This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ccf93b-8ff9-4eb6-8c34-4aa3c3dd4d6b/1/ZdWh-3a_kbKPG_RUVdao6c2TLrM.roa File: ZdWh-3a_kbKPG_RUVdao6c2TLrM.roa (raw, json) Hash identifier: DLbAphqaTRDgJkVVSI04I7CCD0VoHbCq4Vo+MxDnvU4= Subject key identifier: 65:D5:A1:FB:76:BF:91:B2:8F:1B:F4:54:55:D6:A8:E9:CD:93:2E:B3 Certificate issuer: /CN=82f08f263c37459b5fd6fc06fd9f0e5f6d622759 Certificate serial: 019B78A3612F71F52874B4E6EABE9F482AE4 Authority key identifier: 82:F0:8F:26:3C:37:45:9B:5F:D6:FC:06:FD:9F:0E:5F:6D:62:27:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gvCPJjw3RZtf1vwG_Z8OX21iJ1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ccf93b-8ff9-4eb6-8c34-4aa3c3dd4d6b/1/ZdWh-3a_kbKPG_RUVdao6c2TLrM.roa Signing time: Thu 01 Jan 2026 08:18:51 +0000 ROA not before: Thu 01 Jan 2026 08:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204896 IP address blocks: 2001:67c:4e4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/ccf93b-8ff9-4eb6-8c34-4aa3c3dd4d6b/1/gvCPJjw3RZtf1vwG_Z8OX21iJ1k.crl rsync://rpki.ripe.net/repository/DEFAULT/74/ccf93b-8ff9-4eb6-8c34-4aa3c3dd4d6b/1/gvCPJjw3RZtf1vwG_Z8OX21iJ1k.mft rsync://rpki.ripe.net/repository/DEFAULT/gvCPJjw3RZtf1vwG_Z8OX21iJ1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:61:2f:71:f5:28:74:b4:e6:ea:be:9f:48:2a:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82f08f263c37459b5fd6fc06fd9f0e5f6d622759 Validity Not Before: Jan 1 08:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=65d5a1fb76bf91b28f1bf45455d6a8e9cd932eb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a2:de:8d:84:91:60:b7:2c:ed:99:a8:f1:b4: 02:ff:5d:e3:6e:9b:05:fb:5c:d8:45:1f:6b:8e:3e: a6:7a:d0:8e:8c:5a:35:67:f3:38:06:e9:43:f0:62: eb:a9:98:c8:6b:1c:da:ec:3c:a7:41:be:8a:b9:e9: 30:65:7c:6c:45:a4:a7:f9:42:42:7e:8f:72:93:b1: b9:4c:0b:05:e9:fb:9d:82:41:e9:82:e7:86:41:b6: ec:f1:45:01:3b:25:35:5e:95:b6:0e:54:8b:9a:ed: f5:c5:08:8e:b7:39:89:76:84:b0:fe:02:71:ec:c6: 1d:35:0e:63:ab:6e:da:a9:85:69:4d:c1:e8:22:a5: f5:e8:7a:af:ba:02:65:af:1b:8a:80:88:a4:d6:ef: 5a:bd:89:bf:6c:18:de:02:dc:a1:f7:f5:4f:15:5f: 81:d7:ad:c1:05:47:4f:1e:19:0d:a7:64:50:e1:57: f6:5f:f8:91:9f:18:d6:16:bc:b3:12:e2:14:a4:c1: 5a:97:8b:b2:f8:bf:c6:a6:48:21:61:45:17:1f:e2: 93:97:0b:4b:27:f8:0b:6c:83:92:1d:16:8b:61:ff: 62:ea:fa:a4:ac:c2:d3:c0:20:64:53:7e:a4:fa:58: 49:88:9c:3f:15:2d:fd:ff:b8:6e:f4:1e:73:d5:53: 52:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D5:A1:FB:76:BF:91:B2:8F:1B:F4:54:55:D6:A8:E9:CD:93:2E:B3 X509v3 Authority Key Identifier: keyid:82:F0:8F:26:3C:37:45:9B:5F:D6:FC:06:FD:9F:0E:5F:6D:62:27:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gvCPJjw3RZtf1vwG_Z8OX21iJ1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ccf93b-8ff9-4eb6-8c34-4aa3c3dd4d6b/1/ZdWh-3a_kbKPG_RUVdao6c2TLrM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ccf93b-8ff9-4eb6-8c34-4aa3c3dd4d6b/1/gvCPJjw3RZtf1vwG_Z8OX21iJ1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:4e4::/48 Signature Algorithm: sha256WithRSAEncryption 78:8b:d8:db:53:77:8d:82:bf:df:16:25:a2:50:54:b3:24:71: 4e:c4:80:cf:bb:ea:b1:6b:6f:fc:a7:27:aa:0e:e9:e9:3a:31: 8f:99:53:bf:f0:36:dd:cb:34:50:74:dc:32:0b:68:b6:c7:aa: dc:20:d6:1a:c5:ea:a9:5b:af:96:65:d1:ae:d6:bf:50:7d:9e: d0:52:06:1b:22:60:7d:e5:ab:7e:53:af:4e:3a:43:3d:da:3b: 53:1e:21:2b:b9:39:38:84:d9:0f:53:a4:16:d7:e5:02:b3:17: 1a:b7:6f:9d:d3:1d:39:d7:cb:a5:20:ce:71:79:b7:bf:0b:8d: b1:29:30:b2:3d:be:ad:e9:68:73:d7:f8:b2:b7:98:a3:87:87: 6f:02:49:20:64:1b:b0:a7:5f:29:dc:da:23:f4:5a:19:83:1c: f1:d8:07:e5:59:7c:1b:5b:ec:59:b7:59:2a:2d:df:13:06:0b: 6a:3d:3d:f3:3d:d7:41:53:3b:33:ab:36:ba:5d:52:29:1b:d4: cd:af:93:eb:58:cf:a4:f5:fb:a5:a1:b3:f4:2a:85:47:d1:39: 3d:ff:57:5f:e7:d1:52:cf:57:d4:25:ea:d1:f6:da:d9:22:fa: 67:55:59:be:88:db:e6:30:d4:ed:5e:b4:f7:8e:b6:5a:5b:12: f7:bb:a5:63 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt4o2EvcfUodLTm6r6fSCrkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyZjA4ZjI2M2MzNzQ1OWI1ZmQ2ZmMwNmZkOWYwZTVmNmQ2 MjI3NTkwHhcNMjYwMTAxMDgxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NWQ1YTFmYjc2YmY5MWIyOGYxYmY0NTQ1NWQ2YThlOWNkOTMyZWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqLejYSRYLcs7Zmo8bQC/13jbpsF +1zYRR9rjj6metCOjFo1Z/M4BulD8GLrqZjIaxza7DynQb6KuekwZXxsRaSn+UJC fo9yk7G5TAsF6fudgkHpgueGQbbs8UUBOyU1XpW2DlSLmu31xQiOtzmJdoSw/gJx 7MYdNQ5jq27aqYVpTcHoIqX16HqvugJlrxuKgIik1u9avYm/bBjeAtyh9/VPFV+B 163BBUdPHhkNp2RQ4Vf2X/iRnxjWFryzEuIUpMFal4uy+L/GpkghYUUXH+KTlwtL J/gLbIOSHRaLYf9i6vqkrMLTwCBkU36k+lhJiJw/FS39/7hu9B5z1VNSiQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFGXVoft2v5Gyjxv0VFXWqOnNky6zMB8GA1UdIwQY MBaAFILwjyY8N0WbX9b8Bv2fDl9tYidZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3ZDUEpqdzNSWnRmMXZ3R19aOE9YMjFpSjFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9jY2Y5M2ItOGZmOS00ZWI2LThjMzQt NGFhM2MzZGQ0ZDZiLzEvWmRXaC0zYV9rYktQR19SVVZkYW82YzJUTHJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC9jY2Y5M2ItOGZmOS00ZWI2LThjMzQtNGFhM2MzZGQ0ZDZi LzEvZ3ZDUEpqdzNSWnRmMXZ3R19aOE9YMjFpSjFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfATk MA0GCSqGSIb3DQEBCwUAA4IBAQB4i9jbU3eNgr/fFiWiUFSzJHFOxIDPu+qxa2/8 pyeqDunpOjGPmVO/8DbdyzRQdNwyC2i2x6rcINYaxeqpW6+WZdGu1r9QfZ7QUgYb ImB95at+U69OOkM92jtTHiEruTk4hNkPU6QW1+UCsxcat2+d0x0518ulIM5xebe/ C42xKTCyPb6t6Whz1/iyt5ijh4dvAkkgZBuwp18p3Noj9FoZgxzx2AflWXwbW+xZ t1kqLd8TBgtqPT3zPddBUzszqza6XVIpG9TNr5PrWM+k9fulobP0KoVH0Tk9/1df 59FSz1fUJerR9trZIvpnVVm+iNvmMNTtXrT3jrZaWxL3u6Vj -----END CERTIFICATE-----Generated at Sun Jan 25 15:12:43 2026 by rpki-client