This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zrF929ysSxm5RhwdvXZ2NhYe4ao.roa File: zrF929ysSxm5RhwdvXZ2NhYe4ao.roa (raw, json) Hash identifier: 2kaNo3KRY2dCErxKXJlOkxhNT+dcoSw2aYwZjwwn504= Subject key identifier: CE:B1:7D:DB:DC:AC:4B:19:B9:46:1C:1D:BD:76:76:36:16:1E:E1:AA Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5CAB448D74CCEEC27281E6EC1D2859 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zrF929ysSxm5RhwdvXZ2NhYe4ao.roa Signing time: Fri 02 Jan 2026 06:19:43 +0000 ROA not before: Fri 02 Jan 2026 06:19:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39526 IP address blocks: 2a10:2f00:152::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:ab:44:8d:74:cc:ee:c2:72:81:e6:ec:1d:28:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:19:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ceb17ddbdcac4b19b9461c1dbd767636161ee1aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:79:92:30:8c:92:a0:a1:3c:cf:81:62:ce:b0: 3b:0f:f8:86:4a:78:83:ef:32:4b:d2:12:0b:8a:ec: 1d:1c:94:92:66:a2:fa:bf:3a:d3:ae:39:94:25:64: c2:2a:b7:3f:4d:ad:e5:b5:34:a5:c3:46:b6:c9:29: ec:79:0b:76:76:71:d7:e4:8e:8f:f0:c0:6d:d3:22: 4a:d5:a7:83:2a:8d:cb:7f:8e:8d:f4:c0:58:d7:8c: 93:2e:bc:f3:5d:c9:ba:f2:52:8a:a0:88:d4:6c:bd: 7c:3a:b6:85:fa:d2:83:3d:cc:83:3f:75:04:4b:80: 65:97:7c:0f:d1:bd:80:a2:34:ba:12:4d:4f:b2:1b: 85:1c:99:5e:6c:b6:35:26:e4:82:85:c3:1a:62:09: 2e:1a:4e:82:28:44:8d:25:73:55:dd:24:f8:f1:6e: ea:87:7f:54:66:0d:56:e5:7b:cc:1f:80:32:8f:6d: 61:84:df:f9:4b:80:5c:5f:ff:d9:41:7c:4b:34:68: e5:5f:9a:3c:f1:aa:ec:bf:99:40:0d:a0:31:fb:97: 49:ed:75:22:b7:d7:51:a1:63:a3:90:b3:6c:f1:fb: be:0a:44:20:0e:8e:fa:a9:9a:c8:87:5a:40:61:ac: ed:04:3c:1c:9b:35:2b:04:1c:12:1c:45:2e:fc:62: bc:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B1:7D:DB:DC:AC:4B:19:B9:46:1C:1D:BD:76:76:36:16:1E:E1:AA X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zrF929ysSxm5RhwdvXZ2NhYe4ao.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:2f00:152::/48 Signature Algorithm: sha256WithRSAEncryption 54:a1:c9:f3:06:46:a9:42:9a:69:fe:eb:fd:e8:66:0c:20:4e: 71:ce:f4:1b:be:0f:a7:83:63:6a:f6:ab:1b:e0:98:3e:b0:f3: 06:6f:5b:05:41:54:ee:aa:b1:99:d7:9d:5d:e3:26:17:26:c7: 4a:46:13:09:9d:91:09:c5:b4:d8:d4:b5:7b:43:66:38:03:c4: ce:aa:17:a5:77:2e:cd:b9:23:e8:ad:4a:20:f9:74:18:05:65: 3c:10:78:02:e2:58:fc:12:e8:db:60:8a:f3:62:df:d6:94:c5: 85:a1:3e:d2:97:5b:d1:95:01:09:ae:32:5d:c2:86:02:d3:dd: 25:18:01:78:c4:1c:ca:69:d2:88:77:4f:87:fe:81:a2:90:10: 29:bf:0c:4e:bd:ba:a8:19:fe:99:a8:35:c1:e3:b7:a2:00:ca: 48:71:6f:d7:b3:70:5b:9f:c7:18:6b:61:27:d8:c0:77:af:98: 4a:a5:80:da:75:38:21:92:06:9c:fb:7f:88:56:4a:d3:f7:4a: 79:73:cf:02:26:a3:15:16:58:f1:1d:3c:1b:01:33:40:e1:0b: 36:c7:82:f6:64:0e:a5:41:24:6a:6c:39:60:b6:43:cb:1f:11: 61:c0:f7:4f:25:85:10:31:ab:85:19:52:98:59:39:f9:7d:37: e2:13:2b:7b -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XKtEjXTM7sJygebsHShZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYxOTQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZWIxN2RkYmRjYWM0YjE5Yjk0NjFjMWRiZDc2NzYzNjE2MWVlMWFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3mSMIySoKE8z4FizrA7D/iGSniD 7zJL0hILiuwdHJSSZqL6vzrTrjmUJWTCKrc/Ta3ltTSlw0a2ySnseQt2dnHX5I6P 8MBt0yJK1aeDKo3Lf46N9MBY14yTLrzzXcm68lKKoIjUbL18OraF+tKDPcyDP3UE S4Bll3wP0b2AojS6Ek1PshuFHJlebLY1JuSChcMaYgkuGk6CKESNJXNV3ST48W7q h39UZg1W5XvMH4Ayj21hhN/5S4BcX//ZQXxLNGjlX5o88arsv5lADaAx+5dJ7XUi t9dRoWOjkLNs8fu+CkQgDo76qZrIh1pAYaztBDwcmzUrBBwSHEUu/GK8CQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFM6xfdvcrEsZuUYcHb12djYWHuGqMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvenJGOTI5eXNTeG01Umh3ZHZYWjJOaFllNGFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhAvAAFS MA0GCSqGSIb3DQEBCwUAA4IBAQBUocnzBkapQppp/uv96GYMIE5xzvQbvg+ng2Nq 9qsb4Jg+sPMGb1sFQVTuqrGZ151d4yYXJsdKRhMJnZEJxbTY1LV7Q2Y4A8TOqhel dy7NuSPorUog+XQYBWU8EHgC4lj8EujbYIrzYt/WlMWFoT7Sl1vRlQEJrjJdwoYC 090lGAF4xBzKadKId0+H/oGikBApvwxOvbqoGf6ZqDXB47eiAMpIcW/Xs3Bbn8cY a2En2MB3r5hKpYDadTghkgac+3+IVkrT90p5c88CJqMVFljxHTwbATNA4Qs2x4L2 ZA6lQSRqbDlgtkPLHxFhwPdPJYUQMauFGVKYWTn5fTfiEyt7 -----END CERTIFICATE-----Generated at Fri Jan 9 13:11:46 2026 by rpki-client