This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/aa443e-2d40-4dfc-ac4d-4509d228fc6f/1/VzaJRpkfGV8ksiy395nPBGdmpqo.roa File: VzaJRpkfGV8ksiy395nPBGdmpqo.roa (raw, json) Hash identifier: B/HImlbnA+P1Pd7oVL6uWttamYm0OW3WVOv4Cpsd9x4= Subject key identifier: 57:36:89:46:99:1F:19:5F:24:B2:2C:B7:F7:99:CF:04:67:66:A6:AA Certificate issuer: /CN=786ee09fe5437ccd0bcbecfaa970de31ec9d86ed Certificate serial: 019B77C6C392AC787BD4C551A6F7DE6CAAA0 Authority key identifier: 78:6E:E0:9F:E5:43:7C:CD:0B:CB:EC:FA:A9:70:DE:31:EC:9D:86:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eG7gn-VDfM0Ly-z6qXDeMeydhu0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa443e-2d40-4dfc-ac4d-4509d228fc6f/1/VzaJRpkfGV8ksiy395nPBGdmpqo.roa Signing time: Thu 01 Jan 2026 04:17:53 +0000 ROA not before: Thu 01 Jan 2026 04:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29608 IP address blocks: 2001:678:938::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa443e-2d40-4dfc-ac4d-4509d228fc6f/1/eG7gn-VDfM0Ly-z6qXDeMeydhu0.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/aa443e-2d40-4dfc-ac4d-4509d228fc6f/1/eG7gn-VDfM0Ly-z6qXDeMeydhu0.mft rsync://rpki.ripe.net/repository/DEFAULT/eG7gn-VDfM0Ly-z6qXDeMeydhu0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:c3:92:ac:78:7b:d4:c5:51:a6:f7:de:6c:aa:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=786ee09fe5437ccd0bcbecfaa970de31ec9d86ed Validity Not Before: Jan 1 04:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=57368946991f195f24b22cb7f799cf046766a6aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:23:83:79:77:8e:70:e1:3c:f9:39:05:5a:2c: 2f:62:77:91:3d:fe:92:7d:2b:51:e9:97:10:c5:1b: a9:b1:d2:7f:13:be:7f:c2:7c:47:cb:39:05:54:00: 64:79:06:98:17:1e:64:05:e8:51:11:4e:ef:ff:ae: c8:c9:79:05:57:46:3d:cd:4b:d9:af:b9:b2:20:4a: 16:aa:d8:d1:a0:8b:fb:ae:1e:53:f9:d2:54:27:1e: 55:c9:bc:0e:3c:fb:8c:a1:2a:ea:5b:46:c5:7b:7f: 91:26:b0:5b:9e:26:1b:c4:37:63:60:26:dc:bd:31: 42:30:51:5f:03:f6:eb:37:ad:e5:c6:ac:f0:66:c6: ca:81:ac:7c:40:bb:f5:c8:02:1b:8e:28:d5:cc:61: 42:b7:72:f0:73:c7:d4:7f:b7:02:76:ee:5b:ed:df: 4d:d9:97:00:19:4c:ce:af:51:61:0c:8c:86:f3:79: 00:76:be:ef:4e:18:9f:b6:ac:be:49:c0:a5:1e:d2: c5:f8:14:1b:94:fb:b6:68:cc:8a:10:8a:07:50:de: a0:2a:a7:1d:6f:9c:5b:b7:14:70:35:01:b2:66:36: 71:27:66:31:5a:1a:2e:48:db:ed:c5:cc:86:a7:04: 6f:99:3a:d1:ed:ed:4f:0a:db:72:0c:ea:d3:16:90: 49:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:36:89:46:99:1F:19:5F:24:B2:2C:B7:F7:99:CF:04:67:66:A6:AA X509v3 Authority Key Identifier: keyid:78:6E:E0:9F:E5:43:7C:CD:0B:CB:EC:FA:A9:70:DE:31:EC:9D:86:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eG7gn-VDfM0Ly-z6qXDeMeydhu0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa443e-2d40-4dfc-ac4d-4509d228fc6f/1/VzaJRpkfGV8ksiy395nPBGdmpqo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa443e-2d40-4dfc-ac4d-4509d228fc6f/1/eG7gn-VDfM0Ly-z6qXDeMeydhu0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:938::/48 Signature Algorithm: sha256WithRSAEncryption 1f:15:da:3e:d6:a6:ff:e2:12:c9:0b:58:8d:1c:ae:45:ec:3d: 1e:6d:6f:3d:32:a7:1a:b0:66:73:c7:ea:20:17:8a:33:44:9c: 90:d6:9c:5a:84:8e:31:70:4b:09:9e:e2:98:19:e5:c3:08:fd: 7c:7c:86:49:95:9b:b8:e8:9b:b0:c4:95:e7:bb:79:b7:89:4f: 9b:fc:d5:23:8e:7f:00:ca:ac:2d:ed:28:c1:eb:66:67:04:f9: 66:7c:a7:79:4e:c0:96:17:36:6e:ba:3e:2c:ed:13:37:86:bd: 4f:68:1a:1c:92:a1:6c:17:02:95:5d:e4:ee:02:38:de:8f:8f: 8a:25:60:ab:78:16:19:99:47:4c:f3:6f:26:3b:0e:79:74:25: ef:07:69:92:22:21:86:14:33:21:7d:8a:c2:a4:35:53:4f:2e: 7d:56:38:4a:53:4b:5b:a1:42:0d:ad:24:e4:6d:61:f2:82:fd: 62:f9:b6:d7:a6:ec:e8:a5:3c:5f:24:a4:c0:34:db:34:9e:87: 7f:b2:30:7f:9c:9f:ee:20:be:17:6b:f7:9f:e8:5a:ab:5b:a3: b8:77:4b:e6:3e:00:9a:f9:03:ff:fe:d2:96:a0:95:9e:ea:45: c3:8f:2e:4c:9b:80:43:a7:5c:b4:6e:62:31:51:43:d6:69:da: 09:32:e2:ac -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3xsOSrHh71MVRpvfebKqgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc4NmVlMDlmZTU0MzdjY2QwYmNiZWNmYWE5NzBkZTMxZWM5 ZDg2ZWQwHhcNMjYwMTAxMDQxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NzM2ODk0Njk5MWYxOTVmMjRiMjJjYjdmNzk5Y2YwNDY3NjZhNmFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyyODeXeOcOE8+TkFWiwvYneRPf6S fStR6ZcQxRupsdJ/E75/wnxHyzkFVABkeQaYFx5kBehREU7v/67IyXkFV0Y9zUvZ r7myIEoWqtjRoIv7rh5T+dJUJx5VybwOPPuMoSrqW0bFe3+RJrBbniYbxDdjYCbc vTFCMFFfA/brN63lxqzwZsbKgax8QLv1yAIbjijVzGFCt3Lwc8fUf7cCdu5b7d9N 2ZcAGUzOr1FhDIyG83kAdr7vThiftqy+ScClHtLF+BQblPu2aMyKEIoHUN6gKqcd b5xbtxRwNQGyZjZxJ2YxWhouSNvtxcyGpwRvmTrR7e1PCttyDOrTFpBJVQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFc2iUaZHxlfJLIst/eZzwRnZqaqMB8GA1UdIwQY MBaAFHhu4J/lQ3zNC8vs+qlw3jHsnYbtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZUc3Z24tVkRmTTBMeS16NnFYRGVNZXlkaHUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy9hYTQ0M2UtMmQ0MC00ZGZjLWFjNGQt NDUwOWQyMjhmYzZmLzEvVnphSlJwa2ZHVjhrc2l5Mzk1blBCR2RtcHFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy9hYTQ0M2UtMmQ0MC00ZGZjLWFjNGQtNDUwOWQyMjhmYzZm LzEvZUc3Z24tVkRmTTBMeS16NnFYRGVNZXlkaHUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAk4 MA0GCSqGSIb3DQEBCwUAA4IBAQAfFdo+1qb/4hLJC1iNHK5F7D0ebW89MqcasGZz x+ogF4ozRJyQ1pxahI4xcEsJnuKYGeXDCP18fIZJlZu46JuwxJXnu3m3iU+b/NUj jn8Ayqwt7SjB62ZnBPlmfKd5TsCWFzZuuj4s7RM3hr1PaBockqFsFwKVXeTuAjje j4+KJWCreBYZmUdM828mOw55dCXvB2mSIiGGFDMhfYrCpDVTTy59VjhKU0tboUIN rSTkbWHygv1i+bbXpuzopTxfJKTANNs0nod/sjB/nJ/uIL4Xa/ef6FqrW6O4d0vm PgCa+QP//tKWoJWe6kXDjy5Mm4BDp1y0bmIxUUPWadoJMuKs -----END CERTIFICATE-----Generated at Mon Feb 9 21:01:38 2026 by rpki-client