This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/439285-722a-42df-b185-303151d76ace/1/ZHhc0L728ye9C_PaxE7QKIWysf0.roa File: ZHhc0L728ye9C_PaxE7QKIWysf0.roa (raw, json) Hash identifier: IYrJXv7Z8+WyubB49OSinWGa68suJopradNDMs9g9yQ= Subject key identifier: 64:78:5C:D0:BE:F6:F3:27:BD:0B:F3:DA:C4:4E:D0:28:85:B2:B1:FD Certificate issuer: /CN=5476c3ca780cc57744adbe90a0f394f1d1cd72f3 Certificate serial: 019B7DCB639EE80C8BE864E1E6036137E8B8 Authority key identifier: 54:76:C3:CA:78:0C:C5:77:44:AD:BE:90:A0:F3:94:F1:D1:CD:72:F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VHbDyngMxXdErb6QoPOU8dHNcvM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/439285-722a-42df-b185-303151d76ace/1/ZHhc0L728ye9C_PaxE7QKIWysf0.roa Signing time: Fri 02 Jan 2026 08:20:39 +0000 ROA not before: Fri 02 Jan 2026 08:20:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13023 IP address blocks: 2a0b:2bc0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/439285-722a-42df-b185-303151d76ace/1/VHbDyngMxXdErb6QoPOU8dHNcvM.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/439285-722a-42df-b185-303151d76ace/1/VHbDyngMxXdErb6QoPOU8dHNcvM.mft rsync://rpki.ripe.net/repository/DEFAULT/VHbDyngMxXdErb6QoPOU8dHNcvM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:63:9e:e8:0c:8b:e8:64:e1:e6:03:61:37:e8:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5476c3ca780cc57744adbe90a0f394f1d1cd72f3 Validity Not Before: Jan 2 08:20:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=64785cd0bef6f327bd0bf3dac44ed02885b2b1fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8a:9c:d7:f6:3b:29:b4:93:29:c8:bd:a9:71: 70:3f:e5:7d:2a:b9:a1:19:95:5a:ad:67:2a:c4:c3: 50:1c:7e:26:8e:12:8a:22:91:2b:b5:cc:67:c6:4b: be:11:74:d9:3d:2b:4e:a7:bc:bd:06:7c:2e:07:b7: 30:61:9c:a1:8d:59:63:45:98:06:a0:aa:7d:d5:b2: 5e:e2:95:8f:76:52:a5:44:d2:b3:5c:23:6a:a0:6e: ef:0d:61:41:43:b1:71:78:51:29:d0:a1:a9:42:c9: 77:c3:48:89:0a:9d:8d:6f:ce:84:2a:f2:fe:dc:43: d7:12:7c:99:7a:3c:08:bb:04:95:b5:0f:9d:10:a5: a0:c1:29:80:b2:d1:97:38:8a:a7:ae:16:97:bc:c0: 30:eb:1b:d6:5c:5a:9e:b4:ee:46:f8:04:bb:92:75: 88:ef:41:af:61:99:ff:31:32:b6:69:0c:c3:b2:ad: 08:dd:c1:d3:0e:4d:a8:72:b1:05:db:01:c7:55:c7: 38:33:e9:a4:d3:ea:44:e9:c5:4e:a2:12:50:fe:c5: ec:67:fc:1f:b6:1b:fe:72:22:f5:68:02:0d:38:ca: ac:c0:90:6b:14:5a:e1:33:69:75:c6:e4:94:b3:33: fd:fb:db:e0:73:c6:f1:9f:df:0b:64:09:52:de:55: 7a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:78:5C:D0:BE:F6:F3:27:BD:0B:F3:DA:C4:4E:D0:28:85:B2:B1:FD X509v3 Authority Key Identifier: keyid:54:76:C3:CA:78:0C:C5:77:44:AD:BE:90:A0:F3:94:F1:D1:CD:72:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VHbDyngMxXdErb6QoPOU8dHNcvM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/439285-722a-42df-b185-303151d76ace/1/ZHhc0L728ye9C_PaxE7QKIWysf0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/439285-722a-42df-b185-303151d76ace/1/VHbDyngMxXdErb6QoPOU8dHNcvM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:2bc0::/29 Signature Algorithm: sha256WithRSAEncryption 87:89:3e:02:4c:43:71:08:51:66:ed:03:c0:49:d1:51:db:8e: ee:1b:4c:46:79:ef:59:03:2b:0f:be:51:33:c4:20:df:56:2b: 12:47:d4:a5:11:86:6b:ad:28:e3:aa:29:6e:14:e6:48:d9:50: ab:10:1d:25:28:4a:a3:04:90:10:43:4a:87:24:7e:de:77:b5: 37:32:f4:a6:92:21:e4:9e:9f:a2:26:87:e2:70:97:07:b1:f8: a1:3a:97:98:aa:b0:a6:b5:d6:e5:8e:64:e5:dc:34:99:63:f7: 2b:0e:fc:d1:55:82:7d:b3:7c:3a:38:30:9a:0e:7f:95:9c:df: 7f:03:2b:26:e2:40:64:64:4b:37:9c:67:c9:28:35:54:3b:9c: 2b:d7:90:a4:2c:a5:e0:4d:23:bb:4c:d4:cb:93:f6:d7:a0:e9: ec:48:34:5c:66:c8:4f:df:27:52:79:ec:3f:32:40:d7:c6:49: 93:55:e7:95:7f:83:8a:74:d6:27:07:63:8a:b7:c9:46:b6:6d: ab:af:01:38:95:aa:25:59:dc:93:28:4a:48:b7:b8:4b:58:4c: 3c:a0:a6:73:a9:4a:50:f8:1c:03:40:ad:4d:b2:12:81:61:d0: 56:18:47:63:c6:b3:61:6b:68:70:57:b3:cd:c5:d0:88:25:da: d3:f6:bf:7c -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt9y2Oe6AyL6GTh5gNhN+i4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0NzZjM2NhNzgwY2M1Nzc0NGFkYmU5MGEwZjM5NGYxZDFj ZDcyZjMwHhcNMjYwMTAyMDgyMDM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NDc4NWNkMGJlZjZmMzI3YmQwYmYzZGFjNDRlZDAyODg1YjJiMWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm4qc1/Y7KbSTKci9qXFwP+V9Krmh GZVarWcqxMNQHH4mjhKKIpErtcxnxku+EXTZPStOp7y9BnwuB7cwYZyhjVljRZgG oKp91bJe4pWPdlKlRNKzXCNqoG7vDWFBQ7FxeFEp0KGpQsl3w0iJCp2Nb86EKvL+ 3EPXEnyZejwIuwSVtQ+dEKWgwSmAstGXOIqnrhaXvMAw6xvWXFqetO5G+AS7knWI 70GvYZn/MTK2aQzDsq0I3cHTDk2ocrEF2wHHVcc4M+mk0+pE6cVOohJQ/sXsZ/wf thv+ciL1aAINOMqswJBrFFrhM2l1xuSUszP9+9vgc8bxn98LZAlS3lV6eQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFGR4XNC+9vMnvQvz2sRO0CiFsrH9MB8GA1UdIwQY MBaAFFR2w8p4DMV3RK2+kKDzlPHRzXLzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkhiRHluZ014WGRFcmI2UW9QT1U4ZEhOY3ZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi80MzkyODUtNzIyYS00MmRmLWIxODUt MzAzMTUxZDc2YWNlLzEvWkhoYzBMNzI4eWU5Q19QYXhFN1FLSVd5c2YwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi80MzkyODUtNzIyYS00MmRmLWIxODUtMzAzMTUxZDc2YWNl LzEvVkhiRHluZ014WGRFcmI2UW9QT1U4ZEhOY3ZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgsrwDAN BgkqhkiG9w0BAQsFAAOCAQEAh4k+AkxDcQhRZu0DwEnRUduO7htMRnnvWQMrD75R M8Qg31YrEkfUpRGGa60o46opbhTmSNlQqxAdJShKowSQEENKhyR+3ne1NzL0ppIh 5J6foiaH4nCXB7H4oTqXmKqwprXW5Y5k5dw0mWP3Kw780VWCfbN8Ojgwmg5/lZzf fwMrJuJAZGRLN5xnySg1VDucK9eQpCyl4E0ju0zUy5P216Dp7Eg0XGbIT98nUnns PzJA18ZJk1XnlX+DinTWJwdjirfJRrZtq68BOJWqJVnckyhKSLe4S1hMPKCmc6lK UPgcA0CtTbISgWHQVhhHY8azYWtocFezzcXQiCXa0/a/fA== -----END CERTIFICATE-----Generated at Fri Jan 2 18:34:12 2026 by rpki-client