This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/zXHB1EbJlYT6e1J7fxt36uhzDvQ.roa File: zXHB1EbJlYT6e1J7fxt36uhzDvQ.roa (raw, json) Hash identifier: cJ6KK+HQn17/wOZpmPrGGcsywTnk4OcN4M1SgQDMSis= Subject key identifier: CD:71:C1:D4:46:C9:95:84:FA:7B:52:7B:7F:1B:77:EA:E8:73:0E:F4 Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a Certificate serial: 019B7BA406161818E83AB7ECE7406113C890 Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/zXHB1EbJlYT6e1J7fxt36uhzDvQ.roa Signing time: Thu 01 Jan 2026 22:18:25 +0000 ROA not before: Thu 01 Jan 2026 22:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62410 IP address blocks: 2a0e:d604::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.mft rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:06:16:18:18:e8:3a:b7:ec:e7:40:61:13:c8:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a Validity Not Before: Jan 1 22:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cd71c1d446c99584fa7b527b7f1b77eae8730ef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:45:1f:76:97:51:29:38:a2:a7:5d:58:41:ad: 92:dd:05:8f:06:c6:49:9b:ec:eb:7b:8b:75:89:7e: 40:fb:e0:b4:f3:03:2d:6c:ca:cf:be:71:f2:7a:89: 12:80:56:c8:f5:82:d0:d5:4e:7c:d7:e1:f0:79:a7: ad:71:d0:d2:13:42:31:a3:20:ce:e2:02:a8:3f:fa: 48:d6:7a:ac:35:d3:e1:2c:1b:dc:bc:f0:1f:22:d5: 36:34:96:d1:d3:ab:a7:04:72:2f:47:dd:f5:78:bf: 05:21:2f:84:a1:bd:b8:c8:12:37:5b:2e:0b:94:6f: fa:9e:d5:2d:41:09:49:67:ab:95:8d:21:eb:ed:6a: b6:c1:4a:40:49:64:9c:12:b9:ff:32:84:58:00:57: 31:22:c9:dc:83:47:51:d1:05:fc:d0:a3:17:49:22: de:7d:e9:ca:e6:60:2d:67:c8:55:4f:5e:ab:82:a7: 62:3e:1b:51:cd:7c:ba:72:83:64:b5:76:59:e6:72: 44:20:f5:ff:37:e0:1c:2b:52:60:de:35:7b:92:02: 61:19:71:20:bd:70:3f:36:d4:ef:90:48:69:ae:d7: 03:78:fe:0c:2b:8d:21:73:ff:7e:89:90:f7:a5:b3: 7f:62:df:75:c0:b2:2f:2f:0e:2a:fe:54:29:89:62: af:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:71:C1:D4:46:C9:95:84:FA:7B:52:7B:7F:1B:77:EA:E8:73:0E:F4 X509v3 Authority Key Identifier: keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/zXHB1EbJlYT6e1J7fxt36uhzDvQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:d604::/48 Signature Algorithm: sha256WithRSAEncryption 4f:7d:6f:a3:fb:20:fc:fc:87:4b:0d:f1:99:bd:c9:73:1d:77: 85:51:fc:fa:17:6a:18:fe:7f:46:22:c9:96:16:f2:92:41:ce: 45:44:fa:e5:70:0d:fb:7b:a6:35:71:7f:6f:00:47:41:32:68: 2c:f5:64:19:90:6e:07:24:75:27:50:12:71:ff:e9:00:44:1c: 38:f4:55:c9:cc:46:5f:e3:66:e8:0c:f3:5f:5d:53:7b:c7:ad: b4:8e:65:62:3f:2a:c8:dd:fa:c8:32:1f:c8:8a:01:59:eb:15: a3:a4:c3:9f:06:09:34:0f:53:27:a9:6d:4a:18:76:41:83:13: 1e:d9:b8:23:b7:4a:f4:9f:9a:a3:89:cf:a9:31:c6:a8:4f:cf: 08:c1:1f:8f:06:55:18:cb:f1:31:af:8f:66:bf:92:50:38:c4: 8a:2c:70:20:ec:6e:aa:85:bd:f1:df:e8:c1:8e:e8:c5:e8:f9: 97:05:96:26:ec:01:7a:31:a9:b6:b2:f6:3e:10:d6:60:3e:6a: 05:ee:e0:59:2f:d8:66:05:77:c6:7a:33:7d:f1:15:ee:8c:03: 0b:c5:7c:2f:ba:16:c3:eb:8a:d8:9c:68:1a:9f:58:48:26:d0: e4:b3:55:5e:c2:b1:ae:9d:c4:63:1a:c3:27:ee:a8:8a:68:37: 01:7a:9d:98 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7pAYWGBjoOrfs50BhE8iQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NzA5MGMyNzVjMzRjMDVjMzA2ZjNiMzYwNjM4OTNhMGQ3 Mjc4MmEwHhcNMjYwMTAxMjIxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZDcxYzFkNDQ2Yzk5NTg0ZmE3YjUyN2I3ZjFiNzdlYWU4NzMwZWY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0EUfdpdRKTiip11YQa2S3QWPBsZJ m+zre4t1iX5A++C08wMtbMrPvnHyeokSgFbI9YLQ1U581+HweaetcdDSE0IxoyDO 4gKoP/pI1nqsNdPhLBvcvPAfItU2NJbR06unBHIvR931eL8FIS+Eob24yBI3Wy4L lG/6ntUtQQlJZ6uVjSHr7Wq2wUpASWScErn/MoRYAFcxIsncg0dR0QX80KMXSSLe fenK5mAtZ8hVT16rgqdiPhtRzXy6coNktXZZ5nJEIPX/N+AcK1Jg3jV7kgJhGXEg vXA/NtTvkEhprtcDeP4MK40hc/9+iZD3pbN/Yt91wLIvLw4q/lQpiWKv6QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFM1xwdRGyZWE+ntSe38bd+rocw70MB8GA1UdIwQY MBaAFKhwkMJ1w0wFwwbzs2BjiToNcngqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEt YjU3YTM2ZjJhZmNkLzEvelhIQjFFYkpsWVQ2ZTFKN2Z4dDM2dWh6RHZRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEtYjU3YTM2ZjJhZmNk LzEvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg7WBAAA MA0GCSqGSIb3DQEBCwUAA4IBAQBPfW+j+yD8/IdLDfGZvclzHXeFUfz6F2oY/n9G IsmWFvKSQc5FRPrlcA37e6Y1cX9vAEdBMmgs9WQZkG4HJHUnUBJx/+kARBw49FXJ zEZf42boDPNfXVN7x620jmViPyrI3frIMh/IigFZ6xWjpMOfBgk0D1MnqW1KGHZB gxMe2bgjt0r0n5qjic+pMcaoT88IwR+PBlUYy/Exr49mv5JQOMSKLHAg7G6qhb3x 3+jBjujF6PmXBZYm7AF6Mam2svY+ENZgPmoF7uBZL9hmBXfGejN98RXujAMLxXwv uhbD64rYnGgan1hIJtDks1VewrGuncRjGsMn7qiKaDcBep2Y -----END CERTIFICATE-----Generated at Tue Jan 20 02:47:21 2026 by rpki-client