This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/1QDofdrdxn1wg6XblVl9BvBWUmc.roa File: 1QDofdrdxn1wg6XblVl9BvBWUmc.roa (raw, json) Hash identifier: 8Sto9TSm0VzEJfpih+W00AHEzAW1aUXacQ7edZT+jK8= Subject key identifier: D5:00:E8:7D:DA:DD:C6:7D:70:83:A5:DB:95:59:7D:06:F0:56:52:67 Certificate issuer: /CN=66e92c341e769443fde1d27566044b4b65159060 Certificate serial: 019B7DCA9899F3C7F5CB90D0E1EE94F6B8AB Authority key identifier: 66:E9:2C:34:1E:76:94:43:FD:E1:D2:75:66:04:4B:4B:65:15:90:60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/1QDofdrdxn1wg6XblVl9BvBWUmc.roa Signing time: Fri 02 Jan 2026 08:19:47 +0000 ROA not before: Fri 02 Jan 2026 08:19:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 136557 IP address blocks: 103.225.64.0/23 maxlen: 23 2a0d:da05::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/ZuksNB52lEP94dJ1ZgRLS2UVkGA.crl rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/ZuksNB52lEP94dJ1ZgRLS2UVkGA.mft rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 02:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:98:99:f3:c7:f5:cb:90:d0:e1:ee:94:f6:b8:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66e92c341e769443fde1d27566044b4b65159060 Validity Not Before: Jan 2 08:19:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d500e87ddaddc67d7083a5db95597d06f0565267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:46:ca:1d:4b:eb:6d:36:7d:41:e8:fe:f0:5e: ce:c9:ec:f2:d7:d3:44:f3:72:98:3b:d1:b6:b1:5d: 29:e9:cb:60:1f:81:1a:3d:e6:d4:f3:a0:5e:50:dc: 13:65:c4:ae:07:03:e8:87:7e:dc:9d:64:bb:22:a9: b2:30:03:79:33:0d:9c:7d:1f:ba:40:2f:ec:53:37: 15:cf:19:f4:ce:ef:8e:36:a1:c7:03:d4:c1:7a:f8: 1b:05:73:eb:71:f6:62:ef:32:fa:92:25:dd:db:f6: 52:dd:f2:b1:fd:d9:2e:df:8e:0d:47:ce:bb:0f:1d: 2d:16:c0:2e:56:84:88:63:4b:20:1b:2e:8e:85:c6: 31:12:f4:4d:07:07:10:ac:18:62:6d:3b:80:7b:b0: 06:a8:20:b4:c1:9b:75:ef:a4:8d:b4:31:38:f0:76: 03:80:53:75:a8:01:b2:a5:1a:74:ae:15:84:97:52: 2c:14:35:08:67:81:e5:6b:11:fc:af:80:ef:1c:0c: a9:b4:86:37:40:61:61:93:1e:40:41:77:a6:63:1d: f7:c1:0e:f7:ad:71:75:a2:2a:e3:34:26:9e:26:2f: e6:07:ae:f8:57:c8:68:25:58:1e:a2:68:05:d1:43: 6a:f0:3d:a3:26:ef:c1:9f:90:0a:37:b0:1e:a8:e1: ad:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:00:E8:7D:DA:DD:C6:7D:70:83:A5:DB:95:59:7D:06:F0:56:52:67 X509v3 Authority Key Identifier: keyid:66:E9:2C:34:1E:76:94:43:FD:E1:D2:75:66:04:4B:4B:65:15:90:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/1QDofdrdxn1wg6XblVl9BvBWUmc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/ZuksNB52lEP94dJ1ZgRLS2UVkGA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.225.64.0/23 IPv6: 2a0d:da05::/46 Signature Algorithm: sha256WithRSAEncryption 8a:06:e5:3d:09:6c:d3:1d:d6:88:ee:db:f2:e2:e4:e3:b5:b0: 3d:4d:aa:4e:93:c4:bd:30:40:2d:35:81:a5:eb:b6:01:5e:e5: 63:44:82:c7:79:e8:5b:8d:11:b1:5d:5e:20:ff:c8:c0:bc:87: 0b:48:d3:b8:fd:c5:d8:2d:ee:7d:fa:54:d7:f2:0e:9b:ea:11: 91:dd:a7:23:8e:6c:a7:57:be:ca:2e:09:1f:10:c8:64:e1:0b: cb:3e:50:26:bb:22:e1:0d:fc:3a:d0:37:c4:15:07:b2:6f:a0: 48:f4:ce:da:c2:2b:d8:a3:d9:0b:0b:ab:09:7d:53:94:d7:3d: df:23:b7:14:42:8d:d2:e6:ff:d1:4b:86:2d:38:24:d3:14:c9: 66:ba:39:67:cc:7b:ae:ae:dc:11:1f:5a:f7:53:8b:53:fd:b3: 9f:b1:37:82:b8:7a:20:d9:e3:8b:b1:4e:c9:67:75:5f:b8:ad: 21:7e:7e:35:86:fe:30:ad:8d:12:af:f1:96:cd:7d:cb:5d:d9: 5f:b7:10:bc:ee:ca:8b:71:ab:7f:69:9b:80:f3:17:e9:31:d4: a0:b7:ba:e5:39:59:d8:72:71:67:c0:36:64:cd:8d:b8:b9:73: 64:a3:d9:08:da:1a:58:21:5f:e1:45:21:d1:29:75:29:db:0e: 5a:2a:d3:02 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt9ypiZ88f1y5DQ4e6U9rirMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2ZTkyYzM0MWU3Njk0NDNmZGUxZDI3NTY2MDQ0YjRiNjUx NTkwNjAwHhcNMjYwMTAyMDgxOTQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNTAwZTg3ZGRhZGRjNjdkNzA4M2E1ZGI5NTU5N2QwNmYwNTY1MjY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUbKHUvrbTZ9Qej+8F7Oyezy19NE 83KYO9G2sV0p6ctgH4EaPebU86BeUNwTZcSuBwPoh37cnWS7IqmyMAN5Mw2cfR+6 QC/sUzcVzxn0zu+ONqHHA9TBevgbBXPrcfZi7zL6kiXd2/ZS3fKx/dku344NR867 Dx0tFsAuVoSIY0sgGy6OhcYxEvRNBwcQrBhibTuAe7AGqCC0wZt176SNtDE48HYD gFN1qAGypRp0rhWEl1IsFDUIZ4HlaxH8r4DvHAyptIY3QGFhkx5AQXemYx33wQ73 rXF1oirjNCaeJi/mB674V8hoJVgeomgF0UNq8D2jJu/Bn5AKN7AeqOGtZwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFNUA6H3a3cZ9cIOl25VZfQbwVlJnMB8GA1UdIwQY MBaAFGbpLDQedpRD/eHSdWYES0tlFZBgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnVrc05CNTJsRVA5NGRKMVpnUkxTMlVWa0dBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS84ZjE5NjgtYTc5YS00YTA3LWFjZTYt YzFkMjk2ZjhmZDA3LzEvMVFEb2ZkcmR4bjF3ZzZYYmxWbDlCdkJXVW1jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS84ZjE5NjgtYTc5YS00YTA3LWFjZTYtYzFkMjk2ZjhmZDA3 LzEvWnVrc05CNTJsRVA5NGRKMVpnUkxTMlVWa0dBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ+FAMA8E AgACMAkDBwIqDdoFAAAwDQYJKoZIhvcNAQELBQADggEBAIoG5T0JbNMd1oju2/Li 5OO1sD1Nqk6TxL0wQC01gaXrtgFe5WNEgsd56FuNEbFdXiD/yMC8hwtI07j9xdgt 7n36VNfyDpvqEZHdpyOObKdXvsouCR8QyGThC8s+UCa7IuEN/DrQN8QVB7JvoEj0 ztrCK9ij2QsLqwl9U5TXPd8jtxRCjdLm/9FLhi04JNMUyWa6OWfMe66u3BEfWvdT i1P9s5+xN4K4eiDZ44uxTslndV+4rSF+fjWG/jCtjRKv8ZbNfctd2V+3ELzuyotx q39pm4DzF+kx1KC3uuU5WdhycWfANmTNjbi5c2Sj2QjaGlghX+FFIdEpdSnbDloq 0wI= -----END CERTIFICATE-----Generated at Wed Jan 21 11:24:53 2026 by rpki-client