:2c:13:8b:ca:d5:86:56: 36:e3:b9:95:7a:ce:5f:fd:91:a9:b8:d1:3e:e5:cd: 82:b6:7d:78:71:ef:71:a7:f2:65:b7:f9:df:b8:9f: c5:06:5b:57:25:c8:41:51:f1:ad:51:0d:c6:67:17: cb:08:f1:a8:92:06:98:c9:b6:8b:be:33:d6:f5:d9: ee:0d:28:3e:75:80:5b:b8:d5:56:eb:4a:7f:71:bd: 88:53:ac:c4:6c:da:cd:e0:ec:55:54:f3:96:ff:08: 03:b3:c1:63:33:28:0d:72:91:90:4f:c6:0f:af:0f: 20:99:d8:fe:12:86:71:71:f3:52:6c:d5:6b:ec:61: 43:cc:9c:f1:69:2e:f2:04:47:75:d4:33:6c:d5:9c: 70:c7:8e:03:2d:3d:0d:b3:4c:f6:ee:af:26:9a:dd: aa:29:de:3b:5d:22:37:a3:ff:19:0a:8d:8b:79:a6: 1b:7c:08:b0:9d:48:23:74:5b:83:96:1b:eb:d9:f6: e6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:3C:01:21:75:08:7F:EA:46:6C:88:B3:FF:B5:00:A8:01:00:5E:3C X509v3 Authority Key Identifier: keyid:3E:6A:00:BB:3E:D9:07:C5:26:AD:DB:5A:AB:D9:AD:76:4B:2C:3D:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmoAuz7ZB8Umrdtaq9mtdkssPZ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/b3b106-774a-4690-a03c-35c1c79aa1dc/1/ZzwBIXUIf-pGbIiz_7UAqAEAXjw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/b3b106-774a-4690-a03c-35c1c79aa1dc/1/PmoAuz7ZB8Umrdtaq9mtdkssPZ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.185.166.0/23 IPv6: 2a0c:d6c0::/39 Signature Algorithm: sha256WithRSAEncryption 3f:9c:66:51:55:f3:07:67:c0:c6:83:b9:ac:a8:cd:b8:7f:93: d1:d5:4e:4a:b5:85:99:da:8b:a5:48:59:a9:e2:7c:a0:bc:47: 83:5e:75:d5:be:dc:57:b4:98:d0:99:e8:b3:f0:ae:c0:52:a9: a9:f1:4c:0b:e5:35:a5:c2:d9:5c:60:37:70:0f:46:e8:54:c9: e4:03:5e:60:cf:90:be:d8:bd:ba:f2:73:76:c1:76:e0:95:8e: 6e:f9:08:48:98:d8:e9:ab:89:98:2a:12:ae:b5:40:ca:2b:93: df:d6:26:8d:49:92:b8:fe:da:9f:fb:f1:cf:70:fd:8a:4d:79: 0a:26:4a:a8:e3:9f:33:ee:2a:94:e4:04:3b:6e:a2:0f:3b:e2: 49:0a:d9:b9:6a:b3:b7:5a:ea:ba:b8:30:33:fa:a2:e4:27:e5: 7c:b2:d8:b4:7b:99:70:00:d3:1c:3e:3e:e0:0f:57:bd:1a:53: d7:a1:0c:b6:81:1e:0b:2c:a7:7a:14:4e:1b:05:8b:72:0b:10: 59:96:5c:83:9d:4e:6a:b5:e6:94:db:23:d8:61:40:bc:ac:74: 42:b2:dd:f5:b1:e3:db:54:c0:04:31:22:4f:8b:62:07:dd:5f: 54:0a:0b:80:30:21:92:7c:60:57:50:da:d2:ef:28:f4:08:78: 8d:6a:af:f9 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt8Em0KH3ugOPM0G4Kvt9X6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNmEwMGJiM2VkOTA3YzUyNmFkZGI1YWFiZDlhZDc2NGIy YzNkOWUwHhcNMjYwMTAyMDAxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NzNjMDEyMTc1MDg3ZmVhNDY2Yzg4YjNmZmI1MDBhODAxMDA1ZTNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXXUkLllpolK9xBWjHXcZfFnQXh+ QVo8TG1rugZgI9AflOtyw+QZ5DNOHwBTFI3fVff0PLuOLrpPPCgvyI0Yc2KGQiwT i8rVhlY247mVes5f/ZGpuNE+5c2Ctn14ce9xp/Jlt/nfuJ/FBltXJchBUfGtUQ3G ZxfLCPGokgaYybaLvjPW9dnuDSg+dYBbuNVW60p/cb2IU6zEbNrN4OxVVPOW/wgD s8FjMygNcpGQT8YPrw8gmdj+EoZxcfNSbNVr7GFDzJzxaS7yBEd11DNs1Zxwx44D LT0Ns0z27q8mmt2qKd47XSI3o/8ZCo2LeaYbfAiwnUgjdFuDlhvr2fbmmQIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFGc8ASF1CH/qRmyIs/+1AKgBAF48MB8GA1UdIwQY MBaAFD5qALs+2QfFJq3bWqvZrXZLLD2eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG1vQXV6N1pCOFVtcmR0YXE5bXRka3NzUFo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS9iM2IxMDYtNzc0YS00NjkwLWEwM2Mt MzVjMWM3OWFhMWRjLzEvWnp3QklYVUlmLXBHYklpel83VUFxQUVBWGp3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS9iM2IxMDYtNzc0YS00NjkwLWEwM2MtMzVjMWM3OWFhMWRj LzEvUG1vQXV6N1pCOFVtcmR0YXE5bXRka3NzUFo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQBgrmmMA4E AgACMAgDBgEqDNbAADANBgkqhkiG9w0BAQsFAAOCAQEAP5xmUVXzB2fAxoO5rKjN uH+T0dVOSrWFmdqLpUhZqeJ8oLxHg1511b7cV7SY0Jnos/CuwFKpqfFMC+U1pcLZ XGA3cA9G6FTJ5ANeYM+Qvti9uvJzdsF24JWObvkISJjY6auJmCoSrrVAyiuT39Ym jUmSuP7an/vxz3D9ik15CiZKqOOfM+4qlOQEO26iDzviSQrZuWqzt1rqurgwM/qi 5CflfLLYtHuZcADTHD4+4A9XvRpT16EMtoEeCyynehROGwWLcgsQWZZcg51OarXm lNsj2GFAvKx0QrLd9bHj21TABDEiT4tiB91fVAoLgDAhknxgV1Da0u8o9Ah4jWqv +Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:21:42 2026 by rpki-client