This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/d56c11-25e1-49c8-8863-7f37b778c011/1/zLLpSlai4j_BckMwzN3FZevoFJI.roa File: zLLpSlai4j_BckMwzN3FZevoFJI.roa (raw, json) Hash identifier: X+bvA7vFedjj2qlLm3vDJgVyiO2iqldPs11sP4fxghM= Subject key identifier: CC:B2:E9:4A:56:A2:E2:3F:C1:72:43:30:CC:DD:C5:65:EB:E8:14:92 Certificate issuer: /CN=70980b60e0d30e498de1baa645a1be57a952049d Certificate serial: 019B7759265EEB3779BC85C0DECBFBBC021D Authority key identifier: 70:98:0B:60:E0:D3:0E:49:8D:E1:BA:A6:45:A1:BE:57:A9:52:04:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cJgLYODTDkmN4bqmRaG-V6lSBJ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/d56c11-25e1-49c8-8863-7f37b778c011/1/zLLpSlai4j_BckMwzN3FZevoFJI.roa Signing time: Thu 01 Jan 2026 02:18:09 +0000 ROA not before: Thu 01 Jan 2026 02:18:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50955 IP address blocks: 2a12:b2c0::/48 maxlen: 48 2a12:b2c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/d56c11-25e1-49c8-8863-7f37b778c011/1/cJgLYODTDkmN4bqmRaG-V6lSBJ0.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/d56c11-25e1-49c8-8863-7f37b778c011/1/cJgLYODTDkmN4bqmRaG-V6lSBJ0.mft rsync://rpki.ripe.net/repository/DEFAULT/cJgLYODTDkmN4bqmRaG-V6lSBJ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:26:5e:eb:37:79:bc:85:c0:de:cb:fb:bc:02:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70980b60e0d30e498de1baa645a1be57a952049d Validity Not Before: Jan 1 02:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ccb2e94a56a2e23fc1724330ccddc565ebe81492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:48:d3:f9:b4:aa:5b:cc:4f:12:24:7f:67:12: 8e:a7:c1:8b:05:36:46:d1:ee:f1:4c:c4:1e:88:14: 6f:fe:b4:1f:79:27:e4:1f:00:dc:2c:13:5a:f8:de: e2:af:c0:de:dd:b7:18:9a:73:4b:64:8b:3f:c8:65: ba:d6:78:3f:ce:76:4b:a1:6d:29:77:d8:af:ba:47: 00:0a:56:45:08:40:9d:d0:9b:0d:30:35:db:fb:eb: 75:d6:05:e6:71:56:9f:97:3d:e2:d4:de:b1:29:c0: 34:79:32:2e:4f:31:66:41:91:2d:b3:cb:1a:ce:61: 36:21:80:67:13:f5:21:87:9e:8b:1a:13:d4:20:57: d6:ef:47:95:94:78:ca:9d:7f:d9:11:10:14:f1:bc: b3:dc:a7:ab:19:8d:3c:60:82:72:a0:82:9c:a3:03: c2:0a:48:12:c6:93:f5:51:b9:ae:ba:8d:7d:71:07: 41:fc:9d:1b:48:bd:01:d2:b2:8a:19:06:ec:36:1c: 9d:73:4c:29:da:6a:bb:68:a2:4a:3f:20:8a:24:34: c8:df:1c:bf:9d:72:f7:e6:d0:a7:bd:94:d9:16:21: 15:38:e5:5f:93:e8:c1:71:23:06:8c:71:71:07:99: 72:40:5e:a0:db:74:ee:d7:e3:77:cb:45:04:aa:e2: 85:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B2:E9:4A:56:A2:E2:3F:C1:72:43:30:CC:DD:C5:65:EB:E8:14:92 X509v3 Authority Key Identifier: keyid:70:98:0B:60:E0:D3:0E:49:8D:E1:BA:A6:45:A1:BE:57:A9:52:04:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cJgLYODTDkmN4bqmRaG-V6lSBJ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d56c11-25e1-49c8-8863-7f37b778c011/1/zLLpSlai4j_BckMwzN3FZevoFJI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d56c11-25e1-49c8-8863-7f37b778c011/1/cJgLYODTDkmN4bqmRaG-V6lSBJ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:b2c0::/48 2a12:b2c0:2::/48 Signature Algorithm: sha256WithRSAEncryption 6a:45:d2:b4:35:04:77:fd:ff:67:b9:a2:c5:88:d4:fc:85:5e: 0b:85:60:b2:6b:ac:af:21:a0:ae:2b:2d:8e:c8:f8:b8:45:b8: 18:03:f1:33:a3:65:ea:49:9d:8a:4b:a0:07:56:81:a5:0d:01: b3:5b:bc:b5:97:59:90:ec:e2:5f:7e:9a:83:6c:a6:e9:0b:fe: e9:18:28:02:ee:90:51:a1:2e:93:40:ce:75:d2:1e:ab:7e:bf: 12:ac:ad:d5:24:e5:ab:e4:3f:c9:aa:97:4d:be:4b:fe:5b:e0: 29:0a:8a:75:2f:a0:08:60:7c:d7:fa:5e:5b:03:c0:83:21:73: 10:ce:58:fd:0f:78:1b:28:88:17:75:88:97:95:40:5e:c6:9d: 18:5a:2c:af:04:8b:a4:a3:e7:5e:0f:92:95:41:10:66:ab:5f: 72:d6:98:1c:37:d4:bf:06:ab:eb:d2:b6:05:66:ac:d8:85:8f: 12:10:91:89:c6:b5:dd:d4:e6:eb:07:60:0a:d7:46:4a:6f:d4: b4:7e:f3:98:39:a7:77:5c:35:0a:03:1f:71:05:9a:46:be:a3: c0:b8:cf:68:17:1a:72:6d:18:e8:ad:28:a2:15:02:e4:23:6b: 60:81:52:95:fe:0c:fb:37:c1:58:05:c8:7c:65:8e:4b:f9:08: 67:62:a0:02 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt3WSZe6zd5vIXA3sv7vAIdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwOTgwYjYwZTBkMzBlNDk4ZGUxYmFhNjQ1YTFiZTU3YTk1 MjA0OWQwHhcNMjYwMTAxMDIxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjY2IyZTk0YTU2YTJlMjNmYzE3MjQzMzBjY2RkYzU2NWViZTgxNDkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEjT+bSqW8xPEiR/ZxKOp8GLBTZG 0e7xTMQeiBRv/rQfeSfkHwDcLBNa+N7ir8De3bcYmnNLZIs/yGW61ng/znZLoW0p d9ivukcAClZFCECd0JsNMDXb++t11gXmcVaflz3i1N6xKcA0eTIuTzFmQZEts8sa zmE2IYBnE/Uhh56LGhPUIFfW70eVlHjKnX/ZERAU8byz3KerGY08YIJyoIKcowPC CkgSxpP1Ubmuuo19cQdB/J0bSL0B0rKKGQbsNhydc0wp2mq7aKJKPyCKJDTI3xy/ nXL35tCnvZTZFiEVOOVfk+jBcSMGjHFxB5lyQF6g23Tu1+N3y0UEquKFpwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFMyy6UpWouI/wXJDMMzdxWXr6BSSMB8GA1UdIwQY MBaAFHCYC2Dg0w5JjeG6pkWhvlepUgSdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0pnTFlPRFREa21ONGJxbVJhRy1WNmxTQkowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9kNTZjMTEtMjVlMS00OWM4LTg4NjMt N2YzN2I3NzhjMDExLzEvekxMcFNsYWk0al9CY2tNd3pOM0ZaZXZvRkpJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9kNTZjMTEtMjVlMS00OWM4LTg4NjMtN2YzN2I3NzhjMDEx LzEvY0pnTFlPRFREa21ONGJxbVJhRy1WNmxTQkowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKhKywAAA AwcAKhKywAACMA0GCSqGSIb3DQEBCwUAA4IBAQBqRdK0NQR3/f9nuaLFiNT8hV4L hWCya6yvIaCuKy2OyPi4RbgYA/Ezo2XqSZ2KS6AHVoGlDQGzW7y1l1mQ7OJffpqD bKbpC/7pGCgC7pBRoS6TQM510h6rfr8SrK3VJOWr5D/JqpdNvkv+W+ApCop1L6AI YHzX+l5bA8CDIXMQzlj9D3gbKIgXdYiXlUBexp0YWiyvBIuko+deD5KVQRBmq19y 1pgcN9S/Bqvr0rYFZqzYhY8SEJGJxrXd1ObrB2AK10ZKb9S0fvOYOad3XDUKAx9x BZpGvqPAuM9oFxpybRjorSiiFQLkI2tggVKV/gz7N8FYBch8ZY5L+QhnYqAC -----END CERTIFICATE-----Generated at Sun Jan 25 22:50:03 2026 by rpki-client