This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Z3Z_ESMNY8SbSbs2aduGyDmMo3Q.roa File: Z3Z_ESMNY8SbSbs2aduGyDmMo3Q.roa (raw, json) Hash identifier: RdF4UcZQCiWntX/RTp7kFQ1wXz8FUZn/l1nO7bG1DNY= Subject key identifier: 67:76:7F:11:23:0D:63:C4:9B:49:BB:36:69:DB:86:C8:39:8C:A3:74 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C13639E50616D3B60C50ACF26598C1A Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Z3Z_ESMNY8SbSbs2aduGyDmMo3Q.roa Signing time: Fri 02 Jan 2026 00:20:04 +0000 ROA not before: Fri 02 Jan 2026 00:20:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16276 IP address blocks: 194.76.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:63:9e:50:61:6d:3b:60:c5:0a:cf:26:59:8c:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67767f11230d63c49b49bb3669db86c8398ca374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:07:ce:52:5c:01:8d:15:a3:c0:25:cb:ab:97: 98:00:da:1e:a8:08:9d:6b:ce:26:45:18:f2:c7:e1: 0a:d8:b8:94:8c:7f:92:8a:58:1b:50:1a:a0:9d:76: d0:08:99:11:e9:b5:c1:b3:79:71:d4:22:3a:aa:90: 97:23:98:20:f5:fa:27:4b:67:d2:2d:2a:31:72:8a: 0f:58:f7:3f:7a:88:e0:4b:83:1e:d0:ff:19:ce:9a: 87:3a:b2:6b:36:ea:d4:89:57:5e:cd:fe:2f:6a:fb: 76:71:43:96:b2:ca:61:09:64:28:92:0d:fc:a6:37: 5c:f9:87:5f:aa:61:dc:8c:40:83:be:99:6e:f5:04: ea:19:11:9d:f5:86:ce:91:7a:4c:db:0d:b7:62:4c: 8a:b4:bb:27:0d:51:8a:82:d4:29:05:64:8a:38:34: 64:99:34:7b:8e:7c:5e:b5:35:4e:56:83:ee:2e:9f: 7a:5b:27:12:f2:45:82:b5:a5:d5:0f:07:39:f3:0d: b9:c9:9e:ca:66:5e:42:74:4c:34:2e:ef:4f:a0:16: b8:d2:06:3a:d3:f6:72:83:47:9a:0d:9b:16:d7:b3: bf:79:3a:3c:af:3b:1c:5e:99:53:75:9f:9f:ef:0c: e5:58:3d:f9:c9:df:cf:7c:7a:54:73:00:74:49:5a: 36:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:76:7F:11:23:0D:63:C4:9B:49:BB:36:69:DB:86:C8:39:8C:A3:74 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Z3Z_ESMNY8SbSbs2aduGyDmMo3Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.76.173.0/24 Signature Algorithm: sha256WithRSAEncryption a3:96:cf:c4:82:c9:53:9c:45:4a:77:4f:56:c2:20:15:25:ca: d5:2a:ab:80:ae:6f:96:13:ae:a4:be:f9:1d:1d:e6:8e:f6:88: 01:59:92:73:19:72:10:5c:4a:4b:ae:eb:05:30:6a:79:0b:07: 1c:95:20:c2:6b:36:11:30:76:af:03:34:3e:40:93:6b:33:55: ab:86:f3:f3:7f:b5:36:2d:db:8e:41:8b:e1:80:ef:69:7b:f0: 48:ea:db:0a:c7:8e:f7:b7:7b:09:97:54:64:77:e2:a3:70:04: f4:a7:ff:dc:02:46:ee:29:b2:d2:ab:c3:6e:56:b5:c3:62:e8: d4:d6:6f:a3:a7:3b:9b:51:6b:9a:aa:58:b9:03:72:d0:7c:94: 46:07:fb:e7:4d:e8:bf:90:fd:f7:cf:ed:dd:25:01:ad:82:7d: c4:ea:50:3e:7f:7c:b1:62:c1:e0:b7:a6:fc:07:27:20:b8:74: a2:da:9b:b3:25:8f:a0:8b:b4:3b:86:5c:ef:83:32:6e:55:e8: d9:b6:88:ee:e8:00:6c:50:5f:7c:c0:69:c2:12:8b:ea:be:9c: a2:53:33:e5:04:95:28:c8:0e:56:53:3f:14:08:4d:0f:af:8f: 7e:d0:86:92:b0:c1:05:a3:4a:8d:5b:ed:69:88:b6:bf:5f:83: 4c:d7:04:31 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E2OeUGFtO2DFCs8mWYwaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2Nzc2N2YxMTIzMGQ2M2M0OWI0OWJiMzY2OWRiODZjODM5OGNhMzc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2AfOUlwBjRWjwCXLq5eYANoeqAid a84mRRjyx+EK2LiUjH+SilgbUBqgnXbQCJkR6bXBs3lx1CI6qpCXI5gg9fonS2fS LSoxcooPWPc/eojgS4Me0P8ZzpqHOrJrNurUiVdezf4vavt2cUOWssphCWQokg38 pjdc+YdfqmHcjECDvplu9QTqGRGd9YbOkXpM2w23YkyKtLsnDVGKgtQpBWSKODRk mTR7jnxetTVOVoPuLp96WycS8kWCtaXVDwc58w25yZ7KZl5CdEw0Lu9PoBa40gY6 0/Zyg0eaDZsW17O/eTo8rzscXplTdZ+f7wzlWD35yd/PfHpUcwB0SVo2tQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGd2fxEjDWPEm0m7Nmnbhsg5jKN0MB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvWjNaX0VTTU5ZOFNiU2JzMmFkdUd5RG1NbzNRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwkytMA0G CSqGSIb3DQEBCwUAA4IBAQCjls/EgslTnEVKd09WwiAVJcrVKquArm+WE66kvvkd HeaO9ogBWZJzGXIQXEpLrusFMGp5CwcclSDCazYRMHavAzQ+QJNrM1WrhvPzf7U2 LduOQYvhgO9pe/BI6tsKx473t3sJl1Rkd+KjcAT0p//cAkbuKbLSq8NuVrXDYujU 1m+jpzubUWuaqli5A3LQfJRGB/vnTei/kP33z+3dJQGtgn3E6lA+f3yxYsHgt6b8 BycguHSi2puzJY+gi7Q7hlzvgzJuVejZtoju6ABsUF98wGnCEovqvpyiUzPlBJUo yA5WUz8UCE0Pr49+0IaSsMEFo0qNW+1piLa/X4NM1wQx -----END CERTIFICATE-----Generated at Fri Jan 2 23:47:30 2026 by rpki-client