This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/ZQWSBrSbVBwfkGrwKFFXvU4ra7w.roa File: ZQWSBrSbVBwfkGrwKFFXvU4ra7w.roa (raw, json) Hash identifier: r+NK3YQEVsT0+KvKCit8WLyB+4wd+LAbIvtambZpbro= Subject key identifier: 65:05:92:06:B4:9B:54:1C:1F:90:6A:F0:28:51:57:BD:4E:2B:6B:BC Certificate issuer: /CN=733b0728b7a0543584c2cd0b48b7478c4194ef0a Certificate serial: 019B7E3832EDDF161058A07B90E7ABEF9A23 Authority key identifier: 73:3B:07:28:B7:A0:54:35:84:C2:CD:0B:48:B7:47:8C:41:94:EF:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/ZQWSBrSbVBwfkGrwKFFXvU4ra7w.roa Signing time: Fri 02 Jan 2026 10:19:30 +0000 ROA not before: Fri 02 Jan 2026 10:19:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13127 IP address blocks: 145.83.1.0/24 maxlen: 24 145.83.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 01:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:32:ed:df:16:10:58:a0:7b:90:e7:ab:ef:9a:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=733b0728b7a0543584c2cd0b48b7478c4194ef0a Validity Not Before: Jan 2 10:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=65059206b49b541c1f906af0285157bd4e2b6bbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7e:42:5d:e7:ad:a0:52:e8:0d:bf:c2:c0:e0: 14:da:3b:5d:22:70:37:0e:5f:81:30:f8:01:86:0a: 9d:45:63:99:e1:ad:80:69:08:31:82:16:47:6f:29: 2c:27:f8:27:18:8e:4b:28:74:34:46:dd:ae:be:38: 07:7a:79:d2:b8:8e:0a:97:eb:33:26:eb:f3:2f:54: 84:5b:e1:a8:44:6b:93:0a:3d:71:5c:95:77:2a:6f: 98:6e:da:ff:a3:df:48:0f:8c:29:90:90:91:53:cb: 60:4a:15:24:05:d0:a2:42:a9:3b:05:d6:2d:0f:04: be:4a:06:f4:b4:a1:e5:3b:37:fe:04:66:70:87:50: 03:5f:b7:49:c4:9a:da:d5:34:7a:8c:10:b3:a7:e4: ee:41:89:0c:50:33:45:f3:fd:f7:5f:3f:ec:48:4f: 46:11:e0:92:bc:33:8b:00:80:a9:ca:d1:9d:6d:16: 9b:b8:03:8b:40:88:0f:17:30:dc:fc:90:f9:50:ad: 38:d8:ba:6e:2b:05:55:7b:0c:02:17:1a:1c:95:03: 0b:bc:35:3a:bc:e7:22:18:9e:bd:72:49:b8:15:d5: 35:76:d0:af:4e:ba:ee:8f:e2:84:e2:23:69:65:63: e6:55:77:cb:b1:62:84:5f:90:32:64:53:27:45:85: 76:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:05:92:06:B4:9B:54:1C:1F:90:6A:F0:28:51:57:BD:4E:2B:6B:BC X509v3 Authority Key Identifier: keyid:73:3B:07:28:B7:A0:54:35:84:C2:CD:0B:48:B7:47:8C:41:94:EF:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/ZQWSBrSbVBwfkGrwKFFXvU4ra7w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.83.1.0-145.83.2.255 Signature Algorithm: sha256WithRSAEncryption 4f:25:55:bc:dd:a0:67:42:bd:0a:2b:45:b2:cf:8a:4d:1f:64: 14:cc:25:91:4f:74:8b:0e:81:3e:95:7a:3b:94:34:43:18:c6: 9b:30:e5:00:90:a5:46:7d:74:4d:7c:1d:95:67:64:cf:31:ea: af:78:5b:3c:bc:01:3d:79:63:41:61:48:db:76:7e:e8:b5:d1: 4d:9e:1d:e7:96:34:70:f4:9d:e4:ea:fb:04:c6:bb:95:89:31: 7a:65:ee:7f:8d:6c:2b:91:73:43:67:bd:cf:b0:7c:c1:24:d7: 1e:72:62:85:5a:00:f2:e5:e1:8e:29:f1:12:14:9d:48:eb:ce: f8:dd:8b:cf:a7:4c:d1:c7:9f:f6:05:6b:25:5c:66:18:f3:2b: 77:e2:3b:ff:52:0c:60:fc:2f:29:95:2f:d8:5d:86:a2:51:ae: e5:dc:17:68:ff:d1:0a:89:a2:57:9b:3b:2c:3d:8a:0a:78:48: 86:d3:5f:55:28:75:98:91:21:83:3e:22:5f:cc:16:c5:64:4d: 70:8f:24:a2:54:52:bc:c6:27:55:36:ec:11:41:dd:9b:a7:60: 7c:c8:d9:5a:14:5e:53:5f:e3:e6:85:48:5d:37:cf:ce:4d:96: 95:82:84:46:bd:a1:11:f1:ae:f1:8d:77:59:1d:40:52:60:dd: 05:67:2e:e4 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt+ODLt3xYQWKB7kOer75ojMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczM2IwNzI4YjdhMDU0MzU4NGMyY2QwYjQ4Yjc0NzhjNDE5 NGVmMGEwHhcNMjYwMTAyMTAxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NTA1OTIwNmI0OWI1NDFjMWY5MDZhZjAyODUxNTdiZDRlMmI2YmJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx35CXeetoFLoDb/CwOAU2jtdInA3 Dl+BMPgBhgqdRWOZ4a2AaQgxghZHbyksJ/gnGI5LKHQ0Rt2uvjgHennSuI4Kl+sz JuvzL1SEW+GoRGuTCj1xXJV3Km+Ybtr/o99ID4wpkJCRU8tgShUkBdCiQqk7BdYt DwS+Sgb0tKHlOzf+BGZwh1ADX7dJxJra1TR6jBCzp+TuQYkMUDNF8/33Xz/sSE9G EeCSvDOLAICpytGdbRabuAOLQIgPFzDc/JD5UK042LpuKwVVewwCFxoclQMLvDU6 vOciGJ69ckm4FdU1dtCvTrruj+KE4iNpZWPmVXfLsWKEX5AyZFMnRYV2VQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFGUFkga0m1QcH5Bq8ChRV71OK2u8MB8GA1UdIwQY MBaAFHM7Byi3oFQ1hMLNC0i3R4xBlO8KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3pzSEtMZWdWRFdFd3MwTFNMZEhqRUdVN3dvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9hODM0ZGEtMWNjYS00MDE3LTkwYjgt ZGFlZTBhZWFmYjJiLzEvWlFXU0JyU2JWQndma0dyd0tGRlh2VTRyYTd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi9hODM0ZGEtMWNjYS00MDE3LTkwYjgtZGFlZTBhZWFmYjJi LzEvY3pzSEtMZWdWRFdFd3MwTFNMZEhqRUdVN3dvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACRUwED BACRUwIwDQYJKoZIhvcNAQELBQADggEBAE8lVbzdoGdCvQorRbLPik0fZBTMJZFP dIsOgT6VejuUNEMYxpsw5QCQpUZ9dE18HZVnZM8x6q94Wzy8AT15Y0FhSNt2fui1 0U2eHeeWNHD0neTq+wTGu5WJMXpl7n+NbCuRc0Nnvc+wfMEk1x5yYoVaAPLl4Y4p 8RIUnUjrzvjdi8+nTNHHn/YFayVcZhjzK3fiO/9SDGD8LymVL9hdhqJRruXcF2j/ 0QqJolebOyw9igp4SIbTX1UodZiRIYM+Il/MFsVkTXCPJKJUUrzGJ1U27BFB3Zun YHzI2VoUXlNf4+aFSF03z85NlpWChEa9oRHxrvGNd1kdQFJg3QVnLuQ= -----END CERTIFICATE-----Generated at Tue Jan 20 07:46:03 2026 by rpki-client