This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/Z76i2wTRDAmOepRmzRS1ev_NT4o.roa File: Z76i2wTRDAmOepRmzRS1ev_NT4o.roa (raw, json) Hash identifier: Llp9bl6+NKH3CHzPYaV6ygi3Grq/2zEaKAN/Vm9U4m8= Subject key identifier: 67:BE:A2:DB:04:D1:0C:09:8E:7A:94:66:CD:14:B5:7A:FF:CD:4F:8A Certificate issuer: /CN=56e3353d5f423ad4271c3261caa543140530bddb Certificate serial: 019B783551219C67534B25C2E5EE35FD50AD Authority key identifier: 56:E3:35:3D:5F:42:3A:D4:27:1C:32:61:CA:A5:43:14:05:30:BD:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VuM1PV9COtQnHDJhyqVDFAUwvds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/Z76i2wTRDAmOepRmzRS1ev_NT4o.roa Signing time: Thu 01 Jan 2026 06:18:38 +0000 ROA not before: Thu 01 Jan 2026 06:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 33871 IP address blocks: 80.67.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/VuM1PV9COtQnHDJhyqVDFAUwvds.crl rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/VuM1PV9COtQnHDJhyqVDFAUwvds.mft rsync://rpki.ripe.net/repository/DEFAULT/VuM1PV9COtQnHDJhyqVDFAUwvds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:51:21:9c:67:53:4b:25:c2:e5:ee:35:fd:50:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56e3353d5f423ad4271c3261caa543140530bddb Validity Not Before: Jan 1 06:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67bea2db04d10c098e7a9466cd14b57affcd4f8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:e0:58:0f:0b:9d:4b:cd:01:99:b6:4a:6d:ac: 41:31:4d:8e:a5:b8:e3:63:63:e6:0a:9b:ab:97:cd: 05:00:fa:b6:e2:27:52:1a:f7:9f:ee:f4:fc:86:2d: 3c:f8:6f:42:72:ef:76:73:05:67:53:21:34:22:db: 00:ee:bd:42:d7:c6:3e:a6:80:29:7d:59:6b:05:ea: db:d7:76:84:8f:83:26:99:58:e8:0f:24:a5:3e:bc: a6:95:f7:8f:c2:35:21:0a:60:3a:b0:89:9c:8e:11: 48:fd:d6:91:f7:5c:cc:9c:31:e1:1c:4d:1b:3a:72: 33:9a:a9:9c:71:7f:58:95:b9:ba:17:38:dc:95:b3: 52:60:f5:6d:ce:01:e5:01:d8:e1:d5:b1:5c:d7:d6: 53:43:eb:5c:79:98:e4:2a:9f:c1:c2:30:40:ed:cb: cb:26:71:74:8c:39:6d:bb:09:bb:fe:42:64:7e:01: 74:1e:e2:b1:d5:13:53:ed:07:92:8e:6a:75:1c:42: 8d:00:a2:a1:63:cb:54:83:a9:ca:d5:08:77:44:88: a5:ad:e5:2d:36:b8:25:bf:25:7d:88:cd:f3:b5:48: 20:e6:15:c1:95:17:3c:a4:a8:ef:f7:5b:76:7c:32: 73:08:c4:a3:50:a5:c2:54:f3:7a:99:e1:b4:13:3b: 6b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:BE:A2:DB:04:D1:0C:09:8E:7A:94:66:CD:14:B5:7A:FF:CD:4F:8A X509v3 Authority Key Identifier: keyid:56:E3:35:3D:5F:42:3A:D4:27:1C:32:61:CA:A5:43:14:05:30:BD:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VuM1PV9COtQnHDJhyqVDFAUwvds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/Z76i2wTRDAmOepRmzRS1ev_NT4o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/VuM1PV9COtQnHDJhyqVDFAUwvds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.67.208.0/20 Signature Algorithm: sha256WithRSAEncryption 9a:5e:c9:c2:63:b7:40:59:ce:be:1d:cb:75:40:1b:95:d3:84: 05:d1:7d:12:16:7f:c6:b6:0a:7c:bc:f7:7d:f2:82:26:03:70: 1a:7d:35:ca:7c:87:d6:5f:61:aa:57:38:17:d9:c4:63:94:60: 73:c4:16:b1:eb:9e:e2:bf:7b:50:f7:e5:f0:89:36:12:28:25: 38:d8:5a:b2:f5:78:29:52:e7:3a:4a:0e:41:25:1b:6c:2c:24: 41:74:b3:c4:9c:8e:d8:ce:9f:5f:84:66:59:51:ac:a9:df:1e: 02:29:00:df:72:69:01:1c:06:2c:9d:bb:31:51:e1:b8:51:86: 9a:7c:e5:f3:5f:bc:4e:df:fc:8c:e5:c6:bb:3c:b6:4d:2c:01: 69:b5:5d:ad:ef:ea:8f:92:dc:10:db:c0:66:29:ac:ee:a7:8e: 02:cf:2e:fd:98:23:ab:7e:b1:64:79:e1:95:b9:7b:e7:6b:4e: 6b:28:cc:bf:5c:f5:9c:ee:ec:dc:22:b4:a4:34:18:27:cf:a1: 82:e7:70:5a:a6:e2:41:2b:8a:8e:ac:c3:54:7b:43:7b:0a:f4: 45:4f:22:34:21:f8:46:2e:c2:61:62:a1:da:ff:07:0f:d6:70: d8:c6:56:46:31:9a:f1:83:88:1f:ab:13:cd:41:8d:2f:ea:34: 46:30:82:43 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NVEhnGdTSyXC5e41/VCtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2ZTMzNTNkNWY0MjNhZDQyNzFjMzI2MWNhYTU0MzE0MDUz MGJkZGIwHhcNMjYwMTAxMDYxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2N2JlYTJkYjA0ZDEwYzA5OGU3YTk0NjZjZDE0YjU3YWZmY2Q0ZjhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkuBYDwudS80BmbZKbaxBMU2Opbjj Y2PmCpurl80FAPq24idSGvef7vT8hi08+G9Ccu92cwVnUyE0ItsA7r1C18Y+poAp fVlrBerb13aEj4MmmVjoDySlPrymlfePwjUhCmA6sImcjhFI/daR91zMnDHhHE0b OnIzmqmccX9Ylbm6FzjclbNSYPVtzgHlAdjh1bFc19ZTQ+tceZjkKp/BwjBA7cvL JnF0jDltuwm7/kJkfgF0HuKx1RNT7QeSjmp1HEKNAKKhY8tUg6nK1Qh3RIilreUt NrglvyV9iM3ztUgg5hXBlRc8pKjv91t2fDJzCMSjUKXCVPN6meG0EztrsQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGe+otsE0QwJjnqUZs0UtXr/zU+KMB8GA1UdIwQY MBaAFFbjNT1fQjrUJxwyYcqlQxQFML3bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnVNMVBWOUNPdFFuSERKaHlxVkRGQVV3dmRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS82MTA5ZDYtMGE4YS00YmY2LWEwZTIt ZTUyZGEzYjg2NzU0LzEvWjc2aTJ3VFJEQW1PZXBSbXpSUzFldl9OVDRvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS82MTA5ZDYtMGE4YS00YmY2LWEwZTItZTUyZGEzYjg2NzU0 LzEvVnVNMVBWOUNPdFFuSERKaHlxVkRGQVV3dmRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEUEPQMA0G CSqGSIb3DQEBCwUAA4IBAQCaXsnCY7dAWc6+Hct1QBuV04QF0X0SFn/Gtgp8vPd9 8oImA3AafTXKfIfWX2GqVzgX2cRjlGBzxBax657iv3tQ9+XwiTYSKCU42Fqy9Xgp Uuc6Sg5BJRtsLCRBdLPEnI7Yzp9fhGZZUayp3x4CKQDfcmkBHAYsnbsxUeG4UYaa fOXzX7xO3/yM5ca7PLZNLAFptV2t7+qPktwQ28BmKazup44Czy79mCOrfrFkeeGV uXvna05rKMy/XPWc7uzcIrSkNBgnz6GC53BapuJBK4qOrMNUe0N7CvRFTyI0IfhG LsJhYqHa/wcP1nDYxlZGMZrxg4gfqxPNQY0v6jRGMIJD -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:53 2026 by rpki-client