This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/2688b6-da70-4abd-8f59-1a831b599c18/1/dMfKUJHSuWnseGbTE-GdRIw07W4.roa File: dMfKUJHSuWnseGbTE-GdRIw07W4.roa (raw, json) Hash identifier: y2qy1o8S5/XUqYwrCQSN4S8pMHsU2FgYcmzRMM/ZUGk= Subject key identifier: 74:C7:CA:50:91:D2:B9:69:EC:78:66:D3:13:E1:9D:44:8C:34:ED:6E Certificate issuer: /CN=9e1533c4702c2ccb5a9e0e87ab27ad56b15f2c76 Certificate serial: 019B7D5C593CF096803884B45EC29052FB77 Authority key identifier: 9E:15:33:C4:70:2C:2C:CB:5A:9E:0E:87:AB:27:AD:56:B1:5F:2C:76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhUzxHAsLMtang6HqyetVrFfLHY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/2688b6-da70-4abd-8f59-1a831b599c18/1/dMfKUJHSuWnseGbTE-GdRIw07W4.roa Signing time: Fri 02 Jan 2026 06:19:22 +0000 ROA not before: Fri 02 Jan 2026 06:19:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49772 IP address blocks: 2a12:e6c0:f001::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/2688b6-da70-4abd-8f59-1a831b599c18/1/nhUzxHAsLMtang6HqyetVrFfLHY.crl rsync://rpki.ripe.net/repository/DEFAULT/09/2688b6-da70-4abd-8f59-1a831b599c18/1/nhUzxHAsLMtang6HqyetVrFfLHY.mft rsync://rpki.ripe.net/repository/DEFAULT/nhUzxHAsLMtang6HqyetVrFfLHY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:59:3c:f0:96:80:38:84:b4:5e:c2:90:52:fb:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e1533c4702c2ccb5a9e0e87ab27ad56b15f2c76 Validity Not Before: Jan 2 06:19:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=74c7ca5091d2b969ec7866d313e19d448c34ed6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:33:cb:49:b0:2f:64:b3:cd:b2:db:68:29:17: f9:73:06:1e:1f:96:ee:8d:01:7c:85:f3:88:b2:78: 3d:46:e4:07:8e:b6:01:00:ec:3e:e5:05:cb:e2:86: 0b:fc:4b:a8:5b:4f:91:de:61:44:1d:92:03:bb:e7: 89:12:f7:59:55:a9:f3:97:e7:09:b8:8a:1c:b9:f4: ac:03:bb:25:6a:f6:45:ae:80:a9:c0:7c:08:a8:95: 4b:7d:f7:70:d1:96:df:bd:c9:98:12:be:e0:83:65: 21:94:b3:ba:61:35:bf:6b:90:99:bb:df:fa:13:67: 3f:32:4e:d6:4b:9a:ff:a4:51:b3:c0:6b:95:e4:3a: 91:70:a5:a3:ae:cb:cb:25:43:fb:47:13:35:ee:49: 29:47:fa:14:bf:0d:88:25:25:d7:de:ef:f6:d9:a6: 86:f2:c9:4a:e8:24:2e:1d:68:30:0d:13:ef:0c:f0: b5:f6:26:5f:cf:e5:9a:ba:2d:51:0f:d0:ae:a4:0d: 49:e4:0d:56:86:af:14:5b:af:6e:0c:0b:07:e0:00: b0:48:80:93:9a:6a:ef:70:dc:c1:5b:ef:63:3a:b3: 0b:77:2a:4f:49:7f:e6:71:d5:90:42:ea:4b:45:fb: e5:b8:09:d3:bf:e1:3f:31:28:c8:3b:51:69:2d:24: 1a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C7:CA:50:91:D2:B9:69:EC:78:66:D3:13:E1:9D:44:8C:34:ED:6E X509v3 Authority Key Identifier: keyid:9E:15:33:C4:70:2C:2C:CB:5A:9E:0E:87:AB:27:AD:56:B1:5F:2C:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhUzxHAsLMtang6HqyetVrFfLHY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2688b6-da70-4abd-8f59-1a831b599c18/1/dMfKUJHSuWnseGbTE-GdRIw07W4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2688b6-da70-4abd-8f59-1a831b599c18/1/nhUzxHAsLMtang6HqyetVrFfLHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:e6c0:f001::/48 Signature Algorithm: sha256WithRSAEncryption 1a:e3:65:67:f3:4e:d8:ca:09:5f:70:d6:49:1d:7a:38:9c:d8: 6e:44:11:13:40:ef:00:76:9f:82:c9:8d:12:c4:96:8e:4a:57: 67:9d:f3:cd:64:e5:80:cf:7a:15:cb:82:d2:34:c6:4e:56:85: d8:66:61:7f:8d:6f:34:4c:c5:1e:5e:49:d4:ef:6b:de:83:1e: af:ac:10:d5:73:55:3f:77:16:b4:0c:56:33:c2:a0:78:88:c0: d7:3c:81:0f:0d:1f:e5:18:13:b7:b0:0a:46:97:d9:d8:da:44: e8:33:9a:01:ea:88:c1:ef:52:b0:c8:3c:16:47:03:d2:c4:d0: 6f:67:03:3e:19:29:36:27:6b:48:01:62:0b:98:04:a9:8d:eb: b6:53:be:89:74:54:c7:8e:d7:ae:f6:7d:ca:8e:c5:3b:a2:49: 7e:66:cf:6e:8e:c6:7f:5f:5d:fe:3c:12:16:04:8c:a8:96:d5: 28:65:d0:fe:81:b5:f7:46:0c:23:0c:0a:75:d3:88:e0:f9:19: e7:4e:ec:0e:03:09:2e:a9:5a:aa:71:75:92:5f:91:da:6d:4f: 74:2c:0d:eb:e6:ba:3a:8d:a3:8a:7f:f4:e7:b5:e3:a0:a0:bb: 4b:ca:cd:4e:57:42:1e:b3:59:3d:32:86:af:74:ae:90:5a:b4: ef:15:14:c0 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XFk88JaAOIS0XsKQUvt3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllMTUzM2M0NzAyYzJjY2I1YTllMGU4N2FiMjdhZDU2YjE1 ZjJjNzYwHhcNMjYwMTAyMDYxOTIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NGM3Y2E1MDkxZDJiOTY5ZWM3ODY2ZDMxM2UxOWQ0NDhjMzRlZDZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjDPLSbAvZLPNsttoKRf5cwYeH5bu jQF8hfOIsng9RuQHjrYBAOw+5QXL4oYL/EuoW0+R3mFEHZIDu+eJEvdZVanzl+cJ uIocufSsA7slavZFroCpwHwIqJVLffdw0ZbfvcmYEr7gg2UhlLO6YTW/a5CZu9/6 E2c/Mk7WS5r/pFGzwGuV5DqRcKWjrsvLJUP7RxM17kkpR/oUvw2IJSXX3u/22aaG 8slK6CQuHWgwDRPvDPC19iZfz+Waui1RD9CupA1J5A1Whq8UW69uDAsH4ACwSICT mmrvcNzBW+9jOrMLdypPSX/mcdWQQupLRfvluAnTv+E/MSjIO1FpLSQaswIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFHTHylCR0rlp7Hhm0xPhnUSMNO1uMB8GA1UdIwQY MBaAFJ4VM8RwLCzLWp4Oh6snrVaxXyx2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmhVenhIQXNMTXRhbmc2SHF5ZXRWckZmTEhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS8yNjg4YjYtZGE3MC00YWJkLThmNTkt MWE4MzFiNTk5YzE4LzEvZE1mS1VKSFN1V25zZUdiVEUtR2RSSXcwN1c0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS8yNjg4YjYtZGE3MC00YWJkLThmNTktMWE4MzFiNTk5YzE4 LzEvbmhVenhIQXNMTXRhbmc2SHF5ZXRWckZmTEhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhLmwPAB MA0GCSqGSIb3DQEBCwUAA4IBAQAa42Vn807YyglfcNZJHXo4nNhuRBETQO8Adp+C yY0SxJaOSldnnfPNZOWAz3oVy4LSNMZOVoXYZmF/jW80TMUeXknU72vegx6vrBDV c1U/dxa0DFYzwqB4iMDXPIEPDR/lGBO3sApGl9nY2kToM5oB6ojB71KwyDwWRwPS xNBvZwM+GSk2J2tIAWILmASpjeu2U76JdFTHjteu9n3KjsU7okl+Zs9ujsZ/X13+ PBIWBIyoltUoZdD+gbX3RgwjDAp104jg+RnnTuwOAwkuqVqqcXWSX5HabU90LA3r 5ro6jaOKf/TnteOgoLtLys1OV0Ies1k9MoavdK6QWrTvFRTA -----END CERTIFICATE-----Generated at Mon Feb 9 18:44:41 2026 by rpki-client