This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/ZSFvFvOHpvhz9jdVYyPf-qedyuc.roa File: ZSFvFvOHpvhz9jdVYyPf-qedyuc.roa (raw, json) Hash identifier: y2p8lWtao0cmGhQ7xMI9uO+GzRfpUJD6YxLs8A6673A= Subject key identifier: 65:21:6F:16:F3:87:A6:F8:73:F6:37:55:63:23:DF:FA:A7:9D:CA:E7 Certificate issuer: /CN=7dc4acedcb86cddfed7f6de8cadfca00469bbc8e Certificate serial: 019B78A2F42AD8458B5D825E63E501C8FB31 Authority key identifier: 7D:C4:AC:ED:CB:86:CD:DF:ED:7F:6D:E8:CA:DF:CA:00:46:9B:BC:8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fcSs7cuGzd_tf23oyt_KAEabvI4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/ZSFvFvOHpvhz9jdVYyPf-qedyuc.roa Signing time: Thu 01 Jan 2026 08:18:23 +0000 ROA not before: Thu 01 Jan 2026 08:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212642 IP address blocks: 89.221.111.0/24 maxlen: 24 2a00:1e1f:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/fcSs7cuGzd_tf23oyt_KAEabvI4.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/fcSs7cuGzd_tf23oyt_KAEabvI4.mft rsync://rpki.ripe.net/repository/DEFAULT/fcSs7cuGzd_tf23oyt_KAEabvI4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:f4:2a:d8:45:8b:5d:82:5e:63:e5:01:c8:fb:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7dc4acedcb86cddfed7f6de8cadfca00469bbc8e Validity Not Before: Jan 1 08:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=65216f16f387a6f873f637556323dffaa79dcae7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:51:8a:48:b8:5d:80:de:c7:a2:da:5f:47:26: a4:6d:cd:9f:cc:4a:2e:ba:ef:c9:5f:1b:6f:6a:60: ad:19:81:d6:3a:f4:75:2c:6a:7e:ad:49:b3:48:63: d6:2a:a0:b8:d2:5e:1b:07:38:3a:19:70:58:9c:89: 8f:8b:32:c5:aa:11:f2:72:30:10:c0:58:8f:f4:d0: 34:38:c5:b2:a1:fc:01:a7:89:57:5f:a6:42:e1:d7: 08:11:c0:76:78:d3:4b:e0:fa:e7:67:63:d8:a9:69: 75:98:b9:47:76:20:03:be:09:fb:0d:2e:e3:85:71: 32:86:36:27:37:b2:ed:d3:d2:52:17:f0:9f:56:dd: d3:33:78:b1:25:01:57:cc:c1:c2:f8:6f:f7:59:50: f5:4d:ac:94:1b:bc:04:fb:64:1c:fc:14:c1:71:c8: 55:6a:8f:06:32:08:91:af:20:c9:74:f0:75:dc:5d: 4f:d4:a5:b6:6f:72:92:14:db:6b:d9:9c:70:e7:b8: b3:10:fa:65:47:73:11:25:5b:54:a9:13:98:b2:2f: c8:9e:fe:d0:2f:31:81:44:92:f2:ca:45:c6:bf:12: 09:10:a3:61:52:83:70:0c:39:4a:a2:ad:9c:a7:83: 56:62:15:f3:f9:d3:1b:ae:6d:29:7e:7f:24:38:9f: ff:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:21:6F:16:F3:87:A6:F8:73:F6:37:55:63:23:DF:FA:A7:9D:CA:E7 X509v3 Authority Key Identifier: keyid:7D:C4:AC:ED:CB:86:CD:DF:ED:7F:6D:E8:CA:DF:CA:00:46:9B:BC:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fcSs7cuGzd_tf23oyt_KAEabvI4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/ZSFvFvOHpvhz9jdVYyPf-qedyuc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/fcSs7cuGzd_tf23oyt_KAEabvI4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.221.111.0/24 IPv6: 2a00:1e1f:ff00::/40 Signature Algorithm: sha256WithRSAEncryption cd:83:f9:b9:8a:81:1f:9c:98:50:66:25:6b:5c:ab:cc:63:f6: 64:45:eb:f0:3d:05:2a:f6:e4:24:6d:11:a5:4c:83:78:97:68: f9:d1:05:57:4a:b8:f6:a9:f7:a7:28:74:b7:78:11:b5:19:29: 54:51:c7:92:78:05:5d:c9:19:34:c5:7f:30:d9:c9:d7:c5:4d: e3:a0:d4:e2:17:1c:ad:96:46:bb:46:6a:85:05:d8:49:de:c0: 8f:3a:cf:ce:02:23:e8:25:fc:49:8b:9d:ad:46:d8:98:a6:8e: 64:e9:5c:07:cd:75:51:7f:d3:fd:ee:a1:32:e7:58:0e:22:ab: 3a:3e:83:18:3f:25:49:82:e2:ec:d8:99:a8:11:c4:d0:ba:c9: 8c:94:b3:4b:d0:ca:09:8c:c4:72:e6:ee:20:80:a3:b3:10:67: 99:95:21:94:5f:6a:fa:37:28:6c:10:56:5c:aa:d9:93:92:fe: be:a6:cf:c0:e4:da:66:5f:ba:63:c5:2b:b3:df:32:c7:94:77: f1:a3:77:8e:5b:32:d1:85:1f:5a:7a:aa:dc:9c:80:81:d8:8f: 6f:a3:24:fa:11:be:25:0a:c1:b8:ea:c6:4e:ad:58:a8:d6:30: a1:de:c2:3b:ba:42:a7:90:81:43:90:70:68:6f:1e:c4:dd:05: 8e:f5:0a:39 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt4ovQq2EWLXYJeY+UByPsxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkYzRhY2VkY2I4NmNkZGZlZDdmNmRlOGNhZGZjYTAwNDY5 YmJjOGUwHhcNMjYwMTAxMDgxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NTIxNmYxNmYzODdhNmY4NzNmNjM3NTU2MzIzZGZmYWE3OWRjYWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1GKSLhdgN7HotpfRyakbc2fzEou uu/JXxtvamCtGYHWOvR1LGp+rUmzSGPWKqC40l4bBzg6GXBYnImPizLFqhHycjAQ wFiP9NA0OMWyofwBp4lXX6ZC4dcIEcB2eNNL4PrnZ2PYqWl1mLlHdiADvgn7DS7j hXEyhjYnN7Lt09JSF/CfVt3TM3ixJQFXzMHC+G/3WVD1TayUG7wE+2Qc/BTBcchV ao8GMgiRryDJdPB13F1P1KW2b3KSFNtr2Zxw57izEPplR3MRJVtUqROYsi/Inv7Q LzGBRJLyykXGvxIJEKNhUoNwDDlKoq2cp4NWYhXz+dMbrm0pfn8kOJ//mwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFGUhbxbzh6b4c/Y3VWMj3/qnncrnMB8GA1UdIwQY MBaAFH3ErO3Lhs3f7X9t6MrfygBGm7yOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmNTczdjdUd6ZF90ZjIzb3l0X0tBRWFidkk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8zZDJhMTQtNmI3OS00Njg5LTk1Nzkt Mzk0ODAyODVhOTQ4LzEvWlNGdkZ2T0hwdmh6OWpkVll5UGYtcWVkeXVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS8zZDJhMTQtNmI3OS00Njg5LTk1NzktMzk0ODAyODVhOTQ4 LzEvZmNTczdjdUd6ZF90ZjIzb3l0X0tBRWFidkk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAWd1vMA4E AgACMAgDBgAqAB4f/zANBgkqhkiG9w0BAQsFAAOCAQEAzYP5uYqBH5yYUGYla1yr zGP2ZEXr8D0FKvbkJG0RpUyDeJdo+dEFV0q49qn3pyh0t3gRtRkpVFHHkngFXckZ NMV/MNnJ18VN46DU4hccrZZGu0ZqhQXYSd7AjzrPzgIj6CX8SYudrUbYmKaOZOlc B811UX/T/e6hMudYDiKrOj6DGD8lSYLi7NiZqBHE0LrJjJSzS9DKCYzEcubuIICj sxBnmZUhlF9q+jcobBBWXKrZk5L+vqbPwOTaZl+6Y8Urs98yx5R38aN3jlsy0YUf Wnqq3JyAgdiPb6Mk+hG+JQrBuOrGTq1YqNYwod7CO7pCp5CBQ5BwaG8exN0FjvUK OQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:33:53 2026 by rpki-client