This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/b42c53-e05a-4d77-82ee-5ef36226a767/1/zbYhjs52NqgXZeFMN5zptwYaiMY.roa File: zbYhjs52NqgXZeFMN5zptwYaiMY.roa (raw, json) Hash identifier: KsKrXGzHhE5GBB49wXeoqkTWzCeO3+7rNRAxePZu7qA= Subject key identifier: CD:B6:21:8E:CE:76:36:A8:17:65:E1:4C:37:9C:E9:B7:06:1A:88:C6 Certificate issuer: /CN=34cde5a61145d3992eccdec7b7f0b87d566bddca Certificate serial: 019B7C112D9AFB51DAA6BAE7EB9B86EE631F Authority key identifier: 34:CD:E5:A6:11:45:D3:99:2E:CC:DE:C7:B7:F0:B8:7D:56:6B:DD:CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NM3lphFF05kuzN7Ht_C4fVZr3co.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/b42c53-e05a-4d77-82ee-5ef36226a767/1/zbYhjs52NqgXZeFMN5zptwYaiMY.roa Signing time: Fri 02 Jan 2026 00:17:39 +0000 ROA not before: Fri 02 Jan 2026 00:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198726 IP address blocks: 5.10.0.0/21 maxlen: 21 91.137.64.0/20 maxlen: 20 91.137.88.0/21 maxlen: 21 91.137.96.0/20 maxlen: 20 91.137.112.0/22 maxlen: 22 91.137.116.0/23 maxlen: 23 91.137.120.0/22 maxlen: 22 91.137.124.0/22 maxlen: 22 185.14.64.0/22 maxlen: 22 185.35.216.0/22 maxlen: 22 185.233.220.0/22 maxlen: 22 185.238.160.0/22 maxlen: 22 185.240.224.0/22 maxlen: 22 2a02:acc1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/b42c53-e05a-4d77-82ee-5ef36226a767/1/NM3lphFF05kuzN7Ht_C4fVZr3co.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/b42c53-e05a-4d77-82ee-5ef36226a767/1/NM3lphFF05kuzN7Ht_C4fVZr3co.mft rsync://rpki.ripe.net/repository/DEFAULT/NM3lphFF05kuzN7Ht_C4fVZr3co.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:2d:9a:fb:51:da:a6:ba:e7:eb:9b:86:ee:63:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34cde5a61145d3992eccdec7b7f0b87d566bddca Validity Not Before: Jan 2 00:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cdb6218ece7636a81765e14c379ce9b7061a88c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bb:12:3a:9d:86:3e:e6:24:fb:6a:e4:18:ab: cf:8e:14:78:4a:9e:b5:60:db:a4:19:9b:1e:1e:bb: 6c:1d:4d:69:4a:7b:6e:98:d6:f0:90:ab:0e:75:55: 55:1e:0f:fe:24:ce:10:5e:f2:d2:39:38:e4:1e:8c: 95:84:ef:12:df:b0:b4:80:54:48:84:93:a0:3a:c0: 58:84:79:0e:a0:e4:fb:43:75:c0:d3:a7:27:83:ad: 85:ec:94:16:e5:e0:11:d0:71:ed:9b:c8:c4:ba:df: 06:49:2c:a5:54:30:7b:6e:52:6b:28:38:69:4d:42: 16:1f:80:bb:dc:bf:10:3e:63:f8:c4:8f:4d:04:ef: f7:ad:d8:a7:63:ec:8b:6b:07:06:69:d1:0e:7c:63: 53:9f:e1:cb:9a:f2:da:a2:1b:b6:98:4d:ba:00:5b: df:9b:ed:99:de:41:b5:d6:f8:68:f0:b7:53:91:63: af:36:10:93:e6:3f:f7:d8:93:7f:09:bf:a2:53:1f: 09:e3:dd:e1:da:cf:68:13:1f:a2:10:f0:8f:5c:a2: cf:bb:83:a8:4b:e6:ae:d3:7d:b6:09:51:e2:a5:36: aa:b5:29:dd:c4:52:66:35:c6:0b:9e:20:f4:7e:8e: 4d:ac:97:c9:35:c5:94:f2:23:58:37:8d:08:13:07: ee:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B6:21:8E:CE:76:36:A8:17:65:E1:4C:37:9C:E9:B7:06:1A:88:C6 X509v3 Authority Key Identifier: keyid:34:CD:E5:A6:11:45:D3:99:2E:CC:DE:C7:B7:F0:B8:7D:56:6B:DD:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NM3lphFF05kuzN7Ht_C4fVZr3co.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/b42c53-e05a-4d77-82ee-5ef36226a767/1/zbYhjs52NqgXZeFMN5zptwYaiMY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/b42c53-e05a-4d77-82ee-5ef36226a767/1/NM3lphFF05kuzN7Ht_C4fVZr3co.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.10.0.0/21 91.137.64.0/20 91.137.88.0-91.137.117.255 91.137.120.0/21 185.14.64.0/22 185.35.216.0/22 185.233.220.0/22 185.238.160.0/22 185.240.224.0/22 IPv6: 2a02:acc1::/32 Signature Algorithm: sha256WithRSAEncryption 84:1f:17:d8:07:94:fc:d6:52:ec:c5:7b:b8:ce:e5:92:7b:53: 3b:2b:0f:3c:13:5a:83:e4:26:f3:d2:c6:51:d2:2b:9a:71:9a: 0c:db:57:67:79:60:26:fa:7e:02:4b:66:9b:ab:c4:eb:ac:f2: 53:28:9f:9c:b6:5e:7c:47:6b:32:78:50:76:4f:a0:13:a3:81: b1:28:c4:15:58:57:d2:d0:1d:42:c2:f0:8f:1a:47:3b:6f:88: 5a:a8:49:d5:4e:a9:2b:5c:3b:ce:34:5c:53:d3:80:6e:b0:8f: 63:73:8e:8e:df:24:02:f6:a3:71:f8:d9:cf:6f:3b:f9:19:6b: 4d:03:64:fc:76:13:2e:b8:4f:5d:fa:37:f2:46:7f:27:62:e4: 8a:15:08:41:01:9d:2d:43:be:d1:1a:f3:de:6d:6f:11:de:9b: a7:c4:91:fe:42:db:1a:1d:4d:28:42:2b:20:e3:d6:10:12:02: 56:fb:68:da:48:70:fe:35:3a:c3:1f:36:17:49:0a:27:71:33: 72:6e:0a:9b:66:d5:20:68:f8:7b:8b:7d:58:a4:37:ed:6a:27: 2c:53:9a:1a:df:2a:8b:a4:4a:b7:a1:4a:db:46:3d:1e:4b:1f: 2e:94:a8:a9:4a:e4:a3:ea:6b:08:b5:a8:99:a9:cb:ce:ac:ed: 91:67:74:8a -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgISAZt8ES2a+1Haprrn65uG7mMfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0Y2RlNWE2MTE0NWQzOTkyZWNjZGVjN2I3ZjBiODdkNTY2 YmRkY2EwHhcNMjYwMTAyMDAxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZGI2MjE4ZWNlNzYzNmE4MTc2NWUxNGMzNzljZTliNzA2MWE4OGM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7sSOp2GPuYk+2rkGKvPjhR4Sp61 YNukGZseHrtsHU1pSntumNbwkKsOdVVVHg/+JM4QXvLSOTjkHoyVhO8S37C0gFRI hJOgOsBYhHkOoOT7Q3XA06cng62F7JQW5eAR0HHtm8jEut8GSSylVDB7blJrKDhp TUIWH4C73L8QPmP4xI9NBO/3rdinY+yLawcGadEOfGNTn+HLmvLaohu2mE26AFvf m+2Z3kG11vho8LdTkWOvNhCT5j/32JN/Cb+iUx8J493h2s9oEx+iEPCPXKLPu4Oo S+au0322CVHipTaqtSndxFJmNcYLniD0fo5NrJfJNcWU8iNYN40IEwfuKQIDAQAB o4ICUDCCAkwwHQYDVR0OBBYEFM22IY7OdjaoF2XhTDec6bcGGojGMB8GA1UdIwQY MBaAFDTN5aYRRdOZLszex7fwuH1Wa93KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTk0zbHBoRkYwNWt1ek43SHRfQzRmVlpyM2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iNDJjNTMtZTA1YS00ZDc3LTgyZWUt NWVmMzYyMjZhNzY3LzEvemJZaGpzNTJOcWdYWmVGTU41enB0d1lhaU1ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9iNDJjNTMtZTA1YS00ZDc3LTgyZWUtNWVmMzYyMjZhNzY3 LzEvTk0zbHBoRkYwNWt1ek43SHRfQzRmVlpyM2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGYGCCsGAQUFBwEHAQH/BFcwVTBEBAIAATA+AwQDBQoAAwQE W4lAMAwDBANbiVgDBAFbiXQDBANbiXgDBAK5DkADBAK5I9gDBAK56dwDBAK57qAD BAK58OAwDQQCAAIwBwMFACoCrMEwDQYJKoZIhvcNAQELBQADggEBAIQfF9gHlPzW UuzFe7jO5ZJ7UzsrDzwTWoPkJvPSxlHSK5pxmgzbV2d5YCb6fgJLZpurxOus8lMo n5y2XnxHazJ4UHZPoBOjgbEoxBVYV9LQHULC8I8aRztviFqoSdVOqStcO840XFPT gG6wj2Nzjo7fJAL2o3H42c9vO/kZa00DZPx2Ey64T136N/JGfydi5IoVCEEBnS1D vtEa895tbxHem6fEkf5C2xodTShCKyDj1hASAlb7aNpIcP41OsMfNhdJCidxM3Ju Cptm1SBo+HuLfVikN+1qJyxTmhrfKoukSrehSttGPR5LHy6UqKlK5KPqawi1qJmp y86s7ZFndIo= -----END CERTIFICATE-----Generated at Tue Feb 10 01:29:01 2026 by rpki-client