This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/52e0bc-9629-4a20-a002-909209356b2f/1/zbGnMHvperUTVfkkQ2o3OIxLJb4.roa File: zbGnMHvperUTVfkkQ2o3OIxLJb4.roa (raw, json) Hash identifier: yA4AYsSS3JozPB6SQxRvVSqD1ZvucRznxAMaRPbA/Bc= Subject key identifier: CD:B1:A7:30:7B:E9:7A:B5:13:55:F9:24:43:6A:37:38:8C:4B:25:BE Certificate issuer: /CN=700002e9cd2c74a0ef8b51b40d44d141a932d283 Certificate serial: 019B79ECD42F2251AB75AFF429AE8E088868 Authority key identifier: 70:00:02:E9:CD:2C:74:A0:EF:8B:51:B4:0D:44:D1:41:A9:32:D2:83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAAC6c0sdKDvi1G0DUTRQaky0oM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/52e0bc-9629-4a20-a002-909209356b2f/1/zbGnMHvperUTVfkkQ2o3OIxLJb4.roa Signing time: Thu 01 Jan 2026 14:18:42 +0000 ROA not before: Thu 01 Jan 2026 14:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13070 IP address blocks: 77.241.160.0/22 maxlen: 22 217.145.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/52e0bc-9629-4a20-a002-909209356b2f/1/cAAC6c0sdKDvi1G0DUTRQaky0oM.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/52e0bc-9629-4a20-a002-909209356b2f/1/cAAC6c0sdKDvi1G0DUTRQaky0oM.mft rsync://rpki.ripe.net/repository/DEFAULT/cAAC6c0sdKDvi1G0DUTRQaky0oM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:d4:2f:22:51:ab:75:af:f4:29:ae:8e:08:88:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=700002e9cd2c74a0ef8b51b40d44d141a932d283 Validity Not Before: Jan 1 14:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cdb1a7307be97ab51355f924436a37388c4b25be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:21:b5:1d:d7:cc:5f:86:b7:3b:2e:b9:c4:25: aa:ae:03:79:9b:57:e3:86:43:26:04:07:d7:ff:d7: e0:31:3f:d2:90:85:0e:a7:4c:8c:ba:46:d4:54:21: c4:ca:4c:09:10:52:25:47:e8:35:a5:51:02:c7:8b: 84:d4:62:80:c0:05:4c:07:e9:c4:f1:c0:33:88:eb: 24:ab:85:31:b9:8c:a2:18:91:bf:f1:5e:76:ea:6a: 05:56:32:e2:7d:41:e3:c4:56:5b:a6:66:ea:fc:60: 96:d1:67:44:40:c9:0c:30:ca:30:6f:8f:f3:03:99: c2:06:0f:08:85:26:ed:a4:76:1e:ac:dc:a1:f5:e8: d4:53:44:dd:93:d6:d9:55:b1:64:25:03:73:9b:d5: dc:21:fa:2d:8e:1a:b8:fe:5e:03:3d:cf:9a:70:77: 1f:83:4d:6c:34:0c:38:66:a4:c4:08:60:2d:d2:f9: 7e:6d:d9:34:0a:94:6a:bb:b5:fa:59:45:1b:99:e4: 65:a9:c7:72:45:c8:04:ac:93:ea:1b:8f:ba:51:52: 89:ab:9c:23:e9:ec:06:16:80:86:a5:76:e3:95:37: 19:ac:79:b5:e1:45:67:4b:ba:24:4f:8f:fa:ac:be: c3:85:4a:c5:c1:59:b8:1a:bc:98:bb:89:14:fc:43: fe:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B1:A7:30:7B:E9:7A:B5:13:55:F9:24:43:6A:37:38:8C:4B:25:BE X509v3 Authority Key Identifier: keyid:70:00:02:E9:CD:2C:74:A0:EF:8B:51:B4:0D:44:D1:41:A9:32:D2:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAAC6c0sdKDvi1G0DUTRQaky0oM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/52e0bc-9629-4a20-a002-909209356b2f/1/zbGnMHvperUTVfkkQ2o3OIxLJb4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/52e0bc-9629-4a20-a002-909209356b2f/1/cAAC6c0sdKDvi1G0DUTRQaky0oM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.241.160.0/22 217.145.208.0/20 Signature Algorithm: sha256WithRSAEncryption 51:43:d8:0a:69:04:a4:9a:f4:3c:a7:35:0c:8d:94:f3:52:13: 82:97:69:2d:46:2b:cf:60:e0:6b:9a:09:8d:18:70:ba:07:89: 4b:cb:9a:12:31:16:8e:51:38:9b:a1:aa:e8:29:c6:85:16:76: fd:3a:a9:dc:5a:b8:eb:7b:2b:20:9a:59:3a:c4:7e:63:a2:83: ba:73:84:c1:80:bb:b1:25:54:54:4c:5f:5a:3e:fb:d7:b3:97: 65:07:1f:cd:b2:dd:de:25:25:14:cf:f8:b8:91:92:84:94:65: 3b:39:0e:0d:01:00:dc:ef:9e:ad:b2:84:8c:92:b5:00:fb:ae: f7:cd:a6:b2:e7:5c:35:28:11:ca:66:77:7d:78:33:c1:2e:f8: e1:67:8d:a1:99:2b:0c:4f:0e:33:f5:27:e3:81:70:b3:e8:56: c7:17:65:62:e3:e1:54:9f:da:0c:de:42:05:38:40:a4:c7:b8: 5e:8a:11:81:23:7f:a3:96:e2:ea:13:54:55:b5:10:88:7e:a6: 67:22:89:dd:43:0d:27:50:88:84:23:2e:f1:c5:be:72:16:53: 5b:03:d3:a5:98:b0:39:aa:5c:35:d6:89:17:78:6b:ff:ce:6a: 2c:11:66:51:88:96:8c:cf:7e:06:46:8e:53:7f:42:a0:a9:14: fe:ef:5b:fe -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57NQvIlGrda/0Ka6OCIhoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwMDAwMmU5Y2QyYzc0YTBlZjhiNTFiNDBkNDRkMTQxYTkz MmQyODMwHhcNMjYwMTAxMTQxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZGIxYTczMDdiZTk3YWI1MTM1NWY5MjQ0MzZhMzczODhjNGIyNWJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAriG1HdfMX4a3Oy65xCWqrgN5m1fj hkMmBAfX/9fgMT/SkIUOp0yMukbUVCHEykwJEFIlR+g1pVECx4uE1GKAwAVMB+nE 8cAziOskq4UxuYyiGJG/8V526moFVjLifUHjxFZbpmbq/GCW0WdEQMkMMMowb4/z A5nCBg8IhSbtpHYerNyh9ejUU0Tdk9bZVbFkJQNzm9XcIfotjhq4/l4DPc+acHcf g01sNAw4ZqTECGAt0vl+bdk0CpRqu7X6WUUbmeRlqcdyRcgErJPqG4+6UVKJq5wj 6ewGFoCGpXbjlTcZrHm14UVnS7okT4/6rL7DhUrFwVm4GryYu4kU/EP+FwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFM2xpzB76Xq1E1X5JENqNziMSyW+MB8GA1UdIwQY MBaAFHAAAunNLHSg74tRtA1E0UGpMtKDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0FBQzZjMHNkS0R2aTFHMERVVFJRYWt5MG9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi81MmUwYmMtOTYyOS00YTIwLWEwMDIt OTA5MjA5MzU2YjJmLzEvemJHbk1IdnBlclVUVmZra1EybzNPSXhMSmI0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi81MmUwYmMtOTYyOS00YTIwLWEwMDItOTA5MjA5MzU2YjJm LzEvY0FBQzZjMHNkS0R2aTFHMERVVFJRYWt5MG9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCTfGgAwQE 2ZHQMA0GCSqGSIb3DQEBCwUAA4IBAQBRQ9gKaQSkmvQ8pzUMjZTzUhOCl2ktRivP YOBrmgmNGHC6B4lLy5oSMRaOUTiboaroKcaFFnb9OqncWrjreysgmlk6xH5jooO6 c4TBgLuxJVRUTF9aPvvXs5dlBx/Nst3eJSUUz/i4kZKElGU7OQ4NAQDc756tsoSM krUA+673zaay51w1KBHKZnd9eDPBLvjhZ42hmSsMTw4z9SfjgXCz6FbHF2Vi4+FU n9oM3kIFOECkx7heihGBI3+jluLqE1RVtRCIfqZnIondQw0nUIiEIy7xxb5yFlNb A9OlmLA5qlw11okXeGv/zmosEWZRiJaMz34GRo5Tf0KgqRT+71v+ -----END CERTIFICATE-----Generated at Mon Feb 9 22:27:18 2026 by rpki-client