This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/e8c672-da1a-4133-921e-e7db95e3bcc4/1/Z1MLI8tNzY6d4mU0MA4vsliznRQ.roa File: Z1MLI8tNzY6d4mU0MA4vsliznRQ.roa (raw, json) Hash identifier: Hb0AvXt+7YtqdooEE/7Fg18JAVs1ie9AUIwS/98EVJs= Subject key identifier: 67:53:0B:23:CB:4D:CD:8E:9D:E2:65:34:30:0E:2F:B2:58:B3:9D:14 Certificate issuer: /CN=491758773a99e771b90ca9bb22f7fcadbfb63248 Certificate serial: 019B797E007E4A799F290DE0AF91541C48A3 Authority key identifier: 49:17:58:77:3A:99:E7:71:B9:0C:A9:BB:22:F7:FC:AD:BF:B6:32:48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SRdYdzqZ53G5DKm7Ivf8rb-2Mkg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/e8c672-da1a-4133-921e-e7db95e3bcc4/1/Z1MLI8tNzY6d4mU0MA4vsliznRQ.roa Signing time: Thu 01 Jan 2026 12:17:39 +0000 ROA not before: Thu 01 Jan 2026 12:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209807 IP address blocks: 2001:67c:ed0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/e8c672-da1a-4133-921e-e7db95e3bcc4/1/SRdYdzqZ53G5DKm7Ivf8rb-2Mkg.crl rsync://rpki.ripe.net/repository/DEFAULT/10/e8c672-da1a-4133-921e-e7db95e3bcc4/1/SRdYdzqZ53G5DKm7Ivf8rb-2Mkg.mft rsync://rpki.ripe.net/repository/DEFAULT/SRdYdzqZ53G5DKm7Ivf8rb-2Mkg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 19:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:00:7e:4a:79:9f:29:0d:e0:af:91:54:1c:48:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491758773a99e771b90ca9bb22f7fcadbfb63248 Validity Not Before: Jan 1 12:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67530b23cb4dcd8e9de26534300e2fb258b39d14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a6:9c:7d:a1:c9:e0:da:01:1c:e3:e0:26:75: f7:0b:f0:c6:7a:8d:3e:a2:f7:4b:72:9b:75:ed:bd: 02:f5:e9:7c:53:3c:78:c2:39:6b:95:61:15:08:e7: 46:34:20:f1:db:a3:a2:72:10:7e:05:47:11:6f:91: 5c:46:fe:96:7a:fc:58:3c:f9:54:de:3a:3a:97:b8: fb:98:fb:5d:c2:9b:f8:31:c1:17:01:0b:29:bd:f3: 68:1b:59:b1:58:c0:7a:bd:12:2d:35:c7:43:87:27: 28:bb:10:5f:f3:f5:b3:61:0f:23:10:16:57:68:46: 97:f2:f0:d2:a7:c4:b2:26:68:6b:85:d7:0a:63:dc: b9:21:2a:6e:81:64:2f:27:71:f0:d8:97:48:08:19: 9c:3f:78:19:62:dc:4a:41:41:bd:eb:fd:47:6a:92: cf:cb:93:2c:af:0f:18:0c:20:11:3f:46:cb:72:a9: 4a:6e:aa:3c:7f:bd:44:49:ac:04:76:d0:54:7a:3a: a6:58:18:69:c1:49:7e:9e:fa:d3:68:c9:cf:0b:15: 75:f2:ce:3f:e5:7d:fd:66:70:ec:6c:f7:ce:7e:59: 50:6c:2b:91:57:42:62:f5:61:74:17:d0:26:99:86: 53:e0:5d:ec:17:21:f7:7e:ab:a8:1d:84:49:46:24: 72:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:53:0B:23:CB:4D:CD:8E:9D:E2:65:34:30:0E:2F:B2:58:B3:9D:14 X509v3 Authority Key Identifier: keyid:49:17:58:77:3A:99:E7:71:B9:0C:A9:BB:22:F7:FC:AD:BF:B6:32:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SRdYdzqZ53G5DKm7Ivf8rb-2Mkg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/e8c672-da1a-4133-921e-e7db95e3bcc4/1/Z1MLI8tNzY6d4mU0MA4vsliznRQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/e8c672-da1a-4133-921e-e7db95e3bcc4/1/SRdYdzqZ53G5DKm7Ivf8rb-2Mkg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:ed0::/48 Signature Algorithm: sha256WithRSAEncryption 85:6e:f9:44:47:5d:c6:fb:f3:61:b2:86:14:a5:75:12:f9:6b: 51:f9:07:dd:07:ec:d0:ae:a1:87:7b:f3:57:55:f4:ad:30:2a: 3d:52:7b:4d:61:37:d6:b5:e5:08:51:7b:3f:08:64:8b:9c:c8: 1a:f7:44:2d:47:1c:14:4e:ab:54:d6:bf:6a:30:9b:86:0b:41: 40:8d:a4:29:5a:5d:7f:3d:6a:31:c3:17:dd:bf:93:cc:95:ea: 34:7a:63:76:3e:67:34:16:6c:92:ac:a4:63:a6:13:8d:93:c7: 45:e9:d9:3a:af:95:77:99:e9:98:4b:1e:ef:2e:83:eb:e6:2d: 85:97:15:06:1e:0a:8d:a5:95:aa:ac:ee:05:5c:f8:9d:d8:33: 8a:11:9d:b5:14:f0:67:5c:b4:62:42:68:5e:b8:f4:68:9b:53: f9:81:c6:78:94:19:08:05:07:71:93:50:c4:ca:16:31:c3:91: bd:36:b2:2d:57:03:22:2f:f0:8b:a5:e8:9b:8a:3d:f8:2b:af: 86:fc:b1:17:56:12:87:4d:72:48:2d:84:25:2f:a9:48:82:5f: 4c:c8:c6:70:ca:44:59:2a:0c:35:68:95:c4:9b:b4:22:4e:85: 2a:24:83:aa:17:af:58:35:28:43:c1:f3:47:39:6f:62:5f:a1: 8e:7f:2c:26 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5fgB+SnmfKQ3gr5FUHEijMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5MTc1ODc3M2E5OWU3NzFiOTBjYTliYjIyZjdmY2FkYmZi NjMyNDgwHhcNMjYwMTAxMTIxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NzUzMGIyM2NiNGRjZDhlOWRlMjY1MzQzMDBlMmZiMjU4YjM5ZDE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqacfaHJ4NoBHOPgJnX3C/DGeo0+ ovdLcpt17b0C9el8Uzx4wjlrlWEVCOdGNCDx26OichB+BUcRb5FcRv6WevxYPPlU 3jo6l7j7mPtdwpv4McEXAQspvfNoG1mxWMB6vRItNcdDhycouxBf8/WzYQ8jEBZX aEaX8vDSp8SyJmhrhdcKY9y5ISpugWQvJ3Hw2JdICBmcP3gZYtxKQUG96/1HapLP y5Msrw8YDCARP0bLcqlKbqo8f71ESawEdtBUejqmWBhpwUl+nvrTaMnPCxV18s4/ 5X39ZnDsbPfOfllQbCuRV0Ji9WF0F9AmmYZT4F3sFyH3fquoHYRJRiRytwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFGdTCyPLTc2OneJlNDAOL7JYs50UMB8GA1UdIwQY MBaAFEkXWHc6medxuQypuyL3/K2/tjJIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1JkWWR6cVo1M0c1REttN0l2ZjhyYi0yTWtnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9lOGM2NzItZGExYS00MTMzLTkyMWUt ZTdkYjk1ZTNiY2M0LzEvWjFNTEk4dE56WTZkNG1VME1BNHZzbGl6blJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC9lOGM2NzItZGExYS00MTMzLTkyMWUtZTdkYjk1ZTNiY2M0 LzEvU1JkWWR6cVo1M0c1REttN0l2ZjhyYi0yTWtnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA7Q MA0GCSqGSIb3DQEBCwUAA4IBAQCFbvlER13G+/NhsoYUpXUS+WtR+QfdB+zQrqGH e/NXVfStMCo9UntNYTfWteUIUXs/CGSLnMga90QtRxwUTqtU1r9qMJuGC0FAjaQp Wl1/PWoxwxfdv5PMleo0emN2Pmc0FmySrKRjphONk8dF6dk6r5V3memYSx7vLoPr 5i2FlxUGHgqNpZWqrO4FXPid2DOKEZ21FPBnXLRiQmheuPRom1P5gcZ4lBkIBQdx k1DEyhYxw5G9NrItVwMiL/CLpeibij34K6+G/LEXVhKHTXJILYQlL6lIgl9MyMZw ykRZKgw1aJXEm7QiToUqJIOqF69YNShDwfNHOW9iX6GOfywm -----END CERTIFICATE-----Generated at Mon Feb 2 06:19:30 2026 by rpki-client