This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/zoz2o6V8v-pZ3rm_TVWUy2Mtt38.roa File: zoz2o6V8v-pZ3rm_TVWUy2Mtt38.roa (raw, json) Hash identifier: /e9GDLeuGl688HzU36fMz9iRnDyyAkt0kfM3UnT5a8E= Subject key identifier: CE:8C:F6:A3:A5:7C:BF:EA:59:DE:B9:BF:4D:55:94:CB:63:2D:B7:7F Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40 Certificate serial: 019B7F13BB8D9E40ACF39968825465B2C15A Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/zoz2o6V8v-pZ3rm_TVWUy2Mtt38.roa Signing time: Fri 02 Jan 2026 14:19:18 +0000 ROA not before: Fri 02 Jan 2026 14:19:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209874 IP address blocks: 2a11:7e06::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.mft rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:bb:8d:9e:40:ac:f3:99:68:82:54:65:b2:c1:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40 Validity Not Before: Jan 2 14:19:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ce8cf6a3a57cbfea59deb9bf4d5594cb632db77f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e1:25:7a:33:e4:59:67:3b:23:7c:d4:dd:18: 1f:44:57:8b:cb:4a:fe:ae:fc:88:62:57:c3:33:a0: 33:d6:94:29:71:ca:d3:f1:9a:37:30:76:5a:f7:f3: fc:25:d5:d5:2c:da:79:f1:58:ac:f7:43:36:2e:2d: 43:43:88:8b:48:78:02:17:56:03:f0:14:5d:84:2f: 54:cc:8e:2a:c7:ee:4e:4b:5f:e1:a0:b9:14:f1:5e: 0f:94:86:b2:3d:3c:4e:75:b7:2c:30:cf:e2:9f:17: d1:64:83:14:1a:ea:87:45:8a:89:97:a7:8c:e7:a3: 67:65:02:fc:72:49:8f:5c:f8:f3:63:76:49:ca:a8: 8e:db:54:67:4d:72:ee:90:6b:f3:fe:0e:63:88:9e: 9b:9a:be:4e:41:66:54:24:a0:08:0c:23:ac:3f:45: 3a:91:22:6f:11:19:8a:ef:73:8c:74:52:82:dc:d4: 9e:2f:bf:ec:97:3f:35:6e:a2:90:a9:fc:29:4e:7c: 86:fe:f1:7d:f3:51:9f:1f:f0:84:01:4d:84:b6:19: 15:78:1e:2b:a4:8d:dd:ac:0f:43:61:30:cd:3a:1e: f9:71:ce:d3:c4:55:a3:1c:0c:8c:7a:90:11:ca:1c: 28:ee:23:57:96:64:d5:e0:bb:0f:25:0c:8e:04:25: 1b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:8C:F6:A3:A5:7C:BF:EA:59:DE:B9:BF:4D:55:94:CB:63:2D:B7:7F X509v3 Authority Key Identifier: keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/zoz2o6V8v-pZ3rm_TVWUy2Mtt38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:7e06::/32 Signature Algorithm: sha256WithRSAEncryption a4:96:7a:de:54:7d:81:7b:cc:a6:32:38:ad:e4:76:7d:b0:ee: 3f:90:51:ef:39:2b:8c:87:06:fc:ed:79:a5:17:02:a3:64:6f: 2e:29:b7:45:28:9f:0f:35:c4:bc:38:2a:f5:66:31:3b:52:4b: 53:cf:4d:93:31:f3:2a:42:c3:0d:2a:dc:85:dd:2f:9c:d1:17: 6d:2e:4a:29:ea:11:5b:5f:e4:9a:92:05:88:65:a4:d1:13:2d: a1:aa:a0:a3:e6:a8:ae:a3:c3:d2:26:38:b1:ab:0b:6b:df:4d: d3:91:9e:30:13:36:b1:96:dc:c5:e1:c8:02:48:52:04:f2:17: 5d:73:fd:0c:96:2f:be:aa:67:aa:70:44:62:57:76:0c:98:c5: cc:17:7e:25:80:4e:6c:11:ec:e2:23:3c:08:d1:62:4a:b3:11: b4:21:b4:6b:02:52:d4:01:65:a0:13:77:6a:01:94:99:c7:c3: 51:2a:eb:84:0b:27:d2:43:b0:9c:1c:cf:3a:d9:38:c2:f1:c4: 25:0f:c1:37:2b:9a:a5:1e:a5:76:b8:fb:aa:d9:dd:a2:8b:58: 9c:c7:74:3f:b1:b3:f6:16:41:50:51:e1:f0:70:a8:63:03:06: 27:9a:9a:cd:52:45:2f:43:17:5a:19:d1:1f:5c:3b:e7:ef:0f: 9a:27:3e:1d -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/E7uNnkCs85loglRlssFaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiODMwNjMwZjIzYjA3MGEyYjdiZGY1MjlmNzM5NDhjOTdl YWNkNDAwHhcNMjYwMTAyMTQxOTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZThjZjZhM2E1N2NiZmVhNTlkZWI5YmY0ZDU1OTRjYjYzMmRiNzdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAreElejPkWWc7I3zU3RgfRFeLy0r+ rvyIYlfDM6Az1pQpccrT8Zo3MHZa9/P8JdXVLNp58Vis90M2Li1DQ4iLSHgCF1YD 8BRdhC9UzI4qx+5OS1/hoLkU8V4PlIayPTxOdbcsMM/inxfRZIMUGuqHRYqJl6eM 56NnZQL8ckmPXPjzY3ZJyqiO21RnTXLukGvz/g5jiJ6bmr5OQWZUJKAIDCOsP0U6 kSJvERmK73OMdFKC3NSeL7/slz81bqKQqfwpTnyG/vF981GfH/CEAU2EthkVeB4r pI3drA9DYTDNOh75cc7TxFWjHAyMepARyhwo7iNXlmTV4LsPJQyOBCUbbQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFM6M9qOlfL/qWd65v01VlMtjLbd/MB8GA1UdIwQY MBaAFLuDBjDyOwcKK3vfUp9zlIyX6s1AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMt MTE5ZWZjYmIyMDIzLzEvem96Mm82Vjh2LXBaM3JtX1RWV1V5Mk10dDM4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMtMTE5ZWZjYmIyMDIz LzEvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhF+BjAN BgkqhkiG9w0BAQsFAAOCAQEApJZ63lR9gXvMpjI4reR2fbDuP5BR7zkrjIcG/O15 pRcCo2RvLim3RSifDzXEvDgq9WYxO1JLU89NkzHzKkLDDSrchd0vnNEXbS5KKeoR W1/kmpIFiGWk0RMtoaqgo+aorqPD0iY4sasLa99N05GeMBM2sZbcxeHIAkhSBPIX XXP9DJYvvqpnqnBEYld2DJjFzBd+JYBObBHs4iM8CNFiSrMRtCG0awJS1AFloBN3 agGUmcfDUSrrhAsn0kOwnBzPOtk4wvHEJQ/BNyuapR6ldrj7qtndootYnMd0P7Gz 9hZBUFHh8HCoYwMGJ5qazVJFL0MXWhnRH1w75+8Pmic+HQ== -----END CERTIFICATE-----Generated at Sun Jan 25 16:13:29 2026 by rpki-client