This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/ZAriS58UbHZf6oygwiLPyHP7qQ4.roa File: ZAriS58UbHZf6oygwiLPyHP7qQ4.roa (raw, json) Hash identifier: DU/tZf9/jSmU8w1Kvgskkgw/V3iyiRAoOxQZedaaQJg= Subject key identifier: 64:0A:E2:4B:9F:14:6C:76:5F:EA:8C:A0:C2:22:CF:C8:73:FB:A9:0E Certificate issuer: /CN=16055801b775e774306321455fd463fbd9273c4c Certificate serial: 019B6951D91FE6581F83893C80C1ED3B398B Authority key identifier: 16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/ZAriS58UbHZf6oygwiLPyHP7qQ4.roa Signing time: Mon 29 Dec 2025 08:55:30 +0000 ROA not before: Mon 29 Dec 2025 08:55:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9304 IP address blocks: 144.56.36.0/24 maxlen: 24 144.56.38.0/24 maxlen: 24 144.56.95.0/24 maxlen: 24 144.56.98.0/24 maxlen: 24 144.56.99.0/24 maxlen: 24 144.56.108.0/24 maxlen: 24 144.56.114.0/24 maxlen: 24 144.56.118.0/24 maxlen: 24 144.56.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.mft rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 22:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:69:51:d9:1f:e6:58:1f:83:89:3c:80:c1:ed:3b:39:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16055801b775e774306321455fd463fbd9273c4c Validity Not Before: Dec 29 08:55:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=640ae24b9f146c765fea8ca0c222cfc873fba90e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1e:0b:a7:1e:55:47:c1:ef:5a:73:78:5c:5b: d7:15:bf:77:6f:80:ef:75:18:9a:df:90:85:17:40: c0:66:43:5b:4e:e9:59:fd:9f:28:03:45:e7:72:e6: 5f:4f:20:41:26:37:24:af:69:34:b4:32:f7:50:08: 98:cb:e2:ac:b3:f6:eb:55:fe:b6:7b:ff:a8:e8:33: d8:e6:76:d5:60:31:0c:b9:35:4a:db:56:9c:0b:59: 4e:8d:90:82:a1:58:f8:bb:59:8c:22:dc:b5:56:0c: 8f:45:36:ed:06:c7:78:62:2d:65:ad:e3:03:d0:da: c7:e4:06:20:49:40:0a:66:17:0f:5f:62:42:f2:1e: 06:49:1e:f7:37:ef:fb:77:53:bf:21:dd:8f:eb:6f: 81:77:01:9d:c0:de:cf:bc:2a:75:2b:8a:38:10:d7: c2:95:0a:23:35:a1:66:f3:43:ee:55:46:1a:e5:6a: 1b:87:31:4d:0f:d0:3c:d3:e1:2e:cf:54:10:f5:86: 41:5e:e8:a2:02:ce:5f:b5:a3:af:01:96:fb:57:ee: f8:a9:4c:5e:cc:86:2d:90:04:02:d8:4a:71:63:43: 2c:c4:a6:75:5c:0d:b9:62:e3:ee:0e:4a:11:3c:03: 58:ac:4c:2e:02:d4:24:6f:ec:2a:da:bf:23:bc:a5: cd:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:0A:E2:4B:9F:14:6C:76:5F:EA:8C:A0:C2:22:CF:C8:73:FB:A9:0E X509v3 Authority Key Identifier: keyid:16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/ZAriS58UbHZf6oygwiLPyHP7qQ4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.56.36.0/24 144.56.38.0/24 144.56.95.0/24 144.56.98.0/23 144.56.108.0/24 144.56.114.0/24 144.56.118.0/24 144.56.124.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:30:8e:2a:63:c0:4d:7b:47:bd:ef:92:9f:15:52:aa:ba:73: 29:8d:f6:d9:14:12:5a:ea:f3:e6:8c:dd:31:87:19:c3:bc:17: 55:99:1b:b4:59:82:fe:06:4a:4b:13:0e:0a:8e:e8:6a:42:2d: ca:93:90:3d:30:74:e7:82:6c:c6:d4:7d:70:da:78:32:32:7c: 12:8f:3f:40:15:8f:82:d1:7e:bb:f2:53:28:55:30:17:aa:5d: 14:dd:b8:f0:46:06:f7:bd:60:e8:4b:13:48:11:0d:35:6b:e3: d8:ac:c2:3e:ef:eb:64:31:6e:e3:43:83:18:79:eb:e6:e5:6f: ca:d1:00:d8:23:23:46:34:ba:c5:15:46:3a:93:ed:0c:2d:18: 8e:7c:f7:54:22:6f:59:d8:cd:ee:8d:3f:c5:6e:f3:91:a6:84: 27:3f:53:1f:e5:a3:8e:ab:a3:4d:01:25:07:8f:78:2c:09:fc: e7:cf:7d:75:9f:2d:2f:b1:ef:2a:18:da:39:86:2f:1a:87:aa: c6:03:89:48:c1:b3:d1:4b:69:24:2a:4b:94:ce:b6:87:f0:f7: 8c:3a:ce:17:79:a7:c5:cd:ae:7c:56:9a:27:9a:a4:1f:43:dc: 31:b7:8a:98:d4:4a:08:4c:50:03:ce:db:cc:bf:73:03:ed:95: 69:e2:f2:57 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZtpUdkf5lgfg4k8gMHtOzmLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2MDU1ODAxYjc3NWU3NzQzMDYzMjE0NTVmZDQ2M2ZiZDky NzNjNGMwHhcNMjUxMjI5MDg1NTMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NDBhZTI0YjlmMTQ2Yzc2NWZlYThjYTBjMjIyY2ZjODczZmJhOTBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuR4Lpx5VR8HvWnN4XFvXFb93b4Dv dRia35CFF0DAZkNbTulZ/Z8oA0XncuZfTyBBJjckr2k0tDL3UAiYy+Kss/brVf62 e/+o6DPY5nbVYDEMuTVK21acC1lOjZCCoVj4u1mMIty1VgyPRTbtBsd4Yi1lreMD 0NrH5AYgSUAKZhcPX2JC8h4GSR73N+/7d1O/Id2P62+BdwGdwN7PvCp1K4o4ENfC lQojNaFm80PuVUYa5WobhzFND9A80+Euz1QQ9YZBXuiiAs5ftaOvAZb7V+74qUxe zIYtkAQC2EpxY0MsxKZ1XA25YuPuDkoRPANYrEwuAtQkb+wq2r8jvKXNDQIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFGQK4kufFGx2X+qMoMIiz8hz+6kOMB8GA1UdIwQY MBaAFBYFWAG3ded0MGMhRV/UY/vZJzxMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmdWWUFiZDE1M1F3WXlGRlg5UmotOWtuUEV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9mMDM0MGItMzMwZS00NWQ3LWJlNTgt MTM1NzE3ZWYzODhhLzEvWkFyaVM1OFViSFpmNm95Z3dpTFB5SFA3cVE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9mMDM0MGItMzMwZS00NWQ3LWJlNTgtMTM1NzE3ZWYzODhh LzEvRmdWWUFiZDE1M1F3WXlGRlg5UmotOWtuUEV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAkDgkAwQA kDgmAwQAkDhfAwQBkDhiAwQAkDhsAwQAkDhyAwQAkDh2AwQAkDh8MA0GCSqGSIb3 DQEBCwUAA4IBAQArMI4qY8BNe0e975KfFVKqunMpjfbZFBJa6vPmjN0xhxnDvBdV mRu0WYL+BkpLEw4KjuhqQi3Kk5A9MHTngmzG1H1w2ngyMnwSjz9AFY+C0X678lMo VTAXql0U3bjwRgb3vWDoSxNIEQ01a+PYrMI+7+tkMW7jQ4MYeevm5W/K0QDYIyNG NLrFFUY6k+0MLRiOfPdUIm9Z2M3ujT/FbvORpoQnP1Mf5aOOq6NNASUHj3gsCfzn z311ny0vse8qGNo5hi8ah6rGA4lIwbPRS2kkKkuUzraH8PeMOs4XeafFza58Vpon mqQfQ9wxt4qY1EoITFADztvMv3MD7ZVp4vJX -----END CERTIFICATE-----Generated at Wed Dec 31 03:39:42 2025 by rpki-client