This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/3z2GctTs7vICTFTIGr2jm6E9zqI.roa File: 3z2GctTs7vICTFTIGr2jm6E9zqI.roa (raw, json) Hash identifier: ihzrNleY5jvYApHOC6u5WunqKLtTfL7cBhhzwCELXGc= Subject key identifier: DF:3D:86:72:D4:EC:EE:F2:02:4C:54:C8:1A:BD:A3:9B:A1:3D:CE:A2 Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954 Certificate serial: 019B7EA754E35A619D868656D3E2C7655A3F Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/3z2GctTs7vICTFTIGr2jm6E9zqI.roa Signing time: Fri 02 Jan 2026 12:20:53 +0000 ROA not before: Fri 02 Jan 2026 12:20:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205602 IP address blocks: 2a06:e881:116::/48 maxlen: 48 2a0a:79c0:b00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 12:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:54:e3:5a:61:9d:86:86:56:d3:e2:c7:65:5a:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954 Validity Not Before: Jan 2 12:20:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=df3d8672d4eceef2024c54c81abda39ba13dcea2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f6:24:8a:35:fb:e9:3d:45:d5:e6:3c:a3:a0: de:36:59:e0:8d:fa:b1:40:40:8e:50:7a:30:02:56: 78:e2:0f:61:43:97:56:b0:a6:3e:c8:7a:1f:0c:be: f3:92:e5:3f:31:3f:99:fe:27:14:54:cc:da:d5:a5: 43:ac:55:f3:bd:e0:77:ba:d3:ce:19:c5:64:12:b5: 0e:19:fe:91:79:93:c2:20:1c:c2:a4:ac:d1:b8:25: 2b:4a:3c:59:ac:4c:1b:24:45:a5:a2:46:a7:a5:2d: ae:2a:f5:04:81:2c:1f:3f:01:92:8d:2d:80:52:f0: fc:d7:84:e7:80:38:3a:d4:e5:8d:2e:37:fe:60:c4: 32:3b:c2:02:bf:d2:ce:4e:29:66:5f:ab:67:79:b4: 7d:8a:5d:09:01:24:38:2b:57:2d:46:4b:cb:50:90: 70:1a:89:a2:a9:4f:99:48:5d:81:a6:51:ef:7f:b0: a1:c8:77:7d:55:6d:76:8d:7b:84:90:8c:02:30:86: a4:b0:47:79:20:b6:a5:a7:56:8e:8d:e8:81:9a:63: 91:b9:f2:46:96:25:88:90:20:05:25:ea:14:ca:ae: e0:8d:44:df:cc:12:58:4a:80:ad:c8:48:15:0b:1b: 03:ce:4d:9a:80:ad:84:23:0f:31:3d:88:0f:d7:fe: 1d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:3D:86:72:D4:EC:EE:F2:02:4C:54:C8:1A:BD:A3:9B:A1:3D:CE:A2 X509v3 Authority Key Identifier: keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/3z2GctTs7vICTFTIGr2jm6E9zqI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:e881:116::/48 2a0a:79c0:b00::/40 Signature Algorithm: sha256WithRSAEncryption 56:df:c7:8b:4c:24:0b:8f:8f:33:dd:b1:4e:9d:b8:ed:b0:44: 84:11:53:9f:ac:f8:84:79:17:a9:74:00:29:a2:eb:f4:3e:0d: 95:62:77:cd:1b:95:06:6e:f0:9e:f9:29:cc:5f:ca:a8:af:4c: 2c:3a:57:89:f0:4e:57:15:f4:ca:7a:b9:7f:30:50:6e:fe:fa: 7e:ad:bb:48:a3:9c:75:99:2d:07:d5:5c:00:2f:a6:09:de:39: d9:2a:b6:d1:31:bb:c0:21:0c:c9:87:ce:f6:ab:a2:06:88:0d: 5c:05:fb:aa:d9:7b:31:57:cf:27:1b:41:62:9c:9b:37:6e:23: ee:57:2a:51:1c:a5:d5:93:3a:11:46:32:af:a8:73:7d:50:f2: aa:61:b9:80:5b:6f:03:bb:a9:c2:e7:3c:a2:b1:6b:34:9f:14: 12:25:c2:d3:f2:cc:85:3e:cf:17:2a:45:62:c5:41:78:7c:af: e2:0c:20:b9:c7:0c:17:c5:3c:44:02:7d:54:cc:3d:23:db:a9: 99:cb:e4:94:ac:6f:d3:35:44:cd:e4:c0:11:75:81:ed:75:4e: 65:ad:a3:db:ea:5b:82:0f:74:21:c2:54:da:10:ac:68:60:f4: f8:ee:9a:a1:e4:b9:68:51:58:7e:39:a2:2f:7f:66:b8:ea:2b: 53:53:17:4c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgISAZt+p1TjWmGdhoZW0+LHZVo/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4MDc0YjQxOWVhZDRjZWZlYTJmMmFkMmMyNTlkOTc4YzVl ZDc5NTQwHhcNMjYwMTAyMTIyMDUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZjNkODY3MmQ0ZWNlZWYyMDI0YzU0YzgxYWJkYTM5YmExM2RjZWEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfYkijX76T1F1eY8o6DeNlngjfqx QECOUHowAlZ44g9hQ5dWsKY+yHofDL7zkuU/MT+Z/icUVMza1aVDrFXzveB3utPO GcVkErUOGf6ReZPCIBzCpKzRuCUrSjxZrEwbJEWlokanpS2uKvUEgSwfPwGSjS2A UvD814TngDg61OWNLjf+YMQyO8ICv9LOTilmX6tnebR9il0JASQ4K1ctRkvLUJBw GomiqU+ZSF2BplHvf7ChyHd9VW12jXuEkIwCMIaksEd5ILalp1aOjeiBmmORufJG liWIkCAFJeoUyq7gjUTfzBJYSoCtyEgVCxsDzk2agK2EIw8xPYgP1/4dAQIDAQAB o4ICFDCCAhAwHQYDVR0OBBYEFN89hnLU7O7yAkxUyBq9o5uhPc6iMB8GA1UdIwQY MBaAFLgHS0GerUzv6i8q0sJZ2XjF7XlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUFkTFFaNnRUT19xTHlyU3dsblplTVh0ZVZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8xZTQzZTQtZDA2ZS00YTU1LWJkYjYt M2Q5MWVkZTViMmIxLzEvM3oyR2N0VHM3dklDVEZUSUdyMmptNkU5enFJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi8xZTQzZTQtZDA2ZS00YTU1LWJkYjYtM2Q5MWVkZTViMmIx LzEvdUFkTFFaNnRUT19xTHlyU3dsblplTVh0ZVZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwcAKgbogQEW AwYAKgp5wAswDQYJKoZIhvcNAQELBQADggEBAFbfx4tMJAuPjzPdsU6duO2wRIQR U5+s+IR5F6l0ACmi6/Q+DZVid80blQZu8J75KcxfyqivTCw6V4nwTlcV9Mp6uX8w UG7++n6tu0ijnHWZLQfVXAAvpgneOdkqttExu8AhDMmHzvarogaIDVwF+6rZezFX zycbQWKcmzduI+5XKlEcpdWTOhFGMq+oc31Q8qphuYBbbwO7qcLnPKKxazSfFBIl wtPyzIU+zxcqRWLFQXh8r+IMILnHDBfFPEQCfVTMPSPbqZnL5JSsb9M1RM3kwBF1 ge11TmWto9vqW4IPdCHCVNoQrGhg9PjumqHkuWhRWH45oi9/ZrjqK1NTF0w= -----END CERTIFICATE-----Generated at Tue Jan 20 22:47:36 2026 by rpki-client