This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/Z6Y454y-5irLUB1HnESLpIVfLbQ.roa File: Z6Y454y-5irLUB1HnESLpIVfLbQ.roa (raw, json) Hash identifier: tFEKXtRhTAllzQn72vhDbzuqR5U15UaBRpVFyO2xYs0= Subject key identifier: 67:A6:38:E7:8C:BE:E6:2A:CB:50:1D:47:9C:44:8B:A4:85:5F:2D:B4 Certificate issuer: /CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd Certificate serial: 019B791080050DAAF766A97A16344E82AD9B Authority key identifier: 4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/Z6Y454y-5irLUB1HnESLpIVfLbQ.roa Signing time: Thu 01 Jan 2026 10:18:03 +0000 ROA not before: Thu 01 Jan 2026 10:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15562 IP address blocks: 2001:728:1808::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.mft rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:80:05:0d:aa:f7:66:a9:7a:16:34:4e:82:ad:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd Validity Not Before: Jan 1 10:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67a638e78cbee62acb501d479c448ba4855f2db4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:27:1e:d9:49:a3:42:5f:32:b2:ef:f3:a5:8b: 92:1e:d5:be:0f:b1:6d:0b:ef:96:1b:53:ba:9a:5f: de:b0:fc:68:e0:9a:a7:49:14:e6:8b:7c:9f:27:a7: ca:e0:f8:b2:2d:04:fc:0c:cb:ef:b9:b1:3e:13:cc: 75:59:2b:ff:5b:1f:0b:bd:2d:76:4f:b0:7f:91:d2: 59:49:aa:09:e6:70:5c:68:62:4a:ea:d3:56:3e:3d: a4:57:5e:a8:d7:16:db:ac:ac:ab:db:a3:6f:9b:30: 86:34:a4:55:d8:b4:ae:6c:1e:c2:5f:2d:0a:2c:85: a6:33:a4:e9:c7:4e:d4:78:f0:bc:f1:33:c0:06:8f: 4d:69:6f:5e:c4:43:9f:3f:82:3f:b5:02:f8:fd:6d: 8b:07:7d:30:ec:19:24:01:09:5f:53:34:76:75:13: 57:dd:3b:c5:58:44:6c:d8:20:31:27:f7:4d:cb:5a: d1:8a:8f:c4:f0:56:b7:0a:e9:ee:20:1f:7b:4e:2d: bf:cc:bc:68:aa:4f:6e:39:5e:63:f4:90:ee:c4:d7: 5f:e3:e9:f5:d0:b0:0e:3d:e9:8f:65:86:98:29:45: 7c:d7:9a:bb:cd:19:58:e5:6e:22:c7:6c:ed:79:d0: 6a:10:18:a0:6c:6c:57:5f:3a:d8:e1:ae:35:17:84: 36:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:A6:38:E7:8C:BE:E6:2A:CB:50:1D:47:9C:44:8B:A4:85:5F:2D:B4 X509v3 Authority Key Identifier: keyid:4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/Z6Y454y-5irLUB1HnESLpIVfLbQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:728:1808::/48 Signature Algorithm: sha256WithRSAEncryption 18:fc:16:31:31:07:54:d8:c2:98:d9:cf:d4:69:2d:90:05:e2: 71:8e:7d:6b:bf:5c:a6:9d:85:4e:70:ec:d4:d5:39:2e:35:8c: e2:01:d4:22:29:26:c8:aa:6e:ac:a6:14:27:a9:8d:9b:9c:e3: a2:5a:2d:32:56:1e:2c:3e:b2:8f:ad:4a:b4:c3:30:c2:60:dc: 9f:7e:7c:fa:92:05:2c:1d:67:b3:5d:2e:b0:f1:f5:34:f1:d2: 73:8a:0a:71:d9:5f:ed:12:3a:91:bf:8e:8b:94:c8:7b:f5:fd: e6:48:bd:2a:c8:b5:62:39:e5:20:c5:4d:ec:75:82:99:ca:77: ae:87:55:42:66:33:16:95:4a:a7:4f:8d:f8:b5:7d:16:5f:2d: 36:9c:f0:ff:4b:bf:90:39:3d:23:14:46:38:06:67:b3:9e:02: 07:46:15:f4:9c:f7:9c:7e:e6:37:fb:bf:84:ee:6a:0d:53:c7: d1:4a:d7:5f:d1:b1:f5:d9:16:c7:f0:ba:d8:27:f6:55:b8:9f: e3:44:f0:3f:df:51:88:7b:a5:39:ae:d5:8c:e6:41:94:cd:b1: 4b:cd:5c:0c:17:0a:8c:0e:81:8a:0a:49:bd:29:3a:55:07:16: fc:63:47:12:9f:84:bd:70:23:15:c1:35:b2:4d:b9:f1:ab:64: 7f:93:19:92 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EIAFDar3Zql6FjROgq2bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkNWEyOTIxZmJlYjhhNDQ4ZTdhZTFlYzVhMTFiOGFiODk4 ZDIyZmQwHhcNMjYwMTAxMTAxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2N2E2MzhlNzhjYmVlNjJhY2I1MDFkNDc5YzQ0OGJhNDg1NWYyZGI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoyce2UmjQl8ysu/zpYuSHtW+D7Ft C++WG1O6ml/esPxo4JqnSRTmi3yfJ6fK4PiyLQT8DMvvubE+E8x1WSv/Wx8LvS12 T7B/kdJZSaoJ5nBcaGJK6tNWPj2kV16o1xbbrKyr26NvmzCGNKRV2LSubB7CXy0K LIWmM6Tpx07UePC88TPABo9NaW9exEOfP4I/tQL4/W2LB30w7BkkAQlfUzR2dRNX 3TvFWERs2CAxJ/dNy1rRio/E8Fa3CunuIB97Ti2/zLxoqk9uOV5j9JDuxNdf4+n1 0LAOPemPZYaYKUV815q7zRlY5W4ix2ztedBqEBigbGxXXzrY4a41F4Q2kwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFGemOOeMvuYqy1AdR5xEi6SFXy20MB8GA1UdIwQY MBaAFE1aKSH764pEjnrh7FoRuKuJjSL9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFZvcElmdnJpa1NPZXVIc1doRzRxNG1OSXYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9lZThiOTgtNzI0MC00YjYyLWFjYzUt NzgwYTI1Y2QwZGQ5LzEvWjZZNDU0eS01aXJMVUIxSG5FU0xwSVZmTGJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9lZThiOTgtNzI0MC00YjYyLWFjYzUtNzgwYTI1Y2QwZGQ5 LzEvVFZvcElmdnJpa1NPZXVIc1doRzRxNG1OSXYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEHKBgI MA0GCSqGSIb3DQEBCwUAA4IBAQAY/BYxMQdU2MKY2c/UaS2QBeJxjn1rv1ymnYVO cOzU1TkuNYziAdQiKSbIqm6sphQnqY2bnOOiWi0yVh4sPrKPrUq0wzDCYNyffnz6 kgUsHWezXS6w8fU08dJzigpx2V/tEjqRv46LlMh79f3mSL0qyLViOeUgxU3sdYKZ yneuh1VCZjMWlUqnT434tX0WXy02nPD/S7+QOT0jFEY4BmezngIHRhX0nPecfuY3 +7+E7moNU8fRStdf0bH12RbH8LrYJ/ZVuJ/jRPA/31GIe6U5rtWM5kGUzbFLzVwM FwqMDoGKCkm9KTpVBxb8Y0cSn4S9cCMVwTWyTbnxq2R/kxmS -----END CERTIFICATE-----Generated at Mon Jan 12 12:27:28 2026 by rpki-client