This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/zS-wthx6WX3J4f84dZptcKxb6YQ.roa File: zS-wthx6WX3J4f84dZptcKxb6YQ.roa (raw, json) Hash identifier: NWhy7NMQkTlWfwe/SeeZ8xWKbHy+6xWJimJiVOWw2DQ= Subject key identifier: CD:2F:B0:B6:1C:7A:59:7D:C9:E1:FF:38:75:9A:6D:70:AC:5B:E9:84 Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Certificate serial: 019B7EA78BF2E9CDB63C78D78CED539B4A27 Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/zS-wthx6WX3J4f84dZptcKxb6YQ.roa Signing time: Fri 02 Jan 2026 12:21:08 +0000 ROA not before: Fri 02 Jan 2026 12:21:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216379 IP address blocks: 178.185.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:8b:f2:e9:cd:b6:3c:78:d7:8c:ed:53:9b:4a:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Validity Not Before: Jan 2 12:21:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cd2fb0b61c7a597dc9e1ff38759a6d70ac5be984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:87:89:d1:a8:1b:e8:d8:72:05:2c:70:09:ca: 0d:19:4f:b0:05:9e:6c:0c:2d:94:c2:1a:62:e8:d5: 8b:1b:db:f6:ff:e3:c9:0e:e5:3d:4e:30:0a:73:56: 6b:b4:db:e0:a6:b2:d1:1d:ac:7f:bb:71:b2:3e:f4: 76:78:15:0b:04:5a:39:d0:28:84:7d:bd:50:da:da: 0d:c5:d6:64:b9:6a:01:4c:ed:80:45:e1:e9:f0:fc: a6:c6:60:72:44:c9:9c:b2:0b:b1:cb:f3:17:7d:19: db:87:3e:94:99:1e:d4:84:f7:36:29:1f:1c:a7:43: 7d:62:de:a5:22:8d:0c:d0:87:42:6a:dc:06:01:a1: f1:51:33:e5:cb:94:fb:0a:5d:e8:d4:de:ca:65:27: 71:37:e9:5a:66:d6:6f:4e:b9:d4:a8:a5:75:8d:19: ea:68:8c:7d:7a:6d:d7:68:f7:91:4d:89:fa:6f:ba: ae:1d:51:3f:fe:2f:e0:69:f1:b4:ac:15:18:11:78: 38:6b:45:cf:85:fc:b5:8d:81:c8:8b:f4:ae:45:87: d3:a0:ad:84:c4:ec:2a:36:28:9f:05:06:27:c7:6a: 12:64:e3:0d:25:30:f5:bd:83:cf:5c:20:46:bf:33: 70:bd:76:86:72:e8:35:1e:d8:16:5b:b8:40:83:b7: 1d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:2F:B0:B6:1C:7A:59:7D:C9:E1:FF:38:75:9A:6D:70:AC:5B:E9:84 X509v3 Authority Key Identifier: keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/zS-wthx6WX3J4f84dZptcKxb6YQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.185.226.0/24 Signature Algorithm: sha256WithRSAEncryption 42:40:6c:5e:ff:56:38:22:5b:9b:01:0d:4c:4e:9b:c2:dc:25: 12:43:ce:77:b3:5b:8f:2b:51:c8:97:16:c9:1a:6d:5e:af:dd: 1c:54:b6:6c:40:e2:24:7c:6b:13:0f:7a:e8:e6:1c:72:46:cd: 2a:af:36:f7:0b:d5:e8:24:89:3d:a0:7a:0d:b7:76:0b:b2:6a: 67:c8:55:d7:2e:d9:fa:c9:99:75:3a:ab:ef:3d:b4:b3:dc:50: 40:67:1f:06:81:e9:1f:c0:19:dd:fa:99:32:bc:ba:5e:68:b2: dd:5e:29:1b:55:dc:37:2f:04:8b:38:03:c9:f6:10:3f:c7:95: 0a:17:0b:be:91:3e:00:b9:bc:85:ab:60:1e:df:d0:d3:ec:da: c7:41:fd:5c:68:6e:bd:04:f0:14:93:70:c1:0c:4d:c9:3f:7b: ba:1e:f9:d0:84:14:9d:09:e4:04:d1:a5:2f:6c:4f:17:15:f5: 5a:00:31:56:6e:a1:fd:48:3a:1f:30:78:12:e5:3c:cb:27:9f: b5:19:db:fb:8b:23:0e:84:c5:80:69:b7:b8:42:74:4c:02:60: cb:1b:99:06:7d:48:c3:39:91:f5:2a:59:a7:08:5b:bb:5a:f7: 00:56:64:1d:a0:c5:e1:1d:cf:b2:a1:bc:bd:ed:3b:69:92:60: 3a:76:77:ba -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+p4vy6c22PHjXjO1Tm0onMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx ZTZjMDkwHhcNMjYwMTAyMTIyMTA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZDJmYjBiNjFjN2E1OTdkYzllMWZmMzg3NTlhNmQ3MGFjNWJlOTg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIeJ0agb6NhyBSxwCcoNGU+wBZ5s DC2Uwhpi6NWLG9v2/+PJDuU9TjAKc1ZrtNvgprLRHax/u3GyPvR2eBULBFo50CiE fb1Q2toNxdZkuWoBTO2AReHp8PymxmByRMmcsguxy/MXfRnbhz6UmR7UhPc2KR8c p0N9Yt6lIo0M0IdCatwGAaHxUTPly5T7Cl3o1N7KZSdxN+laZtZvTrnUqKV1jRnq aIx9em3XaPeRTYn6b7quHVE//i/gafG0rBUYEXg4a0XPhfy1jYHIi/SuRYfToK2E xOwqNiifBQYnx2oSZOMNJTD1vYPPXCBGvzNwvXaGcug1HtgWW7hAg7cdVQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFM0vsLYcell9yeH/OHWabXCsW+mEMB8GA1UdIwQY MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt NWE4NmMyNzU3YzFlLzEvelMtd3RoeDZXWDNKNGY4NGRacHRjS3hiNllRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsrniMA0G CSqGSIb3DQEBCwUAA4IBAQBCQGxe/1Y4IlubAQ1MTpvC3CUSQ853s1uPK1HIlxbJ Gm1er90cVLZsQOIkfGsTD3ro5hxyRs0qrzb3C9XoJIk9oHoNt3YLsmpnyFXXLtn6 yZl1OqvvPbSz3FBAZx8GgekfwBnd+pkyvLpeaLLdXikbVdw3LwSLOAPJ9hA/x5UK Fwu+kT4AubyFq2Ae39DT7NrHQf1caG69BPAUk3DBDE3JP3u6HvnQhBSdCeQE0aUv bE8XFfVaADFWbqH9SDofMHgS5TzLJ5+1Gdv7iyMOhMWAabe4QnRMAmDLG5kGfUjD OZH1KlmnCFu7WvcAVmQdoMXhHc+yoby97TtpkmA6dne6 -----END CERTIFICATE-----Generated at Mon Jan 12 09:21:22 2026 by rpki-client