This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/zkEx11XO93N85vwrTCOs3PDbZd0.roa File: zkEx11XO93N85vwrTCOs3PDbZd0.roa (raw, json) Hash identifier: Qdd6ijsBLwMFkDU5X4d6hXWxnnXx+SCnTnhqOiOzcAM= Subject key identifier: CE:41:31:D7:55:CE:F7:73:7C:E6:FC:2B:4C:23:AC:DC:F0:DB:65:DD Certificate issuer: /CN=dbc144ce154eee9dbb3562ce4cd3228338641333 Certificate serial: 019B7EA63DE4901E815EDAB992A131BC1F8F Authority key identifier: DB:C1:44:CE:15:4E:EE:9D:BB:35:62:CE:4C:D3:22:83:38:64:13:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28FEzhVO7p27NWLOTNMigzhkEzM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/zkEx11XO93N85vwrTCOs3PDbZd0.roa Signing time: Fri 02 Jan 2026 12:19:42 +0000 ROA not before: Fri 02 Jan 2026 12:19:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 133160 IP address blocks: 2a00:8422:ae5::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/28FEzhVO7p27NWLOTNMigzhkEzM.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/28FEzhVO7p27NWLOTNMigzhkEzM.mft rsync://rpki.ripe.net/repository/DEFAULT/28FEzhVO7p27NWLOTNMigzhkEzM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:3d:e4:90:1e:81:5e:da:b9:92:a1:31:bc:1f:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbc144ce154eee9dbb3562ce4cd3228338641333 Validity Not Before: Jan 2 12:19:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ce4131d755cef7737ce6fc2b4c23acdcf0db65dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:59:b8:b0:61:34:44:a5:fa:74:c6:f8:14:f6: 85:2f:c2:c3:db:d9:aa:5b:56:22:11:2e:d3:79:c3: 63:9d:eb:24:c9:79:06:10:03:1f:16:dd:54:8f:da: 39:11:e4:a1:7e:fa:25:f8:f3:02:3d:f8:3b:80:9a: 8c:87:2a:56:63:1d:1e:25:5d:d4:60:ff:84:74:04: 49:a3:4c:c3:b8:f9:49:7a:ff:f0:27:1d:e4:39:40: 43:1e:fc:4d:84:31:02:81:76:8d:bd:1e:29:0c:6c: a4:4c:77:d5:4e:af:5f:15:16:62:ca:e0:59:7b:41: 3c:bc:dc:f9:99:44:6d:8a:b5:07:f3:a9:4b:e1:f1: ad:80:b4:22:9c:2f:66:68:6a:aa:86:71:94:e4:81: e1:7f:bb:b9:74:38:f0:f8:aa:f0:8d:78:59:17:1b: 97:61:96:fd:99:12:4f:a3:22:8f:70:1a:ec:64:fb: ae:7a:f3:f9:e4:ad:34:50:8d:15:e0:7b:aa:e3:c3: 4d:c2:ee:67:37:a3:68:f1:ba:55:50:e0:b9:9c:3c: 35:c6:85:18:f0:43:04:99:2c:08:5e:3c:a2:f4:f2: bb:13:99:4b:2a:9d:23:3b:11:ad:78:7e:11:f7:54: 39:f2:26:63:cc:9c:38:9d:35:00:db:f8:1d:9b:52: 8c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:41:31:D7:55:CE:F7:73:7C:E6:FC:2B:4C:23:AC:DC:F0:DB:65:DD X509v3 Authority Key Identifier: keyid:DB:C1:44:CE:15:4E:EE:9D:BB:35:62:CE:4C:D3:22:83:38:64:13:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28FEzhVO7p27NWLOTNMigzhkEzM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/zkEx11XO93N85vwrTCOs3PDbZd0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/28FEzhVO7p27NWLOTNMigzhkEzM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:8422:ae5::/64 Signature Algorithm: sha256WithRSAEncryption a7:43:4d:04:28:c6:ab:69:fb:57:2c:13:6f:46:0a:5d:bf:93: d8:ec:42:fa:79:b9:e3:3b:20:e7:f4:aa:76:63:f0:9e:9f:6b: d8:af:99:a4:cf:a5:60:c6:cb:76:de:8c:da:88:b0:e7:c8:8e: 8b:be:b7:78:1b:1f:5f:11:90:6f:9f:ad:41:3c:a2:87:af:4f: 18:9f:c5:b8:bb:6c:f6:94:8f:62:48:c9:6e:d8:1e:6c:5a:9c: ea:7c:2c:03:6c:b2:ca:11:e8:5b:a6:1e:bd:ab:cb:f1:e1:f6: 6a:68:03:f4:6f:e1:5d:55:f5:a9:56:a8:b8:d1:05:b7:f5:bf: 8d:86:15:8b:5a:eb:2b:14:c9:0a:97:1d:61:e9:a8:e5:34:9f: b8:0c:2e:44:d0:fd:87:ae:1e:1b:91:ab:bb:1d:d0:29:e3:39: 6a:ef:c9:94:ef:02:5e:3e:3a:a9:c4:85:50:eb:34:2d:20:17: 62:00:0f:6c:f1:73:c9:28:0a:7a:fd:fd:11:e4:bc:38:70:64: f5:e9:10:91:3f:dd:d9:72:47:4a:4f:f9:13:05:78:64:10:cf: e5:73:75:0f:24:13:28:0d:46:ab:ba:51:17:ef:3c:5d:50:57: a4:5d:66:f2:4a:09:4e:65:3e:15:fb:e2:9f:57:ef:14:2f:24: 90:00:b4:10 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgISAZt+pj3kkB6BXtq5kqExvB+PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiYzE0NGNlMTU0ZWVlOWRiYjM1NjJjZTRjZDMyMjgzMzg2 NDEzMzMwHhcNMjYwMTAyMTIxOTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZTQxMzFkNzU1Y2VmNzczN2NlNmZjMmI0YzIzYWNkY2YwZGI2NWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFm4sGE0RKX6dMb4FPaFL8LD29mq W1YiES7TecNjneskyXkGEAMfFt1Uj9o5EeShfvol+PMCPfg7gJqMhypWYx0eJV3U YP+EdARJo0zDuPlJev/wJx3kOUBDHvxNhDECgXaNvR4pDGykTHfVTq9fFRZiyuBZ e0E8vNz5mURtirUH86lL4fGtgLQinC9maGqqhnGU5IHhf7u5dDjw+KrwjXhZFxuX YZb9mRJPoyKPcBrsZPuuevP55K00UI0V4Huq48NNwu5nN6No8bpVUOC5nDw1xoUY 8EMEmSwIXjyi9PK7E5lLKp0jOxGteH4R91Q58iZjzJw4nTUA2/gdm1KMXQIDAQAB o4ICDjCCAgowHQYDVR0OBBYEFM5BMddVzvdzfOb8K0wjrNzw22XdMB8GA1UdIwQY MBaAFNvBRM4VTu6duzVizkzTIoM4ZBMzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjhGRXpoVk83cDI3TldMT1ROTWlnemhrRXpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9hMjJjZmEtMDFmMy00ZjEyLWI2ZmQt NDg5NGY4OGJlZGRjLzEvemtFeDExWE85M044NXZ3clRDT3MzUERiWmQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi9hMjJjZmEtMDFmMy00ZjEyLWI2ZmQtNDg5NGY4OGJlZGRj LzEvMjhGRXpoVk83cDI3TldMT1ROTWlnemhrRXpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAKgCEIgrl AAAwDQYJKoZIhvcNAQELBQADggEBAKdDTQQoxqtp+1csE29GCl2/k9jsQvp5ueM7 IOf0qnZj8J6fa9ivmaTPpWDGy3bejNqIsOfIjou+t3gbH18RkG+frUE8ooevTxif xbi7bPaUj2JIyW7YHmxanOp8LANsssoR6FumHr2ry/Hh9mpoA/Rv4V1V9alWqLjR Bbf1v42GFYta6ysUyQqXHWHpqOU0n7gMLkTQ/YeuHhuRq7sd0CnjOWrvyZTvAl4+ OqnEhVDrNC0gF2IAD2zxc8koCnr9/RHkvDhwZPXpEJE/3dlyR0pP+RMFeGQQz+Vz dQ8kEygNRqu6URfvPF1QV6RdZvJKCU5lPhX74p9X7xQvJJAAtBA= -----END CERTIFICATE-----Generated at Sun Jan 25 18:20:09 2026 by rpki-client