This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/zrpx2qONMlsehUMBf0ui700KaQs.roa File: zrpx2qONMlsehUMBf0ui700KaQs.roa (raw, json) Hash identifier: rQCz92YTBiLjMsPmrkI3y1kzmH/U/hqwcfTTPZ9f40I= Subject key identifier: CE:BA:71:DA:A3:8D:32:5B:1E:85:43:01:7F:4B:A2:EF:4D:0A:69:0B Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f Certificate serial: 019B7C12B8F083B4D9FC1B893B2684F49EEA Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/zrpx2qONMlsehUMBf0ui700KaQs.roa Signing time: Fri 02 Jan 2026 00:19:20 +0000 ROA not before: Fri 02 Jan 2026 00:19:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203236 IP address blocks: 2a0a:280:1500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.mft rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 12:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:b8:f0:83:b4:d9:fc:1b:89:3b:26:84:f4:9e:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f Validity Not Before: Jan 2 00:19:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ceba71daa38d325b1e8543017f4ba2ef4d0a690b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:70:bc:76:98:e6:25:67:01:0e:dc:8a:21:d1: 31:46:db:06:09:8b:77:8e:c0:80:37:00:3e:de:7f: 0e:78:99:4b:3c:34:8e:44:91:1e:58:6d:32:64:c1: 1c:64:1e:76:53:ec:0d:42:b1:74:48:bc:f5:43:2d: da:ad:ab:f3:5b:87:37:0a:8b:42:5e:da:9a:7a:d8: b4:7a:ab:5b:c1:d1:88:6b:0c:d7:8f:5c:b4:a0:dc: f2:78:e2:e8:23:3c:b7:1c:f0:0e:5e:b2:2c:aa:af: 7e:6e:33:0f:03:62:ae:8f:c3:3e:21:84:fc:66:b2: 7a:1d:a6:09:cf:c9:92:d2:10:a4:18:68:d0:99:53: 23:0b:67:02:81:aa:db:1e:12:be:5e:2f:e7:2c:b4: 22:9c:88:06:36:f4:c7:41:43:8e:e4:1f:48:c3:3f: 6a:0d:67:eb:b5:c6:e0:c1:75:fd:08:a2:10:d2:4d: 58:65:ed:7a:13:e9:31:c8:a4:cf:b6:02:45:06:c3: e6:9e:e8:73:a2:8e:9e:56:84:f1:bf:4a:87:13:81: 35:9c:ee:2b:e2:47:44:8f:4a:9b:ff:48:6b:aa:c7: a3:2b:ff:5e:ae:3a:9a:2f:97:f1:98:25:94:50:ce: 5f:cb:3b:28:f4:7f:a1:28:89:0c:a4:c9:32:17:13: c7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:BA:71:DA:A3:8D:32:5B:1E:85:43:01:7F:4B:A2:EF:4D:0A:69:0B X509v3 Authority Key Identifier: keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/zrpx2qONMlsehUMBf0ui700KaQs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:280:1500::/40 Signature Algorithm: sha256WithRSAEncryption 19:79:15:c0:39:d0:b4:1f:9d:38:d8:af:72:e8:e5:1a:ee:ef: 7d:38:1c:74:94:39:f6:12:88:df:27:83:f9:d8:89:a1:05:60: 38:72:4a:28:f0:98:ca:0b:46:7a:ae:88:f9:52:4f:0d:ba:e2: 11:d4:8b:da:aa:64:bd:14:cc:68:4e:9d:0f:21:2e:a5:39:64: 19:d6:1e:50:c8:d7:c7:93:1c:4e:a2:5b:9c:83:32:92:24:59: cd:56:96:da:34:fb:50:12:0a:c5:34:53:43:88:b4:26:af:1c: 38:12:14:15:e4:82:c6:b5:f3:c2:f9:96:87:88:2a:fd:c2:a0: 4c:62:25:61:d0:d2:2e:72:61:1d:81:b9:35:45:00:2d:4a:15: 6d:ea:a8:5c:20:ae:96:2a:da:5f:bf:6e:2d:29:da:03:8c:92: 20:23:8f:a9:5b:bb:81:07:8f:f9:56:2b:68:c9:3e:75:be:c3: 24:cb:50:ab:da:23:ef:79:77:30:e7:2d:31:0b:e7:94:35:ee: 8a:2b:c0:16:29:5c:e0:eb:43:1f:60:ae:b4:f7:1e:d8:43:a9: 8a:ba:57:14:ed:81:05:1e:78:1f:d6:05:c4:cd:ec:5c:6d:c7: 8c:29:6d:4d:56:cd:95:02:ca:9b:c4:cd:d6:53:52:a5:e8:eb: 1b:db:2b:58 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt8Erjwg7TZ/BuJOyaE9J7qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiOWYyMWJhMDRlNWUzMDc3YjM5MWUzZDQ4ZmY1YjBhNTBi MzM2OWYwHhcNMjYwMTAyMDAxOTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZWJhNzFkYWEzOGQzMjViMWU4NTQzMDE3ZjRiYTJlZjRkMGE2OTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyHC8dpjmJWcBDtyKIdExRtsGCYt3 jsCANwA+3n8OeJlLPDSORJEeWG0yZMEcZB52U+wNQrF0SLz1Qy3aravzW4c3CotC Xtqaeti0eqtbwdGIawzXj1y0oNzyeOLoIzy3HPAOXrIsqq9+bjMPA2Kuj8M+IYT8 ZrJ6HaYJz8mS0hCkGGjQmVMjC2cCgarbHhK+Xi/nLLQinIgGNvTHQUOO5B9Iwz9q DWfrtcbgwXX9CKIQ0k1YZe16E+kxyKTPtgJFBsPmnuhzoo6eVoTxv0qHE4E1nO4r 4kdEj0qb/0hrqsejK/9erjqaL5fxmCWUUM5fyzso9H+hKIkMpMkyFxPHbwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFM66cdqjjTJbHoVDAX9Lou9NCmkLMB8GA1UdIwQY MBaAFBufIboE5eMHezkePUj/WwpQszafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUt ZjUxYzVmYjNkZjlhLzEvenJweDJxT05NbHNlaFVNQmYwdWk3MDBLYVFzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUtZjUxYzVmYjNkZjlh LzEvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgoCgBUw DQYJKoZIhvcNAQELBQADggEBABl5FcA50LQfnTjYr3Lo5Rru7304HHSUOfYSiN8n g/nYiaEFYDhySijwmMoLRnquiPlSTw264hHUi9qqZL0UzGhOnQ8hLqU5ZBnWHlDI 18eTHE6iW5yDMpIkWc1Wlto0+1ASCsU0U0OItCavHDgSFBXkgsa188L5loeIKv3C oExiJWHQ0i5yYR2BuTVFAC1KFW3qqFwgrpYq2l+/bi0p2gOMkiAjj6lbu4EHj/lW K2jJPnW+wyTLUKvaI+95dzDnLTEL55Q17oorwBYpXODrQx9grrT3HthDqYq6VxTt gQUeeB/WBcTN7Fxtx4wpbU1WzZUCypvEzdZTUqXo6xvbK1g= -----END CERTIFICATE-----Generated at Wed Jan 21 17:34:12 2026 by rpki-client