This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/88175a-12c8-4590-82e0-3c6f88c914b1/1/_zWse9VeR2Ks8Tmud0pKUxt54Rs.roa File: _zWse9VeR2Ks8Tmud0pKUxt54Rs.roa (raw, json) Hash identifier: nVGx0eRXA+P6cmYQPgwiiD4iTa2vIfOtyuiTU3+mtfo= Subject key identifier: FF:35:AC:7B:D5:5E:47:62:AC:F1:39:AE:77:4A:4A:53:1B:79:E1:1B Certificate issuer: /CN=27d8640c305107766a646fbf8ec81db45ce1f249 Certificate serial: 019B7B35DAB41919582034BBF06086A57936 Authority key identifier: 27:D8:64:0C:30:51:07:76:6A:64:6F:BF:8E:C8:1D:B4:5C:E1:F2:49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9hkDDBRB3ZqZG-_jsgdtFzh8kk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/88175a-12c8-4590-82e0-3c6f88c914b1/1/_zWse9VeR2Ks8Tmud0pKUxt54Rs.roa Signing time: Thu 01 Jan 2026 20:18:05 +0000 ROA not before: Thu 01 Jan 2026 20:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8399 IP address blocks: 2a0c:10c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/88175a-12c8-4590-82e0-3c6f88c914b1/1/J9hkDDBRB3ZqZG-_jsgdtFzh8kk.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/88175a-12c8-4590-82e0-3c6f88c914b1/1/J9hkDDBRB3ZqZG-_jsgdtFzh8kk.mft rsync://rpki.ripe.net/repository/DEFAULT/J9hkDDBRB3ZqZG-_jsgdtFzh8kk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:da:b4:19:19:58:20:34:bb:f0:60:86:a5:79:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27d8640c305107766a646fbf8ec81db45ce1f249 Validity Not Before: Jan 1 20:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ff35ac7bd55e4762acf139ae774a4a531b79e11b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9a:b3:25:1e:d6:04:c4:a9:e2:d0:02:34:c0: 47:e6:ca:f0:87:36:c9:22:27:fb:cc:3a:0d:49:d7: 4b:8e:dc:35:f4:6f:86:41:25:3d:cc:12:1f:fc:ec: 85:3c:2e:41:73:ab:6a:fd:af:4f:36:f4:8c:ea:43: a3:b7:b5:e5:9e:9a:95:2c:92:14:f4:77:30:5e:00: d3:1f:9e:1e:74:7e:58:cd:06:97:d6:e2:3a:ef:d4: 7f:c1:61:6f:29:25:b4:be:18:dd:29:60:84:d5:73: ef:bb:84:49:4a:34:89:a1:a0:87:32:11:03:9e:2b: 9e:c5:4c:b2:c2:47:52:99:ca:ff:4b:85:e2:0b:02: 90:c0:50:38:ae:e8:d3:d8:2f:ce:9c:70:47:43:f7: 86:89:8a:70:25:b9:c0:46:9f:67:7d:6b:52:0c:c7: 9b:5c:62:35:b9:d5:88:94:1f:6a:3a:76:07:c1:b8: bb:89:3a:41:53:db:b3:7f:4a:84:a0:0e:bc:fe:75: 95:23:52:de:43:d2:b0:5a:7d:1b:4b:8a:21:fd:6c: 99:a3:99:82:3d:8c:40:49:f0:6f:d2:ce:a0:31:ba: 7c:be:17:c7:ea:c4:ca:7f:8b:6a:6c:59:95:1e:02: 86:3b:f5:73:48:2d:63:32:f6:65:dd:d9:8d:7e:d8: 7a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:35:AC:7B:D5:5E:47:62:AC:F1:39:AE:77:4A:4A:53:1B:79:E1:1B X509v3 Authority Key Identifier: keyid:27:D8:64:0C:30:51:07:76:6A:64:6F:BF:8E:C8:1D:B4:5C:E1:F2:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9hkDDBRB3ZqZG-_jsgdtFzh8kk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/88175a-12c8-4590-82e0-3c6f88c914b1/1/_zWse9VeR2Ks8Tmud0pKUxt54Rs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/88175a-12c8-4590-82e0-3c6f88c914b1/1/J9hkDDBRB3ZqZG-_jsgdtFzh8kk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:10c0::/29 Signature Algorithm: sha256WithRSAEncryption 7d:90:e1:e6:5f:be:02:8a:46:e9:00:3e:a7:79:0a:c7:5b:be: 66:1f:b0:71:3d:1b:fa:47:9b:fc:4a:1f:db:38:fa:e7:7a:19: 09:87:12:33:9d:d7:1c:68:3c:25:5c:5c:e0:03:ef:ad:88:65: 64:ea:f1:39:03:87:cd:e9:7f:bb:d6:08:29:18:18:69:ff:77: bd:d6:68:73:5a:29:65:b7:26:b5:46:a4:6b:f3:51:11:60:86: a3:6d:11:f0:1f:2b:f1:41:df:3a:2d:a3:df:87:b6:78:ad:da: 18:47:a3:36:63:43:cb:3e:2d:ee:a3:5e:a9:c9:05:2a:b1:bb: 20:c6:a1:b7:10:93:22:58:bb:0d:d5:40:f6:cd:81:2f:19:34: 52:44:10:87:21:45:62:26:d6:a3:22:1e:9a:8b:c3:a7:00:4a: 4a:fc:c3:8d:ef:1e:e0:a0:f3:27:92:c5:e5:3a:f7:50:86:a4: cb:b2:da:41:22:d5:34:6d:fb:41:a9:00:01:aa:7f:d4:ce:6e: 40:ad:86:89:33:d6:ef:1a:82:62:62:1e:61:54:9a:06:6d:55: 29:34:ea:be:ff:a7:62:ef:ec:a1:87:39:15:bd:ef:5c:0b:b6: 96:bf:4e:a4:47:d4:e8:8e:42:df:f8:10:f0:26:6e:f3:0d:f3: 8a:80:e4:90 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt7Ndq0GRlYIDS78GCGpXk2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3ZDg2NDBjMzA1MTA3NzY2YTY0NmZiZjhlYzgxZGI0NWNl MWYyNDkwHhcNMjYwMTAxMjAxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZjM1YWM3YmQ1NWU0NzYyYWNmMTM5YWU3NzRhNGE1MzFiNzllMTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpqzJR7WBMSp4tACNMBH5srwhzbJ Iif7zDoNSddLjtw19G+GQSU9zBIf/OyFPC5Bc6tq/a9PNvSM6kOjt7XlnpqVLJIU 9HcwXgDTH54edH5YzQaX1uI679R/wWFvKSW0vhjdKWCE1XPvu4RJSjSJoaCHMhED niuexUyywkdSmcr/S4XiCwKQwFA4rujT2C/OnHBHQ/eGiYpwJbnARp9nfWtSDMeb XGI1udWIlB9qOnYHwbi7iTpBU9uzf0qEoA68/nWVI1LeQ9KwWn0bS4oh/WyZo5mC PYxASfBv0s6gMbp8vhfH6sTKf4tqbFmVHgKGO/VzSC1jMvZl3dmNfth6UQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFP81rHvVXkdirPE5rndKSlMbeeEbMB8GA1UdIwQY MBaAFCfYZAwwUQd2amRvv47IHbRc4fJJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjloa0REQlJCM1pxWkctX2pzZ2R0RnpoOGtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi84ODE3NWEtMTJjOC00NTkwLTgyZTAt M2M2Zjg4YzkxNGIxLzEvX3pXc2U5VmVSMktzOFRtdWQwcEtVeHQ1NFJzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi84ODE3NWEtMTJjOC00NTkwLTgyZTAtM2M2Zjg4YzkxNGIx LzEvSjloa0REQlJCM1pxWkctX2pzZ2R0RnpoOGtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgwQwDAN BgkqhkiG9w0BAQsFAAOCAQEAfZDh5l++AopG6QA+p3kKx1u+Zh+wcT0b+keb/Eof 2zj653oZCYcSM53XHGg8JVxc4APvrYhlZOrxOQOHzel/u9YIKRgYaf93vdZoc1op ZbcmtUaka/NREWCGo20R8B8r8UHfOi2j34e2eK3aGEejNmNDyz4t7qNeqckFKrG7 IMahtxCTIli7DdVA9s2BLxk0UkQQhyFFYibWoyIemovDpwBKSvzDje8e4KDzJ5LF 5Tr3UIaky7LaQSLVNG37QakAAap/1M5uQK2GiTPW7xqCYmIeYVSaBm1VKTTqvv+n Yu/soYc5Fb3vXAu2lr9OpEfU6I5C3/gQ8CZu8w3zioDkkA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:04 2026 by rpki-client