This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/Z8wpzR8QlzSpkqJjzdNjh1ZRYVQ.roa File: Z8wpzR8QlzSpkqJjzdNjh1ZRYVQ.roa (raw, json) Hash identifier: TYMAleBWMCANuGIzxKEMTfESTqNVbwFiXYk9d+3b7SE= Subject key identifier: 67:CC:29:CD:1F:10:97:34:A9:92:A2:63:CD:D3:63:87:56:51:61:54 Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B79109BE17A0214015ABB62F2D7F84A09 Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/Z8wpzR8QlzSpkqJjzdNjh1ZRYVQ.roa Signing time: Thu 01 Jan 2026 10:18:10 +0000 ROA not before: Thu 01 Jan 2026 10:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200351 IP address blocks: 2a12:bec0:c0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:9b:e1:7a:02:14:01:5a:bb:62:f2:d7:f8:4a:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67cc29cd1f109734a992a263cdd3638756516154 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:78:75:82:a1:be:0b:28:91:8a:6a:e8:5a:6f: 87:de:40:7a:70:78:ab:e3:d7:ce:e9:7a:84:df:2d: 9d:4e:01:fc:08:37:17:88:97:47:ac:91:47:0d:cf: 51:08:99:ee:ef:cc:0b:25:da:fc:30:4b:59:39:fe: fc:d5:8b:7b:bb:53:78:63:d6:62:07:46:57:bc:fb: c9:55:7b:ba:f6:05:f3:fa:2b:7d:11:8f:bd:71:bb: f2:57:7c:d6:fd:89:ee:93:30:b2:5c:e6:7a:2c:5e: 06:c4:29:ed:ce:eb:46:35:02:01:23:43:60:bc:91: a9:cd:0d:ad:5b:e8:e7:01:5a:a6:e9:33:c9:1e:a4: 00:d9:2f:b2:c3:e6:45:0d:3a:81:b1:11:a0:55:99: e7:c4:03:de:fc:54:66:c3:84:50:9d:db:1b:8c:37: df:a2:de:30:0e:95:d3:8a:d3:03:23:7d:fe:be:dc: 8a:0b:57:54:db:a6:1e:e1:0c:79:0d:7f:01:ce:2a: 27:de:63:68:63:63:b2:b1:57:a4:32:a5:e9:ee:b3: e5:cd:f2:67:cb:b3:05:c2:2f:3d:48:d5:ee:f3:29: 05:50:ad:5e:61:30:16:40:79:92:92:35:ab:68:a3: 54:5a:c3:93:92:47:b3:a6:2c:01:13:23:e2:c6:62: c1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:CC:29:CD:1F:10:97:34:A9:92:A2:63:CD:D3:63:87:56:51:61:54 X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/Z8wpzR8QlzSpkqJjzdNjh1ZRYVQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec0:c0::/44 Signature Algorithm: sha256WithRSAEncryption 7a:a4:ec:db:7a:51:cf:1b:3d:44:79:95:da:4d:a9:b8:e3:64: e8:9a:bf:14:e1:69:35:8d:11:7f:ec:8e:90:80:68:2c:0f:32: 69:40:f7:30:21:4f:8c:f5:b8:8d:82:32:59:e2:0e:5c:d2:98: 9e:d1:d6:c3:92:e3:4f:60:f9:15:2e:31:be:90:59:e2:ac:2d: 11:8b:08:f1:6e:10:52:11:0d:f6:08:be:9a:55:0e:27:90:0b: 21:34:d5:76:0f:7a:7b:4e:8f:37:94:72:f8:ae:e7:a1:ee:1b: 33:b6:76:86:ba:c5:c3:4b:25:a8:bd:bd:68:ab:be:1c:58:80: e9:e8:4c:03:45:35:1c:fc:1d:78:32:36:fe:e8:ce:42:72:9c: 97:3a:ec:65:32:91:8e:b0:73:d8:13:61:34:4d:3c:67:df:f5: 60:be:56:9d:c0:95:87:3a:e8:d5:fc:00:61:f8:34:0a:39:c4: 9b:7c:31:d3:ed:7a:01:02:c7:37:4a:24:c4:ba:0d:2f:fc:c4: 9c:07:87:60:ba:e2:58:99:f3:39:17:77:fd:94:d7:a2:34:56: ca:09:45:b4:7a:e2:6f:f4:e0:9a:a7:9f:dc:ad:32:20:b1:dc: 8e:2c:cf:52:6f:17:9a:82:63:c1:93:a0:6a:f3:8b:f8:5f:92: 7a:e2:f0:1d -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EJvhegIUAVq7YvLX+EoJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2N2NjMjljZDFmMTA5NzM0YTk5MmEyNjNjZGQzNjM4NzU2NTE2MTU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3h1gqG+CyiRimroWm+H3kB6cHir 49fO6XqE3y2dTgH8CDcXiJdHrJFHDc9RCJnu78wLJdr8MEtZOf781Yt7u1N4Y9Zi B0ZXvPvJVXu69gXz+it9EY+9cbvyV3zW/YnukzCyXOZ6LF4GxCntzutGNQIBI0Ng vJGpzQ2tW+jnAVqm6TPJHqQA2S+yw+ZFDTqBsRGgVZnnxAPe/FRmw4RQndsbjDff ot4wDpXTitMDI33+vtyKC1dU26Ye4Qx5DX8Bzion3mNoY2OysVekMqXp7rPlzfJn y7MFwi89SNXu8ykFUK1eYTAWQHmSkjWraKNUWsOTkkezpiwBEyPixmLBfwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFGfMKc0fEJc0qZKiY83TY4dWUWFUMB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvWjh3cHpSOFFselNwa3FKanpkTmpoMVpSWVZRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+wADA MA0GCSqGSIb3DQEBCwUAA4IBAQB6pOzbelHPGz1EeZXaTam442Tomr8U4Wk1jRF/ 7I6QgGgsDzJpQPcwIU+M9biNgjJZ4g5c0pie0dbDkuNPYPkVLjG+kFnirC0Riwjx bhBSEQ32CL6aVQ4nkAshNNV2D3p7To83lHL4rueh7hsztnaGusXDSyWovb1oq74c WIDp6EwDRTUc/B14Mjb+6M5CcpyXOuxlMpGOsHPYE2E0TTxn3/VgvladwJWHOujV /ABh+DQKOcSbfDHT7XoBAsc3SiTEug0v/MScB4dguuJYmfM5F3f9lNeiNFbKCUW0 euJv9OCap5/crTIgsdyOLM9SbxeagmPBk6Bq84v4X5J64vAd -----END CERTIFICATE-----Generated at Tue Jan 20 02:49:13 2026 by rpki-client