This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Znnvm3LsdORP2dcicGTA6QWFQNI.roa File: Znnvm3LsdORP2dcicGTA6QWFQNI.roa (raw, json) Hash identifier: 7RVoMr2TjwQCYiGLTaqRERFMGilDnaCTxqis41Z5zuQ= Subject key identifier: 66:79:EF:9B:72:EC:74:E4:4F:D9:D7:22:70:64:C0:E9:05:85:40:D2 Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704 Certificate serial: 019B76EAB8CFF350423F905878FC31FF95DF Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Znnvm3LsdORP2dcicGTA6QWFQNI.roa Signing time: Thu 01 Jan 2026 00:17:32 +0000 ROA not before: Thu 01 Jan 2026 00:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34775 IP address blocks: 2a06:ba00::/48 maxlen: 48 2a09:12c0::/48 maxlen: 48 2a09:13c0::/48 maxlen: 48 2a09:4f40::/48 maxlen: 48 2a09:4fc0::/48 maxlen: 48 2a09:5040::/48 maxlen: 48 2a09:50c0::/48 maxlen: 48 2a09:5140::/48 maxlen: 48 2a09:5240::/48 maxlen: 48 2a09:95c0::/48 maxlen: 48 2a09:97c0::/48 maxlen: 48 2a09:9840::/48 maxlen: 48 2a09:9ac0::/48 maxlen: 48 2a09:9b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:b8:cf:f3:50:42:3f:90:58:78:fc:31:ff:95:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704 Validity Not Before: Jan 1 00:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6679ef9b72ec74e44fd9d7227064c0e9058540d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:18:50:aa:21:31:99:e0:f7:7c:67:d7:db:bb: f9:b2:04:f1:76:27:29:89:4f:82:85:da:d9:5d:4d: 72:af:be:01:7d:2b:6a:54:ce:cb:69:ce:33:8d:f8: ea:d2:3c:c4:1c:a7:d2:b2:88:d6:4e:66:8d:c9:9b: d0:15:d2:fc:5b:15:ad:0a:b9:bc:2d:56:1e:27:d1: e3:a8:54:56:79:23:2b:43:a2:d4:fe:4d:64:d1:75: 6b:9b:be:15:d3:d5:24:4e:f9:78:fe:e2:33:58:03: ba:10:a6:ec:2d:ef:c1:2b:17:6e:92:56:b6:a5:33: b0:b4:7e:03:78:b2:34:e5:2b:71:42:e9:d8:76:25: 87:cf:64:1f:95:bf:f2:27:7e:d6:fd:3a:fc:2a:a4: be:7a:bd:a7:a6:18:43:0c:07:21:40:f3:7a:1f:d9: 6c:9d:8e:d0:61:d1:62:04:13:0a:b4:db:30:9f:3f: 76:44:5c:04:25:d8:8c:22:72:62:a5:af:e8:3a:a3: 7d:1d:e1:e0:24:65:9b:28:aa:e3:0b:6d:7c:78:d4: 22:84:46:80:ba:49:c2:5d:b4:a3:ed:d6:67:b0:28: f4:fd:14:5e:71:64:0d:70:1e:2a:0d:4c:15:16:65: fe:95:2e:78:b5:66:b1:90:08:20:60:3b:3a:de:9e: 7c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:79:EF:9B:72:EC:74:E4:4F:D9:D7:22:70:64:C0:E9:05:85:40:D2 X509v3 Authority Key Identifier: keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Znnvm3LsdORP2dcicGTA6QWFQNI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:ba00::/48 2a09:12c0::/48 2a09:13c0::/48 2a09:4f40::/48 2a09:4fc0::/48 2a09:5040::/48 2a09:50c0::/48 2a09:5140::/48 2a09:5240::/48 2a09:95c0::/48 2a09:97c0::/48 2a09:9840::/48 2a09:9ac0::/48 2a09:9b40::/48 Signature Algorithm: sha256WithRSAEncryption 92:5a:85:a1:49:7d:2f:19:bd:57:bd:25:be:9d:86:e6:8a:31: d9:47:fd:6b:43:32:e0:1c:1a:2a:dc:6e:f4:56:1a:32:c3:97: 57:5b:f3:ab:8d:19:70:80:15:44:c3:f8:33:fa:32:a6:dd:59: 59:6a:ef:06:0e:4e:a1:78:fd:11:9d:55:36:81:f7:5d:be:cd: fa:de:d2:9a:d1:a8:16:25:d4:1d:e7:ca:83:55:8e:e6:c7:58: f2:d0:d3:43:d3:14:77:22:59:76:03:70:34:bf:72:f6:f8:50: 82:97:a7:94:67:45:6c:fd:15:73:ae:33:bf:4c:d2:9d:81:b3: 32:1c:e5:3d:74:f6:05:95:9a:81:71:b7:9d:a4:d8:8f:1e:3b: 8b:aa:ce:84:2d:e2:1e:e3:e8:31:03:2b:b9:47:27:16:53:e1: 93:61:aa:7b:d3:d2:f0:3e:a1:41:b0:26:f7:37:5d:b1:d2:ab: 52:81:68:93:bc:ae:d8:84:73:d8:b4:3d:1b:11:9d:f6:97:ca: c5:60:e0:21:4d:64:20:34:5d:fb:a1:16:d0:25:9f:c8:4a:dd: 27:50:61:b6:15:76:93:12:21:0d:77:83:20:39:e6:aa:34:5b: eb:88:79:9e:9e:ea:3f:24:a4:d9:8c:7e:c1:75:a5:f9:54:ec: fb:92:95:68 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgISAZt26rjP81BCP5BYePwx/5XfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj Zjk3MDQwHhcNMjYwMTAxMDAxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2Njc5ZWY5YjcyZWM3NGU0NGZkOWQ3MjI3MDY0YzBlOTA1ODU0MGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyhhQqiExmeD3fGfX27v5sgTxdicp iU+ChdrZXU1yr74BfStqVM7Lac4zjfjq0jzEHKfSsojWTmaNyZvQFdL8WxWtCrm8 LVYeJ9HjqFRWeSMrQ6LU/k1k0XVrm74V09UkTvl4/uIzWAO6EKbsLe/BKxdukla2 pTOwtH4DeLI05StxQunYdiWHz2Qflb/yJ37W/Tr8KqS+er2nphhDDAchQPN6H9ls nY7QYdFiBBMKtNswnz92RFwEJdiMInJipa/oOqN9HeHgJGWbKKrjC218eNQihEaA uknCXbSj7dZnsCj0/RRecWQNcB4qDUwVFmX+lS54tWaxkAggYDs63p58/QIDAQAB o4IChTCCAoEwHQYDVR0OBBYEFGZ575ty7HTkT9nXInBkwOkFhUDSMB8GA1UdIwQY MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct ZTg2MTIxYzU5NGRmLzEvWm5udm0zTHNkT1JQMmRjaWNHVEE2UVdGUU5JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzCBhAQCAAIwfgMHACoG ugAAAAMHACoJEsAAAAMHACoJE8AAAAMHACoJT0AAAAMHACoJT8AAAAMHACoJUEAA AAMHACoJUMAAAAMHACoJUUAAAAMHACoJUkAAAAMHACoJlcAAAAMHACoJl8AAAAMH ACoJmEAAAAMHACoJmsAAAAMHACoJm0AAADANBgkqhkiG9w0BAQsFAAOCAQEAklqF oUl9Lxm9V70lvp2G5oox2Uf9a0My4BwaKtxu9FYaMsOXV1vzq40ZcIAVRMP4M/oy pt1ZWWrvBg5OoXj9EZ1VNoH3Xb7N+t7SmtGoFiXUHefKg1WO5sdY8tDTQ9MUdyJZ dgNwNL9y9vhQgpenlGdFbP0Vc64zv0zSnYGzMhzlPXT2BZWagXG3naTYjx47i6rO hC3iHuPoMQMruUcnFlPhk2Gqe9PS8D6hQbAm9zddsdKrUoFok7yu2IRz2LQ9GxGd 9pfKxWDgIU1kIDRd+6EW0CWfyErdJ1BhthV2kxIhDXeDIDnmqjRb64h5np7qPySk 2Yx+wXWl+VTs+5KVaA== -----END CERTIFICATE-----Generated at Sun Jan 25 08:48:01 2026 by rpki-client