This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/zbmWubyzl2EK5tZuziIPpCU66EI.roa File: zbmWubyzl2EK5tZuziIPpCU66EI.roa (raw, json) Hash identifier: Q9cYJrDu/EdmNBSDtf/kkzdyI8mX+vHv2qKnMmI+k5A= Subject key identifier: CD:B9:96:B9:BC:B3:97:61:0A:E6:D6:6E:CE:22:0F:A4:25:3A:E8:42 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E392A8298D46D14B8B11685E17216C9 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/zbmWubyzl2EK5tZuziIPpCU66EI.roa Signing time: Fri 02 Jan 2026 10:20:34 +0000 ROA not before: Fri 02 Jan 2026 10:20:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50555 IP address blocks: 2a0c:b641:2e0::/44 maxlen: 128 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 14:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:2a:82:98:d4:6d:14:b8:b1:16:85:e1:72:16:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cdb996b9bcb397610ae6d66ece220fa4253ae842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1c:3a:d8:61:2c:d2:39:1b:e9:57:5f:91:38: f1:8d:83:2d:3b:16:c0:ca:cd:21:0a:54:9e:b8:21: 8b:8d:c5:5e:33:8e:6c:dc:c3:dc:a6:20:5d:71:d6: 8c:a4:04:fb:54:f0:66:c6:c9:fc:72:2f:a4:4e:ce: 06:5e:f6:e5:b6:ca:ec:56:d5:e4:7b:ba:1c:c5:35: a9:b5:e1:ff:7d:90:08:d3:39:d6:bc:b2:30:ad:35: dc:cc:d9:dd:d7:30:3b:0c:d0:e5:22:f9:1b:50:86: 34:1b:15:97:8f:8f:28:80:9a:db:69:1a:a6:09:d2: 07:29:e1:58:a7:eb:8e:45:f7:56:d7:7d:8a:b1:53: 34:9b:0f:ea:e0:b4:bd:9a:4f:b2:27:ca:75:f3:54: c5:63:41:6f:3e:e0:54:19:74:f3:1b:69:fe:24:59: 1f:b9:3c:77:9d:bb:a5:80:32:c3:d2:82:64:04:ca: 27:89:f4:2b:d1:ba:f4:1a:55:5b:d0:7e:90:72:42: ef:58:46:e1:f5:1f:30:f0:1b:16:e0:58:cf:d8:2c: fc:d3:a7:de:89:59:12:c5:f7:17:13:4a:af:0e:14: 0f:0b:7c:18:56:18:5e:e9:55:80:b8:05:14:5c:67: 10:af:71:99:02:06:07:62:8f:3d:89:a1:06:b2:79: ff:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B9:96:B9:BC:B3:97:61:0A:E6:D6:6E:CE:22:0F:A4:25:3A:E8:42 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/zbmWubyzl2EK5tZuziIPpCU66EI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:2e0::/44 Signature Algorithm: sha256WithRSAEncryption 1a:bd:a0:a9:ed:ab:04:d1:b4:3d:cd:08:13:59:01:02:3a:54: de:52:ba:3e:8d:c7:ca:1c:ff:29:74:4b:23:cb:5b:77:c7:f7: d6:0b:97:7f:e1:5b:75:82:70:df:45:dc:0a:eb:0c:06:01:c1: 02:10:ec:fc:60:d0:0e:f9:4b:1b:95:23:dc:20:03:93:21:f7: 5f:4b:18:9d:56:80:73:d8:c1:e3:5f:c3:77:ca:24:51:f9:93: a2:64:66:36:71:c1:1e:c4:d2:56:5e:4c:a0:fc:a5:87:fe:d4: f4:73:93:c6:cf:7b:49:a7:24:b4:7a:21:fd:c3:a4:bf:d3:78: 4e:a4:77:15:bc:ff:93:b7:db:d0:6b:c3:34:a8:0b:dd:db:5e: 5e:4a:4f:a6:87:0c:0d:6f:4c:0c:9c:a6:2d:26:88:23:a5:85: 9f:33:e5:bb:6a:40:36:6e:62:40:19:78:12:6d:16:eb:63:fe: 85:26:a7:63:6f:4f:7c:c5:d6:7c:5a:bf:41:d1:1e:4f:ae:2b: fc:ec:46:f8:fc:8a:6d:6c:f6:ca:70:07:5c:41:94:71:b8:df: 6e:1a:12:37:61:a2:a3:d7:f5:df:bc:0b:ce:5e:a3:b7:8e:1f: 35:e8:c2:af:0c:ae:25:8e:38:61:a3:a4:36:a3:b4:e1:10:83: 4b:0c:0c:75 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OSqCmNRtFLixFoXhchbJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZGI5OTZiOWJjYjM5NzYxMGFlNmQ2NmVjZTIyMGZhNDI1M2FlODQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBw62GEs0jkb6VdfkTjxjYMtOxbA ys0hClSeuCGLjcVeM45s3MPcpiBdcdaMpAT7VPBmxsn8ci+kTs4GXvbltsrsVtXk e7ocxTWpteH/fZAI0znWvLIwrTXczNnd1zA7DNDlIvkbUIY0GxWXj48ogJrbaRqm CdIHKeFYp+uORfdW132KsVM0mw/q4LS9mk+yJ8p181TFY0FvPuBUGXTzG2n+JFkf uTx3nbulgDLD0oJkBMonifQr0br0GlVb0H6QckLvWEbh9R8w8BsW4FjP2Cz806fe iVkSxfcXE0qvDhQPC3wYVhhe6VWAuAUUXGcQr3GZAgYHYo89iaEGsnn/LQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFM25lrm8s5dhCubWbs4iD6QlOuhCMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvemJtV3VieXpsMkVLNXRadXppSVBwQ1U2NkVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQLg MA0GCSqGSIb3DQEBCwUAA4IBAQAavaCp7asE0bQ9zQgTWQECOlTeUro+jcfKHP8p dEsjy1t3x/fWC5d/4Vt1gnDfRdwK6wwGAcECEOz8YNAO+UsblSPcIAOTIfdfSxid VoBz2MHjX8N3yiRR+ZOiZGY2ccEexNJWXkyg/KWH/tT0c5PGz3tJpyS0eiH9w6S/ 03hOpHcVvP+Tt9vQa8M0qAvd215eSk+mhwwNb0wMnKYtJogjpYWfM+W7akA2bmJA GXgSbRbrY/6FJqdjb098xdZ8Wr9B0R5Priv87Eb4/IptbPbKcAdcQZRxuN9uGhI3 YaKj1/XfvAvOXqO3jh816MKvDK4ljjhho6Q2o7ThEINLDAx1 -----END CERTIFICATE-----Generated at Tue Jan 6 21:48:23 2026 by rpki-client