This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/87f8dc-9fce-41ab-8e75-228e3ffa5ba9/1/Zr1lz5illLKoaxKZ1sPrFrxE65k.roa File: Zr1lz5illLKoaxKZ1sPrFrxE65k.roa (raw, json) Hash identifier: clb6vWfmi3tkVbNg1UE8cBsih42ezBAsgHbPTGZFqL4= Subject key identifier: 66:BD:65:CF:98:A5:94:B2:A8:6B:12:99:D6:C3:EB:16:BC:44:EB:99 Certificate issuer: /CN=184177b76891013ba027b35e6edfc1e9f8295cec Certificate serial: 019B7C800CF1DD9D71D5C0FA6F24AFAC0AC0 Authority key identifier: 18:41:77:B7:68:91:01:3B:A0:27:B3:5E:6E:DF:C1:E9:F8:29:5C:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEF3t2iRATugJ7Nebt_B6fgpXOw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/87f8dc-9fce-41ab-8e75-228e3ffa5ba9/1/Zr1lz5illLKoaxKZ1sPrFrxE65k.roa Signing time: Fri 02 Jan 2026 02:18:45 +0000 ROA not before: Fri 02 Jan 2026 02:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199612 IP address blocks: 91.223.43.0/24 maxlen: 24 2001:67c:16c4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/87f8dc-9fce-41ab-8e75-228e3ffa5ba9/1/GEF3t2iRATugJ7Nebt_B6fgpXOw.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/87f8dc-9fce-41ab-8e75-228e3ffa5ba9/1/GEF3t2iRATugJ7Nebt_B6fgpXOw.mft rsync://rpki.ripe.net/repository/DEFAULT/GEF3t2iRATugJ7Nebt_B6fgpXOw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:0c:f1:dd:9d:71:d5:c0:fa:6f:24:af:ac:0a:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=184177b76891013ba027b35e6edfc1e9f8295cec Validity Not Before: Jan 2 02:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=66bd65cf98a594b2a86b1299d6c3eb16bc44eb99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:4b:af:91:87:c8:24:d0:7c:95:c8:18:d5:8c: 38:a6:bf:22:a1:92:5a:66:aa:cb:a9:55:88:91:76: ed:06:3a:30:c0:1b:0c:3b:04:8d:b8:a5:c9:b2:38: 28:19:d7:30:ae:ab:a6:bd:2d:1c:e0:f1:74:fa:1e: cd:c0:47:ba:ec:50:81:10:25:73:b3:66:ed:7c:c8: 53:27:9b:10:c7:7a:03:a7:62:fe:92:10:f6:1a:2e: 46:9a:69:0f:87:62:9b:e5:ea:55:50:59:aa:f5:a5: 96:3c:ec:50:d4:be:9c:59:51:7e:d2:89:4b:bc:1c: 4d:c0:67:fe:13:20:ff:a4:d5:7b:d3:33:19:91:73: 8a:1d:51:4a:9f:ef:a3:c7:f0:92:0a:89:ce:1e:9e: 94:85:2f:1f:42:86:14:d5:5e:cd:6d:b4:43:d9:dc: 1b:93:fc:0b:d9:d7:f1:62:e9:02:17:05:5b:70:cb: 49:07:85:7a:77:2d:9d:fd:b6:9c:23:39:08:20:54: c5:a6:c8:0b:0f:10:59:03:cf:0d:0a:9e:73:61:d5: 48:b0:4e:63:84:a1:43:a8:cd:a1:2a:91:ff:51:0f: 39:13:c0:33:f4:79:d8:5e:7c:ef:e0:e1:4b:a0:fa: a5:1b:d8:28:f3:18:e9:8f:a1:1f:f3:65:50:4f:0f: 7e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:BD:65:CF:98:A5:94:B2:A8:6B:12:99:D6:C3:EB:16:BC:44:EB:99 X509v3 Authority Key Identifier: keyid:18:41:77:B7:68:91:01:3B:A0:27:B3:5E:6E:DF:C1:E9:F8:29:5C:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEF3t2iRATugJ7Nebt_B6fgpXOw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/87f8dc-9fce-41ab-8e75-228e3ffa5ba9/1/Zr1lz5illLKoaxKZ1sPrFrxE65k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/87f8dc-9fce-41ab-8e75-228e3ffa5ba9/1/GEF3t2iRATugJ7Nebt_B6fgpXOw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.223.43.0/24 IPv6: 2001:67c:16c4::/48 Signature Algorithm: sha256WithRSAEncryption 6c:e2:79:76:eb:37:1f:b2:32:40:6f:90:40:5f:b8:2e:38:72: 53:a0:74:cd:18:1a:6e:16:1d:37:9e:86:7d:f4:85:f8:36:3f: f1:cb:69:e9:34:31:ed:32:20:83:80:27:af:6c:12:b2:df:e9: 54:1d:27:47:54:bd:6c:d8:98:55:87:58:e5:d9:1d:66:30:34: 26:f4:89:14:d1:0c:d1:c9:98:11:a5:4e:71:d7:ce:3b:29:20: 74:c0:e9:c1:40:01:54:71:98:13:f8:67:97:0c:99:6d:d7:20: 39:35:0b:4e:fc:48:2f:c2:b4:ba:55:b2:fe:79:a8:e9:86:73: 6d:ee:f1:cc:75:e9:3b:56:ce:4c:7a:0f:17:bb:97:81:ad:23: 22:4d:ab:d3:5e:42:a6:02:07:fa:59:e9:ff:26:1e:62:7e:8a: 04:96:b1:58:1e:49:e4:0f:0a:64:87:73:96:7d:9c:a9:d9:19: da:30:68:f0:3b:15:6b:da:38:5e:46:19:2a:5a:1e:6c:95:a2: 18:66:07:a3:a3:81:76:c6:c5:19:f6:26:b9:88:05:7e:61:6a: 85:48:2a:09:63:bc:e6:32:c2:3e:4a:62:72:a6:ec:e2:5c:a2: 26:71:18:e6:44:fc:49:34:82:e7:68:7d:25:c2:0c:14:2f:78: 32:33:e0:cc -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8gAzx3Z1x1cD6bySvrArAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4NDE3N2I3Njg5MTAxM2JhMDI3YjM1ZTZlZGZjMWU5Zjgy OTVjZWMwHhcNMjYwMTAyMDIxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NmJkNjVjZjk4YTU5NGIyYTg2YjEyOTlkNmMzZWIxNmJjNDRlYjk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3UuvkYfIJNB8lcgY1Yw4pr8ioZJa ZqrLqVWIkXbtBjowwBsMOwSNuKXJsjgoGdcwrqumvS0c4PF0+h7NwEe67FCBECVz s2btfMhTJ5sQx3oDp2L+khD2Gi5GmmkPh2Kb5epVUFmq9aWWPOxQ1L6cWVF+0olL vBxNwGf+EyD/pNV70zMZkXOKHVFKn++jx/CSConOHp6UhS8fQoYU1V7NbbRD2dwb k/wL2dfxYukCFwVbcMtJB4V6dy2d/bacIzkIIFTFpsgLDxBZA88NCp5zYdVIsE5j hKFDqM2hKpH/UQ85E8Az9HnYXnzv4OFLoPqlG9go8xjpj6Ef82VQTw9+FQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFGa9Zc+YpZSyqGsSmdbD6xa8ROuZMB8GA1UdIwQY MBaAFBhBd7dokQE7oCezXm7fwen4KVzsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0VGM3QyaVJBVHVnSjdOZWJ0X0I2ZmdwWE93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC84N2Y4ZGMtOWZjZS00MWFiLThlNzUt MjI4ZTNmZmE1YmE5LzEvWnIxbHo1aWxsTEtvYXhLWjFzUHJGcnhFNjVrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC84N2Y4ZGMtOWZjZS00MWFiLThlNzUtMjI4ZTNmZmE1YmE5 LzEvR0VGM3QyaVJBVHVnSjdOZWJ0X0I2ZmdwWE93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW98rMA8E AgACMAkDBwAgAQZ8FsQwDQYJKoZIhvcNAQELBQADggEBAGzieXbrNx+yMkBvkEBf uC44clOgdM0YGm4WHTeehn30hfg2P/HLaek0Me0yIIOAJ69sErLf6VQdJ0dUvWzY mFWHWOXZHWYwNCb0iRTRDNHJmBGlTnHXzjspIHTA6cFAAVRxmBP4Z5cMmW3XIDk1 C078SC/CtLpVsv55qOmGc23u8cx16TtWzkx6Dxe7l4GtIyJNq9NeQqYCB/pZ6f8m HmJ+igSWsVgeSeQPCmSHc5Z9nKnZGdowaPA7FWvaOF5GGSpaHmyVohhmB6OjgXbG xRn2JrmIBX5haoVIKgljvOYywj5KYnKm7OJcoiZxGOZE/Ek0gudofSXCDBQveDIz 4Mw= -----END CERTIFICATE-----Generated at Tue Feb 10 03:09:27 2026 by rpki-client