This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/gzWxiAqTqtJxdzdn_jsT2eC0Lwo.roa File: gzWxiAqTqtJxdzdn_jsT2eC0Lwo.roa (raw, json) Hash identifier: ok8zk7uSpweORwK8/HwLN2DcTft1zyjLwPrEFvEpFhU= Subject key identifier: 83:35:B1:88:0A:93:AA:D2:71:77:37:67:FE:3B:13:D9:E0:B4:2F:0A Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B78346DD01E7C9FD5AB60B653D3C37C7A Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/gzWxiAqTqtJxdzdn_jsT2eC0Lwo.roa Signing time: Thu 01 Jan 2026 06:17:40 +0000 ROA not before: Thu 01 Jan 2026 06:17:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 52177 IP address blocks: 192.121.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:6d:d0:1e:7c:9f:d5:ab:60:b6:53:d3:c3:7c:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8335b1880a93aad271773767fe3b13d9e0b42f0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:81:0f:73:a7:c8:b3:85:6e:e7:4f:6f:8c:c3: 61:b0:d8:72:0d:64:b8:17:0f:c1:8f:77:5a:2e:75: 18:32:eb:37:c9:59:da:b9:a8:3c:1f:79:3e:fb:f7: 3a:2f:a4:81:9d:40:c6:5d:5a:22:bb:76:c5:77:38: 2d:b7:19:21:ce:1f:db:71:d2:38:2a:fb:19:ea:ef: 72:37:66:c8:f6:6d:03:3b:c5:ce:5a:1e:03:b4:16: 77:fc:76:24:fc:26:74:e4:be:47:e9:c5:98:c8:c6: 8f:d2:81:76:c8:83:4d:aa:ed:6e:4e:fb:9f:48:4d: 6f:13:ff:1b:8b:6d:03:5b:04:34:54:56:29:c8:cd: f7:17:32:a7:ac:4d:08:58:29:69:1c:7d:95:25:af: 07:7c:83:f9:e0:1f:cf:68:8b:9b:a5:1c:4b:74:da: 8d:b5:f4:25:3f:83:44:05:18:fc:83:fe:f9:2d:01: 2e:e9:ce:b5:99:bf:03:96:c2:e2:e8:e8:5d:6d:09: be:15:72:bf:8a:09:21:d3:a7:00:a5:61:d1:4b:ad: ed:b5:ca:5c:a0:e8:35:52:dd:15:a6:55:1f:43:00: 92:58:c4:02:ea:32:59:86:72:07:3e:20:75:ba:71: d6:09:f6:89:fb:ad:7f:f1:66:ef:ec:ed:40:a5:b4: d5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:35:B1:88:0A:93:AA:D2:71:77:37:67:FE:3B:13:D9:E0:B4:2F:0A X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/gzWxiAqTqtJxdzdn_jsT2eC0Lwo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.121.29.0/24 Signature Algorithm: sha256WithRSAEncryption 15:29:8c:d5:e4:7b:c6:78:7c:2a:be:f1:7e:45:14:29:31:8e: 23:9c:c5:31:99:2d:25:e6:66:5a:16:40:5f:20:08:cc:e4:11: b6:83:d8:b4:b8:ca:c2:a8:5b:6f:6a:c7:5f:e9:06:f9:73:f3: 4b:63:db:50:57:9e:1e:a9:ee:43:be:7b:58:78:df:5a:94:4e: b4:b8:06:62:ff:c1:54:b6:30:8d:c8:89:e5:aa:9e:03:6e:e5: 6b:1f:4a:aa:18:6b:6a:57:65:db:0a:30:ab:51:9c:11:43:c1: 31:61:3e:0c:20:79:54:11:1f:26:94:ec:2c:4f:f8:68:83:59: bd:f7:bf:35:7a:c0:70:af:00:ff:14:41:19:bb:24:15:8d:04: 58:3b:de:d5:32:f4:76:9d:da:b3:7e:81:55:53:5e:f3:25:44: 45:13:62:cb:f6:19:32:31:48:30:24:b7:14:e2:c2:9b:83:d5: e1:1c:51:ce:ce:ef:33:63:bf:77:ce:cc:57:31:70:6c:51:62: 63:54:81:71:26:c7:8d:09:b2:07:f8:c2:3d:1b:a9:5b:7a:64: 9d:c6:e6:e9:29:4c:d8:d3:e4:8f:14:26:33:94:99:be:fc:fb: ce:c0:10:8c:ba:32:27:ed:7d:97:da:f4:e0:67:c1:32:2b:c4: 21:c7:94:9d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NG3QHnyf1atgtlPTw3x6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MzM1YjE4ODBhOTNhYWQyNzE3NzM3NjdmZTNiMTNkOWUwYjQyZjBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApYEPc6fIs4Vu509vjMNhsNhyDWS4 Fw/Bj3daLnUYMus3yVnauag8H3k++/c6L6SBnUDGXVoiu3bFdzgttxkhzh/bcdI4 KvsZ6u9yN2bI9m0DO8XOWh4DtBZ3/HYk/CZ05L5H6cWYyMaP0oF2yINNqu1uTvuf SE1vE/8bi20DWwQ0VFYpyM33FzKnrE0IWClpHH2VJa8HfIP54B/PaIubpRxLdNqN tfQlP4NEBRj8g/75LQEu6c61mb8DlsLi6OhdbQm+FXK/igkh06cApWHRS63ttcpc oOg1Ut0VplUfQwCSWMQC6jJZhnIHPiB1unHWCfaJ+61/8Wbv7O1ApbTVZQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIM1sYgKk6rScXc3Z/47E9ngtC8KMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvZ3pXeGlBcVRxdEp4ZHpkbl9qc1QyZUMwTHdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwHkdMA0G CSqGSIb3DQEBCwUAA4IBAQAVKYzV5HvGeHwqvvF+RRQpMY4jnMUxmS0l5mZaFkBf IAjM5BG2g9i0uMrCqFtvasdf6Qb5c/NLY9tQV54eqe5DvntYeN9alE60uAZi/8FU tjCNyInlqp4DbuVrH0qqGGtqV2XbCjCrUZwRQ8ExYT4MIHlUER8mlOwsT/hog1m9 9781esBwrwD/FEEZuyQVjQRYO97VMvR2ndqzfoFVU17zJURFE2LL9hkyMUgwJLcU 4sKbg9XhHFHOzu8zY793zsxXMXBsUWJjVIFxJseNCbIH+MI9G6lbemSdxubpKUzY 0+SPFCYzlJm+/PvOwBCMujIn7X2X2vTgZ8EyK8Qhx5Sd -----END CERTIFICATE-----Generated at Sun Jan 25 10:32:42 2026 by rpki-client