This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/kzYQmwQKzbuQvS3iB2mDUlnw91Y.roa File: kzYQmwQKzbuQvS3iB2mDUlnw91Y.roa (raw, json) Hash identifier: bz4ecHp+kkkRf1WW8soaqZgJTcHf8FiOXW+H4gSzf48= Subject key identifier: 93:36:10:9B:04:0A:CD:BB:90:BD:2D:E2:07:69:83:52:59:F0:F7:56 Certificate issuer: /CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea Certificate serial: 019B7BA40AADD576F995CC1D868B4B47C4D0 Authority key identifier: 4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/kzYQmwQKzbuQvS3iB2mDUlnw91Y.roa Signing time: Thu 01 Jan 2026 22:18:26 +0000 ROA not before: Thu 01 Jan 2026 22:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 23470 IP address blocks: 2a0c:8fc3::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 00:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:0a:ad:d5:76:f9:95:cc:1d:86:8b:4b:47:c4:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea Validity Not Before: Jan 1 22:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9336109b040acdbb90bd2de20769835259f0f756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2a:63:c5:99:9b:d2:66:ae:14:bb:32:e2:cf: 28:4d:74:08:93:74:2c:92:fa:bf:ab:9f:73:fa:bb: 7e:0d:de:66:8c:e2:ea:3a:8b:b4:1e:cd:3c:fe:e6: b7:19:42:8d:a5:ad:22:e3:e2:eb:19:63:07:32:8b: c7:3f:76:8d:6d:d6:d9:43:09:1b:79:64:0c:ed:96: 00:79:75:c2:8f:d4:0e:00:90:fe:3d:90:b6:5f:49: 90:c3:18:0a:ba:4f:bd:b6:00:a4:89:bb:c0:14:6e: d5:43:9c:c0:72:52:69:e8:7f:84:96:dd:0a:8f:f8: 5c:b9:92:a9:23:44:5d:ea:64:07:2d:f1:a0:48:5c: 90:f2:6d:98:ea:64:8f:6e:30:6c:ca:0d:df:e3:05: d3:d9:28:8c:0e:97:e2:c7:65:92:0b:c9:e2:65:da: 92:d6:d0:71:7f:86:a3:1b:68:fe:3e:5d:e9:a4:ae: d3:d3:9d:c8:c6:6d:35:f8:7a:cf:fb:79:9f:0c:7e: 2e:de:25:82:57:98:20:59:31:d9:cd:d2:7f:27:94: 48:69:04:bb:5c:de:75:eb:f6:43:5a:2d:b9:b9:ea: a9:15:02:ef:bc:c2:98:f5:05:52:bb:d6:83:e5:37: 60:1d:c4:57:42:68:e0:04:bb:5e:be:60:57:4d:cb: 2e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:36:10:9B:04:0A:CD:BB:90:BD:2D:E2:07:69:83:52:59:F0:F7:56 X509v3 Authority Key Identifier: keyid:4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/kzYQmwQKzbuQvS3iB2mDUlnw91Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:8fc3::/32 Signature Algorithm: sha256WithRSAEncryption 22:2f:c2:71:34:eb:08:11:c0:94:f5:e2:69:f3:90:f2:16:0d: 50:f6:24:28:05:eb:64:ce:4a:a2:9f:08:63:af:77:80:7f:36: 08:b0:2b:1a:05:ae:a0:9f:81:00:10:48:f3:d9:50:d4:64:bf: a3:5c:58:90:9a:78:da:7f:63:c7:cc:1c:79:80:21:49:77:c0: cb:64:85:ae:39:22:d6:1e:5f:bb:31:23:ad:c9:ae:5e:b4:57: b6:59:5c:5e:89:7b:47:60:8a:6b:8a:ae:bc:a4:d2:ba:4a:6c: e3:45:c2:7c:fb:e1:51:f7:92:60:79:1c:0a:a0:3d:f2:1f:ba: e1:b5:56:b6:9b:fc:b7:a3:22:3a:34:58:dd:87:5d:22:14:75: eb:0c:95:70:f7:07:d2:32:26:23:95:72:7b:ff:7c:5c:20:16: ea:e0:02:96:85:3c:9b:82:8b:0b:8c:46:37:fd:d1:99:af:59: d9:10:a8:9d:96:3b:d4:93:98:4a:09:1b:95:6b:4f:ae:db:3a: 6f:ea:d3:c9:2e:f0:18:74:27:86:db:64:0e:43:02:83:23:e0: 80:50:f5:49:53:f2:9e:82:11:7d:49:2e:29:4c:e0:83:2d:7e: a2:8d:13:11:bc:a3:a5:67:85:7b:31:99:5c:50:19:fb:c2:78: e0:36:cd:fa -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt7pAqt1Xb5lcwdhotLR8TQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmM2JkNTZlOGI1NGU2ZGEyN2JiZTY2MjJkYWM2N2NiZjAy YTgxZWEwHhcNMjYwMTAxMjIxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MzM2MTA5YjA0MGFjZGJiOTBiZDJkZTIwNzY5ODM1MjU5ZjBmNzU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCpjxZmb0mauFLsy4s8oTXQIk3Qs kvq/q59z+rt+Dd5mjOLqOou0Hs08/ua3GUKNpa0i4+LrGWMHMovHP3aNbdbZQwkb eWQM7ZYAeXXCj9QOAJD+PZC2X0mQwxgKuk+9tgCkibvAFG7VQ5zAclJp6H+Elt0K j/hcuZKpI0Rd6mQHLfGgSFyQ8m2Y6mSPbjBsyg3f4wXT2SiMDpfix2WSC8niZdqS 1tBxf4ajG2j+Pl3ppK7T053Ixm01+HrP+3mfDH4u3iWCV5ggWTHZzdJ/J5RIaQS7 XN516/ZDWi25ueqpFQLvvMKY9QVSu9aD5TdgHcRXQmjgBLtevmBXTcsuVQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFJM2EJsECs27kL0t4gdpg1JZ8PdWMB8GA1UdIwQY MBaAFE871W6LVObaJ7vmYi2sZ8vwKoHqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHp2VmJvdFU1dG9udS1aaUxheG55X0FxZ2VvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS82ZmUxNDktOGE3Mi00N2ZkLTg3MzUt N2RjNWJkZGY5MWI1LzEva3pZUW13UUt6YnVRdlMzaUIybURVbG53OTFZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS82ZmUxNDktOGE3Mi00N2ZkLTg3MzUtN2RjNWJkZGY5MWI1 LzEvVHp2VmJvdFU1dG9udS1aaUxheG55X0FxZ2VvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgyPwzAN BgkqhkiG9w0BAQsFAAOCAQEAIi/CcTTrCBHAlPXiafOQ8hYNUPYkKAXrZM5Kop8I Y693gH82CLArGgWuoJ+BABBI89lQ1GS/o1xYkJp42n9jx8wceYAhSXfAy2SFrjki 1h5fuzEjrcmuXrRXtllcXol7R2CKa4quvKTSukps40XCfPvhUfeSYHkcCqA98h+6 4bVWtpv8t6MiOjRY3YddIhR16wyVcPcH0jImI5Vye/98XCAW6uACloU8m4KLC4xG N/3Rma9Z2RConZY71JOYSgkblWtPrts6b+rTyS7wGHQnhttkDkMCgyPggFD1SVPy noIRfUkuKUzggy1+oo0TEbyjpWeFezGZXFAZ+8J44DbN+g== -----END CERTIFICATE-----Generated at Thu Jan 8 09:24:02 2026 by rpki-client