This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/ZhZfvojxtl0-1Vh8VOJ7rtKsO9U.roa File: ZhZfvojxtl0-1Vh8VOJ7rtKsO9U.roa (raw, json) Hash identifier: rjeMgEmIzmO/qtzh5+aQsiRfqkpS/wbdwFYJRmTLpUg= Subject key identifier: 66:16:5F:BE:88:F1:B6:5D:3E:D5:58:7C:54:E2:7B:AE:D2:AC:3B:D5 Certificate issuer: /CN=19001d557a0698dad77c4b3eddf2a7d36b72ab00 Certificate serial: 019B77C6D1CA0355B3F395075B68E754C9A7 Authority key identifier: 19:00:1D:55:7A:06:98:DA:D7:7C:4B:3E:DD:F2:A7:D3:6B:72:AB:00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/ZhZfvojxtl0-1Vh8VOJ7rtKsO9U.roa Signing time: Thu 01 Jan 2026 04:17:57 +0000 ROA not before: Thu 01 Jan 2026 04:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197376 IP address blocks: 2a05:5fc1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:d1:ca:03:55:b3:f3:95:07:5b:68:e7:54:c9:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19001d557a0698dad77c4b3eddf2a7d36b72ab00 Validity Not Before: Jan 1 04:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=66165fbe88f1b65d3ed5587c54e27baed2ac3bd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b1:96:69:0e:e7:1b:64:f3:d7:ff:d7:8c:22: e3:e1:e2:14:26:8d:5d:70:9e:fe:0b:bd:2a:e4:5f: 7b:7f:87:74:c9:26:3c:72:25:d5:8c:05:22:e3:d9: 27:80:80:4d:b2:7e:aa:83:1e:08:bd:2e:04:e2:98: 90:06:6d:cb:cc:9e:28:e2:fb:5a:a0:d5:21:10:17: d4:45:39:e9:fc:a5:6f:38:b7:58:ed:9c:f7:be:d6: 05:38:4f:57:81:c7:72:dd:f3:92:dd:95:50:66:12: 5d:84:9d:1d:6f:d6:4e:83:d0:e5:74:d6:0a:78:53: 84:12:0a:3b:4a:e5:90:43:31:4e:a3:bd:c1:18:d5: f4:b2:91:12:6c:47:79:51:89:20:62:7e:8d:99:15: bd:da:3e:63:0c:7d:26:92:47:95:7c:9e:c9:4f:8d: 82:be:15:19:de:e4:ed:5f:08:ca:5b:61:10:99:fa: 57:5e:da:a1:e5:2f:b0:65:0a:7f:88:b3:f2:e2:07: d5:50:59:49:7c:42:24:d1:6f:07:97:e7:bd:42:35: eb:01:76:df:7b:d4:53:48:40:92:9d:78:a2:46:73: 1e:be:8f:0b:ad:ed:96:69:ea:3c:4f:b0:33:52:69: f6:f4:0b:82:41:62:a6:9e:c0:39:df:a3:6f:74:ee: 8a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:16:5F:BE:88:F1:B6:5D:3E:D5:58:7C:54:E2:7B:AE:D2:AC:3B:D5 X509v3 Authority Key Identifier: keyid:19:00:1D:55:7A:06:98:DA:D7:7C:4B:3E:DD:F2:A7:D3:6B:72:AB:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/ZhZfvojxtl0-1Vh8VOJ7rtKsO9U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:5fc1::/32 Signature Algorithm: sha256WithRSAEncryption 6e:bf:9e:0e:83:88:0c:18:4e:65:f9:a9:7a:9c:43:8b:59:8f: 89:6d:05:a8:7b:70:64:28:1e:ec:24:d6:f6:e6:c1:2a:66:87: 43:72:bb:19:d1:e8:66:25:7f:a9:b9:c2:9d:35:0a:c3:b6:a5: 84:d2:f9:85:d1:ec:0c:8a:6d:2b:42:ab:c5:1e:1d:7a:be:2f: c9:67:0d:fe:64:59:ad:7d:36:dc:12:3d:64:32:38:14:a1:73: 64:19:79:aa:d6:1d:4d:98:dc:6a:cc:3b:48:89:8d:14:9b:cf: f1:66:64:46:c1:3c:5f:c1:91:70:c1:cb:af:bb:f1:28:8d:bc: ad:e4:f5:ec:75:98:df:1c:0c:ac:b4:a6:ff:f0:c5:f9:fd:d4: 9e:eb:03:18:cc:14:b5:52:61:30:49:bc:f2:52:9e:aa:ba:5e: d0:ba:7a:a6:ff:7b:11:dd:24:71:fe:3a:c4:26:93:76:d2:62: 1c:a6:27:4a:90:df:08:17:48:c8:52:2f:2b:2f:13:3b:eb:cb: d2:d1:37:83:56:4a:4e:62:85:a2:54:76:2e:d3:1e:d0:be:f3: 15:3d:b4:d0:ca:e1:b3:6d:28:a7:f1:8f:1b:e1:84:9f:00:80: 32:88:b8:15:91:4e:65:be:08:ca:20:62:73:c3:f8:9f:b9:6e: 0c:ef:86:bd -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt3xtHKA1Wz85UHW2jnVMmnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE5MDAxZDU1N2EwNjk4ZGFkNzdjNGIzZWRkZjJhN2QzNmI3 MmFiMDAwHhcNMjYwMTAxMDQxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NjE2NWZiZTg4ZjFiNjVkM2VkNTU4N2M1NGUyN2JhZWQyYWMzYmQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0bGWaQ7nG2Tz1//XjCLj4eIUJo1d cJ7+C70q5F97f4d0ySY8ciXVjAUi49kngIBNsn6qgx4IvS4E4piQBm3LzJ4o4vta oNUhEBfURTnp/KVvOLdY7Zz3vtYFOE9Xgcdy3fOS3ZVQZhJdhJ0db9ZOg9DldNYK eFOEEgo7SuWQQzFOo73BGNX0spESbEd5UYkgYn6NmRW92j5jDH0mkkeVfJ7JT42C vhUZ3uTtXwjKW2EQmfpXXtqh5S+wZQp/iLPy4gfVUFlJfEIk0W8Hl+e9QjXrAXbf e9RTSECSnXiiRnMevo8Lre2Waeo8T7AzUmn29AuCQWKmnsA536NvdO6KYwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFGYWX76I8bZdPtVYfFTie67SrDvVMB8GA1UdIwQY MBaAFBkAHVV6Bpja13xLPt3yp9NrcqsAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR1FBZFZYb0dtTnJYZkVzLTNmS24wMnR5cXdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9iY2RlY2QtNjY4OS00Y2Q4LWExMDkt MjBkZTY5NzI2MDliLzEvWmhaZnZvanh0bDAtMVZoOFZPSjdydEtzTzlVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9iY2RlY2QtNjY4OS00Y2Q4LWExMDktMjBkZTY5NzI2MDli LzEvR1FBZFZYb0dtTnJYZkVzLTNmS24wMnR5cXdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgVfwTAN BgkqhkiG9w0BAQsFAAOCAQEAbr+eDoOIDBhOZfmpepxDi1mPiW0FqHtwZCge7CTW 9ubBKmaHQ3K7GdHoZiV/qbnCnTUKw7alhNL5hdHsDIptK0KrxR4der4vyWcN/mRZ rX023BI9ZDI4FKFzZBl5qtYdTZjcasw7SImNFJvP8WZkRsE8X8GRcMHLr7vxKI28 reT17HWY3xwMrLSm//DF+f3UnusDGMwUtVJhMEm88lKeqrpe0Lp6pv97Ed0kcf46 xCaTdtJiHKYnSpDfCBdIyFIvKy8TO+vL0tE3g1ZKTmKFolR2LtMe0L7zFT200Mrh s20op/GPG+GEnwCAMoi4FZFOZb4IyiBic8P4n7luDO+GvQ== -----END CERTIFICATE-----Generated at Tue Feb 10 04:15:43 2026 by rpki-client