This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/476139-5661-4697-8b57-424aef67f776/1/ZL2C4Xh3gk3HxtfjXSTbvl0b7Eg.roa File: ZL2C4Xh3gk3HxtfjXSTbvl0b7Eg.roa (raw, json) Hash identifier: RUoJ7koe3OvwmkZQ+5gWyWMHICJts5yQk65pg7WzrdM= Subject key identifier: 64:BD:82:E1:78:77:82:4D:C7:C6:D7:E3:5D:24:DB:BE:5D:1B:EC:48 Certificate issuer: /CN=ae800ede833b86c48ce3705567068eb90724b08d Certificate serial: 019C32407CACB505A62E92D5B19FBEFFA057 Authority key identifier: AE:80:0E:DE:83:3B:86:C4:8C:E3:70:55:67:06:8E:B9:07:24:B0:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/roAO3oM7hsSM43BVZwaOuQcksI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/476139-5661-4697-8b57-424aef67f776/1/ZL2C4Xh3gk3HxtfjXSTbvl0b7Eg.roa Signing time: Fri 06 Feb 2026 09:20:12 +0000 ROA not before: Fri 06 Feb 2026 09:20:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201616 IP address blocks: 2001:678:bb0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/476139-5661-4697-8b57-424aef67f776/1/roAO3oM7hsSM43BVZwaOuQcksI0.crl rsync://rpki.ripe.net/repository/DEFAULT/53/476139-5661-4697-8b57-424aef67f776/1/roAO3oM7hsSM43BVZwaOuQcksI0.mft rsync://rpki.ripe.net/repository/DEFAULT/roAO3oM7hsSM43BVZwaOuQcksI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:32:40:7c:ac:b5:05:a6:2e:92:d5:b1:9f:be:ff:a0:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae800ede833b86c48ce3705567068eb90724b08d Validity Not Before: Feb 6 09:20:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=64bd82e17877824dc7c6d7e35d24dbbe5d1bec48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:18:f6:35:42:b3:ca:25:a3:f4:51:68:ee:f2: a4:da:ff:d8:0e:33:d8:7a:0c:f2:42:18:93:70:7d: 37:38:f1:0e:2f:a8:6e:c6:47:be:7f:42:3d:17:6d: 77:74:a4:b3:5d:40:50:11:c5:f0:cc:c2:e4:a3:20: d0:a9:26:41:4a:61:2b:18:5d:a2:73:9f:c8:de:d3: d3:fb:01:0e:4c:da:61:d0:0d:f7:18:75:38:2d:bb: 70:98:9c:43:2e:af:c8:48:0f:5c:b4:65:ec:64:96: 4a:26:6b:2b:5f:10:99:8b:04:d9:f8:ef:04:90:0f: c7:4a:b6:ce:90:87:51:17:94:d7:d1:45:71:b3:26: 78:a1:19:8b:be:68:49:cd:b0:51:83:27:98:0b:ff: 4d:23:01:28:55:27:02:3d:4d:fa:23:d2:23:37:96: e2:23:e2:12:ee:e2:54:89:48:55:44:74:59:f2:cc: f0:1f:5d:c0:3d:16:0f:fc:9b:d1:1a:23:6a:83:9b: e1:9f:16:22:64:d6:61:88:b8:a4:dd:37:32:0c:e7: 11:75:6a:8e:8f:51:4c:a2:89:aa:e6:01:7b:13:c2: 54:ba:5b:89:c2:06:9e:f9:48:0a:a0:33:32:33:e1: f6:d3:e4:c9:d5:2c:e2:66:89:80:7f:78:51:e7:0e: 25:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:BD:82:E1:78:77:82:4D:C7:C6:D7:E3:5D:24:DB:BE:5D:1B:EC:48 X509v3 Authority Key Identifier: keyid:AE:80:0E:DE:83:3B:86:C4:8C:E3:70:55:67:06:8E:B9:07:24:B0:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/roAO3oM7hsSM43BVZwaOuQcksI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/476139-5661-4697-8b57-424aef67f776/1/ZL2C4Xh3gk3HxtfjXSTbvl0b7Eg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/476139-5661-4697-8b57-424aef67f776/1/roAO3oM7hsSM43BVZwaOuQcksI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:bb0::/48 Signature Algorithm: sha256WithRSAEncryption 18:9d:ba:59:fd:ae:4e:d9:2b:83:bd:8f:90:57:2e:63:78:95: 15:fe:03:53:36:52:47:24:71:83:1f:87:14:b5:50:6e:4d:f1: 23:9f:f5:eb:71:69:d7:af:11:28:28:98:e4:44:21:92:1e:b4: ab:bb:0e:1c:ef:df:cb:2d:9b:78:8a:48:04:c4:81:ac:9f:8f: 7b:e4:97:56:e7:5f:6b:42:67:fc:fa:bd:cc:8a:11:50:d1:5a: 86:1d:97:77:ef:4e:65:35:f2:1f:8d:41:d3:55:41:bb:c5:80: bf:b7:29:45:99:98:8a:43:f2:b2:46:0e:ab:a2:2b:b3:ed:23: 5f:28:b0:1e:6b:c6:7f:60:81:a1:f6:94:7e:55:62:2e:7a:47: db:b7:70:24:35:1b:d1:c7:4a:18:86:d3:f7:7a:52:02:5f:df: c6:f5:76:04:95:a6:b1:d2:e7:78:75:af:03:c7:c1:f4:51:03: 14:3b:60:be:48:ed:ca:f1:be:a2:f4:0c:42:2a:80:84:26:6a: 47:e6:39:18:b7:75:b2:58:89:c8:90:61:94:11:9e:75:e4:6e: 8c:57:56:7b:b7:9a:8a:6a:a1:05:d1:5c:df:7d:ff:ba:0f:4b: b4:e9:22:ed:ed:a7:91:2f:9d:f7:c3:4e:2e:b8:7e:d4:8c:26: e0:f8:58:a1 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZwyQHystQWmLpLVsZ++/6BXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlODAwZWRlODMzYjg2YzQ4Y2UzNzA1NTY3MDY4ZWI5MDcy NGIwOGQwHhcNMjYwMjA2MDkyMDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NGJkODJlMTc4Nzc4MjRkYzdjNmQ3ZTM1ZDI0ZGJiZTVkMWJlYzQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBj2NUKzyiWj9FFo7vKk2v/YDjPY egzyQhiTcH03OPEOL6huxke+f0I9F213dKSzXUBQEcXwzMLkoyDQqSZBSmErGF2i c5/I3tPT+wEOTNph0A33GHU4LbtwmJxDLq/ISA9ctGXsZJZKJmsrXxCZiwTZ+O8E kA/HSrbOkIdRF5TX0UVxsyZ4oRmLvmhJzbBRgyeYC/9NIwEoVScCPU36I9IjN5bi I+IS7uJUiUhVRHRZ8szwH13APRYP/JvRGiNqg5vhnxYiZNZhiLik3TcyDOcRdWqO j1FMoomq5gF7E8JUuluJwgae+UgKoDMyM+H20+TJ1SziZomAf3hR5w4lEQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFGS9guF4d4JNx8bX410k275dG+xIMB8GA1UdIwQY MBaAFK6ADt6DO4bEjONwVWcGjrkHJLCNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm9BTzNvTTdoc1NNNDNCVlp3YU91UWNrc0kwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My80NzYxMzktNTY2MS00Njk3LThiNTct NDI0YWVmNjdmNzc2LzEvWkwyQzRYaDNnazNIeHRmalhTVGJ2bDBiN0VnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My80NzYxMzktNTY2MS00Njk3LThiNTctNDI0YWVmNjdmNzc2 LzEvcm9BTzNvTTdoc1NNNDNCVlp3YU91UWNrc0kwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAuw MA0GCSqGSIb3DQEBCwUAA4IBAQAYnbpZ/a5O2SuDvY+QVy5jeJUV/gNTNlJHJHGD H4cUtVBuTfEjn/XrcWnXrxEoKJjkRCGSHrSruw4c79/LLZt4ikgExIGsn4975JdW 519rQmf8+r3MihFQ0VqGHZd3705lNfIfjUHTVUG7xYC/tylFmZiKQ/KyRg6roiuz 7SNfKLAea8Z/YIGh9pR+VWIuekfbt3AkNRvRx0oYhtP3elICX9/G9XYElaax0ud4 da8Dx8H0UQMUO2C+SO3K8b6i9AxCKoCEJmpH5jkYt3WyWInIkGGUEZ515G6MV1Z7 t5qKaqEF0Vzfff+6D0u06SLt7aeRL533w04uuH7UjCbg+Fih -----END CERTIFICATE-----Generated at Mon Feb 9 21:01:16 2026 by rpki-client