This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/zZg0Csl_RNDwZdyAxjZIHwPI4Ko.roa File: zZg0Csl_RNDwZdyAxjZIHwPI4Ko.roa (raw, json) Hash identifier: +iKsjZKuaFbNprJ0yY57zMqSiVyavttDTITQNXHNItw= Subject key identifier: CD:98:34:0A:C9:7F:44:D0:F0:65:DC:80:C6:36:48:1F:03:C8:E0:AA Certificate issuer: /CN=517a0c96842bafc9f630ba14b83ea79bd12a53b9 Certificate serial: 019B775949F8CCC020682606A633ECEF09C3 Authority key identifier: 51:7A:0C:96:84:2B:AF:C9:F6:30:BA:14:B8:3E:A7:9B:D1:2A:53:B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UXoMloQrr8n2MLoUuD6nm9EqU7k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/zZg0Csl_RNDwZdyAxjZIHwPI4Ko.roa Signing time: Thu 01 Jan 2026 02:18:18 +0000 ROA not before: Thu 01 Jan 2026 02:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47504 IP address blocks: 2a13:cc87:ff00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/UXoMloQrr8n2MLoUuD6nm9EqU7k.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/UXoMloQrr8n2MLoUuD6nm9EqU7k.mft rsync://rpki.ripe.net/repository/DEFAULT/UXoMloQrr8n2MLoUuD6nm9EqU7k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:49:f8:cc:c0:20:68:26:06:a6:33:ec:ef:09:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=517a0c96842bafc9f630ba14b83ea79bd12a53b9 Validity Not Before: Jan 1 02:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cd98340ac97f44d0f065dc80c636481f03c8e0aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:1b:be:9c:79:20:db:21:61:38:ae:55:b5:9f: 01:1d:3e:2b:a5:64:55:f8:f6:5d:93:e7:07:19:b5: 0c:6f:8b:14:82:f8:7d:c3:2f:5d:23:87:a7:18:0e: 4c:93:b5:82:01:81:e2:b9:c0:a5:9b:4a:16:b1:2c: 31:6e:84:f5:af:08:53:22:91:06:90:3b:03:55:2c: d7:a8:94:f2:c4:8b:d9:3c:f9:f9:38:87:b1:b0:6f: 7e:cc:e5:93:4a:e2:a2:9e:c4:41:53:ed:14:94:2d: d2:1e:e8:e3:a3:89:10:07:43:e7:d7:47:33:dd:bd: c2:76:b7:39:0b:af:0a:75:7a:13:aa:66:22:53:81: 06:94:ba:b7:1b:c8:be:e4:01:2c:4e:65:ce:2d:68: 0b:14:97:fb:e0:a0:b9:33:2e:b8:c8:18:c4:4e:2c: 42:d5:d0:96:f2:87:17:e2:5c:b8:44:2c:31:5c:94: f3:0a:46:a6:c5:49:f5:42:98:46:bc:56:59:73:38: b6:02:f7:7d:3e:e0:5e:f4:97:5b:1a:d5:5a:3a:fb: a5:03:12:f3:2a:6e:81:7e:1f:2f:a1:a6:1d:61:1b: 3b:9b:59:81:e1:38:c9:11:dc:85:6e:15:fc:49:8a: 7a:e1:f1:66:53:83:ba:39:a7:51:85:4c:66:1e:99: bd:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:98:34:0A:C9:7F:44:D0:F0:65:DC:80:C6:36:48:1F:03:C8:E0:AA X509v3 Authority Key Identifier: keyid:51:7A:0C:96:84:2B:AF:C9:F6:30:BA:14:B8:3E:A7:9B:D1:2A:53:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UXoMloQrr8n2MLoUuD6nm9EqU7k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/zZg0Csl_RNDwZdyAxjZIHwPI4Ko.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/UXoMloQrr8n2MLoUuD6nm9EqU7k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:cc87:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 86:aa:98:00:82:7d:bb:74:ea:41:4b:e3:1f:c7:bc:b1:e1:b9: 61:cd:10:74:05:74:18:08:24:a9:7b:23:ec:2f:20:ee:3e:3d: 0f:dc:20:2a:41:1a:8e:e1:a5:63:30:69:59:24:64:db:26:10: 88:91:80:b4:5c:0b:2d:43:56:42:a8:99:1e:25:18:b3:7a:31: d4:3f:de:36:2b:4d:a8:34:41:97:b5:a0:96:a4:6e:f9:78:eb: 89:2b:f3:9b:8c:5c:dd:45:1f:3a:8b:b4:72:45:69:42:8f:ef: 39:a1:89:db:92:01:f5:64:62:ee:d3:74:f4:c9:c9:3f:4a:52: b0:45:3d:b8:7f:c8:7f:f7:20:c3:4b:6a:62:bd:f9:ee:ff:c6: 08:0d:28:75:41:21:24:40:ca:19:54:03:a0:5a:86:37:55:8c: 18:9c:de:01:f9:b5:fb:ae:9c:e3:76:2a:ee:05:2f:62:6a:0a: 3d:43:e2:04:66:8a:53:09:83:4c:df:50:e9:d3:01:64:2a:b4: e1:5d:d1:c1:f6:17:c2:26:06:31:6c:15:5d:16:ac:14:1a:b3: a0:2f:5c:0b:ff:7c:b2:00:ce:8a:eb:e2:5a:58:76:67:ea:aa: 21:29:57:c4:83:4b:a3:df:c2:24:34:7b:1e:a2:ed:41:93:b2: b7:8c:ef:06 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt3WUn4zMAgaCYGpjPs7wnDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxN2EwYzk2ODQyYmFmYzlmNjMwYmExNGI4M2VhNzliZDEy YTUzYjkwHhcNMjYwMTAxMDIxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZDk4MzQwYWM5N2Y0NGQwZjA2NWRjODBjNjM2NDgxZjAzYzhlMGFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiRu+nHkg2yFhOK5VtZ8BHT4rpWRV +PZdk+cHGbUMb4sUgvh9wy9dI4enGA5Mk7WCAYHiucClm0oWsSwxboT1rwhTIpEG kDsDVSzXqJTyxIvZPPn5OIexsG9+zOWTSuKinsRBU+0UlC3SHujjo4kQB0Pn10cz 3b3Cdrc5C68KdXoTqmYiU4EGlLq3G8i+5AEsTmXOLWgLFJf74KC5My64yBjETixC 1dCW8ocX4ly4RCwxXJTzCkamxUn1QphGvFZZczi2Avd9PuBe9JdbGtVaOvulAxLz Km6Bfh8voaYdYRs7m1mB4TjJEdyFbhX8SYp64fFmU4O6OadRhUxmHpm9aQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFM2YNArJf0TQ8GXcgMY2SB8DyOCqMB8GA1UdIwQY MBaAFFF6DJaEK6/J9jC6FLg+p5vRKlO5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVhvTWxvUXJyOG4yTUxvVXVENm5tOUVxVTdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8xNGU0OTItODUyNS00ZWVjLTg0YmMt YjBlYjY3MTVlMGFmLzEvelpnMENzbF9STkR3WmR5QXhqWklId1BJNEtvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy8xNGU0OTItODUyNS00ZWVjLTg0YmMtYjBlYjY3MTVlMGFm LzEvVVhvTWxvUXJyOG4yTUxvVXVENm5tOUVxVTdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhPMh/8w DQYJKoZIhvcNAQELBQADggEBAIaqmACCfbt06kFL4x/HvLHhuWHNEHQFdBgIJKl7 I+wvIO4+PQ/cICpBGo7hpWMwaVkkZNsmEIiRgLRcCy1DVkKomR4lGLN6MdQ/3jYr Tag0QZe1oJakbvl464kr85uMXN1FHzqLtHJFaUKP7zmhiduSAfVkYu7TdPTJyT9K UrBFPbh/yH/3IMNLamK9+e7/xggNKHVBISRAyhlUA6BahjdVjBic3gH5tfuunON2 Ku4FL2JqCj1D4gRmilMJg0zfUOnTAWQqtOFd0cH2F8ImBjFsFV0WrBQas6AvXAv/ fLIAzorr4lpYdmfqqiEpV8SDS6PfwiQ0ex6i7UGTsreM7wY= -----END CERTIFICATE-----Generated at Wed Jan 7 22:29:28 2026 by rpki-client