This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/z0CueOCsUcgJjTlUBl8xuP0ejIo.roa File: z0CueOCsUcgJjTlUBl8xuP0ejIo.roa (raw, json) Hash identifier: OHQraT5vhktcGhKnSXjBbZgLeUySm12jN55KrjwZnfE= Subject key identifier: CF:40:AE:78:E0:AC:51:C8:09:8D:39:54:06:5F:31:B8:FD:1E:8C:8A Certificate issuer: /CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54 Certificate serial: 019B79ED17B4BF1EEC5A527E6F4FE13CFB56 Authority key identifier: 3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/z0CueOCsUcgJjTlUBl8xuP0ejIo.roa Signing time: Thu 01 Jan 2026 14:18:59 +0000 ROA not before: Thu 01 Jan 2026 14:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200301 IP address blocks: 2001:678:7e4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:17:b4:bf:1e:ec:5a:52:7e:6f:4f:e1:3c:fb:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54 Validity Not Before: Jan 1 14:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cf40ae78e0ac51c8098d3954065f31b8fd1e8c8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:89:10:6b:b3:f2:d4:53:ee:01:86:05:fd:66: bf:73:fe:6a:99:5b:50:67:5c:f8:b3:c2:57:09:d3: 06:cd:82:00:b5:7f:d0:db:04:59:d1:e4:82:d3:61: 66:a5:b8:7b:75:17:ee:bb:47:7b:28:1c:56:aa:42: ad:5e:0c:40:41:18:a8:d5:46:47:b2:5d:9c:e2:94: a2:b6:eb:d4:ed:b6:4b:10:dc:59:be:c9:d1:18:d2: af:69:7f:58:55:7e:7e:e5:e2:12:9d:92:02:31:2e: e8:e4:19:d4:0a:00:d9:ad:2b:26:0f:0e:6b:3e:e6: ce:88:ec:1d:b0:39:2f:c4:b9:76:c4:5e:e2:39:48: 8c:01:b2:7e:c3:56:e5:69:26:74:c8:79:9f:5b:34: 21:93:05:25:d4:d0:40:ec:00:38:f4:c3:e3:67:56: 12:29:ef:53:44:29:44:b8:3d:b8:1c:c8:a2:4c:5e: 71:e3:b1:fc:fc:fb:45:0c:ef:5b:ab:cf:25:52:98: 44:2f:62:f0:24:fb:5d:14:70:a5:43:bb:88:19:85: c1:32:85:99:63:46:9c:36:60:74:ee:3a:76:c1:7d: 27:bd:12:8d:3b:80:73:9d:0a:25:1a:99:20:c2:8f: 99:32:99:c4:56:ba:52:e5:e0:10:ac:61:34:95:b9: 0d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:40:AE:78:E0:AC:51:C8:09:8D:39:54:06:5F:31:B8:FD:1E:8C:8A X509v3 Authority Key Identifier: keyid:3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/z0CueOCsUcgJjTlUBl8xuP0ejIo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:7e4::/48 Signature Algorithm: sha256WithRSAEncryption 1f:c2:bb:40:69:66:08:0a:29:f5:c2:f6:dc:bc:15:ba:2f:f6: 81:4f:dd:06:ee:b5:2c:1b:72:7e:e4:df:48:b7:97:d0:b4:71: 59:7a:19:7d:bb:b2:30:a3:e1:b3:a1:1e:1b:cb:3f:f5:1f:65: 77:aa:ab:0f:aa:1d:b3:06:1e:9a:84:4e:8d:94:65:98:59:09: 65:50:a8:3e:a1:f0:c8:7f:7e:88:11:bc:f4:72:2f:25:2b:cd: 3c:7f:0b:39:95:0c:ea:56:b2:bf:b8:46:25:79:dd:f9:99:71: 34:61:13:31:8b:01:5f:e6:1a:a5:c9:55:7e:b1:bb:c6:15:9f: 8a:4c:23:2b:93:20:0e:a7:b2:5e:a8:a3:b3:07:27:0d:78:00: cb:ae:12:90:ba:2a:e5:c0:89:d9:cb:24:f0:11:4c:d9:63:12: 91:6c:8d:ba:92:8f:df:66:9a:0a:25:48:8a:9e:b1:d0:ee:cd: 1b:46:9f:5f:33:e0:ae:c9:a6:6d:68:70:ff:ae:f6:b3:0c:46: 94:53:4d:b1:44:c4:50:19:82:30:26:27:82:5b:ba:91:08:7d: 82:f7:1b:61:04:9b:9d:a8:18:ce:a3:ff:74:01:3d:fc:3b:f7: 02:07:10:69:ab:3b:3d:8f:c2:73:63:62:10:95:a1:ee:9e:85: ad:b6:69:fe -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt57Re0vx7sWlJ+b0/hPPtWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhOGNmY2ZlYjgzZTg4ZjM2YmEyYmYyNDQ1ZGI5ZWMxZTgy ZjBkNTQwHhcNMjYwMTAxMTQxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZjQwYWU3OGUwYWM1MWM4MDk4ZDM5NTQwNjVmMzFiOGZkMWU4YzhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlokQa7Py1FPuAYYF/Wa/c/5qmVtQ Z1z4s8JXCdMGzYIAtX/Q2wRZ0eSC02Fmpbh7dRfuu0d7KBxWqkKtXgxAQRio1UZH sl2c4pSituvU7bZLENxZvsnRGNKvaX9YVX5+5eISnZICMS7o5BnUCgDZrSsmDw5r PubOiOwdsDkvxLl2xF7iOUiMAbJ+w1blaSZ0yHmfWzQhkwUl1NBA7AA49MPjZ1YS Ke9TRClEuD24HMiiTF5x47H8/PtFDO9bq88lUphEL2LwJPtdFHClQ7uIGYXBMoWZ Y0acNmB07jp2wX0nvRKNO4BznQolGpkgwo+ZMpnEVrpS5eAQrGE0lbkN8QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFM9ArnjgrFHICY05VAZfMbj9HoyKMB8GA1UdIwQY MBaAFDqM/P64Pojza6K/JEXbnsHoLw1UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT296OF9yZy1pUE5yb3I4a1JkdWV3ZWd2RFZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi85MDJjMWEtMjlmNS00OGRkLWFkYTEt NmE0ZWIzN2EzM2NjLzEvejBDdWVPQ3NVY2dKalRsVUJsOHh1UDBlaklvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi85MDJjMWEtMjlmNS00OGRkLWFkYTEtNmE0ZWIzN2EzM2Nj LzEvT296OF9yZy1pUE5yb3I4a1JkdWV3ZWd2RFZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAfk MA0GCSqGSIb3DQEBCwUAA4IBAQAfwrtAaWYICin1wvbcvBW6L/aBT90G7rUsG3J+ 5N9It5fQtHFZehl9u7Iwo+GzoR4byz/1H2V3qqsPqh2zBh6ahE6NlGWYWQllUKg+ ofDIf36IEbz0ci8lK808fws5lQzqVrK/uEYled35mXE0YRMxiwFf5hqlyVV+sbvG FZ+KTCMrkyAOp7JeqKOzBycNeADLrhKQuirlwInZyyTwEUzZYxKRbI26ko/fZpoK JUiKnrHQ7s0bRp9fM+CuyaZtaHD/rvazDEaUU02xRMRQGYIwJieCW7qRCH2C9xth BJudqBjOo/90AT38O/cCBxBpqzs9j8JzY2IQlaHunoWttmn+ -----END CERTIFICATE-----Generated at Mon Feb 9 19:54:51 2026 by rpki-client