This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/ZrDJgLArZHytatC5Ncvg5XZJ0L0.roa File: ZrDJgLArZHytatC5Ncvg5XZJ0L0.roa (raw, json) Hash identifier: ulXA8t+3AsLSNeVGGGbJLh38H9YpiJMgj/n7hk5vfj0= Subject key identifier: 66:B0:C9:80:B0:2B:64:7C:AD:6A:D0:B9:35:CB:E0:E5:76:49:D0:BD Certificate issuer: /CN=e92c415d1775ae9993e900a7536b46ab144a9aa2 Certificate serial: 019B7F157F8A34BE90E1FCAF1F26F43624B2 Authority key identifier: E9:2C:41:5D:17:75:AE:99:93:E9:00:A7:53:6B:46:AB:14:4A:9A:A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/ZrDJgLArZHytatC5Ncvg5XZJ0L0.roa Signing time: Fri 02 Jan 2026 14:21:13 +0000 ROA not before: Fri 02 Jan 2026 14:21:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3339 IP address blocks: 89.29.186.0/23 maxlen: 23 89.29.188.0/23 maxlen: 23 89.29.208.0/22 maxlen: 22 89.29.212.0/22 maxlen: 22 89.29.216.0/22 maxlen: 22 89.29.220.0/22 maxlen: 22 89.29.230.0/24 maxlen: 24 89.29.240.0/22 maxlen: 22 176.57.100.0/23 maxlen: 23 176.57.102.0/23 maxlen: 23 185.64.241.0/24 maxlen: 24 213.181.64.0/24 maxlen: 24 213.181.66.0/23 maxlen: 23 213.181.68.0/23 maxlen: 23 213.181.82.0/23 maxlen: 23 213.181.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.crl rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.mft rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:7f:8a:34:be:90:e1:fc:af:1f:26:f4:36:24:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e92c415d1775ae9993e900a7536b46ab144a9aa2 Validity Not Before: Jan 2 14:21:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=66b0c980b02b647cad6ad0b935cbe0e57649d0bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:45:78:72:ec:6e:6d:5d:24:6b:79:b4:98:39: 64:e3:e9:71:71:3b:b6:00:55:38:01:6f:43:77:51: f3:79:35:31:d4:19:0a:05:ee:a1:10:fc:d0:51:a0: 8d:62:a1:c7:fb:24:46:37:19:a7:81:c5:32:ad:dc: a9:e2:b3:a5:85:8d:e4:b8:48:19:a2:77:21:16:5a: 78:96:b6:61:73:9d:c8:c2:36:8a:ca:07:a4:51:54: 6e:a1:4d:3a:7e:3d:39:f9:25:0c:ed:53:9d:8f:92: 6d:1f:8b:f2:b6:f2:17:09:3d:82:fd:30:8d:25:40: 85:3d:10:39:97:1a:66:b6:32:26:da:c6:68:8b:77: 02:ba:c5:8b:a6:5f:f6:77:74:b9:59:ed:03:c0:be: ce:9c:81:df:ac:a5:a0:6a:01:44:2e:80:f9:70:c6: 64:cf:38:08:b3:c9:50:b2:be:c4:bd:1c:66:e4:e1: f4:04:13:14:f5:3a:76:b9:bd:98:e1:c5:04:05:1c: 20:94:12:9b:66:36:71:5f:3a:a8:cf:b0:4e:eb:63: b3:81:f3:a3:94:b5:e7:3f:0f:a0:20:67:07:bb:1c: e8:6d:5f:39:2d:67:d9:3e:82:bf:e1:50:6b:b5:87: 98:3b:12:35:26:77:fa:23:a8:35:ea:f5:a7:b1:a2: 71:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:B0:C9:80:B0:2B:64:7C:AD:6A:D0:B9:35:CB:E0:E5:76:49:D0:BD X509v3 Authority Key Identifier: keyid:E9:2C:41:5D:17:75:AE:99:93:E9:00:A7:53:6B:46:AB:14:4A:9A:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/ZrDJgLArZHytatC5Ncvg5XZJ0L0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.29.186.0-89.29.189.255 89.29.208.0/20 89.29.230.0/24 89.29.240.0/22 176.57.100.0/22 185.64.241.0/24 213.181.64.0/24 213.181.66.0-213.181.69.255 213.181.82.0/23 213.181.95.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:fe:a2:64:df:06:ac:aa:19:11:52:57:08:33:ec:8d:39:24: 76:57:99:87:61:58:d9:62:b6:d2:a9:06:d7:b8:03:3f:b3:15: 45:17:0f:e8:f1:20:cc:b4:77:7d:9f:fd:e4:09:1c:63:a3:f1: d8:b2:d6:35:14:5a:12:8c:b9:cd:75:da:c2:60:d8:31:a7:52: 52:89:2b:f7:b3:04:aa:9f:57:09:87:2c:ef:43:61:91:46:74: 41:5b:ec:af:b9:50:03:cf:48:22:d2:61:d2:be:ed:67:5e:82: 34:0c:2d:af:2a:b7:30:d0:3f:73:c1:a5:f0:a1:9f:02:ad:9f: 57:fc:47:1a:b1:40:0d:30:f7:ee:12:2d:0b:d5:d5:50:2f:7c: ef:ac:28:70:ab:04:c6:8e:aa:fb:36:42:f7:f1:18:21:0f:4a: b6:18:85:df:c0:a9:8e:c7:6d:41:8b:34:1d:c6:68:e7:5b:81: 30:20:98:73:02:ac:97:6d:61:2d:c2:b2:35:19:7f:d7:7d:e5: 3c:72:69:fa:55:c0:11:cf:30:91:c0:bb:db:2a:32:5c:45:38: d1:33:7a:63:0f:11:a2:49:26:a8:92:b9:da:80:e5:fd:97:4c: 39:1e:30:18:99:49:d6:de:46:d9:98:c3:c3:d8:95:ed:fc:b5: 7a:65:7c:c4 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgISAZt/FX+KNL6Q4fyvHyb0NiSyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5MmM0MTVkMTc3NWFlOTk5M2U5MDBhNzUzNmI0NmFiMTQ0 YTlhYTIwHhcNMjYwMTAyMTQyMTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NmIwYzk4MGIwMmI2NDdjYWQ2YWQwYjkzNWNiZTBlNTc2NDlkMGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyEV4cuxubV0ka3m0mDlk4+lxcTu2 AFU4AW9Dd1HzeTUx1BkKBe6hEPzQUaCNYqHH+yRGNxmngcUyrdyp4rOlhY3kuEgZ onchFlp4lrZhc53IwjaKygekUVRuoU06fj05+SUM7VOdj5JtH4vytvIXCT2C/TCN JUCFPRA5lxpmtjIm2sZoi3cCusWLpl/2d3S5We0DwL7OnIHfrKWgagFELoD5cMZk zzgIs8lQsr7EvRxm5OH0BBMU9Tp2ub2Y4cUEBRwglBKbZjZxXzqoz7BO62OzgfOj lLXnPw+gIGcHuxzobV85LWfZPoK/4VBrtYeYOxI1Jnf6I6g16vWnsaJxVwIDAQAB o4ICTzCCAkswHQYDVR0OBBYEFGawyYCwK2R8rWrQuTXL4OV2SdC9MB8GA1UdIwQY MBaAFOksQV0Xda6Zk+kAp1NrRqsUSpqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNlN4QlhSZDFycG1UNlFDblUydEdxeFJLbXFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8wODk4YmUtYjAzNy00MjlmLWI1MDQt MWQ5MzRhMDQ4NDc0LzEvWnJESmdMQXJaSHl0YXRDNU5jdmc1WFpKMEwwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS8wODk4YmUtYjAzNy00MjlmLWI1MDQtMWQ5MzRhMDQ4NDc0 LzEvNlN4QlhSZDFycG1UNlFDblUydEdxeFJLbXFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGUGCCsGAQUFBwEHAQH/BFYwVDBSBAIAATBMMAwDBAFZHboD BAFZHbwDBARZHdADBABZHeYDBAJZHfADBAKwOWQDBAC5QPEDBADVtUAwDAMEAdW1 QgMEAdW1RAMEAdW1UgMEANW1XzANBgkqhkiG9w0BAQsFAAOCAQEADf6iZN8GrKoZ EVJXCDPsjTkkdleZh2FY2WK20qkG17gDP7MVRRcP6PEgzLR3fZ/95AkcY6Px2LLW NRRaEoy5zXXawmDYMadSUokr97MEqp9XCYcs70NhkUZ0QVvsr7lQA89IItJh0r7t Z16CNAwtryq3MNA/c8Gl8KGfAq2fV/xHGrFADTD37hItC9XVUC9876wocKsExo6q +zZC9/EYIQ9KthiF38CpjsdtQYs0HcZo51uBMCCYcwKsl21hLcKyNRl/133lPHJp +lXAEc8wkcC72yoyXEU40TN6Yw8RokkmqJK52oDl/ZdMOR4wGJlJ1t5G2ZjDw9iV 7fy1emV8xA== -----END CERTIFICATE-----Generated at Sat Jan 3 06:26:49 2026 by rpki-client