This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/097da1-7cc9-4343-8024-b310d71c2cad/1/ZbjQSCZ3uAIwmEEj11MfV5D8gC8.roa File: ZbjQSCZ3uAIwmEEj11MfV5D8gC8.roa (raw, json) Hash identifier: 5T7LXIEjxnn1PBqbN7TiQKs4WoehbeF3nUrwaJWfoo4= Subject key identifier: 65:B8:D0:48:26:77:B8:02:30:98:41:23:D7:53:1F:57:90:FC:80:2F Certificate issuer: /CN=d535f8fac7062f77f24b98cd5c3b54a89bad4838 Certificate serial: 019B7F84ECC2ECA94F03BA4B782398499799 Authority key identifier: D5:35:F8:FA:C7:06:2F:77:F2:4B:98:CD:5C:3B:54:A8:9B:AD:48:38 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TX4-scGL3fyS5jNXDtUqJutSDg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/097da1-7cc9-4343-8024-b310d71c2cad/1/ZbjQSCZ3uAIwmEEj11MfV5D8gC8.roa Signing time: Fri 02 Jan 2026 16:22:56 +0000 ROA not before: Fri 02 Jan 2026 16:22:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200561 IP address blocks: 185.79.24.0/22 maxlen: 22 185.79.24.0/24 maxlen: 24 185.79.25.0/24 maxlen: 24 185.175.28.0/22 maxlen: 24 185.175.28.0/24 maxlen: 24 185.175.29.0/24 maxlen: 24 2a03:20::/32 maxlen: 32 2a0b:cb00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/097da1-7cc9-4343-8024-b310d71c2cad/1/1TX4-scGL3fyS5jNXDtUqJutSDg.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/097da1-7cc9-4343-8024-b310d71c2cad/1/1TX4-scGL3fyS5jNXDtUqJutSDg.mft rsync://rpki.ripe.net/repository/DEFAULT/1TX4-scGL3fyS5jNXDtUqJutSDg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:ec:c2:ec:a9:4f:03:ba:4b:78:23:98:49:97:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d535f8fac7062f77f24b98cd5c3b54a89bad4838 Validity Not Before: Jan 2 16:22:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=65b8d0482677b80230984123d7531f5790fc802f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:85:ab:56:a6:ba:39:52:c1:59:73:e7:56:0f: e0:2f:c0:e7:90:79:83:41:52:22:a2:a8:96:89:85: 84:11:93:70:68:76:d0:8e:d0:83:a5:6a:4a:d1:24: f6:46:04:9b:d5:69:06:c5:f6:0f:d2:a4:49:83:7f: 72:90:1d:af:fc:40:7d:62:e9:0d:93:d1:f0:23:a1: af:ae:ed:78:3d:28:ed:7e:0c:c8:77:61:7c:0a:97: 1b:bc:e8:bd:7c:71:7e:03:73:14:cf:ed:aa:63:44: 6c:e8:bd:40:f7:43:91:b0:e4:c8:73:aa:c8:63:1f: a4:95:db:65:30:e0:f1:59:15:44:56:ae:06:94:a6: f9:5b:73:e0:25:13:7b:4c:ac:27:60:a7:cd:c5:8a: b3:2c:f5:d9:e6:14:4f:ac:9e:fe:dc:52:9b:22:52: 35:a6:43:96:b7:67:56:4a:63:3a:d6:cb:50:af:cf: 44:84:45:2b:de:c1:e8:1e:03:20:75:fc:b4:67:00: bf:36:f8:9c:16:78:01:52:66:0c:9d:61:25:1c:a2: 2a:f8:75:c8:f1:78:2e:42:66:fb:f9:e2:fb:9c:f8: 13:19:f9:df:55:6b:4d:15:7e:13:00:ab:73:4f:f7: 2b:ae:2b:11:a2:28:e4:11:74:1e:c3:b6:b1:62:09: 6d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B8:D0:48:26:77:B8:02:30:98:41:23:D7:53:1F:57:90:FC:80:2F X509v3 Authority Key Identifier: keyid:D5:35:F8:FA:C7:06:2F:77:F2:4B:98:CD:5C:3B:54:A8:9B:AD:48:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TX4-scGL3fyS5jNXDtUqJutSDg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/097da1-7cc9-4343-8024-b310d71c2cad/1/ZbjQSCZ3uAIwmEEj11MfV5D8gC8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/097da1-7cc9-4343-8024-b310d71c2cad/1/1TX4-scGL3fyS5jNXDtUqJutSDg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.79.24.0/22 185.175.28.0/22 IPv6: 2a03:20::/32 2a0b:cb00::/29 Signature Algorithm: sha256WithRSAEncryption 5d:cb:90:92:91:ba:7d:c1:43:99:8f:13:92:17:42:d9:a5:43: e1:14:7b:3b:58:e2:ae:60:d9:3a:6d:06:35:a5:96:f5:82:4f: 1e:eb:c7:63:73:ef:21:01:a3:bc:4a:8f:e4:ab:96:e9:1e:35: a9:13:fc:13:74:c3:bd:9d:b4:2e:af:cc:d3:1f:6a:78:a3:23: 83:d1:a7:e2:8c:33:60:2e:c1:f6:40:b7:79:e8:2b:74:d4:e5: d0:46:08:dc:e9:e4:87:4c:dd:8a:9b:93:05:75:09:1a:02:49: 53:fd:68:74:a2:58:6f:82:f2:31:3d:af:42:75:e6:3c:3f:31: 56:45:ad:84:26:b8:04:d0:c7:fc:7b:48:f2:d4:43:85:ca:7e: 14:01:2d:54:de:f4:21:88:b5:46:44:26:e2:3b:1d:c8:f9:c8: 16:c2:de:0e:80:4d:ac:ff:ad:d2:4e:b7:84:74:86:28:39:01: f9:56:0c:52:e8:65:7a:47:46:92:67:4b:5c:eb:ea:94:83:06: 66:df:2d:1a:d3:43:36:88:a6:25:ea:d0:34:3b:af:7b:ba:10: 97:cf:e2:af:5a:92:0d:fa:b2:10:bb:f5:b9:fc:91:97:0e:f8: af:aa:13:3c:3f:cf:ae:0f:93:96:9f:d5:e7:90:fc:c0:d9:35: b5:2e:0a:b1 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZt/hOzC7KlPA7pLeCOYSZeZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1MzVmOGZhYzcwNjJmNzdmMjRiOThjZDVjM2I1NGE4OWJh ZDQ4MzgwHhcNMjYwMTAyMTYyMjU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NWI4ZDA0ODI2NzdiODAyMzA5ODQxMjNkNzUzMWY1NzkwZmM4MDJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw4WrVqa6OVLBWXPnVg/gL8DnkHmD QVIioqiWiYWEEZNwaHbQjtCDpWpK0ST2RgSb1WkGxfYP0qRJg39ykB2v/EB9YukN k9HwI6Gvru14PSjtfgzId2F8CpcbvOi9fHF+A3MUz+2qY0Rs6L1A90ORsOTIc6rI Yx+kldtlMODxWRVEVq4GlKb5W3PgJRN7TKwnYKfNxYqzLPXZ5hRPrJ7+3FKbIlI1 pkOWt2dWSmM61stQr89EhEUr3sHoHgMgdfy0ZwC/NvicFngBUmYMnWElHKIq+HXI 8XguQmb7+eL7nPgTGfnfVWtNFX4TAKtzT/crrisRoijkEXQew7axYgltLwIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFGW40Egmd7gCMJhBI9dTH1eQ/IAvMB8GA1UdIwQY MBaAFNU1+PrHBi938kuYzVw7VKibrUg4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVRYNC1zY0dMM2Z5UzVqTlhEdFVxSnV0U0RnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8wOTdkYTEtN2NjOS00MzQzLTgwMjQt YjMxMGQ3MWMyY2FkLzEvWmJqUVNDWjN1QUl3bUVFajExTWZWNUQ4Z0M4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi8wOTdkYTEtN2NjOS00MzQzLTgwMjQtYjMxMGQ3MWMyY2Fk LzEvMVRYNC1zY0dMM2Z5UzVqTlhEdFVxSnV0U0RnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjASBAIAATAMAwQCuU8YAwQC ua8cMBQEAgACMA4DBQAqAwAgAwUDKgvLADANBgkqhkiG9w0BAQsFAAOCAQEAXcuQ kpG6fcFDmY8TkhdC2aVD4RR7O1jirmDZOm0GNaWW9YJPHuvHY3PvIQGjvEqP5KuW 6R41qRP8E3TDvZ20Lq/M0x9qeKMjg9Gn4owzYC7B9kC3eegrdNTl0EYI3Onkh0zd ipuTBXUJGgJJU/1odKJYb4LyMT2vQnXmPD8xVkWthCa4BNDH/HtI8tRDhcp+FAEt VN70IYi1RkQm4jsdyPnIFsLeDoBNrP+t0k63hHSGKDkB+VYMUuhlekdGkmdLXOvq lIMGZt8tGtNDNoimJerQNDuve7oQl8/ir1qSDfqyELv1ufyRlw74r6oTPD/Prg+T lp/V55D8wNk1tS4KsQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:29:16 2026 by rpki-client