This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/zLO5NhttWnGtKqBNs-55QF4xyAI.roa File: zLO5NhttWnGtKqBNs-55QF4xyAI.roa (raw, json) Hash identifier: Y+DHFPwDb32W512hSzIFIuvnQ5dNais6OF6h18YAYzw= Subject key identifier: CC:B3:B9:36:1B:6D:5A:71:AD:2A:A0:4D:B3:EE:79:40:5E:31:C8:02 Certificate issuer: /CN=a19521c7352d1cac3f98c756fc7a6b4b3ae9753d Certificate serial: 019B7C80B648C657BD40DC58C97B2330D2CB Authority key identifier: A1:95:21:C7:35:2D:1C:AC:3F:98:C7:56:FC:7A:6B:4B:3A:E9:75:3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/zLO5NhttWnGtKqBNs-55QF4xyAI.roa Signing time: Fri 02 Jan 2026 02:19:28 +0000 ROA not before: Fri 02 Jan 2026 02:19:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211597 IP address blocks: 188.74.96.0/19 maxlen: 24 2a10:bcc0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.mft rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:b6:48:c6:57:bd:40:dc:58:c9:7b:23:30:d2:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a19521c7352d1cac3f98c756fc7a6b4b3ae9753d Validity Not Before: Jan 2 02:19:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ccb3b9361b6d5a71ad2aa04db3ee79405e31c802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4e:64:6d:c5:9b:8c:01:66:b9:56:d4:86:8e: 57:43:17:a1:51:df:04:5a:82:78:c9:ef:47:45:a7: fc:32:18:d3:3a:8d:6b:ee:61:28:0b:1d:f1:ea:80: 26:e4:9a:ea:03:99:99:45:b5:12:2b:f5:c0:96:0c: 53:7e:4a:51:2e:f0:88:99:05:a8:04:b3:15:71:41: f0:66:3a:2a:fc:78:e7:16:c2:d8:f3:f2:d4:4b:f6: 99:1f:ce:9a:18:ed:37:d8:72:c4:b4:e5:e8:e4:cb: ff:0f:d7:6c:f7:5d:81:20:76:a4:81:0a:e2:1a:d0: 19:59:66:08:b6:21:14:6d:ce:b4:5e:9a:17:0f:9b: 1e:f7:a5:2b:01:57:d3:df:cc:1b:0c:2c:a6:57:64: 93:01:79:1b:35:fc:69:f7:2a:fa:83:cb:70:e0:f5: ac:c3:de:b2:31:56:2c:ee:80:e0:5b:23:a6:94:f5: ca:d2:4b:3d:0d:bf:7f:a0:d4:47:9f:4c:de:70:45: 01:eb:e8:9e:44:a8:0a:e0:88:aa:69:7a:64:7e:de: 55:1f:50:9f:f7:8e:f1:63:8f:3f:97:82:d9:ce:41: d7:ef:34:f9:40:05:fe:cb:6c:69:63:d6:3e:f4:07: f7:d2:ef:3c:22:20:ae:59:74:09:bf:58:7c:51:b0: 5c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B3:B9:36:1B:6D:5A:71:AD:2A:A0:4D:B3:EE:79:40:5E:31:C8:02 X509v3 Authority Key Identifier: keyid:A1:95:21:C7:35:2D:1C:AC:3F:98:C7:56:FC:7A:6B:4B:3A:E9:75:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/zLO5NhttWnGtKqBNs-55QF4xyAI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.74.96.0/19 IPv6: 2a10:bcc0::/29 Signature Algorithm: sha256WithRSAEncryption 67:fb:51:a0:5a:21:6f:79:d0:38:f2:70:3a:b1:0a:21:76:68: 82:ac:8b:93:6a:2f:15:64:36:16:42:53:2d:0b:18:3d:6d:05: a3:a2:60:45:ba:c5:b5:2b:fa:d5:0e:d4:f9:ba:d7:ff:8e:1d: cf:65:fb:da:a1:0b:2b:4b:81:42:5a:96:9f:d9:48:75:17:41: 13:84:5b:f3:af:43:a2:9d:67:0c:41:76:e3:c3:82:73:fc:c9: 7a:d6:e8:98:7d:0b:17:6b:e1:7f:86:79:30:da:33:84:d6:8e: a8:9d:9f:5b:1e:1a:71:ad:23:68:4f:74:64:32:5c:4b:f9:83: 72:3f:d7:35:42:6a:17:2f:1a:a3:10:23:88:81:12:5d:4f:6a: 62:1d:53:57:1d:2d:48:54:4d:01:ba:c1:ac:0b:f3:f7:bc:a1: 9e:de:c5:d0:65:5d:fc:6f:20:6c:32:81:ff:c5:23:55:96:62: d3:68:98:e2:ac:38:a4:7c:dd:79:df:20:e2:3e:6d:21:ee:f0: a1:9a:76:46:1a:fe:44:3a:af:01:6b:8b:57:3a:d0:6a:32:b0: de:08:49:05:8d:8d:7f:df:49:cd:f1:57:bd:31:12:53:5b:9d: 45:8f:8d:c6:8c:5a:2d:d4:c6:d9:78:46:e2:8c:b7:9f:63:63: 10:b1:48:a3 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8gLZIxle9QNxYyXsjMNLLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExOTUyMWM3MzUyZDFjYWMzZjk4Yzc1NmZjN2E2YjRiM2Fl OTc1M2QwHhcNMjYwMTAyMDIxOTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjY2IzYjkzNjFiNmQ1YTcxYWQyYWEwNGRiM2VlNzk0MDVlMzFjODAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2E5kbcWbjAFmuVbUho5XQxehUd8E WoJ4ye9HRaf8MhjTOo1r7mEoCx3x6oAm5JrqA5mZRbUSK/XAlgxTfkpRLvCImQWo BLMVcUHwZjoq/HjnFsLY8/LUS/aZH86aGO032HLEtOXo5Mv/D9ds912BIHakgQri GtAZWWYItiEUbc60XpoXD5se96UrAVfT38wbDCymV2STAXkbNfxp9yr6g8tw4PWs w96yMVYs7oDgWyOmlPXK0ks9Db9/oNRHn0zecEUB6+ieRKgK4IiqaXpkft5VH1Cf 947xY48/l4LZzkHX7zT5QAX+y2xpY9Y+9Af30u88IiCuWXQJv1h8UbBcwwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMyzuTYbbVpxrSqgTbPueUBeMcgCMB8GA1UdIwQY MBaAFKGVIcc1LRysP5jHVvx6a0s66XU9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1pVaHh6VXRIS3dfbU1kV19IcHJTenJwZFQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi8yYjdkYzItYzFkZS00OTcwLWFiNTMt ZTVhZGEzNmZhMWYzLzEvekxPNU5odHRXbkd0S3FCTnMtNTVRRjR4eUFJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi8yYjdkYzItYzFkZS00OTcwLWFiNTMtZTVhZGEzNmZhMWYz LzEvb1pVaHh6VXRIS3dfbU1kV19IcHJTenJwZFQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQFvEpgMA0E AgACMAcDBQMqELzAMA0GCSqGSIb3DQEBCwUAA4IBAQBn+1GgWiFvedA48nA6sQoh dmiCrIuTai8VZDYWQlMtCxg9bQWjomBFusW1K/rVDtT5utf/jh3PZfvaoQsrS4FC Wpaf2Uh1F0EThFvzr0OinWcMQXbjw4Jz/Ml61uiYfQsXa+F/hnkw2jOE1o6onZ9b HhpxrSNoT3RkMlxL+YNyP9c1QmoXLxqjECOIgRJdT2piHVNXHS1IVE0BusGsC/P3 vKGe3sXQZV38byBsMoH/xSNVlmLTaJjirDikfN153yDiPm0h7vChmnZGGv5EOq8B a4tXOtBqMrDeCEkFjY1/30nN8Ve9MRJTW51Fj43GjFot1MbZeEbijLefY2MQsUij -----END CERTIFICATE-----Generated at Tue Feb 10 03:09:32 2026 by rpki-client