This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/zQGExbN8DTCCuFmXtuWo8eVTwQg.roa File: zQGExbN8DTCCuFmXtuWo8eVTwQg.roa (raw, json) Hash identifier: 1ZA8dUZPVA6w/KLwhKYVFXj1NZnomrC7+BPeOgJZCsA= Subject key identifier: CD:01:84:C5:B3:7C:0D:30:82:B8:59:97:B6:E5:A8:F1:E5:53:C1:08 Certificate issuer: /CN=3691d2950145dceac00c0ca4eb536d92867b38d3 Certificate serial: 019B7D5CB007A10231CC093F21C42C71D51D Authority key identifier: 36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/zQGExbN8DTCCuFmXtuWo8eVTwQg.roa Signing time: Fri 02 Jan 2026 06:19:44 +0000 ROA not before: Fri 02 Jan 2026 06:19:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57483 IP address blocks: 2a0c:2f04:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/NpHSlQFF3OrADAyk61NtkoZ7ONM.crl rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/NpHSlQFF3OrADAyk61NtkoZ7ONM.mft rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:b0:07:a1:02:31:cc:09:3f:21:c4:2c:71:d5:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3691d2950145dceac00c0ca4eb536d92867b38d3 Validity Not Before: Jan 2 06:19:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cd0184c5b37c0d3082b85997b6e5a8f1e553c108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2b:0d:49:e2:a2:89:8b:f7:c2:98:3a:0a:85: c9:4a:e5:8e:a3:88:ed:d5:e4:fb:7b:69:ed:70:a1: 1e:b6:fb:c4:66:21:05:86:be:e4:e8:4d:68:83:1f: 0f:3e:3e:33:1a:8d:bc:e7:c2:a1:db:3c:e9:04:bb: 20:7b:15:de:df:ac:6d:33:b9:5f:f7:08:34:31:e8: 8d:3f:0f:5c:6b:76:ff:d5:4b:90:1b:39:f1:e6:fb: 2b:ed:02:b5:7b:60:d7:9d:6b:e4:d3:f2:c9:b4:ca: 55:5c:00:8c:24:a3:79:30:f7:c6:f3:4d:c8:2d:b1: a4:c7:41:68:8d:9a:96:12:32:6a:f1:b0:0a:3e:05: 7c:31:48:1d:d4:1e:0f:59:04:fb:d8:dd:41:f8:b2: f2:3c:e0:99:32:c0:ad:2c:b1:b3:8f:a0:5f:a1:7a: 1c:11:33:67:64:f2:df:1b:38:a9:83:2b:cc:77:16: 7e:2b:ab:e4:26:1d:2b:d5:aa:c7:05:62:9b:3e:a7: c3:43:7c:94:b8:46:d5:b6:96:99:3a:2f:bd:bb:f0: c1:f8:88:91:a4:bf:7c:89:0f:1e:75:ea:74:02:5e: 07:6f:b7:72:26:31:55:aa:e7:45:62:e0:72:73:fa: 2a:81:b1:25:6f:12:c7:05:83:35:2f:c5:c8:9e:9f: 31:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:01:84:C5:B3:7C:0D:30:82:B8:59:97:B6:E5:A8:F1:E5:53:C1:08 X509v3 Authority Key Identifier: keyid:36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/zQGExbN8DTCCuFmXtuWo8eVTwQg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/NpHSlQFF3OrADAyk61NtkoZ7ONM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:2f04:100::/40 Signature Algorithm: sha256WithRSAEncryption 95:02:3a:c6:28:75:45:c2:40:de:f3:16:fb:c7:c0:ec:b2:bc: c8:7c:cc:36:e2:25:1b:3d:27:7a:99:1c:bc:08:cf:b6:c9:03: 9c:9e:55:6b:ac:9c:46:d4:e2:22:43:83:d9:5f:93:a9:65:1f: 0b:8b:41:1c:d9:b2:30:3e:13:36:7c:20:fd:eb:3c:4e:1d:b5: d6:16:f6:ca:bd:7a:b1:f7:62:e9:e3:3b:68:b4:8e:e5:86:77: b0:c4:d3:b2:11:e8:bb:35:6b:f6:af:e5:f2:b4:24:97:12:f9: 06:86:f6:3b:bd:4d:17:62:a3:5c:8d:e2:35:5d:46:5e:b5:36: ba:22:44:1f:27:1e:ba:e4:4c:61:94:69:69:b3:da:aa:a6:20: 01:5d:3e:c1:54:38:27:86:00:55:6b:f9:c0:c8:34:e0:dd:e9: 25:fb:d1:6e:24:41:7c:cb:41:cf:13:68:7c:a4:08:8c:82:67: f4:fd:10:6a:4f:87:ba:cf:0f:93:73:55:da:19:74:d3:96:d8: 4b:2c:98:47:ec:cd:ba:67:66:49:67:76:1d:9d:b4:9f:b3:37: 89:2d:a7:09:8b:a2:41:53:ef:dc:f2:6d:30:e3:95:63:0a:db: 1d:05:ab:22:fc:04:87:43:fc:03:fd:1e:45:57:a9:4c:d9:4e: 04:d7:ed:31 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt9XLAHoQIxzAk/IcQscdUdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2OTFkMjk1MDE0NWRjZWFjMDBjMGNhNGViNTM2ZDkyODY3 YjM4ZDMwHhcNMjYwMTAyMDYxOTQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZDAxODRjNWIzN2MwZDMwODJiODU5OTdiNmU1YThmMWU1NTNjMTA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwisNSeKiiYv3wpg6CoXJSuWOo4jt 1eT7e2ntcKEetvvEZiEFhr7k6E1ogx8PPj4zGo2858Kh2zzpBLsgexXe36xtM7lf 9wg0MeiNPw9ca3b/1UuQGznx5vsr7QK1e2DXnWvk0/LJtMpVXACMJKN5MPfG803I LbGkx0FojZqWEjJq8bAKPgV8MUgd1B4PWQT72N1B+LLyPOCZMsCtLLGzj6BfoXoc ETNnZPLfGzipgyvMdxZ+K6vkJh0r1arHBWKbPqfDQ3yUuEbVtpaZOi+9u/DB+IiR pL98iQ8edep0Al4Hb7dyJjFVqudFYuByc/oqgbElbxLHBYM1L8XInp8xbQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFM0BhMWzfA0wgrhZl7blqPHlU8EIMB8GA1UdIwQY MBaAFDaR0pUBRdzqwAwMpOtTbZKGezjTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnBIU2xRRkYzT3JBREF5azYxTnRrb1o3T05NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi8yYTk0MmEtZjFiZi00M2UyLWI5MmEt MWRlYzQwNTg0ODA2LzEvelFHRXhiTjhEVENDdUZtWHR1V284ZVZUd1FnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi8yYTk0MmEtZjFiZi00M2UyLWI5MmEtMWRlYzQwNTg0ODA2 LzEvTnBIU2xRRkYzT3JBREF5azYxTnRrb1o3T05NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgwvBAEw DQYJKoZIhvcNAQELBQADggEBAJUCOsYodUXCQN7zFvvHwOyyvMh8zDbiJRs9J3qZ HLwIz7bJA5yeVWusnEbU4iJDg9lfk6llHwuLQRzZsjA+EzZ8IP3rPE4dtdYW9sq9 erH3YunjO2i0juWGd7DE07IR6Ls1a/av5fK0JJcS+QaG9ju9TRdio1yN4jVdRl61 NroiRB8nHrrkTGGUaWmz2qqmIAFdPsFUOCeGAFVr+cDINODd6SX70W4kQXzLQc8T aHykCIyCZ/T9EGpPh7rPD5NzVdoZdNOW2EssmEfszbpnZklndh2dtJ+zN4ktpwmL okFT79zybTDjlWMK2x0FqyL8BIdD/AP9HkVXqUzZTgTX7TE= -----END CERTIFICATE-----Generated at Sun Jan 25 14:10:27 2026 by rpki-client