This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/zv32VZMT2QpjwCNJQuKZWRRffIQ.roa File: zv32VZMT2QpjwCNJQuKZWRRffIQ.roa (raw, json) Hash identifier: kObmfO3vi0I5D4zj8YBTzKwtPE3NArat9hAGR+jsK8A= Subject key identifier: CE:FD:F6:55:93:13:D9:0A:63:C0:23:49:42:E2:99:59:14:5F:7C:84 Certificate issuer: /CN=06a4c18d2e20db64ff9db5292b379f538b76a151 Certificate serial: 019B76EAB2E465A951A8486CBCA89FA46FD8 Authority key identifier: 06:A4:C1:8D:2E:20:DB:64:FF:9D:B5:29:2B:37:9F:53:8B:76:A1:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/zv32VZMT2QpjwCNJQuKZWRRffIQ.roa Signing time: Thu 01 Jan 2026 00:17:31 +0000 ROA not before: Thu 01 Jan 2026 00:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206402 IP address blocks: 2001:67c:990::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.crl rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:b2:e4:65:a9:51:a8:48:6c:bc:a8:9f:a4:6f:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06a4c18d2e20db64ff9db5292b379f538b76a151 Validity Not Before: Jan 1 00:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cefdf6559313d90a63c0234942e29959145f7c84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:06:e3:a8:76:50:b7:93:13:57:b8:a8:66:08: 85:bc:38:c5:96:84:ab:68:b5:c5:03:75:7a:ba:58: 7a:be:86:65:50:36:2f:07:e7:9e:06:56:ea:33:f5: e5:91:5a:6a:c0:b7:20:11:29:e6:45:df:3c:b1:51: d5:61:c5:6f:ad:5d:ef:6a:6a:b3:7c:e1:03:7b:f2: 39:d4:8a:97:a1:53:be:9a:ae:4e:86:46:ac:e0:9a: 03:92:e0:6a:3d:31:14:2f:6d:05:5d:80:24:0a:e5: 63:de:78:ed:a9:58:9f:7d:88:34:27:29:c0:6d:0d: 53:5f:73:47:2f:3d:56:05:01:39:3d:21:04:8c:49: 9f:fa:00:31:37:dc:10:63:2a:27:71:a6:67:7a:88: b2:b2:9b:38:8c:c5:99:14:60:e9:e4:6b:eb:2c:06: 9e:7e:79:d0:41:1a:b1:ad:a0:e9:9f:f0:fc:10:5e: 99:6d:fb:f1:a6:d8:8d:d4:13:f9:0e:2a:de:fb:63: f2:1b:e9:7c:36:e3:12:19:d7:a1:58:85:05:27:36: c4:55:cf:9a:31:94:39:1f:60:87:92:1c:33:8c:a7: c3:39:ec:d7:ae:cf:78:37:58:3a:6d:d3:3a:4c:27: 9a:44:4a:04:e1:71:6f:0e:2f:45:f7:6b:79:52:39: 2c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:FD:F6:55:93:13:D9:0A:63:C0:23:49:42:E2:99:59:14:5F:7C:84 X509v3 Authority Key Identifier: keyid:06:A4:C1:8D:2E:20:DB:64:FF:9D:B5:29:2B:37:9F:53:8B:76:A1:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/zv32VZMT2QpjwCNJQuKZWRRffIQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:990::/48 Signature Algorithm: sha256WithRSAEncryption 1d:52:28:c1:83:c3:26:c5:6a:34:52:65:eb:e2:33:68:ba:23: 2f:9c:34:04:08:9e:60:5b:14:76:77:06:67:d7:db:f8:b3:12: 18:ea:50:7d:ec:00:f5:a7:8b:cf:dd:7e:86:0f:7b:46:f7:ca: 86:f7:4a:f0:12:52:37:3a:f1:f9:40:a5:e1:9e:da:d8:f7:c0: c3:20:2e:38:77:ea:74:6b:90:36:0e:52:43:ad:b2:bb:19:a2: ea:bd:b3:17:23:af:cc:40:b5:33:1a:2c:1a:64:9b:d5:ad:80: 06:a0:30:85:1e:95:27:34:96:87:48:a9:04:55:5e:a4:70:45: b2:1a:5e:75:d2:f3:99:20:d3:4f:ba:09:07:65:bd:dd:a0:a1: 98:69:d5:d6:fe:99:68:90:48:07:7a:32:39:68:44:7b:5d:a6: 70:ab:a3:dc:1a:83:cc:aa:be:e3:66:ac:96:c1:53:46:97:fc: 1b:68:91:d1:bb:bd:86:dc:9a:96:69:d8:91:a7:ff:9b:3c:54: 10:d2:15:5a:f3:a4:6c:72:2a:1d:f3:11:c0:45:33:4f:dd:de: f5:38:0a:36:9e:3a:2c:49:11:0e:4d:6e:e3:50:29:10:a5:b7: a4:0d:c8:4f:bb:6f:9c:51:5d:07:5e:54:de:11:6c:3d:c9:7c: fa:41:4c:b2 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt26rLkZalRqEhsvKifpG/YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2YTRjMThkMmUyMGRiNjRmZjlkYjUyOTJiMzc5ZjUzOGI3 NmExNTEwHhcNMjYwMTAxMDAxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZWZkZjY1NTkzMTNkOTBhNjNjMDIzNDk0MmUyOTk1OTE0NWY3Yzg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgbjqHZQt5MTV7ioZgiFvDjFloSr aLXFA3V6ulh6voZlUDYvB+eeBlbqM/XlkVpqwLcgESnmRd88sVHVYcVvrV3vamqz fOEDe/I51IqXoVO+mq5Ohkas4JoDkuBqPTEUL20FXYAkCuVj3njtqViffYg0JynA bQ1TX3NHLz1WBQE5PSEEjEmf+gAxN9wQYyoncaZneoiysps4jMWZFGDp5GvrLAae fnnQQRqxraDpn/D8EF6ZbfvxptiN1BP5Dire+2PyG+l8NuMSGdehWIUFJzbEVc+a MZQ5H2CHkhwzjKfDOezXrs94N1g6bdM6TCeaREoE4XFvDi9F92t5Ujks7QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFM799lWTE9kKY8AjSULimVkUX3yEMB8GA1UdIwQY MBaAFAakwY0uINtk/521KSs3n1OLdqFRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnFUQmpTNGcyMlRfbmJVcEt6ZWZVNHQyb1ZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8zZDI4OTQtMzJlOS00ZjAyLWE4Yjkt NTMyZWQyNTY3ZTliLzEvenYzMlZaTVQyUXBqd0NOSlF1S1pXUlJmZklRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC8zZDI4OTQtMzJlOS00ZjAyLWE4YjktNTMyZWQyNTY3ZTli LzEvQnFUQmpTNGcyMlRfbmJVcEt6ZWZVNHQyb1ZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAmQ MA0GCSqGSIb3DQEBCwUAA4IBAQAdUijBg8MmxWo0UmXr4jNouiMvnDQECJ5gWxR2 dwZn19v4sxIY6lB97AD1p4vP3X6GD3tG98qG90rwElI3OvH5QKXhntrY98DDIC44 d+p0a5A2DlJDrbK7GaLqvbMXI6/MQLUzGiwaZJvVrYAGoDCFHpUnNJaHSKkEVV6k cEWyGl510vOZINNPugkHZb3doKGYadXW/plokEgHejI5aER7XaZwq6PcGoPMqr7j ZqyWwVNGl/wbaJHRu72G3JqWadiRp/+bPFQQ0hVa86Rsciod8xHARTNP3d71OAo2 njosSREOTW7jUCkQpbekDchPu2+cUV0HXlTeEWw9yXz6QUyy -----END CERTIFICATE-----Generated at Mon Feb 9 21:24:15 2026 by rpki-client