This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/T9HYPrCqI1Lwx1ICx4gg3y9EaPs.roa File: T9HYPrCqI1Lwx1ICx4gg3y9EaPs.roa (raw, json) Hash identifier: 8WBx6rryQFW8qB2gn0UcoHoZSKFuIQe/bNKvBOdNkz0= Subject key identifier: 4F:D1:D8:3E:B0:AA:23:52:F0:C7:52:02:C7:88:20:DF:2F:44:68:FB Certificate issuer: /CN=0b4e3b3b84242258863142ed3a19792d97cbbc74 Certificate serial: 019B7AC878B25524E9284182724600FD9C43 Authority key identifier: 0B:4E:3B:3B:84:24:22:58:86:31:42:ED:3A:19:79:2D:97:CB:BC:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/T9HYPrCqI1Lwx1ICx4gg3y9EaPs.roa Signing time: Thu 01 Jan 2026 18:18:37 +0000 ROA not before: Thu 01 Jan 2026 18:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206715 IP address blocks: 2a0d:d940:90::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.crl rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.mft rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 16:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:78:b2:55:24:e9:28:41:82:72:46:00:fd:9c:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0b4e3b3b84242258863142ed3a19792d97cbbc74 Validity Not Before: Jan 1 18:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4fd1d83eb0aa2352f0c75202c78820df2f4468fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d2:42:f9:88:02:7d:bf:f4:95:c5:5e:e7:fa: 18:07:6e:46:37:56:6c:ed:c1:39:9f:ca:31:0a:35: aa:32:8e:8a:84:e9:be:52:75:0d:66:72:06:9f:e7: 5f:60:38:68:6a:6c:ac:bf:5f:cb:59:0e:96:13:e0: 88:82:5a:65:23:bd:f7:12:26:fe:67:42:68:e0:95: 55:74:96:43:e2:1d:b7:8f:61:c6:53:cd:a0:bc:c4: e6:de:fc:fa:09:5d:06:61:20:ba:b8:7c:e0:e8:1d: d4:f3:a9:4d:8d:4d:9c:bb:4f:4a:03:ac:78:f7:f1: b1:55:28:b8:d2:56:6a:c5:80:86:bd:f3:a2:36:2a: f7:53:af:16:0a:60:c8:f5:f5:96:31:df:90:cc:47: 8c:10:52:61:49:59:c1:53:76:ed:6e:9b:25:ae:f9: 57:a3:27:12:49:d0:fa:52:39:be:0e:89:24:39:0f: fd:4f:a9:1d:3c:2e:5f:fc:98:93:07:d6:c0:e4:d7: 6f:8e:d8:8b:71:d4:1f:0b:c2:5b:f2:f3:a8:68:3e: ec:bb:01:ff:b5:a3:77:68:bc:d4:1c:50:c5:8f:c0: a9:59:e9:95:4a:9c:d1:42:4f:2c:4f:2c:05:99:46: 80:60:23:68:7c:a9:d3:ca:0c:0b:92:ec:d8:79:10: 7d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D1:D8:3E:B0:AA:23:52:F0:C7:52:02:C7:88:20:DF:2F:44:68:FB X509v3 Authority Key Identifier: keyid:0B:4E:3B:3B:84:24:22:58:86:31:42:ED:3A:19:79:2D:97:CB:BC:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/T9HYPrCqI1Lwx1ICx4gg3y9EaPs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0d:d940:90::/44 Signature Algorithm: sha256WithRSAEncryption 0a:49:d8:5a:b1:e1:ad:e6:d6:41:22:32:b5:98:ad:e3:fb:54: 48:99:e4:e1:dc:d4:85:07:16:2f:81:c6:77:a8:0e:10:be:14: 3c:50:78:b2:de:a7:cf:f2:6e:94:7b:6f:df:d3:be:eb:0c:58: c2:81:ce:50:fd:2d:f2:c4:c6:d0:c3:e9:34:8b:99:b1:58:2b: cb:b9:7e:46:4e:c5:1d:9b:b0:ec:16:71:dd:1a:bb:05:00:a2: c0:39:52:db:69:31:fc:9a:2c:37:5b:7f:88:30:b4:69:59:8e: 76:ac:09:ed:ce:47:03:db:ed:3d:0d:95:6f:b1:04:70:ea:04: c8:c8:84:6d:07:72:8f:d7:6b:33:f1:2d:43:8e:c0:63:80:b8: 52:43:3a:66:19:9b:dc:c5:da:4f:3f:0b:ce:b5:92:a1:93:83: d1:ab:8a:a9:6d:9a:0c:0a:a1:0e:b1:eb:40:65:9e:2c:cd:b7: 97:52:4f:89:57:49:e2:c5:72:2b:11:ca:10:f6:36:7f:01:ed: 02:a5:23:f9:a3:43:5c:8b:4c:e8:29:36:0c:22:90:9b:2e:99: 22:16:90:d2:a1:25:67:5c:b2:b6:9d:03:bb:02:76:96:1f:e9: cf:45:ba:8a:c7:d8:00:b9:0e:e4:11:6d:1c:99:56:67:51:0e: f4:f9:c5:59 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt6yHiyVSTpKEGCckYA/ZxDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiNGUzYjNiODQyNDIyNTg4NjMxNDJlZDNhMTk3OTJkOTdj YmJjNzQwHhcNMjYwMTAxMTgxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZmQxZDgzZWIwYWEyMzUyZjBjNzUyMDJjNzg4MjBkZjJmNDQ2OGZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA79JC+YgCfb/0lcVe5/oYB25GN1Zs 7cE5n8oxCjWqMo6KhOm+UnUNZnIGn+dfYDhoamysv1/LWQ6WE+CIglplI733Eib+ Z0Jo4JVVdJZD4h23j2HGU82gvMTm3vz6CV0GYSC6uHzg6B3U86lNjU2cu09KA6x4 9/GxVSi40lZqxYCGvfOiNir3U68WCmDI9fWWMd+QzEeMEFJhSVnBU3btbpslrvlX oycSSdD6Ujm+DokkOQ/9T6kdPC5f/JiTB9bA5NdvjtiLcdQfC8Jb8vOoaD7suwH/ taN3aLzUHFDFj8CpWemVSpzRQk8sTywFmUaAYCNofKnTygwLkuzYeRB9cQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFE/R2D6wqiNS8MdSAseIIN8vRGj7MB8GA1UdIwQY MBaAFAtOOzuEJCJYhjFC7ToZeS2Xy7x0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQzA0N080UWtJbGlHTVVMdE9obDVMWmZMdkhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS83YmExYjEtNTU2Mi00YTMyLTlmNWQt MTRkMjM4NTI3ODM1LzEvVDlIWVByQ3FJMUx3eDFJQ3g0Z2czeTlFYVBzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS83YmExYjEtNTU2Mi00YTMyLTlmNWQtMTRkMjM4NTI3ODM1 LzEvQzA0N080UWtJbGlHTVVMdE9obDVMWmZMdkhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg3ZQACQ MA0GCSqGSIb3DQEBCwUAA4IBAQAKSdhaseGt5tZBIjK1mK3j+1RImeTh3NSFBxYv gcZ3qA4QvhQ8UHiy3qfP8m6Ue2/f077rDFjCgc5Q/S3yxMbQw+k0i5mxWCvLuX5G TsUdm7DsFnHdGrsFAKLAOVLbaTH8miw3W3+IMLRpWY52rAntzkcD2+09DZVvsQRw 6gTIyIRtB3KP12sz8S1DjsBjgLhSQzpmGZvcxdpPPwvOtZKhk4PRq4qpbZoMCqEO setAZZ4szbeXUk+JV0nixXIrEcoQ9jZ/Ae0CpSP5o0Nci0zoKTYMIpCbLpkiFpDS oSVnXLK2nQO7AnaWH+nPRbqKx9gAuQ7kEW0cmVZnUQ70+cVZ -----END CERTIFICATE-----Generated at Mon Jan 12 02:17:10 2026 by rpki-client