This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/f532fd-91e2-4fb6-be87-480feb92d718/1/iup8bZJXQWzi6WIn8KegueZOLKE.roa File: iup8bZJXQWzi6WIn8KegueZOLKE.roa (raw, json) Hash identifier: zSYxeBh1XdgerWZy0gplpGx/R0toVcfaeIhO/MDyw5s= Subject key identifier: 8A:EA:7C:6D:92:57:41:6C:E2:E9:62:27:F0:A7:A0:B9:E6:4E:2C:A1 Certificate issuer: /CN=080702932802c2743d335f67d47a4238c3324533 Certificate serial: 019B77595F14CD52181395DB1BBE35B2F90C Authority key identifier: 08:07:02:93:28:02:C2:74:3D:33:5F:67:D4:7A:42:38:C3:32:45:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAcCkygCwnQ9M19n1HpCOMMyRTM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/f532fd-91e2-4fb6-be87-480feb92d718/1/iup8bZJXQWzi6WIn8KegueZOLKE.roa Signing time: Thu 01 Jan 2026 02:18:24 +0000 ROA not before: Thu 01 Jan 2026 02:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29670 IP address blocks: 2001:67c:fb8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/f532fd-91e2-4fb6-be87-480feb92d718/1/CAcCkygCwnQ9M19n1HpCOMMyRTM.crl rsync://rpki.ripe.net/repository/DEFAULT/33/f532fd-91e2-4fb6-be87-480feb92d718/1/CAcCkygCwnQ9M19n1HpCOMMyRTM.mft rsync://rpki.ripe.net/repository/DEFAULT/CAcCkygCwnQ9M19n1HpCOMMyRTM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:5f:14:cd:52:18:13:95:db:1b:be:35:b2:f9:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=080702932802c2743d335f67d47a4238c3324533 Validity Not Before: Jan 1 02:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8aea7c6d9257416ce2e96227f0a7a0b9e64e2ca1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:11:f5:43:b3:5c:92:f8:98:d1:67:b9:31:d1: 18:69:b5:50:0a:63:33:5f:64:d9:30:1f:62:d6:ed: e4:14:67:92:f4:58:10:f9:b2:3b:91:92:9b:86:bf: fa:41:9e:e3:12:18:8a:a9:32:f1:6d:7a:68:99:4b: af:e0:ab:d4:c5:59:41:43:1d:66:76:c0:7c:61:53: dc:54:8c:c3:ef:e7:85:e0:b0:ab:f4:34:4a:90:4c: dc:42:91:77:68:dc:c5:36:c3:76:b9:16:fb:a5:05: e7:d6:04:3b:61:6a:db:7e:52:4c:74:e5:44:40:5c: 0b:7b:20:aa:a0:a9:a0:71:94:21:6c:7e:c4:1b:22: 49:1e:d4:07:60:66:50:86:8d:4d:9d:13:7e:d9:04: 25:59:a8:34:5f:f0:13:ff:74:bb:aa:d1:ae:43:e2: 0b:89:79:dd:a3:a4:5b:47:d4:13:5b:c7:f3:5a:c6: 84:61:06:91:cd:3d:fb:86:bf:d5:02:9b:23:1c:ee: 27:e6:e7:e4:4f:91:ad:b0:e6:26:5d:30:a8:f2:1c: 0b:74:ce:80:3b:cf:81:00:6e:76:3a:1a:2a:0f:a4: 35:9d:8f:91:a0:90:97:07:31:af:bc:1e:35:b4:e2: 86:3d:c5:4e:08:4d:a1:b4:f7:05:53:82:f5:e8:70: a5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:EA:7C:6D:92:57:41:6C:E2:E9:62:27:F0:A7:A0:B9:E6:4E:2C:A1 X509v3 Authority Key Identifier: keyid:08:07:02:93:28:02:C2:74:3D:33:5F:67:D4:7A:42:38:C3:32:45:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAcCkygCwnQ9M19n1HpCOMMyRTM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f532fd-91e2-4fb6-be87-480feb92d718/1/iup8bZJXQWzi6WIn8KegueZOLKE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f532fd-91e2-4fb6-be87-480feb92d718/1/CAcCkygCwnQ9M19n1HpCOMMyRTM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:fb8::/48 Signature Algorithm: sha256WithRSAEncryption 96:36:e2:d1:96:92:0d:77:d2:8d:7d:c1:bb:b4:d7:a0:5a:ac: 2d:98:1a:aa:f9:e1:0c:c5:c9:87:d0:c4:4e:9e:6d:8a:7a:73: b2:4f:67:12:0a:80:c2:7a:53:be:6c:f6:99:ef:fc:3d:2a:a8: 55:7b:7c:d6:12:32:a4:f1:36:02:14:da:28:d5:b5:a8:05:44: cb:31:a1:51:5e:11:26:05:ff:16:c9:c5:4f:f8:93:6d:f9:1c: 02:ff:f0:46:10:5b:16:ba:3a:00:c0:5d:4b:3c:fa:9f:81:3a: 2a:31:31:06:ce:86:2d:da:60:a4:bb:7f:12:91:8e:73:aa:f2: 24:65:f2:85:fd:85:0d:42:9b:0c:de:87:4d:d9:a3:a4:f3:55: b4:bc:d5:e1:13:73:ae:4a:08:ef:80:64:d6:19:8f:84:ed:44: 0e:50:9a:7f:0f:b2:5c:c1:f2:15:36:66:5d:56:62:0a:be:d3: c4:c0:83:93:67:28:a1:a0:7f:75:97:65:62:eb:c3:8a:bc:c7: e3:71:cc:84:a6:9d:da:9a:34:7d:14:e1:9d:fd:6e:13:41:54: 1c:88:31:af:e1:3a:c0:4e:0f:40:af:2f:79:c9:4f:8c:b8:99: 89:8f:cb:5a:41:8b:ea:98:f4:f9:b2:6c:d9:31:e8:41:68:26: 62:5f:cb:a9 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3WV8UzVIYE5XbG741svkMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MDcwMjkzMjgwMmMyNzQzZDMzNWY2N2Q0N2E0MjM4YzMz MjQ1MzMwHhcNMjYwMTAxMDIxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YWVhN2M2ZDkyNTc0MTZjZTJlOTYyMjdmMGE3YTBiOWU2NGUyY2ExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1xH1Q7NckviY0We5MdEYabVQCmMz X2TZMB9i1u3kFGeS9FgQ+bI7kZKbhr/6QZ7jEhiKqTLxbXpomUuv4KvUxVlBQx1m dsB8YVPcVIzD7+eF4LCr9DRKkEzcQpF3aNzFNsN2uRb7pQXn1gQ7YWrbflJMdOVE QFwLeyCqoKmgcZQhbH7EGyJJHtQHYGZQho1NnRN+2QQlWag0X/AT/3S7qtGuQ+IL iXndo6RbR9QTW8fzWsaEYQaRzT37hr/VApsjHO4n5ufkT5GtsOYmXTCo8hwLdM6A O8+BAG52OhoqD6Q1nY+RoJCXBzGvvB41tOKGPcVOCE2htPcFU4L16HClhwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFIrqfG2SV0Fs4uliJ/CnoLnmTiyhMB8GA1UdIwQY MBaAFAgHApMoAsJ0PTNfZ9R6QjjDMkUzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0FjQ2t5Z0N3blE5TTE5bjFIcENPTU15UlRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9mNTMyZmQtOTFlMi00ZmI2LWJlODct NDgwZmViOTJkNzE4LzEvaXVwOGJaSlhRV3ppNldJbjhLZWd1ZVpPTEtFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy9mNTMyZmQtOTFlMi00ZmI2LWJlODctNDgwZmViOTJkNzE4 LzEvQ0FjQ2t5Z0N3blE5TTE5bjFIcENPTU15UlRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA+4 MA0GCSqGSIb3DQEBCwUAA4IBAQCWNuLRlpINd9KNfcG7tNegWqwtmBqq+eEMxcmH 0MROnm2KenOyT2cSCoDCelO+bPaZ7/w9KqhVe3zWEjKk8TYCFNoo1bWoBUTLMaFR XhEmBf8WycVP+JNt+RwC//BGEFsWujoAwF1LPPqfgToqMTEGzoYt2mCku38SkY5z qvIkZfKF/YUNQpsM3odN2aOk81W0vNXhE3OuSgjvgGTWGY+E7UQOUJp/D7JcwfIV NmZdVmIKvtPEwIOTZyihoH91l2Vi68OKvMfjccyEpp3amjR9FOGd/W4TQVQciDGv 4TrATg9Ary95yU+MuJmJj8taQYvqmPT5smzZMehBaCZiX8up -----END CERTIFICATE-----Generated at Mon Feb 2 08:06:40 2026 by rpki-client