This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/bb7718-63db-412f-a75e-3f54179d49e5/1/TSjfj-QisRfZKTbvFvagtYYtljU.roa File: TSjfj-QisRfZKTbvFvagtYYtljU.roa (raw, json) Hash identifier: aXZ9GQHn0MfhoPq/DrK3cj/6rgXogLzvprkNtDCtBy0= Subject key identifier: 4D:28:DF:8F:E4:22:B1:17:D9:29:36:EF:16:F6:A0:B5:86:2D:96:35 Certificate issuer: /CN=b85715af66404fba0371ee5b30377684ea6d46ed Certificate serial: 019B7AC7B1BA96691046861A05D7D3A30EF0 Authority key identifier: B8:57:15:AF:66:40:4F:BA:03:71:EE:5B:30:37:76:84:EA:6D:46:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFcVr2ZAT7oDce5bMDd2hOptRu0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/bb7718-63db-412f-a75e-3f54179d49e5/1/TSjfj-QisRfZKTbvFvagtYYtljU.roa Signing time: Thu 01 Jan 2026 18:17:46 +0000 ROA not before: Thu 01 Jan 2026 18:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49119 IP address blocks: 2a0a:7680::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/bb7718-63db-412f-a75e-3f54179d49e5/1/uFcVr2ZAT7oDce5bMDd2hOptRu0.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/bb7718-63db-412f-a75e-3f54179d49e5/1/uFcVr2ZAT7oDce5bMDd2hOptRu0.mft rsync://rpki.ripe.net/repository/DEFAULT/uFcVr2ZAT7oDce5bMDd2hOptRu0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:b1:ba:96:69:10:46:86:1a:05:d7:d3:a3:0e:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b85715af66404fba0371ee5b30377684ea6d46ed Validity Not Before: Jan 1 18:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d28df8fe422b117d92936ef16f6a0b5862d9635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2d:73:31:b9:fb:2f:64:c9:d7:76:1d:6e:ca: 17:e0:54:23:0a:e9:f5:b2:a4:c0:eb:43:53:91:a4: fc:9f:38:bb:af:4f:d0:b0:fe:df:08:24:07:d2:47: 31:bc:5a:4e:8b:6a:fe:9a:a5:3d:d8:31:b0:cf:99: e3:57:09:ce:57:50:b5:d1:46:bf:32:a1:69:87:f6: b8:f7:85:2c:49:e1:94:99:32:d4:47:68:95:38:d7: 33:9c:96:7a:b0:91:3a:cb:8f:3e:0e:7d:c4:9f:81: 94:f7:0a:39:b2:01:36:b5:4e:f2:a5:25:29:e5:50: 5a:0a:23:85:3c:d5:e6:07:e1:e5:7c:96:79:fa:4c: 5d:b2:c7:46:d3:9b:4c:93:54:5a:b5:fa:03:4c:3a: 9d:a4:3e:71:11:d5:4d:2f:ee:8b:c7:c1:43:15:b3: 6d:4d:46:df:cd:6a:ab:d7:6a:be:3e:45:22:a8:de: ee:df:6f:5b:47:08:7e:f3:b5:89:18:a0:24:0b:67: d1:6e:36:aa:2b:4d:23:57:30:42:72:21:bf:c0:d7: 84:d2:f1:53:b6:be:18:0a:06:91:13:be:08:06:48: c4:89:70:e4:69:8e:71:18:62:96:14:6f:39:f6:15: 8f:98:a8:cd:af:b2:1a:c8:c5:8f:c2:db:3e:53:43: 0b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:28:DF:8F:E4:22:B1:17:D9:29:36:EF:16:F6:A0:B5:86:2D:96:35 X509v3 Authority Key Identifier: keyid:B8:57:15:AF:66:40:4F:BA:03:71:EE:5B:30:37:76:84:EA:6D:46:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFcVr2ZAT7oDce5bMDd2hOptRu0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/bb7718-63db-412f-a75e-3f54179d49e5/1/TSjfj-QisRfZKTbvFvagtYYtljU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/bb7718-63db-412f-a75e-3f54179d49e5/1/uFcVr2ZAT7oDce5bMDd2hOptRu0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:7680::/29 Signature Algorithm: sha256WithRSAEncryption 19:45:d2:f5:f4:66:8e:cb:5c:55:a1:bb:ad:14:b7:c8:57:cd: 9f:cb:cb:4d:8b:c3:0b:85:be:e7:35:43:30:e2:1c:8f:c2:34: e6:7d:1c:7a:fb:0f:24:3f:41:30:fe:7c:cd:a6:58:18:8e:97: 2b:80:65:0c:df:74:6c:7f:bf:a8:8e:81:0f:5c:4f:45:a5:cc: 1c:27:d7:31:9d:b5:a8:89:66:9e:8f:be:c8:84:c6:bd:b5:81: 5a:bd:93:30:e1:75:98:41:58:e3:72:d0:3a:bc:ef:14:5d:09: 12:41:e2:d1:3c:5e:ac:c6:c5:02:0c:56:26:26:91:b5:02:54: af:9a:53:1e:59:b6:09:ed:d9:c4:04:66:e6:0f:c4:d4:b0:6a: e0:e9:c2:d7:7b:d1:5e:7c:50:d0:45:0f:50:3b:32:ad:85:7e: 8f:2f:dc:c0:9a:a0:df:fe:6d:23:f7:1a:ad:e9:aa:74:e0:1a: b6:8e:85:84:67:c5:1d:31:b5:bc:9a:50:08:32:2f:54:a0:16: 4c:87:1f:39:5a:96:0a:80:6a:f6:cb:79:5b:d1:b4:11:e9:ac: 64:7f:dd:33:6d:bf:ec:77:33:d6:24:62:b2:d9:37:4f:92:22: eb:ed:5d:68:b0:e2:a5:6d:97:a7:a8:7e:6a:5a:53:ca:8b:01: 4d:5f:cb:7d -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt6x7G6lmkQRoYaBdfTow7wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4NTcxNWFmNjY0MDRmYmEwMzcxZWU1YjMwMzc3Njg0ZWE2 ZDQ2ZWQwHhcNMjYwMTAxMTgxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDI4ZGY4ZmU0MjJiMTE3ZDkyOTM2ZWYxNmY2YTBiNTg2MmQ5NjM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArS1zMbn7L2TJ13YdbsoX4FQjCun1 sqTA60NTkaT8nzi7r0/QsP7fCCQH0kcxvFpOi2r+mqU92DGwz5njVwnOV1C10Ua/ MqFph/a494UsSeGUmTLUR2iVONcznJZ6sJE6y48+Dn3En4GU9wo5sgE2tU7ypSUp 5VBaCiOFPNXmB+HlfJZ5+kxdssdG05tMk1RatfoDTDqdpD5xEdVNL+6Lx8FDFbNt TUbfzWqr12q+PkUiqN7u329bRwh+87WJGKAkC2fRbjaqK00jVzBCciG/wNeE0vFT tr4YCgaRE74IBkjEiXDkaY5xGGKWFG859hWPmKjNr7IayMWPwts+U0MLUQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFE0o34/kIrEX2Sk27xb2oLWGLZY1MB8GA1UdIwQY MBaAFLhXFa9mQE+6A3HuWzA3doTqbUbtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUZjVnIyWkFUN29EY2U1Yk1EZDJoT3B0UnUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9iYjc3MTgtNjNkYi00MTJmLWE3NWUt M2Y1NDE3OWQ0OWU1LzEvVFNqZmotUWlzUmZaS1RidkZ2YWd0WVl0bGpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9iYjc3MTgtNjNkYi00MTJmLWE3NWUtM2Y1NDE3OWQ0OWU1 LzEvdUZjVnIyWkFUN29EY2U1Yk1EZDJoT3B0UnUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgp2gDAN BgkqhkiG9w0BAQsFAAOCAQEAGUXS9fRmjstcVaG7rRS3yFfNn8vLTYvDC4W+5zVD MOIcj8I05n0cevsPJD9BMP58zaZYGI6XK4BlDN90bH+/qI6BD1xPRaXMHCfXMZ21 qIlmno++yITGvbWBWr2TMOF1mEFY43LQOrzvFF0JEkHi0TxerMbFAgxWJiaRtQJU r5pTHlm2Ce3ZxARm5g/E1LBq4OnC13vRXnxQ0EUPUDsyrYV+jy/cwJqg3/5tI/ca remqdOAato6FhGfFHTG1vJpQCDIvVKAWTIcfOVqWCoBq9st5W9G0EemsZH/dM22/ 7Hcz1iRistk3T5Ii6+1daLDipW2Xp6h+alpTyosBTV/LfQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:55:01 2026 by rpki-client