This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/ZxfgrYdrY89o-a2LS8GaW93TD4Y.roa File: ZxfgrYdrY89o-a2LS8GaW93TD4Y.roa (raw, json) Hash identifier: oyxsPNLoW2aLavfIhXORGRPykTN2rEtCwJdPmfe1EN0= Subject key identifier: 67:17:E0:AD:87:6B:63:CF:68:F9:AD:8B:4B:C1:9A:5B:DD:D3:0F:86 Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019B7EA708F49270373001C7D2639AA51248 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/ZxfgrYdrY89o-a2LS8GaW93TD4Y.roa Signing time: Fri 02 Jan 2026 12:20:34 +0000 ROA not before: Fri 02 Jan 2026 12:20:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205886 IP address blocks: 45.156.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 05 Jan 2026 23:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:08:f4:92:70:37:30:01:c7:d2:63:9a:a5:12:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 2 12:20:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6717e0ad876b63cf68f9ad8b4bc19a5bddd30f86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:07:1a:8b:db:2a:cd:d6:f1:c1:0d:fe:ce:2b: a9:37:71:94:17:08:c3:16:9e:8f:78:20:14:da:c6: a3:05:de:f9:b6:49:f1:00:c1:83:e7:03:28:fb:11: 77:bf:fa:26:37:b7:39:64:32:df:c2:31:e1:88:3d: a4:ff:13:e8:a7:92:d6:38:76:9d:0c:bf:88:65:29: 84:85:8e:a7:96:8e:0d:5c:5a:b8:af:ea:0b:55:98: ee:b6:aa:e7:bb:f9:e3:2a:ce:cf:99:e2:be:c9:30: 48:da:16:d2:3e:4d:98:99:9a:4e:fd:03:87:8c:12: 48:05:a3:04:99:11:cc:31:1b:63:5c:f3:15:b9:bd: 0e:7b:7d:58:1a:bd:40:e1:ce:fd:9c:ab:ce:df:70: bc:42:77:b7:ee:72:04:74:17:4c:af:b8:b4:c3:05: ee:69:13:04:c1:cb:32:45:45:5b:f2:18:a2:dc:15: b1:c7:03:f0:de:8f:ce:d7:a7:3f:fe:7c:f8:13:fc: 10:14:8f:95:8c:1d:46:85:f7:be:a4:e9:35:1e:05: 3f:4a:73:5f:13:56:c3:c6:da:45:b8:fa:b7:cd:60: 16:f3:31:01:64:a2:0c:ad:f9:32:ca:9d:9c:8a:42: 40:c9:e7:fe:ea:10:35:31:68:14:9c:da:18:4c:02: 53:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:17:E0:AD:87:6B:63:CF:68:F9:AD:8B:4B:C1:9A:5B:DD:D3:0F:86 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/ZxfgrYdrY89o-a2LS8GaW93TD4Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.156.144.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:d9:80:12:1d:eb:58:ad:be:53:e6:4e:b6:e3:c4:2c:64:0b: 39:a3:75:09:52:3c:d5:79:29:84:96:a5:7c:d4:bb:4b:c0:3a: 17:99:04:86:7e:f3:b2:21:86:fe:ef:86:d3:d6:dd:44:ef:b2: ab:eb:dd:f2:71:fb:50:a7:8a:61:3d:20:b8:8d:24:18:bb:3a: 87:31:d1:58:af:86:6f:35:84:bf:45:0d:30:f0:a4:be:e2:25: 9f:19:df:b3:d5:7b:b0:ca:d5:af:75:c8:2e:b6:37:2f:40:14: 4b:44:a0:c2:29:06:5f:62:c4:e5:17:2b:1a:c0:88:e3:91:c4: 76:e9:97:08:ee:4f:3f:0a:e4:80:54:56:b5:a7:2c:2b:aa:1a: f1:ce:c9:6b:a9:44:5c:ee:47:c9:a5:4a:d5:ec:91:dc:e1:2d: 09:07:82:3b:02:d9:07:8a:af:87:ff:bb:a0:b9:5b:68:56:45: 99:7b:f5:55:77:3f:ce:e2:ec:2f:0f:0f:8c:ab:48:de:54:d6: c5:ea:46:6d:b9:8f:12:f6:8a:66:99:a7:af:e1:14:20:f5:d1: d3:0f:e6:11:f1:79:c3:82:1b:57:17:9e:69:c8:c0:67:b6:2c: 10:74:66:b9:22:e2:66:2c:80:82:fc:3a:7b:8e:fb:1e:fa:cb: f3:16:36:d7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pwj0knA3MAHH0mOapRJIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTAyMTIyMDM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NzE3ZTBhZDg3NmI2M2NmNjhmOWFkOGI0YmMxOWE1YmRkZDMwZjg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Qcai9sqzdbxwQ3+ziupN3GUFwjD Fp6PeCAU2sajBd75tknxAMGD5wMo+xF3v/omN7c5ZDLfwjHhiD2k/xPop5LWOHad DL+IZSmEhY6nlo4NXFq4r+oLVZjutqrnu/njKs7PmeK+yTBI2hbSPk2YmZpO/QOH jBJIBaMEmRHMMRtjXPMVub0Oe31YGr1A4c79nKvO33C8Qne37nIEdBdMr7i0wwXu aRMEwcsyRUVb8hii3BWxxwPw3o/O16c//nz4E/wQFI+VjB1Ghfe+pOk1HgU/SnNf E1bDxtpFuPq3zWAW8zEBZKIMrfkyyp2cikJAyef+6hA1MWgUnNoYTAJTVwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGcX4K2Ha2PPaPmti0vBmlvd0w+GMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvWnhmZ3JZZHJZODlvLWEyTFM4R2FXOTNURDRZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZyQMA0G CSqGSIb3DQEBCwUAA4IBAQBr2YASHetYrb5T5k6248QsZAs5o3UJUjzVeSmElqV8 1LtLwDoXmQSGfvOyIYb+74bT1t1E77Kr693ycftQp4phPSC4jSQYuzqHMdFYr4Zv NYS/RQ0w8KS+4iWfGd+z1XuwytWvdcgutjcvQBRLRKDCKQZfYsTlFysawIjjkcR2 6ZcI7k8/CuSAVFa1pywrqhrxzslrqURc7kfJpUrV7JHc4S0JB4I7AtkHiq+H/7ug uVtoVkWZe/VVdz/O4uwvDw+Mq0jeVNbF6kZtuY8S9opmmaev4RQg9dHTD+YR8XnD ghtXF55pyMBntiwQdGa5IuJmLICC/Dp7jvse+svzFjbX -----END CERTIFICATE-----Generated at Mon Jan 5 05:00:24 2026 by rpki-client