This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/zvpbW0AJBnBw0bQshYm2MUX9XVk.roa File: zvpbW0AJBnBw0bQshYm2MUX9XVk.roa (raw, json) Hash identifier: 5lICS1+N8TUyxPCwI2DL37ljYI8YB9nq4jlyXqCwtCQ= Subject key identifier: CE:FA:5B:5B:40:09:06:70:70:D1:B4:2C:85:89:B6:31:45:FD:5D:59 Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6 Certificate serial: 019B79ED4F5EC3AA6A4A2C394E41E518E6C0 Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/zvpbW0AJBnBw0bQshYm2MUX9XVk.roa Signing time: Thu 01 Jan 2026 14:19:14 +0000 ROA not before: Thu 01 Jan 2026 14:19:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212359 IP address blocks: 2a0f:607:1024::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.mft rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:4f:5e:c3:aa:6a:4a:2c:39:4e:41:e5:18:e6:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6 Validity Not Before: Jan 1 14:19:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cefa5b5b4009067070d1b42c8589b63145fd5d59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:04:e7:0c:4a:6c:a8:68:2d:0b:ba:d8:79:ec: c7:d3:9d:20:d4:b5:e4:8d:69:3c:27:f1:5c:3d:c7: 8a:a8:d5:19:2a:ce:14:9a:b1:2a:5c:94:c7:b6:3b: 1c:1d:98:90:c4:13:14:0e:48:4a:54:f5:3b:ec:c2: 92:e2:b0:89:4d:e6:5d:71:34:2a:eb:74:52:6b:52: 85:61:40:20:bd:5e:e2:79:62:03:e4:62:8d:8d:39: d8:a9:1e:82:ff:7f:4a:d3:74:76:60:d7:5c:2f:29: 83:e2:ff:b4:04:82:56:f0:4c:f6:e8:63:ec:07:33: 1d:8d:d0:e4:71:1c:b1:06:3a:24:56:2e:ac:13:26: 17:06:1f:e0:0f:c0:ea:1f:ed:b1:f5:db:36:9b:74: 7a:15:0f:1e:3a:2b:c8:c4:d3:ab:4b:7f:2a:9b:61: d3:89:c2:9e:a4:86:4f:77:19:7f:a9:21:1f:dd:7a: 3c:bb:87:2a:89:15:bd:ab:82:9e:ad:9d:88:42:31: 36:d6:a4:2f:1a:3b:47:3a:52:0d:df:1e:42:96:cb: de:91:09:b7:00:cb:9b:b0:a7:43:4c:44:2a:c8:d3: bd:6d:41:9a:18:16:56:d4:9c:15:ea:51:c4:51:9e: 91:14:32:76:d0:80:ea:22:4f:4c:df:2c:3a:25:75: 76:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:FA:5B:5B:40:09:06:70:70:D1:B4:2C:85:89:B6:31:45:FD:5D:59 X509v3 Authority Key Identifier: keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/zvpbW0AJBnBw0bQshYm2MUX9XVk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:607:1024::/48 Signature Algorithm: sha256WithRSAEncryption 43:44:fe:7f:41:dd:b3:21:8f:a6:75:94:23:99:54:28:f3:e1: 71:a6:2b:f7:ad:e2:77:fc:bc:fa:77:13:f9:42:47:3f:72:ba: fe:8a:e5:3f:19:29:ad:61:15:ac:1d:5c:28:cd:a7:15:f3:90: f2:50:a1:b7:e3:c8:8e:dd:aa:6a:a0:dc:93:23:d4:6e:cb:c8: db:ef:0d:e0:67:10:52:2b:93:88:f6:a2:6b:61:0b:b9:f5:41: 81:c9:78:ef:90:1e:9c:0f:9c:c8:bc:81:8f:f4:3e:7c:01:de: 89:b4:f5:e9:a4:69:2e:c5:d8:18:1b:38:fa:f0:58:12:44:ca: 50:42:45:21:b6:0f:36:25:df:a8:ca:5e:6e:5a:a2:8e:e7:9c: 01:99:99:b9:3d:68:d8:95:24:d3:b1:84:5a:f8:6f:6f:f2:25: f8:af:fd:09:2b:7f:18:12:a3:dc:0f:46:70:8b:46:5f:2d:ab: 4e:97:42:39:45:91:56:c8:d5:d3:16:f2:d7:08:44:27:8d:0f: 78:6f:84:bc:e7:8f:9a:6c:ee:27:ca:cd:63:19:b1:1e:80:23: 39:6a:cb:60:1b:5c:9a:7d:9c:fe:eb:f5:0b:9b:29:0d:8f:bc: 60:da:3f:dd:84:96:ec:f7:96:e3:59:51:0c:9a:7b:fe:7b:35: 31:88:66:58 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt57U9ew6pqSiw5TkHlGObAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjMjFiOTI1YjRjNGJjYzMwZjc3YzljNDFiYThkMDQwYWM5 NWRmYzYwHhcNMjYwMTAxMTQxOTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZWZhNWI1YjQwMDkwNjcwNzBkMWI0MmM4NTg5YjYzMTQ1ZmQ1ZDU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxATnDEpsqGgtC7rYeezH050g1LXk jWk8J/FcPceKqNUZKs4UmrEqXJTHtjscHZiQxBMUDkhKVPU77MKS4rCJTeZdcTQq 63RSa1KFYUAgvV7ieWID5GKNjTnYqR6C/39K03R2YNdcLymD4v+0BIJW8Ez26GPs BzMdjdDkcRyxBjokVi6sEyYXBh/gD8DqH+2x9ds2m3R6FQ8eOivIxNOrS38qm2HT icKepIZPdxl/qSEf3Xo8u4cqiRW9q4KerZ2IQjE21qQvGjtHOlIN3x5ClsvekQm3 AMubsKdDTEQqyNO9bUGaGBZW1JwV6lHEUZ6RFDJ20IDqIk9M3yw6JXV2+wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFM76W1tACQZwcNG0LIWJtjFF/V1ZMB8GA1UdIwQY MBaAFAwhuSW0xLzDD3fJxBuo0ECsld/GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRENHNUpiVEV2TU1QZDhuRUc2alFRS3lWMzhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jMGJkNjctZjdkZC00Y2UyLWFiN2Ut YTM0NzU2NDE1OGY4LzEvenZwYlcwQUpCbkJ3MGJRc2hZbTJNVVg5WFZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9jMGJkNjctZjdkZC00Y2UyLWFiN2UtYTM0NzU2NDE1OGY4 LzEvRENHNUpiVEV2TU1QZDhuRUc2alFRS3lWMzhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg8GBxAk MA0GCSqGSIb3DQEBCwUAA4IBAQBDRP5/Qd2zIY+mdZQjmVQo8+Fxpiv3reJ3/Lz6 dxP5Qkc/crr+iuU/GSmtYRWsHVwozacV85DyUKG348iO3apqoNyTI9Ruy8jb7w3g ZxBSK5OI9qJrYQu59UGByXjvkB6cD5zIvIGP9D58Ad6JtPXppGkuxdgYGzj68FgS RMpQQkUhtg82Jd+oyl5uWqKO55wBmZm5PWjYlSTTsYRa+G9v8iX4r/0JK38YEqPc D0Zwi0ZfLatOl0I5RZFWyNXTFvLXCEQnjQ94b4S854+abO4nys1jGbEegCM5astg G1yafZz+6/ULmykNj7xg2j/dhJbs95bjWVEMmnv+ezUxiGZY -----END CERTIFICATE-----Generated at Thu Jan 8 00:39:23 2026 by rpki-client