This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/trZb-PAnbqwCWgOl665kpM9Ru-E.roa File: trZb-PAnbqwCWgOl665kpM9Ru-E.roa (raw, json) Hash identifier: TBVyDymbeVc97kgg2pBefTmOhrGhepSiNLCptzI3Rj0= Subject key identifier: B6:B6:5B:F8:F0:27:6E:AC:02:5A:03:A5:EB:AE:64:A4:CF:51:BB:E1 Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa Certificate serial: 019B7D5B177973DE70E0A19B92672778D7B4 Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/trZb-PAnbqwCWgOl665kpM9Ru-E.roa Signing time: Fri 02 Jan 2026 06:18:00 +0000 ROA not before: Fri 02 Jan 2026 06:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199123 IP address blocks: 62.68.70.0/24 maxlen: 24 80.72.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.mft rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:17:79:73:de:70:e0:a1:9b:92:67:27:78:d7:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa Validity Not Before: Jan 2 06:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b6b65bf8f0276eac025a03a5ebae64a4cf51bbe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:fd:71:cd:23:f2:a0:6e:f8:25:68:e7:6f:17: 27:84:e4:08:f3:df:5c:19:d1:08:c6:4c:b0:2d:f8: 1c:59:99:14:94:04:d3:15:96:ba:7a:0a:5a:9c:0f: bf:ac:ce:b6:bc:79:10:8f:ef:66:29:80:23:01:f4: 73:90:73:34:3b:ac:13:20:68:18:ee:69:31:35:d1: 11:cd:14:86:54:61:cd:eb:c0:cc:9f:67:37:7a:47: 80:ba:4f:c5:b1:e1:40:20:fc:e1:1e:d7:88:32:80: 58:2a:ee:a1:66:f2:42:63:fd:db:54:f2:16:56:ca: 86:5f:a6:50:23:07:c8:ec:75:e8:07:dd:56:b7:62: 99:bd:bf:43:e4:3d:c3:0b:aa:96:1f:25:ff:01:81: a0:dc:d1:a6:a9:a4:a3:87:ce:5e:27:66:75:cd:f2: f0:84:f8:29:7e:1d:02:8b:62:7b:59:f8:c1:96:6a: 74:8b:c3:69:6a:67:d1:39:61:96:91:53:26:5a:78: 4a:39:5e:ac:fd:59:f1:fb:6c:c1:a5:a6:9a:dc:b9: cc:2d:9f:8f:72:4a:33:bb:61:32:52:fd:69:f5:78: f6:c9:2b:27:4a:5e:58:91:d8:ae:ad:c5:ff:3c:93: a6:c6:ab:48:84:67:26:3c:78:5b:73:34:13:d6:ff: 4e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:B6:5B:F8:F0:27:6E:AC:02:5A:03:A5:EB:AE:64:A4:CF:51:BB:E1 X509v3 Authority Key Identifier: keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/trZb-PAnbqwCWgOl665kpM9Ru-E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.68.70.0/24 80.72.78.0/24 Signature Algorithm: sha256WithRSAEncryption 73:98:f4:26:18:1b:cd:1c:84:ea:30:f4:95:50:49:b7:69:84: b6:54:5f:b8:e9:3e:c7:1a:d5:22:39:5e:b0:fb:82:5e:80:85: 9b:4d:8b:2b:56:83:8d:08:f6:96:3e:82:b1:09:8c:39:3f:07: 90:e1:30:04:97:91:57:ba:83:50:90:6e:bc:af:21:cc:f0:14: c0:ba:18:e3:9b:5b:9c:f4:d1:27:6a:f4:f3:94:7c:3f:2a:51: 96:96:af:7f:56:c7:9f:46:eb:ea:18:28:69:fa:16:d8:f7:12: 7c:19:ef:37:62:ca:b9:c9:e8:d1:ad:03:26:ab:ed:41:4f:fe: 50:c0:ff:2a:d6:c3:61:92:ac:bc:f6:09:12:35:cd:e7:38:35: 34:a8:32:a2:eb:94:39:62:71:df:ef:13:89:0e:80:33:35:47: d7:3e:9a:62:8a:7b:03:a6:e9:4b:08:e1:09:d9:6d:ef:0e:ee: 15:69:be:5f:23:8f:48:dd:ee:a9:e5:5f:48:7a:24:8f:c5:cb: 3a:ca:43:d0:44:c6:c5:85:a6:20:56:a2:9d:71:30:cb:a2:65: 79:74:34:85:b8:8d:4d:f9:aa:cc:6c:1e:92:09:43:c9:88:08: af:19:ab:9f:30:05:ab:79:93:3f:18:89:26:99:78:90:29:74: e6:76:98:f8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9Wxd5c95w4KGbkmcneNe0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzNWVhYzY0ZWE0ODAyZTY4MjQ2ODZmN2MwZDIwMWYyYzg1 Y2IyYWEwHhcNMjYwMTAyMDYxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNmI2NWJmOGYwMjc2ZWFjMDI1YTAzYTVlYmFlNjRhNGNmNTFiYmUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8f1xzSPyoG74JWjnbxcnhOQI899c GdEIxkywLfgcWZkUlATTFZa6egpanA+/rM62vHkQj+9mKYAjAfRzkHM0O6wTIGgY 7mkxNdERzRSGVGHN68DMn2c3ekeAuk/FseFAIPzhHteIMoBYKu6hZvJCY/3bVPIW VsqGX6ZQIwfI7HXoB91Wt2KZvb9D5D3DC6qWHyX/AYGg3NGmqaSjh85eJ2Z1zfLw hPgpfh0Ci2J7WfjBlmp0i8NpamfROWGWkVMmWnhKOV6s/Vnx+2zBpaaa3LnMLZ+P ckozu2EyUv1p9Xj2ySsnSl5YkdiurcX/PJOmxqtIhGcmPHhbczQT1v9OXQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLa2W/jwJ26sAloDpeuuZKTPUbvhMB8GA1UdIwQY MBaAFMNerGTqSALmgkaG98DSAfLIXLKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMt ZGFjYjVmMzU2ZWEzLzEvdHJaYi1QQW5icXdDV2dPbDY2NWtwTTlSdS1FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMtZGFjYjVmMzU2ZWEz LzEvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAPkRGAwQA UEhOMA0GCSqGSIb3DQEBCwUAA4IBAQBzmPQmGBvNHITqMPSVUEm3aYS2VF+46T7H GtUiOV6w+4JegIWbTYsrVoONCPaWPoKxCYw5PweQ4TAEl5FXuoNQkG68ryHM8BTA uhjjm1uc9NEnavTzlHw/KlGWlq9/VsefRuvqGChp+hbY9xJ8Ge83Ysq5yejRrQMm q+1BT/5QwP8q1sNhkqy89gkSNc3nODU0qDKi65Q5YnHf7xOJDoAzNUfXPppiinsD pulLCOEJ2W3vDu4Vab5fI49I3e6p5V9IeiSPxcs6ykPQRMbFhaYgVqKdcTDLomV5 dDSFuI1N+arMbB6SCUPJiAivGaufMAWreZM/GIkmmXiQKXTmdpj4 -----END CERTIFICATE-----Generated at Fri Jan 23 18:47:59 2026 by rpki-client