This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/dce44a-4a90-43ea-b1fb-a2d116560aca/1/zaKgjQxKOXseye7OptrYTXdeRW8.roa File: zaKgjQxKOXseye7OptrYTXdeRW8.roa (raw, json) Hash identifier: msUavGu33dhomVrKx+MtKYwUf9QSzxgfQ+UXycVAuNg= Subject key identifier: CD:A2:A0:8D:0C:4A:39:7B:1E:C9:EE:CE:A6:DA:D8:4D:77:5E:45:6F Certificate issuer: /CN=53cbd1477044a03404c7fc43961c2c83bba75bbc Certificate serial: 019B7EA4F740186756A2EF3AB1CDC1397A5D Authority key identifier: 53:CB:D1:47:70:44:A0:34:04:C7:FC:43:96:1C:2C:83:BB:A7:5B:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8vRR3BEoDQEx_xDlhwsg7unW7w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/dce44a-4a90-43ea-b1fb-a2d116560aca/1/zaKgjQxKOXseye7OptrYTXdeRW8.roa Signing time: Fri 02 Jan 2026 12:18:19 +0000 ROA not before: Fri 02 Jan 2026 12:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 91.211.25.0/24 maxlen: 24 195.88.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/dce44a-4a90-43ea-b1fb-a2d116560aca/1/U8vRR3BEoDQEx_xDlhwsg7unW7w.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/dce44a-4a90-43ea-b1fb-a2d116560aca/1/U8vRR3BEoDQEx_xDlhwsg7unW7w.mft rsync://rpki.ripe.net/repository/DEFAULT/U8vRR3BEoDQEx_xDlhwsg7unW7w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 06:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:f7:40:18:67:56:a2:ef:3a:b1:cd:c1:39:7a:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53cbd1477044a03404c7fc43961c2c83bba75bbc Validity Not Before: Jan 2 12:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cda2a08d0c4a397b1ec9eecea6dad84d775e456f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c3:4e:af:15:34:db:c5:73:2b:4a:07:06:b4: 60:85:7c:21:3e:69:5d:9f:79:44:6f:91:ae:2d:ad: 85:a0:8e:89:43:9d:31:e0:8f:6d:0b:aa:77:81:16: 97:bd:39:09:7a:c5:0f:00:57:1a:42:f5:1c:df:21: 96:db:77:62:80:c1:50:48:9e:5e:cd:d8:09:f9:a3: a1:92:4e:ab:a6:87:1e:ea:bc:19:5b:ec:f2:09:fa: ee:b0:a0:c9:af:d1:87:aa:8e:0e:2d:39:96:83:f1: 2d:b6:89:cd:71:15:ad:96:fb:3b:c8:49:33:97:70: 37:4f:45:e0:dd:06:dd:4b:be:19:d8:63:62:3b:82: 6b:d0:a5:99:8b:1a:e4:e2:3f:fb:87:1b:f3:ca:fa: bb:d3:b4:51:16:26:38:72:13:d3:cc:85:12:47:94: 68:14:c8:f1:af:84:04:18:90:2b:ac:03:fd:6f:ae: 19:c5:df:3f:5f:a5:f2:71:57:3c:6f:b2:a4:ff:12: 86:2a:e7:56:d8:40:d8:c7:97:d8:3a:24:04:db:e1: 4c:46:d8:e9:44:22:fc:68:e2:4d:6c:74:a9:2d:b1: 99:c6:df:d3:7c:ee:cc:ee:80:cc:d1:a7:1f:ad:75: 16:70:d4:6e:f0:9d:cd:90:0e:9a:6a:c3:70:56:77: 34:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:A2:A0:8D:0C:4A:39:7B:1E:C9:EE:CE:A6:DA:D8:4D:77:5E:45:6F X509v3 Authority Key Identifier: keyid:53:CB:D1:47:70:44:A0:34:04:C7:FC:43:96:1C:2C:83:BB:A7:5B:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8vRR3BEoDQEx_xDlhwsg7unW7w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/dce44a-4a90-43ea-b1fb-a2d116560aca/1/zaKgjQxKOXseye7OptrYTXdeRW8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/dce44a-4a90-43ea-b1fb-a2d116560aca/1/U8vRR3BEoDQEx_xDlhwsg7unW7w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.211.25.0/24 195.88.162.0/23 Signature Algorithm: sha256WithRSAEncryption 41:5a:b5:f3:5d:51:52:16:7a:6b:e5:23:e3:0d:5e:88:76:67: 73:e9:5c:31:4e:12:93:64:48:1e:2c:c8:79:65:0f:66:f5:9b: 74:10:65:7e:41:37:14:e9:4b:b7:15:c1:44:bc:2f:46:10:87: e1:1c:2c:dd:27:3d:34:aa:34:9f:f5:8a:da:3b:76:b6:67:64: 42:27:d4:ae:4b:98:a2:62:9f:4e:0b:ba:21:07:1c:5c:d3:94: f3:46:95:ec:63:a5:f6:3b:cd:05:01:1e:a7:3c:8e:ec:af:76: a5:93:f1:a7:f6:54:5b:79:20:c1:67:a2:ca:3c:f3:02:c8:ce: 54:93:fe:59:a5:4b:b2:0a:73:0d:82:8e:21:81:36:ca:92:36: 1a:35:14:b9:a5:84:f2:00:05:3b:d3:48:8d:da:75:97:96:cd: 3c:fe:c7:2a:39:f1:2a:b5:d3:10:08:36:14:b6:fc:f7:5b:ec: 52:01:a7:ad:07:d9:2c:2e:ec:dc:39:3b:95:3b:a9:6d:5d:8e: f2:72:41:5c:6d:c4:d8:b0:4b:d3:80:ff:c5:65:66:e9:05:68: 6f:25:78:41:4e:b3:3d:20:46:60:0f:eb:34:b4:01:5c:52:bf: 07:ab:d2:cd:ba:51:af:6b:9c:d6:2a:8f:8e:48:71:f3:14:5e: 47:f6:e1:5e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+pPdAGGdWou86sc3BOXpdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzY2JkMTQ3NzA0NGEwMzQwNGM3ZmM0Mzk2MWMyYzgzYmJh NzViYmMwHhcNMjYwMTAyMTIxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZGEyYTA4ZDBjNGEzOTdiMWVjOWVlY2VhNmRhZDg0ZDc3NWU0NTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8NOrxU028VzK0oHBrRghXwhPmld n3lEb5GuLa2FoI6JQ50x4I9tC6p3gRaXvTkJesUPAFcaQvUc3yGW23digMFQSJ5e zdgJ+aOhkk6rpoce6rwZW+zyCfrusKDJr9GHqo4OLTmWg/EttonNcRWtlvs7yEkz l3A3T0Xg3QbdS74Z2GNiO4Jr0KWZixrk4j/7hxvzyvq707RRFiY4chPTzIUSR5Ro FMjxr4QEGJArrAP9b64Zxd8/X6XycVc8b7Kk/xKGKudW2EDYx5fYOiQE2+FMRtjp RCL8aOJNbHSpLbGZxt/TfO7M7oDM0acfrXUWcNRu8J3NkA6aasNwVnc0wQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFM2ioI0MSjl7Hsnuzqba2E13XkVvMB8GA1UdIwQY MBaAFFPL0UdwRKA0BMf8Q5YcLIO7p1u8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTh2UlIzQkVvRFFFeF94RGxod3NnN3VuVzd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9kY2U0NGEtNGE5MC00M2VhLWIxZmIt YTJkMTE2NTYwYWNhLzEvemFLZ2pReEtPWHNleWU3T3B0cllUWGRlUlc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS9kY2U0NGEtNGE5MC00M2VhLWIxZmItYTJkMTE2NTYwYWNh LzEvVTh2UlIzQkVvRFFFeF94RGxod3NnN3VuVzd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW9MZAwQB w1iiMA0GCSqGSIb3DQEBCwUAA4IBAQBBWrXzXVFSFnpr5SPjDV6Idmdz6VwxThKT ZEgeLMh5ZQ9m9Zt0EGV+QTcU6Uu3FcFEvC9GEIfhHCzdJz00qjSf9YraO3a2Z2RC J9SuS5iiYp9OC7ohBxxc05TzRpXsY6X2O80FAR6nPI7sr3alk/Gn9lRbeSDBZ6LK PPMCyM5Uk/5ZpUuyCnMNgo4hgTbKkjYaNRS5pYTyAAU700iN2nWXls08/scqOfEq tdMQCDYUtvz3W+xSAaetB9ksLuzcOTuVO6ltXY7yckFcbcTYsEvTgP/FZWbpBWhv JXhBTrM9IEZgD+s0tAFcUr8Hq9LNulGva5zWKo+OSHHzFF5H9uFe -----END CERTIFICATE-----Generated at Fri Jan 9 17:05:13 2026 by rpki-client