This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/26a0a3-22f1-4ca1-a6cd-67ebbc8c6862/1/cAzWD4UWlj70EiLaNqvrtRF-AdQ.roa File: cAzWD4UWlj70EiLaNqvrtRF-AdQ.roa (raw, json) Hash identifier: dJLOsH5nvudA2pqcaJR1TYffAi1mHqotSh6hinQkzBk= Subject key identifier: 70:0C:D6:0F:85:16:96:3E:F4:12:22:DA:36:AB:EB:B5:11:7E:01:D4 Certificate issuer: /CN=77347e168d69658545374e6a0b68d24b97fcd006 Certificate serial: 019B78A35030EB4F668C122B02B7F7E8879A Authority key identifier: 77:34:7E:16:8D:69:65:85:45:37:4E:6A:0B:68:D2:4B:97:FC:D0:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzR-Fo1pZYVFN05qC2jSS5f80AY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/26a0a3-22f1-4ca1-a6cd-67ebbc8c6862/1/cAzWD4UWlj70EiLaNqvrtRF-AdQ.roa Signing time: Thu 01 Jan 2026 08:18:47 +0000 ROA not before: Thu 01 Jan 2026 08:18:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206260 IP address blocks: 88.84.32.0/20 maxlen: 20 185.9.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/26a0a3-22f1-4ca1-a6cd-67ebbc8c6862/1/dzR-Fo1pZYVFN05qC2jSS5f80AY.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/26a0a3-22f1-4ca1-a6cd-67ebbc8c6862/1/dzR-Fo1pZYVFN05qC2jSS5f80AY.mft rsync://rpki.ripe.net/repository/DEFAULT/dzR-Fo1pZYVFN05qC2jSS5f80AY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:50:30:eb:4f:66:8c:12:2b:02:b7:f7:e8:87:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77347e168d69658545374e6a0b68d24b97fcd006 Validity Not Before: Jan 1 08:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=700cd60f8516963ef41222da36abebb5117e01d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:74:36:30:d5:c6:4f:0e:13:2b:5f:04:ba:f1: 80:86:e4:49:94:f9:40:c3:40:fe:22:0f:d7:8d:0c: 83:62:91:09:48:ce:d0:4e:d3:0a:82:e4:28:ac:a7: 42:d2:f7:c4:d1:22:6e:02:ab:d6:1a:9a:a5:11:70: 90:6a:e5:27:a2:c3:61:cf:5a:d0:99:97:a4:f1:95: bb:8b:8f:8e:bb:81:61:b8:0a:e7:0f:20:c2:74:c0: e2:b4:5a:d8:ee:cf:81:9e:6d:cf:58:7f:12:97:b2: 38:a8:e1:24:29:3f:6f:49:67:c4:6e:d4:97:5b:89: f0:f8:8c:a1:e8:a7:c1:4b:b6:a1:fb:9f:c2:b2:da: 88:fc:f3:e1:08:17:ff:cc:36:60:84:fa:a9:de:11: 86:47:c0:82:d4:de:1f:50:33:ec:64:04:5d:b0:4f: 6e:64:b7:bf:a2:14:a8:10:a9:f1:14:2e:cd:b5:ef: b2:18:94:e8:c3:18:fd:80:60:92:6c:dd:63:7e:5a: 4a:15:20:26:2f:14:15:7f:a9:6e:cf:4e:10:46:38: 20:96:f8:68:29:d6:a6:a9:55:ee:99:7c:21:57:93: 1a:8d:ad:1a:b8:b9:b4:8a:94:9b:e1:45:94:5f:00: e0:9a:35:e5:1b:14:96:7c:24:ea:f0:1d:62:be:21: f0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:0C:D6:0F:85:16:96:3E:F4:12:22:DA:36:AB:EB:B5:11:7E:01:D4 X509v3 Authority Key Identifier: keyid:77:34:7E:16:8D:69:65:85:45:37:4E:6A:0B:68:D2:4B:97:FC:D0:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzR-Fo1pZYVFN05qC2jSS5f80AY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/26a0a3-22f1-4ca1-a6cd-67ebbc8c6862/1/cAzWD4UWlj70EiLaNqvrtRF-AdQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/26a0a3-22f1-4ca1-a6cd-67ebbc8c6862/1/dzR-Fo1pZYVFN05qC2jSS5f80AY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.84.32.0/20 185.9.88.0/23 Signature Algorithm: sha256WithRSAEncryption 81:77:02:aa:32:06:c4:d8:e8:2f:53:f6:4e:e7:2a:93:d5:db: 0c:41:ff:91:7b:bc:74:75:bd:5f:5f:cf:38:76:86:0c:b4:b2: 59:1b:a6:95:5f:44:77:16:5b:76:42:c4:a6:f6:18:90:f8:8e: e5:49:e2:20:c7:08:34:a3:e6:66:0e:45:5c:72:4e:ed:9d:db: 63:25:1d:19:7a:65:a0:7a:77:cf:09:ba:e1:29:d4:95:8f:a3: da:cf:7d:0d:8b:bb:31:94:6e:00:d3:9e:98:d2:69:69:e5:11: 2e:7e:9d:ec:7f:8e:c1:03:e3:0e:81:c1:b9:b4:82:a4:c8:c9: c8:a6:72:f0:c7:3f:b7:38:3c:09:55:85:5e:26:e9:74:a2:50: 2c:3f:12:be:f2:cf:4b:a9:d6:c2:b7:0e:40:84:46:b2:22:a1: 00:6b:fa:90:c9:e1:c7:62:65:05:dc:a9:e4:b6:02:4b:6b:35: ec:e1:c8:6c:1a:06:f3:9e:cb:44:1b:fa:ad:b6:78:80:da:a7: 8f:03:a2:33:7d:0d:9e:6e:2f:0c:37:81:6d:da:4c:54:da:61: 77:97:b8:d9:f7:42:6f:5d:b6:be:c7:a8:6b:c9:83:60:f3:3b: a1:3f:59:c4:57:58:1f:dd:a2:7a:3e:4f:39:a2:83:76:0b:c4: 7b:4e:66:fd -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4o1Aw609mjBIrArf36IeaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3MzQ3ZTE2OGQ2OTY1ODU0NTM3NGU2YTBiNjhkMjRiOTdm Y2QwMDYwHhcNMjYwMTAxMDgxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MDBjZDYwZjg1MTY5NjNlZjQxMjIyZGEzNmFiZWJiNTExN2UwMWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoHQ2MNXGTw4TK18EuvGAhuRJlPlA w0D+Ig/XjQyDYpEJSM7QTtMKguQorKdC0vfE0SJuAqvWGpqlEXCQauUnosNhz1rQ mZek8ZW7i4+Ou4FhuArnDyDCdMDitFrY7s+Bnm3PWH8Sl7I4qOEkKT9vSWfEbtSX W4nw+Iyh6KfBS7ah+5/CstqI/PPhCBf/zDZghPqp3hGGR8CC1N4fUDPsZARdsE9u ZLe/ohSoEKnxFC7Nte+yGJTowxj9gGCSbN1jflpKFSAmLxQVf6luz04QRjgglvho KdamqVXumXwhV5Maja0auLm0ipSb4UWUXwDgmjXlGxSWfCTq8B1iviHwIwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHAM1g+FFpY+9BIi2jar67URfgHUMB8GA1UdIwQY MBaAFHc0fhaNaWWFRTdOagto0kuX/NAGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHpSLUZvMXBaWVZGTjA1cUMyalNTNWY4MEFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8yNmEwYTMtMjJmMS00Y2ExLWE2Y2Qt NjdlYmJjOGM2ODYyLzEvY0F6V0Q0VVdsajcwRWlMYU5xdnJ0UkYtQWRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy8yNmEwYTMtMjJmMS00Y2ExLWE2Y2QtNjdlYmJjOGM2ODYy LzEvZHpSLUZvMXBaWVZGTjA1cUMyalNTNWY4MEFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEWFQgAwQB uQlYMA0GCSqGSIb3DQEBCwUAA4IBAQCBdwKqMgbE2OgvU/ZO5yqT1dsMQf+Re7x0 db1fX884doYMtLJZG6aVX0R3Flt2QsSm9hiQ+I7lSeIgxwg0o+ZmDkVcck7tndtj JR0ZemWgenfPCbrhKdSVj6Paz30Ni7sxlG4A056Y0mlp5REufp3sf47BA+MOgcG5 tIKkyMnIpnLwxz+3ODwJVYVeJul0olAsPxK+8s9LqdbCtw5AhEayIqEAa/qQyeHH YmUF3KnktgJLazXs4chsGgbznstEG/qttniA2qePA6IzfQ2ebi8MN4Ft2kxU2mF3 l7jZ90JvXba+x6hryYNg8zuhP1nEV1gf3aJ6Pk85ooN2C8R7Tmb9 -----END CERTIFICATE-----Generated at Mon Jan 26 22:36:13 2026 by rpki-client