This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/428911-8816-4f11-97a6-4882e6b568b2/1/Z-M8lVgS2gwgAHLuyet33qHzwgM.roa File: Z-M8lVgS2gwgAHLuyet33qHzwgM.roa (raw, json) Hash identifier: fWLoTiwsPxZRXJ5Vm/x03hJnQBlEMfiyIhGQEUF0Fxs= Subject key identifier: 67:E3:3C:95:58:12:DA:0C:20:00:72:EE:C9:EB:77:DE:A1:F3:C2:03 Certificate issuer: /CN=accfab8b893010a1b5e25072e1d456904493f52d Certificate serial: 019B7BA368B36B634CE93E2DDA96874F3E90 Authority key identifier: AC:CF:AB:8B:89:30:10:A1:B5:E2:50:72:E1:D4:56:90:44:93:F5:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rM-ri4kwEKG14lBy4dRWkEST9S0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/428911-8816-4f11-97a6-4882e6b568b2/1/Z-M8lVgS2gwgAHLuyet33qHzwgM.roa Signing time: Thu 01 Jan 2026 22:17:45 +0000 ROA not before: Thu 01 Jan 2026 22:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211586 IP address blocks: 2001:678:f18::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/428911-8816-4f11-97a6-4882e6b568b2/1/rM-ri4kwEKG14lBy4dRWkEST9S0.crl rsync://rpki.ripe.net/repository/DEFAULT/66/428911-8816-4f11-97a6-4882e6b568b2/1/rM-ri4kwEKG14lBy4dRWkEST9S0.mft rsync://rpki.ripe.net/repository/DEFAULT/rM-ri4kwEKG14lBy4dRWkEST9S0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:68:b3:6b:63:4c:e9:3e:2d:da:96:87:4f:3e:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=accfab8b893010a1b5e25072e1d456904493f52d Validity Not Before: Jan 1 22:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67e33c955812da0c200072eec9eb77dea1f3c203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b0:8a:e0:3d:c4:87:bc:bb:20:cc:0d:5a:3d: f2:7b:88:ff:ba:b2:c7:46:6b:98:fd:54:8a:f7:bb: 97:65:c5:36:56:f5:51:26:50:c2:2f:17:5b:1c:01: cc:9c:9d:bf:29:65:f8:ae:1a:90:71:29:0d:ea:6a: 22:12:af:a9:40:a4:e2:01:d4:ea:7b:ae:c8:1a:af: 54:bb:a7:84:02:d0:19:cf:f2:4f:72:e5:13:64:38: d1:ea:2e:74:05:98:51:5c:39:6c:f1:cb:5b:f4:0b: dd:83:3f:2b:4a:c6:e5:ea:ac:67:85:7b:60:8b:4e: bc:c5:2e:6e:66:1f:c7:62:ba:ab:5d:d6:a1:6d:df: 74:4c:10:17:c5:cd:73:7e:69:b2:92:0a:54:ed:f1: e4:c4:08:87:4d:96:3e:ce:0a:c1:c6:8e:30:73:43: 02:c3:59:ad:23:cc:fc:21:79:31:4c:17:f2:d0:36: 49:4a:7b:22:8b:5e:c7:0a:1d:05:e5:8f:61:3a:d4: d4:aa:8a:77:b5:7a:de:88:c3:1d:35:03:c8:7e:eb: c8:e6:ea:cb:49:da:f1:b1:12:85:67:57:4d:f3:dc: 94:78:c3:b4:49:4b:b8:84:ab:d2:46:89:8f:d3:5e: b7:b1:61:e8:9a:67:dd:8b:0c:d1:ae:3c:16:cb:1c: 1f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E3:3C:95:58:12:DA:0C:20:00:72:EE:C9:EB:77:DE:A1:F3:C2:03 X509v3 Authority Key Identifier: keyid:AC:CF:AB:8B:89:30:10:A1:B5:E2:50:72:E1:D4:56:90:44:93:F5:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rM-ri4kwEKG14lBy4dRWkEST9S0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/428911-8816-4f11-97a6-4882e6b568b2/1/Z-M8lVgS2gwgAHLuyet33qHzwgM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/428911-8816-4f11-97a6-4882e6b568b2/1/rM-ri4kwEKG14lBy4dRWkEST9S0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:f18::/48 Signature Algorithm: sha256WithRSAEncryption 7c:6d:5f:38:43:fe:23:92:76:10:8c:f8:e7:ac:f7:87:80:60: f9:b1:25:0d:de:37:49:14:66:a6:23:cd:57:ee:21:d7:14:c0: df:93:e5:fd:8e:93:10:42:c7:0b:01:83:ac:e9:da:40:3a:d3: 3b:06:c6:a7:00:47:08:ed:ea:3b:a0:59:0b:4c:20:4a:02:3d: 16:09:da:4e:f1:b5:af:25:40:e3:c4:df:e2:03:7c:39:8a:e1: c7:be:b4:75:1c:03:31:bd:35:0e:d4:a8:0d:08:68:88:32:90: bc:d1:d8:93:a1:37:15:8c:88:ad:32:e4:a6:49:92:c7:b8:f5: b7:b7:5e:d7:6b:de:3b:df:6e:c1:bb:0f:b9:df:6f:99:f5:91: d5:32:de:f3:09:e2:fd:aa:5a:5f:b3:07:9b:49:31:34:3a:b1: c4:96:6c:93:a7:0c:d7:7b:ba:a8:df:2a:79:69:29:46:f7:7c: 0a:34:9c:76:92:5f:08:41:4d:dc:15:99:d5:3c:eb:fb:3b:b9: 6f:65:4c:1a:08:46:7e:c4:4a:c0:11:a4:52:45:18:ef:5c:8e: db:f1:9c:9a:1d:9e:04:93:2a:d9:17:79:89:14:ee:87:80:2b: 38:7b:3c:67:63:10:df:76:cd:e6:d5:e2:f9:e9:c4:fc:de:bf: 3c:7b:84:70 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7o2iza2NM6T4t2paHTz6QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjY2ZhYjhiODkzMDEwYTFiNWUyNTA3MmUxZDQ1NjkwNDQ5 M2Y1MmQwHhcNMjYwMTAxMjIxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2N2UzM2M5NTU4MTJkYTBjMjAwMDcyZWVjOWViNzdkZWExZjNjMjAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0bCK4D3Eh7y7IMwNWj3ye4j/urLH RmuY/VSK97uXZcU2VvVRJlDCLxdbHAHMnJ2/KWX4rhqQcSkN6moiEq+pQKTiAdTq e67IGq9Uu6eEAtAZz/JPcuUTZDjR6i50BZhRXDls8ctb9Avdgz8rSsbl6qxnhXtg i068xS5uZh/HYrqrXdahbd90TBAXxc1zfmmykgpU7fHkxAiHTZY+zgrBxo4wc0MC w1mtI8z8IXkxTBfy0DZJSnsii17HCh0F5Y9hOtTUqop3tXreiMMdNQPIfuvI5urL SdrxsRKFZ1dN89yUeMO0SUu4hKvSRomP0163sWHommfdiwzRrjwWyxwfiQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFGfjPJVYEtoMIABy7snrd96h88IDMB8GA1UdIwQY MBaAFKzPq4uJMBChteJQcuHUVpBEk/UtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvck0tcmk0a3dFS0cxNGxCeTRkUldrRVNUOVMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80Mjg5MTEtODgxNi00ZjExLTk3YTYt NDg4MmU2YjU2OGIyLzEvWi1NOGxWZ1MyZ3dnQUhMdXlldDMzcUh6d2dNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni80Mjg5MTEtODgxNi00ZjExLTk3YTYtNDg4MmU2YjU2OGIy LzEvck0tcmk0a3dFS0cxNGxCeTRkUldrRVNUOVMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA8Y MA0GCSqGSIb3DQEBCwUAA4IBAQB8bV84Q/4jknYQjPjnrPeHgGD5sSUN3jdJFGam I81X7iHXFMDfk+X9jpMQQscLAYOs6dpAOtM7BsanAEcI7eo7oFkLTCBKAj0WCdpO 8bWvJUDjxN/iA3w5iuHHvrR1HAMxvTUO1KgNCGiIMpC80diToTcVjIitMuSmSZLH uPW3t17Xa947327Buw+532+Z9ZHVMt7zCeL9qlpfswebSTE0OrHElmyTpwzXe7qo 3yp5aSlG93wKNJx2kl8IQU3cFZnVPOv7O7lvZUwaCEZ+xErAEaRSRRjvXI7b8Zya HZ4EkyrZF3mJFO6HgCs4ezxnYxDfds3m1eL56cT83r88e4Rw -----END CERTIFICATE-----Generated at Tue Feb 10 01:24:28 2026 by rpki-client