This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/zT2SVobKOrqCSSH6tmxWYylcNJ0.roa File: zT2SVobKOrqCSSH6tmxWYylcNJ0.roa (raw, json) Hash identifier: +n2XEQtkvSldlIzuGKqZcGU0lIa7VYbzPW0ct3CZyds= Subject key identifier: CD:3D:92:56:86:CA:3A:BA:82:49:21:FA:B6:6C:56:63:29:5C:34:9D Certificate issuer: /CN=81eed4091383d9ed4056d9f4eff7d2622ddce205 Certificate serial: 019C04C4FDB7A9576F5959934EF81ADC432B Authority key identifier: 81:EE:D4:09:13:83:D9:ED:40:56:D9:F4:EF:F7:D2:62:2D:DC:E2:05 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ge7UCROD2e1AVtn07_fSYi3c4gU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/zT2SVobKOrqCSSH6tmxWYylcNJ0.roa Signing time: Wed 28 Jan 2026 13:22:24 +0000 ROA not before: Wed 28 Jan 2026 13:22:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8737 IP address blocks: 84.39.0.0/19 maxlen: 19 109.72.32.0/20 maxlen: 20 128.127.32.0/20 maxlen: 20 195.64.64.0/19 maxlen: 19 195.64.80.0/20 maxlen: 20 195.121.0.0/16 maxlen: 16 195.121.0.0/17 maxlen: 17 195.121.64.0/18 maxlen: 18 195.121.128.0/17 maxlen: 17 212.182.128.0/18 maxlen: 18 213.75.0.0/16 maxlen: 16 213.75.0.0/17 maxlen: 17 213.75.128.0/17 maxlen: 17 213.148.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/ge7UCROD2e1AVtn07_fSYi3c4gU.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/ge7UCROD2e1AVtn07_fSYi3c4gU.mft rsync://rpki.ripe.net/repository/DEFAULT/ge7UCROD2e1AVtn07_fSYi3c4gU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:04:c4:fd:b7:a9:57:6f:59:59:93:4e:f8:1a:dc:43:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81eed4091383d9ed4056d9f4eff7d2622ddce205 Validity Not Before: Jan 28 13:22:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cd3d925686ca3aba824921fab66c5663295c349d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a8:94:fe:e5:45:39:5f:93:22:43:ce:cc:7c: bb:51:30:1b:a4:8a:7c:a6:9d:8c:2f:a1:ac:96:53: 76:57:a8:71:7d:a7:12:48:c4:95:3a:cc:85:84:ec: 48:66:1c:4f:83:5d:50:53:e9:bc:84:c1:42:5a:70: fc:29:31:a6:aa:db:7d:37:49:17:c0:c2:89:2e:e7: 87:aa:ab:12:c2:21:35:b3:23:0f:84:83:57:ac:4c: eb:37:06:62:0d:dc:30:09:2e:be:ab:28:10:ff:f8: 69:ae:1c:43:b2:90:25:ff:db:51:8e:37:7e:73:8e: 48:d8:9d:49:f5:1a:52:2b:62:a0:2c:04:df:e6:8c: 2e:a1:9e:c6:27:e2:e3:1f:e0:e3:76:58:38:3f:4d: 80:61:99:8c:51:6d:d7:81:aa:cf:4b:89:da:b7:a2: b6:49:78:b0:44:50:da:93:17:06:01:27:c7:a1:00: 83:28:95:5d:3c:c8:33:b3:16:c1:c3:49:4c:89:6c: 63:b4:80:56:11:0d:66:d0:a3:f1:e1:70:44:91:9a: 6e:08:a5:ce:07:6f:57:e9:e1:b9:e2:40:c8:da:11: c3:80:ef:9e:93:4e:58:8b:6b:0e:93:72:ef:7c:3c: 56:29:57:e4:a5:55:b1:74:34:65:e1:1f:06:69:0e: 5b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:3D:92:56:86:CA:3A:BA:82:49:21:FA:B6:6C:56:63:29:5C:34:9D X509v3 Authority Key Identifier: keyid:81:EE:D4:09:13:83:D9:ED:40:56:D9:F4:EF:F7:D2:62:2D:DC:E2:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ge7UCROD2e1AVtn07_fSYi3c4gU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/zT2SVobKOrqCSSH6tmxWYylcNJ0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/ge7UCROD2e1AVtn07_fSYi3c4gU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.39.0.0/19 109.72.32.0/20 128.127.32.0/20 195.64.64.0/19 195.121.0.0/16 212.182.128.0/18 213.75.0.0/16 213.148.224.0/19 Signature Algorithm: sha256WithRSAEncryption 21:9b:bf:92:58:75:17:54:10:68:f6:29:a7:a0:8d:33:31:cd: c8:d7:99:69:2c:24:e4:d2:78:9c:d6:01:d9:1f:b3:56:45:08: cf:28:a6:d7:2c:a0:0d:42:b5:cc:c4:d7:e7:7e:ae:e6:b7:7f: ad:24:e0:c5:43:72:47:45:9e:00:75:3b:cf:6f:91:4a:8e:0b: 8c:aa:cc:bd:fb:41:b5:77:4f:8c:4e:35:6d:98:3d:78:fc:61: 2f:95:31:9e:17:ae:2b:bc:0d:3e:ad:6f:36:2b:43:97:bc:d5: 57:1a:b2:86:78:69:95:4f:09:e6:4f:ed:84:3d:fa:7d:ad:93: 70:33:a7:43:5b:72:e1:53:db:df:94:70:77:ca:67:69:f3:9d: 83:47:7d:c7:32:72:32:5e:92:7f:76:5e:aa:e3:00:7d:44:bd: 6a:2d:bd:39:c9:5a:ee:44:5d:f9:1d:e8:c9:b0:d3:07:c8:0d: 2d:34:a1:73:a1:c5:3f:d2:19:4d:77:18:9f:81:3c:6c:60:4c: b0:fd:ef:84:39:c6:e7:4e:3e:ae:4d:b8:52:22:c1:12:93:b1: 67:50:0e:69:2e:a1:9c:ad:3e:fa:c6:ae:04:95:65:b6:2b:9d: 54:7e:91:82:4d:cf:df:f7:b9:92:d6:ea:55:a1:c7:36:04:71: fc:73:40:7d -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISAZwExP23qVdvWVmTTvga3EMrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxZWVkNDA5MTM4M2Q5ZWQ0MDU2ZDlmNGVmZjdkMjYyMmRk Y2UyMDUwHhcNMjYwMTI4MTMyMjI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZDNkOTI1Njg2Y2EzYWJhODI0OTIxZmFiNjZjNTY2MzI5NWMzNDlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKiU/uVFOV+TIkPOzHy7UTAbpIp8 pp2ML6GsllN2V6hxfacSSMSVOsyFhOxIZhxPg11QU+m8hMFCWnD8KTGmqtt9N0kX wMKJLueHqqsSwiE1syMPhINXrEzrNwZiDdwwCS6+qygQ//hprhxDspAl/9tRjjd+ c45I2J1J9RpSK2KgLATf5owuoZ7GJ+LjH+Djdlg4P02AYZmMUW3XgarPS4nat6K2 SXiwRFDakxcGASfHoQCDKJVdPMgzsxbBw0lMiWxjtIBWEQ1m0KPx4XBEkZpuCKXO B29X6eG54kDI2hHDgO+ek05Yi2sOk3LvfDxWKVfkpVWxdDRl4R8GaQ5bzwIDAQAB o4ICMTCCAi0wHQYDVR0OBBYEFM09klaGyjq6gkkh+rZsVmMpXDSdMB8GA1UdIwQY MBaAFIHu1AkTg9ntQFbZ9O/30mIt3OIFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2U3VUNST0QyZTFBVnRuMDdfZlNZaTNjNGdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS80YTljYzQtMmI5YS00ZWYyLWEzM2Et ODcyYjM3MTBjMmExLzEvelQyU1ZvYktPcnFDU1NINnRteFdZeWxjTkowLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS80YTljYzQtMmI5YS00ZWYyLWEzM2EtODcyYjM3MTBjMmEx LzEvZ2U3VUNST0QyZTFBVnRuMDdfZlNZaTNjNGdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjA0BAIAATAuAwQFVCcAAwQE bUggAwQEgH8gAwQFw0BAAwMAw3kDBAbUtoADAwDVSwMEBdWU4DANBgkqhkiG9w0B AQsFAAOCAQEAIZu/klh1F1QQaPYpp6CNMzHNyNeZaSwk5NJ4nNYB2R+zVkUIzyim 1yygDUK1zMTX536u5rd/rSTgxUNyR0WeAHU7z2+RSo4LjKrMvftBtXdPjE41bZg9 ePxhL5UxnheuK7wNPq1vNitDl7zVVxqyhnhplU8J5k/thD36fa2TcDOnQ1ty4VPb 35Rwd8pnafOdg0d9xzJyMl6Sf3ZequMAfUS9ai29Ocla7kRd+R3oybDTB8gNLTSh c6HFP9IZTXcYn4E8bGBMsP3vhDnG504+rk24UiLBEpOxZ1AOaS6hnK0++sauBJVl tiudVH6Rgk3P3/e5ktbqVaHHNgRx/HNAfQ== -----END CERTIFICATE-----Generated at Tue Feb 10 04:44:35 2026 by rpki-client