This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/163bb5-f8b1-4cb4-bd48-bb3d4930e459/1/U_ZTyzand_WYQHwaGLdDZJKVTxU.roa File: U_ZTyzand_WYQHwaGLdDZJKVTxU.roa (raw, json) Hash identifier: pVHYAJp1u51cRGJyOQT+SjKcxp5OZfdjLVWKDZ8gDhk= Subject key identifier: 53:F6:53:CB:36:A7:77:F5:98:40:7C:1A:18:B7:43:64:92:95:4F:15 Certificate issuer: /CN=7500bb5582e74d61e90c80283ba9b98ba65cd2dc Certificate serial: 019B7EA46D7ABAB9599C83F6B9C500CD5AE1 Authority key identifier: 75:00:BB:55:82:E7:4D:61:E9:0C:80:28:3B:A9:B9:8B:A6:5C:D2:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQC7VYLnTWHpDIAoO6m5i6Zc0tw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/163bb5-f8b1-4cb4-bd48-bb3d4930e459/1/U_ZTyzand_WYQHwaGLdDZJKVTxU.roa Signing time: Fri 02 Jan 2026 12:17:43 +0000 ROA not before: Fri 02 Jan 2026 12:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215629 IP address blocks: 2001:67c:da0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/163bb5-f8b1-4cb4-bd48-bb3d4930e459/1/dQC7VYLnTWHpDIAoO6m5i6Zc0tw.crl rsync://rpki.ripe.net/repository/DEFAULT/11/163bb5-f8b1-4cb4-bd48-bb3d4930e459/1/dQC7VYLnTWHpDIAoO6m5i6Zc0tw.mft rsync://rpki.ripe.net/repository/DEFAULT/dQC7VYLnTWHpDIAoO6m5i6Zc0tw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:6d:7a:ba:b9:59:9c:83:f6:b9:c5:00:cd:5a:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7500bb5582e74d61e90c80283ba9b98ba65cd2dc Validity Not Before: Jan 2 12:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=53f653cb36a777f598407c1a18b7436492954f15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:61:b3:2d:aa:d7:b9:4e:7e:d5:0b:fa:69:fc: 0c:32:15:83:8f:6e:e4:d7:b9:1b:bb:74:92:87:3f: 91:94:f0:1e:47:a9:79:e2:7a:19:9a:30:f9:47:95: d5:19:6a:e2:3f:1e:a7:85:51:68:c2:26:e3:06:e7: ea:de:f7:41:14:9b:99:64:41:9f:3c:81:22:e9:02: 7f:8c:e1:10:9c:5a:a4:2c:ec:76:0a:6e:2d:42:1e: 3e:ed:69:57:52:ca:c1:2e:f2:5a:b0:3e:8c:b4:bb: 96:5b:d1:8b:54:31:7e:21:e2:0a:af:06:a4:bc:3b: 6e:b3:13:69:8c:46:b4:a0:e9:5e:6b:33:fa:27:57: 10:9f:23:24:e1:53:6c:fa:46:55:4e:be:fe:a0:ce: 50:cd:92:39:4c:eb:fb:10:5f:b5:34:a9:3f:f7:a2: 56:fd:53:2e:a2:9d:6e:a9:7d:1e:57:d2:9c:60:26: c4:0b:b8:a3:08:3b:9e:7c:ba:40:0a:e8:41:62:6b: cc:ef:15:73:f0:1b:0d:67:a6:37:41:ce:9d:33:c1: 15:0b:a2:a2:37:08:cd:25:ae:90:be:94:a0:a9:35: 15:22:70:92:cf:d1:7c:49:62:13:dc:a3:2e:a0:c7: b3:9b:f8:d5:f1:f5:ac:ce:39:41:dc:98:09:c9:fb: 84:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:F6:53:CB:36:A7:77:F5:98:40:7C:1A:18:B7:43:64:92:95:4F:15 X509v3 Authority Key Identifier: keyid:75:00:BB:55:82:E7:4D:61:E9:0C:80:28:3B:A9:B9:8B:A6:5C:D2:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQC7VYLnTWHpDIAoO6m5i6Zc0tw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/163bb5-f8b1-4cb4-bd48-bb3d4930e459/1/U_ZTyzand_WYQHwaGLdDZJKVTxU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/163bb5-f8b1-4cb4-bd48-bb3d4930e459/1/dQC7VYLnTWHpDIAoO6m5i6Zc0tw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:da0::/48 Signature Algorithm: sha256WithRSAEncryption 6d:3a:15:31:44:66:37:a0:96:6d:04:d4:3a:3b:05:cf:6d:2e: 5d:64:58:5d:e5:90:4a:a5:e5:0f:e9:ef:5e:cf:74:2f:d5:64: b3:4a:98:51:c9:82:04:d8:c5:ff:87:ca:cd:a9:5b:2b:34:5d: 7c:bb:01:c6:6e:9c:5c:c6:07:24:27:05:64:46:ba:e4:2c:fe: 36:18:c5:d8:62:8e:4a:b9:95:67:7b:e1:66:eb:74:0a:f2:1d: 6b:03:41:03:de:18:c6:4d:1f:18:b5:69:61:96:e7:be:e7:1f: e8:08:cd:57:cb:47:db:da:bb:95:16:7a:bd:07:16:51:ba:95: 77:3d:56:0a:82:7f:e8:92:f8:ed:37:e8:35:e5:81:4c:39:97: e4:c8:15:08:7b:43:6c:77:0c:bc:cd:39:a1:4c:6e:13:7b:8b: 52:d5:77:52:12:08:85:e0:1c:28:5e:ee:f6:f6:df:3b:31:36: a2:53:c5:a9:5a:fb:08:a0:5c:4b:13:df:65:14:ab:3a:80:e2: e4:93:b6:6d:71:e2:5f:4b:62:29:7e:b1:7a:10:a4:95:b6:78: 3e:de:41:00:47:cf:c1:7e:e7:e7:32:04:1f:fe:b2:42:d0:49: f9:d2:7a:1b:26:ad:06:d8:15:22:88:a7:83:0a:cb:8f:8f:c6: e3:16:f4:a2 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+pG16urlZnIP2ucUAzVrhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1MDBiYjU1ODJlNzRkNjFlOTBjODAyODNiYTliOThiYTY1 Y2QyZGMwHhcNMjYwMTAyMTIxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1M2Y2NTNjYjM2YTc3N2Y1OTg0MDdjMWExOGI3NDM2NDkyOTU0ZjE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAymGzLarXuU5+1Qv6afwMMhWDj27k 17kbu3SShz+RlPAeR6l54noZmjD5R5XVGWriPx6nhVFowibjBufq3vdBFJuZZEGf PIEi6QJ/jOEQnFqkLOx2Cm4tQh4+7WlXUsrBLvJasD6MtLuWW9GLVDF+IeIKrwak vDtusxNpjEa0oOleazP6J1cQnyMk4VNs+kZVTr7+oM5QzZI5TOv7EF+1NKk/96JW /VMuop1uqX0eV9KcYCbEC7ijCDuefLpACuhBYmvM7xVz8BsNZ6Y3Qc6dM8EVC6Ki NwjNJa6QvpSgqTUVInCSz9F8SWIT3KMuoMezm/jV8fWszjlB3JgJyfuE+wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFP2U8s2p3f1mEB8Ghi3Q2SSlU8VMB8GA1UdIwQY MBaAFHUAu1WC501h6QyAKDupuYumXNLcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFFDN1ZZTG5UV0hwRElBb082bTVpNlpjMHR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8xNjNiYjUtZjhiMS00Y2I0LWJkNDgt YmIzZDQ5MzBlNDU5LzEvVV9aVHl6YW5kX1dZUUh3YUdMZERaSktWVHhVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS8xNjNiYjUtZjhiMS00Y2I0LWJkNDgtYmIzZDQ5MzBlNDU5 LzEvZFFDN1ZZTG5UV0hwRElBb082bTVpNlpjMHR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA2g MA0GCSqGSIb3DQEBCwUAA4IBAQBtOhUxRGY3oJZtBNQ6OwXPbS5dZFhd5ZBKpeUP 6e9ez3Qv1WSzSphRyYIE2MX/h8rNqVsrNF18uwHGbpxcxgckJwVkRrrkLP42GMXY Yo5KuZVne+Fm63QK8h1rA0ED3hjGTR8YtWlhlue+5x/oCM1Xy0fb2ruVFnq9BxZR upV3PVYKgn/okvjtN+g15YFMOZfkyBUIe0Nsdwy8zTmhTG4Te4tS1XdSEgiF4Bwo Xu729t87MTaiU8WpWvsIoFxLE99lFKs6gOLkk7ZtceJfS2IpfrF6EKSVtng+3kEA R8/BfufnMgQf/rJC0En50nobJq0G2BUiiKeDCsuPj8bjFvSi -----END CERTIFICATE-----Generated at Tue Feb 10 01:23:52 2026 by rpki-client