This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/ZK9ALarqOpzm0i2rpLZ-rHOMzdo.roa File: ZK9ALarqOpzm0i2rpLZ-rHOMzdo.roa (raw, json) Hash identifier: RllCIZ6AldL0IOvShUd1+ZNf+viS99vPh52YLrvbtJU= Subject key identifier: 64:AF:40:2D:AA:EA:3A:9C:E6:D2:2D:AB:A4:B6:7E:AC:73:8C:CD:DA Certificate issuer: /CN=6d069e19e12c104004e8b4b75f8a7789b7e11396 Certificate serial: 019B797DE6E821240D69015F667FCDD6F810 Authority key identifier: 6D:06:9E:19:E1:2C:10:40:04:E8:B4:B7:5F:8A:77:89:B7:E1:13:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/ZK9ALarqOpzm0i2rpLZ-rHOMzdo.roa Signing time: Thu 01 Jan 2026 12:17:32 +0000 ROA not before: Thu 01 Jan 2026 12:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31898 IP address blocks: 145.69.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.mft rsync://rpki.ripe.net/repository/DEFAULT/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 12:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7d:e6:e8:21:24:0d:69:01:5f:66:7f:cd:d6:f8:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d069e19e12c104004e8b4b75f8a7789b7e11396 Validity Not Before: Jan 1 12:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=64af402daaea3a9ce6d22daba4b67eac738ccdda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:96:bf:18:f1:6d:5a:49:29:00:2b:ab:dd:d3: e1:d0:35:ae:7a:9d:2c:1b:ae:6e:60:10:15:ff:16: 5b:22:05:9c:19:d0:ff:9b:bc:99:df:3f:b9:2b:41: 48:49:a4:8d:69:57:97:12:df:a6:ec:52:45:33:ec: fe:32:a0:bb:1c:31:a8:fe:66:d3:d0:da:82:98:b3: 49:2a:1e:82:bd:c8:f5:71:72:bd:77:43:1b:cf:23: e9:a0:34:0b:9c:a3:13:4f:73:e5:a5:f0:2a:ec:ab: dc:e6:85:f0:e1:b1:82:73:21:98:17:ec:fb:40:51: b7:50:dd:37:6a:9e:aa:d7:93:b2:b0:13:4c:4b:49: f6:d8:0a:ae:73:5b:12:4e:f0:93:24:01:2f:62:35: c6:da:95:a4:a2:7d:ad:ad:9e:19:aa:5e:50:a2:40: 83:86:39:47:f2:0f:87:45:29:6d:44:6b:5a:7a:66: 11:c1:5e:1c:09:47:c3:ee:2f:32:24:ed:83:8c:d4: a7:f9:6a:ae:ec:2d:3f:c9:6b:b6:d5:d0:2f:3c:57: f6:b8:a0:bd:01:9e:c1:75:2c:de:f1:aa:d9:d6:74: 64:74:c7:9a:ad:67:d9:80:11:6a:cb:50:0d:d0:6b: 64:39:88:bd:2e:9a:7a:21:bd:f0:1d:f9:f0:3f:13: 0f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:AF:40:2D:AA:EA:3A:9C:E6:D2:2D:AB:A4:B6:7E:AC:73:8C:CD:DA X509v3 Authority Key Identifier: keyid:6D:06:9E:19:E1:2C:10:40:04:E8:B4:B7:5F:8A:77:89:B7:E1:13:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/ZK9ALarqOpzm0i2rpLZ-rHOMzdo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.69.80.0/21 Signature Algorithm: sha256WithRSAEncryption 81:1a:49:a3:de:32:10:ac:c0:fb:3f:7b:ca:9b:2a:e4:fb:5a: ef:7e:a2:ec:33:95:93:57:0e:18:c5:29:fa:f8:59:40:52:3d: c5:4f:66:cd:49:67:87:26:b8:df:72:c1:a2:34:90:2f:f5:0c: 92:90:97:51:19:5b:56:c8:3e:21:52:40:f5:33:34:a3:41:3f: a1:06:ba:fe:6c:5a:2c:42:36:9b:8d:45:6f:1e:3d:ec:e5:68: 15:9b:c5:89:c1:47:cb:13:8b:8e:1d:9f:26:9e:cc:22:a1:93: 62:10:08:34:54:a5:16:51:c4:9b:b6:af:8a:53:40:58:10:48: 4f:6e:10:6c:ca:38:a6:93:b9:8f:00:dc:22:12:98:56:2b:8c: 38:3c:26:3a:82:d0:b3:8c:48:5a:d9:78:4e:f3:90:87:dd:6a: b4:2a:92:cb:70:38:7b:38:05:7b:04:20:e0:2a:91:ce:31:ca: fc:a3:2e:db:68:35:57:b8:aa:c4:23:ef:36:7b:2d:35:f4:48: d0:3e:e0:cf:20:ef:75:dc:e2:8b:69:76:ff:71:68:e1:3b:06: b0:02:59:2c:0b:18:2f:e9:68:95:2a:b9:d9:9d:77:2a:01:b2: 1b:b1:7c:1b:41:b4:90:85:8e:ea:d2:ad:86:e3:86:23:3c:4c: 4e:60:d2:2d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5feboISQNaQFfZn/N1vgQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMDY5ZTE5ZTEyYzEwNDAwNGU4YjRiNzVmOGE3Nzg5Yjdl MTEzOTYwHhcNMjYwMTAxMTIxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NGFmNDAyZGFhZWEzYTljZTZkMjJkYWJhNGI2N2VhYzczOGNjZGRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5a/GPFtWkkpACur3dPh0DWuep0s G65uYBAV/xZbIgWcGdD/m7yZ3z+5K0FISaSNaVeXEt+m7FJFM+z+MqC7HDGo/mbT 0NqCmLNJKh6Cvcj1cXK9d0MbzyPpoDQLnKMTT3PlpfAq7Kvc5oXw4bGCcyGYF+z7 QFG3UN03ap6q15OysBNMS0n22Aquc1sSTvCTJAEvYjXG2pWkon2trZ4Zql5QokCD hjlH8g+HRSltRGtaemYRwV4cCUfD7i8yJO2DjNSn+Wqu7C0/yWu21dAvPFf2uKC9 AZ7BdSze8arZ1nRkdMearWfZgBFqy1AN0GtkOYi9Lpp6Ib3wHfnwPxMPJwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGSvQC2q6jqc5tItq6S2fqxzjM3aMB8GA1UdIwQY MBaAFG0GnhnhLBBABOi0t1+Kd4m34ROWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlFhZUdlRXNFRUFFNkxTM1g0cDNpYmZoRTVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9jZjY0ZjYtMDc4OS00M2UzLWJkNmIt N2JmZjI5NmM2YjAyLzEvWks5QUxhcnFPcHptMGkycnBMWi1ySE9NemRvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi9jZjY0ZjYtMDc4OS00M2UzLWJkNmItN2JmZjI5NmM2YjAy LzEvYlFhZUdlRXNFRUFFNkxTM1g0cDNpYmZoRTVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDkUVQMA0G CSqGSIb3DQEBCwUAA4IBAQCBGkmj3jIQrMD7P3vKmyrk+1rvfqLsM5WTVw4YxSn6 +FlAUj3FT2bNSWeHJrjfcsGiNJAv9QySkJdRGVtWyD4hUkD1MzSjQT+hBrr+bFos QjabjUVvHj3s5WgVm8WJwUfLE4uOHZ8mnswioZNiEAg0VKUWUcSbtq+KU0BYEEhP bhBsyjimk7mPANwiEphWK4w4PCY6gtCzjEha2XhO85CH3Wq0KpLLcDh7OAV7BCDg KpHOMcr8oy7baDVXuKrEI+82ey019EjQPuDPIO913OKLaXb/cWjhOwawAlksCxgv 6WiVKrnZnXcqAbIbsXwbQbSQhY7q0q2G44YjPExOYNIt -----END CERTIFICATE-----Generated at Sat Jan 10 20:49:50 2026 by rpki-client