This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/zAa2W4c_Lpg5E8JhcdxcgQpn4XM.roa File: zAa2W4c_Lpg5E8JhcdxcgQpn4XM.roa (raw, json) Hash identifier: fZicMsW0n0Wa64JFWSQyGvTz4WH8A1OwPR9VKQ0B65U= Subject key identifier: CC:06:B6:5B:87:3F:2E:98:39:13:C2:61:71:DC:5C:81:0A:67:E1:73 Certificate issuer: /CN=1e95a069669ed5a766eee8ebdc32e39fb148410b Certificate serial: 019B01D19190EF2BC26246F55442911C1BA4 Authority key identifier: 1E:95:A0:69:66:9E:D5:A7:66:EE:E8:EB:DC:32:E3:9F:B1:48:41:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpWgaWae1adm7ujr3DLjn7FIQQs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/zAa2W4c_Lpg5E8JhcdxcgQpn4XM.roa Signing time: Tue 09 Dec 2025 06:34:30 +0000 ROA not before: Tue 09 Dec 2025 06:34:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198310 IP address blocks: 45.152.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/HpWgaWae1adm7ujr3DLjn7FIQQs.crl rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/HpWgaWae1adm7ujr3DLjn7FIQQs.mft rsync://rpki.ripe.net/repository/DEFAULT/HpWgaWae1adm7ujr3DLjn7FIQQs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:01:d1:91:90:ef:2b:c2:62:46:f5:54:42:91:1c:1b:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e95a069669ed5a766eee8ebdc32e39fb148410b Validity Not Before: Dec 9 06:34:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=cc06b65b873f2e983913c26171dc5c810a67e173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bf:7c:fd:3b:cc:06:9f:56:50:85:a5:eb:86: dc:b7:bf:f0:23:12:e8:d3:72:d2:cb:f8:c4:9c:56: ad:a7:df:ca:6e:4a:bb:10:ae:88:70:9e:b4:46:89: 20:26:37:f1:d9:14:6c:b4:6d:ab:9d:07:b0:18:3c: 11:cd:11:7d:c8:2a:af:51:92:44:6c:93:19:ef:31: 32:88:11:3f:18:82:4a:60:ec:30:19:7a:26:b9:a2: 67:58:06:8d:ec:62:69:96:3b:96:b7:4f:fe:3b:09: cf:20:e7:3a:b7:69:08:de:b4:09:ce:a6:10:05:2a: 51:3e:3c:ec:2d:66:26:57:d3:ee:13:0e:df:79:ea: 44:bc:06:23:d5:1e:3f:b5:8c:30:f1:59:d7:09:ce: 2e:28:d4:c2:9d:88:bd:ec:2d:3c:6d:37:4c:2d:ca: 7a:52:68:b0:46:57:7c:46:25:01:93:c9:43:91:16: 6e:30:d1:87:17:39:15:67:d8:5f:9f:d4:9c:d1:f8: a1:39:0e:7e:c6:35:88:b1:b5:d3:47:eb:8f:f2:f8: df:46:d1:7c:72:7b:ca:a7:cf:d9:57:97:bf:64:05: cb:6d:92:46:a2:5c:cc:42:96:9c:3a:2c:25:53:51: e8:31:9c:b5:82:a7:24:3a:63:ae:5b:3e:19:96:5b: 2c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:06:B6:5B:87:3F:2E:98:39:13:C2:61:71:DC:5C:81:0A:67:E1:73 X509v3 Authority Key Identifier: keyid:1E:95:A0:69:66:9E:D5:A7:66:EE:E8:EB:DC:32:E3:9F:B1:48:41:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpWgaWae1adm7ujr3DLjn7FIQQs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/zAa2W4c_Lpg5E8JhcdxcgQpn4XM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/107456-df53-424d-9320-933bfa592b1d/1/HpWgaWae1adm7ujr3DLjn7FIQQs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.152.27.0/24 Signature Algorithm: sha256WithRSAEncryption 39:10:71:ee:cf:6e:72:22:b4:d1:ed:d9:8d:42:eb:5b:b7:25: 78:fb:7b:de:de:69:e7:09:30:31:86:19:37:96:81:42:e1:12: b8:4d:ba:3f:eb:0e:1f:83:56:26:7e:ba:48:35:f5:6f:db:18: 7d:82:b4:9e:6c:dd:4e:17:69:30:cb:d8:bd:b0:a7:f7:e5:d5: 9b:ee:bd:bc:7d:b7:50:05:9c:b1:0e:cf:81:a3:b5:cb:33:c1: da:cb:13:80:28:5f:c5:8b:24:e0:42:4f:20:88:c4:98:6c:c8: 4e:23:7e:9e:93:c9:7e:c0:a2:51:d4:01:22:28:44:ae:ae:bc: 1e:c5:8c:4c:6f:b7:67:73:d2:49:cd:3e:6d:a6:69:68:23:5d: 29:5a:75:bc:48:a6:ca:0b:d9:ec:6d:00:56:e7:55:dd:7a:35: 8f:6f:d6:2a:76:61:c5:8d:13:2a:b5:ca:f0:da:44:40:d2:f6: cc:d1:3c:52:cc:66:1a:24:7d:ad:91:53:e6:f6:fb:61:69:f5: 83:3c:24:31:e3:3f:18:c3:28:95:b9:7e:04:ee:41:05:02:b7: 4e:bb:4c:90:b5:7e:19:0f:bb:9c:33:04:78:d9:e8:07:0a:cf: ae:f5:c2:0d:3c:48:10:82:0d:b3:b4:c2:a3:4e:92:8d:93:78: 75:b2:e3:a1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZsB0ZGQ7yvCYkb1VEKRHBukMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlOTVhMDY5NjY5ZWQ1YTc2NmVlZThlYmRjMzJlMzlmYjE0 ODQxMGIwHhcNMjUxMjA5MDYzNDMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYzA2YjY1Yjg3M2YyZTk4MzkxM2MyNjE3MWRjNWM4MTBhNjdlMTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqr98/TvMBp9WUIWl64bct7/wIxLo 03LSy/jEnFatp9/Kbkq7EK6IcJ60RokgJjfx2RRstG2rnQewGDwRzRF9yCqvUZJE bJMZ7zEyiBE/GIJKYOwwGXomuaJnWAaN7GJpljuWt0/+OwnPIOc6t2kI3rQJzqYQ BSpRPjzsLWYmV9PuEw7feepEvAYj1R4/tYww8VnXCc4uKNTCnYi97C08bTdMLcp6 UmiwRld8RiUBk8lDkRZuMNGHFzkVZ9hfn9Sc0fihOQ5+xjWIsbXTR+uP8vjfRtF8 cnvKp8/ZV5e/ZAXLbZJGolzMQpacOiwlU1HoMZy1gqckOmOuWz4Zllss4QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMwGtluHPy6YORPCYXHcXIEKZ+FzMB8GA1UdIwQY MBaAFB6VoGlmntWnZu7o69wy45+xSEELMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHBXZ2FXYWUxYWRtN3VqcjNETGpuN0ZJUVFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8xMDc0NTYtZGY1My00MjRkLTkzMjAt OTMzYmZhNTkyYjFkLzEvekFhMlc0Y19McGc1RThKaGNkeGNnUXBuNFhNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8xMDc0NTYtZGY1My00MjRkLTkzMjAtOTMzYmZhNTkyYjFk LzEvSHBXZ2FXYWUxYWRtN3VqcjNETGpuN0ZJUVFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZgbMA0G CSqGSIb3DQEBCwUAA4IBAQA5EHHuz25yIrTR7dmNQutbtyV4+3ve3mnnCTAxhhk3 loFC4RK4Tbo/6w4fg1YmfrpINfVv2xh9grSebN1OF2kwy9i9sKf35dWb7r28fbdQ BZyxDs+Bo7XLM8HayxOAKF/FiyTgQk8giMSYbMhOI36ek8l+wKJR1AEiKESurrwe xYxMb7dnc9JJzT5tpmloI10pWnW8SKbKC9nsbQBW51XdejWPb9YqdmHFjRMqtcrw 2kRA0vbM0TxSzGYaJH2tkVPm9vthafWDPCQx4z8YwyiVuX4E7kEFArdOu0yQtX4Z D7ucMwR42egHCs+u9cINPEgQgg2ztMKjTpKNk3h1suOh -----END CERTIFICATE-----Generated at Fri Dec 19 11:14:43 2025 by rpki-client