This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/pzkAsevaRgjEYyiE9vP5vLFmiuQ.roa File: pzkAsevaRgjEYyiE9vP5vLFmiuQ.roa (raw, json) Hash identifier: nO/grxvmKZkvhDphy8GQW/Icm/R4FkLHljLabsv3llQ= Subject key identifier: A7:39:00:B1:EB:DA:46:08:C4:63:28:84:F6:F3:F9:BC:B1:66:8A:E4 Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d Certificate serial: 019B78A354B3D86657F468CE95CDBD3C54F2 Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/pzkAsevaRgjEYyiE9vP5vLFmiuQ.roa Signing time: Thu 01 Jan 2026 08:18:48 +0000 ROA not before: Thu 01 Jan 2026 08:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48976 IP address blocks: 2a12:e100:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:54:b3:d8:66:57:f4:68:ce:95:cd:bd:3c:54:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d Validity Not Before: Jan 1 08:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a73900b1ebda4608c4632884f6f3f9bcb1668ae4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:5a:25:08:20:15:c3:60:31:52:ee:d2:47:74: b1:b5:a8:85:b6:e7:77:ba:26:2c:e4:c2:38:8c:1c: ec:b3:a0:d2:03:fd:96:dd:2d:c4:99:c6:76:9c:6b: 26:ce:db:e6:79:d3:f7:c6:2a:20:0c:97:e9:fb:c3: 8c:86:90:eb:60:1f:46:55:cc:2b:4c:d3:13:af:55: c7:8e:0e:c7:46:44:18:a3:73:f9:8a:63:d0:53:41: da:b3:a9:35:9c:ec:98:fa:8f:8f:01:41:96:98:d7: 23:5c:20:7e:d2:e3:6f:38:e3:06:0a:0e:97:a0:37: 8f:55:75:a4:f6:99:9b:97:29:0c:bf:95:78:28:06: 48:85:7f:56:c9:0d:db:22:8d:bf:e7:cb:bc:d5:da: ef:a9:08:47:56:21:d8:99:1e:1d:c2:db:15:de:f8: e9:69:41:d5:60:35:e1:38:d0:b1:a6:d3:51:78:98: fb:09:3d:5d:fb:17:c1:ce:ed:a6:92:1a:40:3f:f6: 63:33:b5:6d:77:54:7b:0f:75:a8:25:7e:6a:0c:a9: 69:96:2e:5e:a5:be:cc:c6:b3:1e:1b:06:e1:26:a1: 60:9b:3e:5f:9c:3c:7b:35:1d:6f:80:f9:b8:57:8c: 29:ed:e1:10:81:29:e5:54:7d:2f:2c:67:84:27:8d: 7e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:39:00:B1:EB:DA:46:08:C4:63:28:84:F6:F3:F9:BC:B1:66:8A:E4 X509v3 Authority Key Identifier: keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/pzkAsevaRgjEYyiE9vP5vLFmiuQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:e100:4::/48 Signature Algorithm: sha256WithRSAEncryption 29:2e:63:1b:82:8a:af:2a:c1:b6:74:96:1d:07:d2:fe:20:4a: e4:c6:02:ff:dc:49:ef:1e:e8:e7:3f:96:e4:5d:c9:68:18:de: 81:c3:bf:cd:9d:02:de:df:93:18:c8:a3:93:cf:a3:52:41:5b: 15:c7:a5:c9:e0:50:26:b5:d6:82:56:67:bb:cf:ca:c3:1d:c9: c5:d2:ff:30:54:45:3c:4d:d7:43:e6:f6:3c:85:9b:d1:ac:05: e0:06:ad:1a:3a:43:9f:8e:e3:29:df:1e:d9:c8:65:32:e1:68: 1f:28:e6:68:79:ba:af:80:af:a8:a4:f1:e8:2b:1d:9a:cb:e6: f5:01:c6:31:14:d3:5c:58:05:0f:38:9e:18:55:e2:a5:2a:a1: b0:cb:39:aa:5d:f7:7e:6b:24:05:25:01:2c:d8:66:c1:a2:67: f1:66:7d:78:1a:07:15:17:1e:05:26:c0:dc:8c:13:64:f7:92: 37:d7:e9:55:52:00:d8:1e:4a:73:35:be:0d:2b:dd:f8:cc:bb: 04:f7:e5:96:a4:62:a6:0e:73:2b:85:18:91:20:cb:83:84:bc: eb:39:3d:45:29:4e:b9:87:b4:bd:5b:4e:8f:f4:a2:b4:82:50: de:f2:01:70:ce:72:13:ea:49:19:27:60:98:2b:64:8e:c6:3e: d6:ce:61:16 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt4o1Sz2GZX9GjOlc29PFTyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwZGY3ZjViNjYxOGJkYTIzYzgzYmVkMTFiNDQyMDQxZjFm YjQ1NmQwHhcNMjYwMTAxMDgxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNzM5MDBiMWViZGE0NjA4YzQ2MzI4ODRmNmYzZjliY2IxNjY4YWU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA61olCCAVw2AxUu7SR3SxtaiFtud3 uiYs5MI4jBzss6DSA/2W3S3EmcZ2nGsmztvmedP3xiogDJfp+8OMhpDrYB9GVcwr TNMTr1XHjg7HRkQYo3P5imPQU0Has6k1nOyY+o+PAUGWmNcjXCB+0uNvOOMGCg6X oDePVXWk9pmblykMv5V4KAZIhX9WyQ3bIo2/58u81drvqQhHViHYmR4dwtsV3vjp aUHVYDXhONCxptNReJj7CT1d+xfBzu2mkhpAP/ZjM7Vtd1R7D3WoJX5qDKlpli5e pb7MxrMeGwbhJqFgmz5fnDx7NR1vgPm4V4wp7eEQgSnlVH0vLGeEJ41+RQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKc5ALHr2kYIxGMohPbz+byxZorkMB8GA1UdIwQY MBaAFKDff1tmGL2iPIO+0RtEIEHx+0VtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb045X1cyWVl2YUk4Zzc3UkcwUWdRZkg3UlcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9hNTcyOGItYTM2ZC00ZmJhLTkzYWEt NWY0YmM5MDBjMDNkLzEvcHprQXNldmFSZ2pFWXlpRTl2UDV2TEZtaXVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi9hNTcyOGItYTM2ZC00ZmJhLTkzYWEtNWY0YmM5MDBjMDNk LzEvb045X1cyWVl2YUk4Zzc3UkcwUWdRZkg3UlcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhLhAAAE MA0GCSqGSIb3DQEBCwUAA4IBAQApLmMbgoqvKsG2dJYdB9L+IErkxgL/3EnvHujn P5bkXcloGN6Bw7/NnQLe35MYyKOTz6NSQVsVx6XJ4FAmtdaCVme7z8rDHcnF0v8w VEU8TddD5vY8hZvRrAXgBq0aOkOfjuMp3x7ZyGUy4WgfKOZoebqvgK+opPHoKx2a y+b1AcYxFNNcWAUPOJ4YVeKlKqGwyzmqXfd+ayQFJQEs2GbBomfxZn14GgcVFx4F JsDcjBNk95I31+lVUgDYHkpzNb4NK934zLsE9+WWpGKmDnMrhRiRIMuDhLzrOT1F KU65h7S9W06P9KK0glDe8gFwznIT6kkZJ2CYK2SOxj7WzmEW -----END CERTIFICATE-----Generated at Sun Jan 25 21:26:22 2026 by rpki-client