This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/19f229-a90f-42c4-980b-1550f2ac87b3/1/zhmEXTTO06gpLxWO64H29X0-CFk.roa File: zhmEXTTO06gpLxWO64H29X0-CFk.roa (raw, json) Hash identifier: 5E099Sh8nPjWGjRVAIGCRAKM5QSFykLo1AXb7NFz/x4= Subject key identifier: CE:19:84:5D:34:CE:D3:A8:29:2F:15:8E:EB:81:F6:F5:7D:3E:08:59 Certificate issuer: /CN=a11f205979d2fbde95756a46a0f2739d7816d459 Certificate serial: 019B7C1253844A3F6CF14F9600CA377647D4 Authority key identifier: A1:1F:20:59:79:D2:FB:DE:95:75:6A:46:A0:F2:73:9D:78:16:D4:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oR8gWXnS-96VdWpGoPJznXgW1Fk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/19f229-a90f-42c4-980b-1550f2ac87b3/1/zhmEXTTO06gpLxWO64H29X0-CFk.roa Signing time: Fri 02 Jan 2026 00:18:54 +0000 ROA not before: Fri 02 Jan 2026 00:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60414 IP address blocks: 85.194.238.0/23 maxlen: 23 89.44.211.0/24 maxlen: 24 185.31.136.0/22 maxlen: 22 2a00:bbe0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/19f229-a90f-42c4-980b-1550f2ac87b3/1/oR8gWXnS-96VdWpGoPJznXgW1Fk.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/19f229-a90f-42c4-980b-1550f2ac87b3/1/oR8gWXnS-96VdWpGoPJznXgW1Fk.mft rsync://rpki.ripe.net/repository/DEFAULT/oR8gWXnS-96VdWpGoPJznXgW1Fk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:53:84:4a:3f:6c:f1:4f:96:00:ca:37:76:47:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a11f205979d2fbde95756a46a0f2739d7816d459 Validity Not Before: Jan 2 00:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ce19845d34ced3a8292f158eeb81f6f57d3e0859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:20:05:80:80:eb:ae:94:32:f7:65:ac:e1:93: c5:99:ef:d5:70:7a:11:41:6f:bd:1d:00:42:f3:8d: 56:b5:a3:35:92:8b:73:a5:4d:b3:41:1d:f5:f1:df: f6:fb:f0:84:14:bc:d2:1c:e2:3c:ef:c5:4a:4c:bb: ee:90:6e:92:65:fc:7f:b4:3a:37:45:14:36:ae:80: 65:b2:57:81:17:50:9b:a8:48:b3:5f:a3:01:25:d1: 1c:4e:92:ba:c6:e0:a2:c9:93:4d:86:39:c6:d6:3f: c5:2c:a5:08:95:b4:05:0e:83:86:fa:e8:75:e6:00: 19:8b:c0:35:4e:d9:64:d8:51:9d:a7:14:b9:65:76: d5:5e:3e:59:e2:be:5a:a0:81:fc:50:69:71:10:38: 03:fc:16:a7:e5:49:7b:0b:4c:f3:d0:dc:e6:c4:d8: 69:32:c5:bc:88:b7:dd:f7:91:31:c4:4b:5d:f1:fe: c0:4f:29:fc:38:e9:2b:d1:79:f3:4f:39:4a:1b:54: 11:e4:1b:cd:7c:8e:4e:a6:50:d9:df:d6:cf:35:2b: 6c:31:39:51:aa:18:94:bd:cf:de:d3:3d:b7:cf:2e: 67:b5:c9:51:fc:6d:7d:5f:76:a3:ef:f0:65:5f:e9: 16:ac:5a:39:b2:86:ab:4a:b2:a6:a7:74:ac:f8:c7: da:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:19:84:5D:34:CE:D3:A8:29:2F:15:8E:EB:81:F6:F5:7D:3E:08:59 X509v3 Authority Key Identifier: keyid:A1:1F:20:59:79:D2:FB:DE:95:75:6A:46:A0:F2:73:9D:78:16:D4:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oR8gWXnS-96VdWpGoPJznXgW1Fk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/19f229-a90f-42c4-980b-1550f2ac87b3/1/zhmEXTTO06gpLxWO64H29X0-CFk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/19f229-a90f-42c4-980b-1550f2ac87b3/1/oR8gWXnS-96VdWpGoPJznXgW1Fk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.194.238.0/23 89.44.211.0/24 185.31.136.0/22 IPv6: 2a00:bbe0::/29 Signature Algorithm: sha256WithRSAEncryption 3c:a6:8d:1f:bd:d4:05:7e:be:c1:31:77:20:04:d3:59:e2:20: 15:f2:32:e6:e6:37:76:cf:de:98:bb:60:41:36:de:7f:7f:fa: ac:f2:12:5b:b0:77:ef:03:b5:66:78:b9:5a:9f:9e:6c:e4:c0: 1c:5c:cb:73:a3:7e:a1:96:05:0d:90:99:77:df:29:8a:6d:54: 71:29:d0:5b:5c:79:c7:d9:a4:6e:5d:20:3e:d0:e8:b7:0f:98: 91:c0:36:38:6a:73:08:fd:41:bc:a8:63:bd:d9:66:8b:ae:d8: a0:60:61:e9:cd:ce:8c:e5:e3:32:3f:83:f3:28:fb:86:80:11: c0:c6:c7:03:bc:5f:a8:83:6f:1c:3a:05:f1:bd:bd:e2:e6:0c: 4c:e6:cb:87:b0:0c:59:60:fb:6b:53:17:0d:54:50:b5:6e:c6: 35:42:1a:01:e1:0d:2d:8e:87:f9:dc:e3:18:47:07:d7:51:66: d4:d5:dc:f3:cf:37:ff:64:05:4d:6e:14:63:6d:bd:e3:f8:7a: 16:3e:de:51:14:df:79:40:5d:b8:a3:2c:bf:c4:9e:02:d1:53: 37:d3:9b:f3:fa:69:c8:37:0e:bd:46:d4:2e:64:e6:34:71:66: 18:56:d2:4d:ff:7e:f9:91:25:d2:37:56:bc:7e:eb:7c:d6:ed: fb:06:69:f4 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt8ElOESj9s8U+WAMo3dkfUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMWYyMDU5NzlkMmZiZGU5NTc1NmE0NmEwZjI3MzlkNzgx NmQ0NTkwHhcNMjYwMTAyMDAxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZTE5ODQ1ZDM0Y2VkM2E4MjkyZjE1OGVlYjgxZjZmNTdkM2UwODU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSAFgIDrrpQy92Ws4ZPFme/VcHoR QW+9HQBC841WtaM1kotzpU2zQR318d/2+/CEFLzSHOI878VKTLvukG6SZfx/tDo3 RRQ2roBlsleBF1CbqEizX6MBJdEcTpK6xuCiyZNNhjnG1j/FLKUIlbQFDoOG+uh1 5gAZi8A1Ttlk2FGdpxS5ZXbVXj5Z4r5aoIH8UGlxEDgD/Ban5Ul7C0zz0NzmxNhp MsW8iLfd95ExxEtd8f7ATyn8OOkr0XnzTzlKG1QR5BvNfI5OplDZ39bPNStsMTlR qhiUvc/e0z23zy5ntclR/G19X3aj7/BlX+kWrFo5soarSrKmp3Ss+Mfa6QIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFM4ZhF00ztOoKS8VjuuB9vV9PghZMB8GA1UdIwQY MBaAFKEfIFl50vvelXVqRqDyc514FtRZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1I4Z1dYblMtOTZWZFdwR29QSnpuWGdXMUZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8xOWYyMjktYTkwZi00MmM0LTk4MGIt MTU1MGYyYWM4N2IzLzEvemhtRVhUVE8wNmdwTHhXTzY0SDI5WDAtQ0ZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS8xOWYyMjktYTkwZi00MmM0LTk4MGItMTU1MGYyYWM4N2Iz LzEvb1I4Z1dYblMtOTZWZFdwR29QSnpuWGdXMUZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQBVcLuAwQA WSzTAwQCuR+IMA0EAgACMAcDBQMqALvgMA0GCSqGSIb3DQEBCwUAA4IBAQA8po0f vdQFfr7BMXcgBNNZ4iAV8jLm5jd2z96Yu2BBNt5/f/qs8hJbsHfvA7VmeLlan55s 5MAcXMtzo36hlgUNkJl33ymKbVRxKdBbXHnH2aRuXSA+0Oi3D5iRwDY4anMI/UG8 qGO92WaLrtigYGHpzc6M5eMyP4PzKPuGgBHAxscDvF+og28cOgXxvb3i5gxM5suH sAxZYPtrUxcNVFC1bsY1QhoB4Q0tjof53OMYRwfXUWbU1dzzzzf/ZAVNbhRjbb3j +HoWPt5RFN95QF24oyy/xJ4C0VM305vz+mnINw69RtQuZOY0cWYYVtJN/375kSXS N1a8fut81u37Bmn0 -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:28 2026 by rpki-client