This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/RZIRujuATxyGFu7vyVFwuqcF_SQ.roa File: RZIRujuATxyGFu7vyVFwuqcF_SQ.roa (raw, json) Hash identifier: Xzw0JIxMKCjDxp6MZ1M1HZsvjLoxOzSeEJc0NGIFQ4I= Subject key identifier: 45:92:11:BA:3B:80:4F:1C:86:16:EE:EF:C9:51:70:BA:A7:05:FD:24 Certificate issuer: /CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d Certificate serial: 019B7E386B69F89A5741385FE8EA3727EF2E Authority key identifier: 4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/RZIRujuATxyGFu7vyVFwuqcF_SQ.roa Signing time: Fri 02 Jan 2026 10:19:45 +0000 ROA not before: Fri 02 Jan 2026 10:19:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3257 IP address blocks: 91.238.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/T7K7e61Q8ZIYEKAo547dZfgfan0.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/T7K7e61Q8ZIYEKAo547dZfgfan0.mft rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 10:21:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:6b:69:f8:9a:57:41:38:5f:e8:ea:37:27:ef:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d Validity Not Before: Jan 2 10:19:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=459211ba3b804f1c8616eeefc95170baa705fd24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7f:f2:54:4b:0b:96:82:6a:ca:ab:a6:71:cf: 65:b8:a9:9e:d9:d3:fb:4d:5e:f6:58:ff:21:b7:f8: 05:88:bd:c7:12:90:8e:15:bc:17:a7:a7:bd:92:a8: eb:8e:42:84:fb:02:e9:17:4b:e3:5e:44:dd:36:a3: 7c:a2:43:b5:18:29:98:c4:ee:c6:80:b0:72:1f:f4: 8f:01:35:f0:7d:a7:17:b3:f3:ac:d5:1b:4f:61:e2: 93:a8:38:53:ea:4b:e2:71:fe:fa:73:2c:5d:44:00: 66:7b:db:69:9d:b7:41:4b:f2:83:4c:9a:bf:a0:5c: ab:b4:a6:9b:29:91:8a:e8:fa:d8:e4:14:e9:42:e4: 1a:9d:63:8f:05:b0:7d:cc:8e:63:c3:09:1b:8e:73: 16:11:f8:2e:bd:c3:38:6a:ba:eb:a1:ae:2b:e2:b3: b0:7b:55:55:4f:fd:67:33:ea:eb:80:53:e4:e1:b7: d4:5a:4e:77:a2:7e:79:20:9e:5c:ed:e6:6b:1f:8a: b1:75:b7:6c:fb:d5:74:8b:ba:99:9d:0a:a3:5b:07: 2b:72:da:1c:8e:65:b6:21:90:3d:59:42:6c:c4:db: ac:6a:75:6d:2e:2e:d7:61:7b:ec:f7:7a:73:91:c1: f1:f8:8d:25:2d:9d:3d:2b:66:7a:38:5b:8d:28:f2: aa:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:92:11:BA:3B:80:4F:1C:86:16:EE:EF:C9:51:70:BA:A7:05:FD:24 X509v3 Authority Key Identifier: keyid:4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/RZIRujuATxyGFu7vyVFwuqcF_SQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/T7K7e61Q8ZIYEKAo547dZfgfan0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.238.71.0/24 Signature Algorithm: sha256WithRSAEncryption 82:f5:e9:25:d4:f0:68:1b:c7:08:99:63:46:17:74:0a:ab:be: 66:b3:6a:1d:31:3b:3f:4f:6a:ac:4a:ca:52:47:66:55:29:d3: de:82:aa:08:23:7d:1b:29:f5:d8:a2:de:b3:c0:82:e8:aa:6a: 51:99:41:33:b6:11:c5:2f:8b:4a:53:e6:42:b2:16:6f:b6:c9: c4:54:46:62:9d:4b:34:9f:5e:73:1f:13:6b:de:d9:75:70:4a: 7b:2a:56:a7:27:c0:bb:d6:bc:fb:e0:62:49:51:75:1a:c0:80: 34:8f:90:61:cc:32:5c:10:a6:ad:4a:44:7d:a1:b9:32:6b:0e: be:2b:f0:79:8b:a2:31:98:a7:0e:2a:73:7c:29:6a:a9:8f:a8: 71:9c:b8:23:a5:e0:36:f1:4c:fa:a4:b8:8f:ed:9f:7c:3a:05: 5a:ad:08:df:8e:54:6e:25:98:41:aa:4b:0d:2a:02:b0:2b:b0: 06:57:36:a6:a8:a6:49:b6:27:4b:7c:43:ed:d7:a8:93:20:4c: 4f:2e:7d:d7:0f:d4:c1:c3:77:9a:64:b5:87:11:f0:3c:54:84: 8a:62:c7:ae:30:9b:87:e5:d6:5d:9c:6e:b9:46:ae:45:30:00: 99:35:4c:a6:30:a9:df:72:d5:3d:c8:73:7f:ef:c6:32:31:1f: 88:a1:20:3d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OGtp+JpXQThf6Oo3J+8uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmYjJiYjdiYWQ1MGYxOTIxODEwYTAyOGU3OGVkZDY1Zjgx ZjZhN2QwHhcNMjYwMTAyMTAxOTQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NTkyMTFiYTNiODA0ZjFjODYxNmVlZWZjOTUxNzBiYWE3MDVmZDI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuX/yVEsLloJqyqumcc9luKme2dP7 TV72WP8ht/gFiL3HEpCOFbwXp6e9kqjrjkKE+wLpF0vjXkTdNqN8okO1GCmYxO7G gLByH/SPATXwfacXs/Os1RtPYeKTqDhT6kvicf76cyxdRABme9tpnbdBS/KDTJq/ oFyrtKabKZGK6PrY5BTpQuQanWOPBbB9zI5jwwkbjnMWEfguvcM4arrroa4r4rOw e1VVT/1nM+rrgFPk4bfUWk53on55IJ5c7eZrH4qxdbds+9V0i7qZnQqjWwcrctoc jmW2IZA9WUJsxNusanVtLi7XYXvs93pzkcHx+I0lLZ09K2Z6OFuNKPKq7wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEWSEbo7gE8chhbu78lRcLqnBf0kMB8GA1UdIwQY MBaAFE+yu3utUPGSGBCgKOeO3WX4H2p9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDdLN2U2MVE4WklZRUtBbzU0N2RaZmdmYW4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9mZGEzODItNDI1Ny00MWMzLThlYzYt MjdmYmM5OWVhM2M2LzEvUlpJUnVqdUFUeHlHRnU3dnlWRnd1cWNGX1NRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC9mZGEzODItNDI1Ny00MWMzLThlYzYtMjdmYmM5OWVhM2M2 LzEvVDdLN2U2MVE4WklZRUtBbzU0N2RaZmdmYW4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+5HMA0G CSqGSIb3DQEBCwUAA4IBAQCC9ekl1PBoG8cImWNGF3QKq75ms2odMTs/T2qsSspS R2ZVKdPegqoII30bKfXYot6zwILoqmpRmUEzthHFL4tKU+ZCshZvtsnEVEZinUs0 n15zHxNr3tl1cEp7KlanJ8C71rz74GJJUXUawIA0j5BhzDJcEKatSkR9obkyaw6+ K/B5i6IxmKcOKnN8KWqpj6hxnLgjpeA28Uz6pLiP7Z98OgVarQjfjlRuJZhBqksN KgKwK7AGVzamqKZJtidLfEPt16iTIExPLn3XD9TBw3eaZLWHEfA8VISKYseuMJuH 5dZdnG65Rq5FMACZNUymMKnfctU9yHN/78YyMR+IoSA9 -----END CERTIFICATE-----Generated at Fri Jan 2 16:24:20 2026 by rpki-client