This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/8cdc48-2822-4599-bb69-8c456af6b6bb/1/zY9fq8CGg8NRWUX12SRnSLACwOc.roa File: zY9fq8CGg8NRWUX12SRnSLACwOc.roa (raw, json) Hash identifier: rWm0R+5stCiGapMh91guOJof8hivdrdIyYOCPmOKkSo= Subject key identifier: CD:8F:5F:AB:C0:86:83:C3:51:59:45:F5:D9:24:67:48:B0:02:C0:E7 Certificate issuer: /CN=256065b6166aef96fcff3a2ea56fdffd390f3166 Certificate serial: 019B8E69CE5534A20B02ACBA2EFCBB263396 Authority key identifier: 25:60:65:B6:16:6A:EF:96:FC:FF:3A:2E:A5:6F:DF:FD:39:0F:31:66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JWBlthZq75b8_zoupW_f_TkPMWY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/8cdc48-2822-4599-bb69-8c456af6b6bb/1/zY9fq8CGg8NRWUX12SRnSLACwOc.roa Signing time: Mon 05 Jan 2026 13:47:37 +0000 ROA not before: Mon 05 Jan 2026 13:47:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213451 IP address blocks: 2a14:f701::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/8cdc48-2822-4599-bb69-8c456af6b6bb/1/JWBlthZq75b8_zoupW_f_TkPMWY.crl rsync://rpki.ripe.net/repository/DEFAULT/02/8cdc48-2822-4599-bb69-8c456af6b6bb/1/JWBlthZq75b8_zoupW_f_TkPMWY.mft rsync://rpki.ripe.net/repository/DEFAULT/JWBlthZq75b8_zoupW_f_TkPMWY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 10:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:8e:69:ce:55:34:a2:0b:02:ac:ba:2e:fc:bb:26:33:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=256065b6166aef96fcff3a2ea56fdffd390f3166 Validity Not Before: Jan 5 13:47:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cd8f5fabc08683c3515945f5d9246748b002c0e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e3:78:6c:3e:00:c2:32:f3:a1:e8:aa:63:27: 07:85:65:9b:f7:ae:d4:03:9b:bb:23:8f:0b:d7:80: 20:fd:bd:0b:48:aa:0f:79:3f:c7:47:1a:44:fa:c7: ec:19:5c:c1:12:8e:8e:71:04:a9:1f:1c:7c:15:81: e3:5b:8e:f9:76:a0:21:ef:82:59:f5:2f:27:2c:12: 87:d6:82:74:2d:57:09:48:6d:7d:e4:02:2a:c7:62: a1:77:a2:1c:73:bd:4d:e7:35:97:cd:74:4f:5a:b7: 5a:2d:4a:69:40:80:1a:5c:07:3e:28:a7:c0:8b:97: 1a:76:7a:7d:d4:a8:32:0c:e5:3b:1c:84:d2:0d:fe: 8a:62:d2:7d:e8:91:91:9a:28:b5:86:8f:ab:2b:b9: 09:ba:44:a1:1d:01:a4:79:b9:14:f0:3c:27:4b:90: 7b:0d:7d:49:13:38:cc:38:e6:e4:fe:32:f4:24:0b: 51:aa:21:1b:d7:6d:75:5f:06:27:99:d3:80:fe:ab: db:67:8d:e2:78:f6:ff:7d:21:98:e5:5c:0b:98:05: 69:f6:d2:66:9f:ef:cf:22:28:42:a0:2f:ed:39:7c: 15:6f:38:33:21:f8:7d:26:e1:04:09:07:a6:3a:71: 06:98:13:4c:19:aa:b5:7a:8a:dc:dd:5b:4c:7b:93: 48:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:8F:5F:AB:C0:86:83:C3:51:59:45:F5:D9:24:67:48:B0:02:C0:E7 X509v3 Authority Key Identifier: keyid:25:60:65:B6:16:6A:EF:96:FC:FF:3A:2E:A5:6F:DF:FD:39:0F:31:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JWBlthZq75b8_zoupW_f_TkPMWY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/8cdc48-2822-4599-bb69-8c456af6b6bb/1/zY9fq8CGg8NRWUX12SRnSLACwOc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/8cdc48-2822-4599-bb69-8c456af6b6bb/1/JWBlthZq75b8_zoupW_f_TkPMWY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:f701::/32 Signature Algorithm: sha256WithRSAEncryption 0c:eb:4c:27:46:25:23:c5:63:e7:95:f4:e9:8d:0a:5c:7a:96: 74:29:51:f4:ff:28:1c:40:35:66:d8:17:44:c0:b6:6e:ac:7c: 22:65:7f:d0:53:a7:a1:c9:0a:32:7f:a3:c0:fe:5b:40:ce:cc: fa:75:d2:97:a7:3a:e2:0d:cb:98:ea:21:d1:31:8f:11:84:48: a8:73:8d:76:37:50:05:d3:45:ae:cd:64:49:6f:8a:f8:0e:3a: 30:0c:3c:c2:78:76:04:5a:cc:4f:1a:40:b9:aa:ad:55:02:ca: 87:db:3a:1d:d6:13:ae:89:10:6c:de:56:e6:35:dd:43:b5:c9: 7d:0a:33:95:99:6d:4e:da:8f:da:72:80:e9:8d:df:ce:93:23: 33:70:5b:43:6e:5a:a5:6f:98:a4:91:d3:6f:61:42:9a:74:f3: da:1a:4a:a9:b8:5f:45:c9:0a:1d:bf:bf:a5:4a:f2:95:98:f7: 73:f2:da:1f:09:a3:35:59:de:89:88:83:2e:14:64:87:88:cd: 8f:1c:cd:f5:59:2b:83:a4:2b:19:4f:a3:52:34:9f:44:b2:cc: ae:1f:22:e9:73:81:ca:bb:e1:96:bd:c4:a4:7f:8a:fc:b6:8c: ab:9d:40:e7:c1:b4:36:14:8e:ef:1d:4a:09:1e:7e:e8:d8:9a: e9:55:71:6b -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZuOac5VNKILAqy6Lvy7JjOWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1NjA2NWI2MTY2YWVmOTZmY2ZmM2EyZWE1NmZkZmZkMzkw ZjMxNjYwHhcNMjYwMTA1MTM0NzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZDhmNWZhYmMwODY4M2MzNTE1OTQ1ZjVkOTI0Njc0OGIwMDJjMGU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+N4bD4AwjLzoeiqYycHhWWb967U A5u7I48L14Ag/b0LSKoPeT/HRxpE+sfsGVzBEo6OcQSpHxx8FYHjW475dqAh74JZ 9S8nLBKH1oJ0LVcJSG195AIqx2Khd6Icc71N5zWXzXRPWrdaLUppQIAaXAc+KKfA i5cadnp91KgyDOU7HITSDf6KYtJ96JGRmii1ho+rK7kJukShHQGkebkU8DwnS5B7 DX1JEzjMOObk/jL0JAtRqiEb1211XwYnmdOA/qvbZ43iePb/fSGY5VwLmAVp9tJm n+/PIihCoC/tOXwVbzgzIfh9JuEECQemOnEGmBNMGaq1eorc3VtMe5NItwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFM2PX6vAhoPDUVlF9dkkZ0iwAsDnMB8GA1UdIwQY MBaAFCVgZbYWau+W/P86LqVv3/05DzFmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSldCbHRoWnE3NWI4X3pvdXBXX2ZfVGtQTVdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi84Y2RjNDgtMjgyMi00NTk5LWJiNjkt OGM0NTZhZjZiNmJiLzEvelk5ZnE4Q0dnOE5SV1VYMTJTUm5TTEFDd09jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi84Y2RjNDgtMjgyMi00NTk5LWJiNjktOGM0NTZhZjZiNmJi LzEvSldCbHRoWnE3NWI4X3pvdXBXX2ZfVGtQTVdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhT3ATAN BgkqhkiG9w0BAQsFAAOCAQEADOtMJ0YlI8Vj55X06Y0KXHqWdClR9P8oHEA1ZtgX RMC2bqx8ImV/0FOnockKMn+jwP5bQM7M+nXSl6c64g3LmOoh0TGPEYRIqHONdjdQ BdNFrs1kSW+K+A46MAw8wnh2BFrMTxpAuaqtVQLKh9s6HdYTrokQbN5W5jXdQ7XJ fQozlZltTtqP2nKA6Y3fzpMjM3BbQ25apW+YpJHTb2FCmnTz2hpKqbhfRckKHb+/ pUrylZj3c/LaHwmjNVneiYiDLhRkh4jNjxzN9Vkrg6QrGU+jUjSfRLLMrh8i6XOB yrvhlr3EpH+K/LaMq51A58G0NhSO7x1KCR5+6Nia6VVxaw== -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:06 2026 by rpki-client