This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/d49f1c-c945-47c4-bddc-eeccc20a8d21/1/0XpSx_PqBsgWn7gAIHU3QZlrH3g.roa File: 0XpSx_PqBsgWn7gAIHU3QZlrH3g.roa (raw, json) Hash identifier: Eviyd5MC3TSKuaGr7W9HYIt5jchGDmF2CLXeiWnw2P0= Subject key identifier: D1:7A:52:C7:F3:EA:06:C8:16:9F:B8:00:20:75:37:41:99:6B:1F:78 Certificate issuer: /CN=dbdc1e33a52dade01b52d9170bc29b8c28d98b6c Certificate serial: 019B7758BC66F0EDFA1456006DA7F094F816 Authority key identifier: DB:DC:1E:33:A5:2D:AD:E0:1B:52:D9:17:0B:C2:9B:8C:28:D9:8B:6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/29weM6UtreAbUtkXC8KbjCjZi2w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/d49f1c-c945-47c4-bddc-eeccc20a8d21/1/0XpSx_PqBsgWn7gAIHU3QZlrH3g.roa Signing time: Thu 01 Jan 2026 02:17:42 +0000 ROA not before: Thu 01 Jan 2026 02:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211745 IP address blocks: 2001:678:1168::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/d49f1c-c945-47c4-bddc-eeccc20a8d21/1/29weM6UtreAbUtkXC8KbjCjZi2w.crl rsync://rpki.ripe.net/repository/DEFAULT/11/d49f1c-c945-47c4-bddc-eeccc20a8d21/1/29weM6UtreAbUtkXC8KbjCjZi2w.mft rsync://rpki.ripe.net/repository/DEFAULT/29weM6UtreAbUtkXC8KbjCjZi2w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:bc:66:f0:ed:fa:14:56:00:6d:a7:f0:94:f8:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbdc1e33a52dade01b52d9170bc29b8c28d98b6c Validity Not Before: Jan 1 02:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d17a52c7f3ea06c8169fb80020753741996b1f78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:de:86:ad:ea:01:17:42:26:25:ac:6d:09:d9: 07:21:ac:ae:fa:1e:e7:d1:50:1f:1a:a3:b7:09:7a: 1a:bd:37:07:ba:9a:f0:c7:1d:9a:4d:2c:fa:a7:81: 68:91:a3:0e:1e:c5:82:46:f0:dc:f7:58:8b:79:eb: 30:d5:54:68:72:4c:c4:3c:ef:04:64:0b:48:95:ab: eb:6f:24:45:b6:97:ee:b4:ac:d0:81:5e:af:75:80: b8:1c:f5:a2:de:f0:ff:1c:51:8f:be:29:a8:ea:7d: ee:e0:35:6b:68:4a:ac:13:34:96:62:a9:b5:6b:29: b3:c8:61:5e:d9:16:0f:5d:03:7a:c2:eb:c5:05:a6: a1:28:43:74:64:47:3f:31:f4:d8:8b:ce:fb:1b:86: 01:ed:56:15:c1:26:da:87:ca:c4:a8:5f:d4:47:3e: bd:ff:e4:1c:13:f2:d4:e0:65:09:9e:13:1b:1d:e1: 5e:ce:1d:4d:3a:e7:91:4c:87:ce:32:e9:6f:3c:d4: 5a:e4:cb:0c:bb:11:13:4a:83:55:2d:07:e5:b2:b0: 7e:71:6d:1c:cf:18:c5:fe:7f:29:18:56:82:72:b5: 85:09:64:20:cb:4a:2e:fd:4b:81:9f:88:db:3f:c2: 89:20:14:b7:06:57:61:0f:57:f7:82:f7:98:b2:8f: 98:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:7A:52:C7:F3:EA:06:C8:16:9F:B8:00:20:75:37:41:99:6B:1F:78 X509v3 Authority Key Identifier: keyid:DB:DC:1E:33:A5:2D:AD:E0:1B:52:D9:17:0B:C2:9B:8C:28:D9:8B:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/29weM6UtreAbUtkXC8KbjCjZi2w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/d49f1c-c945-47c4-bddc-eeccc20a8d21/1/0XpSx_PqBsgWn7gAIHU3QZlrH3g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/d49f1c-c945-47c4-bddc-eeccc20a8d21/1/29weM6UtreAbUtkXC8KbjCjZi2w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1168::/48 Signature Algorithm: sha256WithRSAEncryption 8f:42:0d:dc:fb:a5:08:5f:3c:08:46:96:2f:c6:18:db:13:99: 19:02:a8:d6:74:60:8b:4d:27:05:11:61:2e:13:3b:45:7f:3a: 12:7b:aa:7e:5d:d6:4d:01:12:48:29:4e:ed:f6:b4:bc:6d:c7: c1:2e:67:ae:d4:62:03:0f:08:88:d6:c5:ac:ca:63:2c:91:27: 2e:11:13:ab:e6:9a:7e:65:9b:07:4f:b3:f3:09:9f:b8:29:e7: 16:4b:04:49:fa:ea:53:50:80:5a:f9:08:f8:ac:38:e1:63:85: 36:08:d9:87:a9:7e:21:ad:ce:24:e1:7c:53:4a:72:54:72:d8: 9e:6f:39:72:f7:0a:7d:1e:e2:a7:f0:81:70:ac:d5:56:f4:af: 7e:da:f7:77:74:48:d7:b6:92:0d:f7:3f:3d:c3:50:60:80:6f: cb:92:06:69:45:fd:07:ab:f2:d6:da:83:f8:87:35:54:1b:87: 00:cc:fc:21:7f:a5:5c:8d:dd:7b:c2:d2:37:c9:8d:09:f3:bb: 71:0c:78:84:7a:12:63:a0:17:85:5d:ac:18:ee:7e:9f:38:c4: bc:09:07:b2:a5:7f:df:f3:8f:8b:fa:3d:a6:54:83:51:e4:3a: be:97:a8:5d:05:71:5f:c7:c5:a3:33:14:80:aa:c6:08:bf:c9: 7b:af:65:75 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3WLxm8O36FFYAbafwlPgWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiZGMxZTMzYTUyZGFkZTAxYjUyZDkxNzBiYzI5YjhjMjhk OThiNmMwHhcNMjYwMTAxMDIxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMTdhNTJjN2YzZWEwNmM4MTY5ZmI4MDAyMDc1Mzc0MTk5NmIxZjc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo96GreoBF0ImJaxtCdkHIayu+h7n 0VAfGqO3CXoavTcHuprwxx2aTSz6p4FokaMOHsWCRvDc91iLeesw1VRockzEPO8E ZAtIlavrbyRFtpfutKzQgV6vdYC4HPWi3vD/HFGPvimo6n3u4DVraEqsEzSWYqm1 aymzyGFe2RYPXQN6wuvFBaahKEN0ZEc/MfTYi877G4YB7VYVwSbah8rEqF/URz69 /+QcE/LU4GUJnhMbHeFezh1NOueRTIfOMulvPNRa5MsMuxETSoNVLQflsrB+cW0c zxjF/n8pGFaCcrWFCWQgy0ou/UuBn4jbP8KJIBS3BldhD1f3gveYso+YxwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNF6Usfz6gbIFp+4ACB1N0GZax94MB8GA1UdIwQY MBaAFNvcHjOlLa3gG1LZFwvCm4wo2YtsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjl3ZU02VXRyZUFiVXRrWEM4S2JqQ2paaTJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9kNDlmMWMtYzk0NS00N2M0LWJkZGMt ZWVjY2MyMGE4ZDIxLzEvMFhwU3hfUHFCc2dXbjdnQUlIVTNRWmxySDNnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9kNDlmMWMtYzk0NS00N2M0LWJkZGMtZWVjY2MyMGE4ZDIx LzEvMjl3ZU02VXRyZUFiVXRrWEM4S2JqQ2paaTJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeBFo MA0GCSqGSIb3DQEBCwUAA4IBAQCPQg3c+6UIXzwIRpYvxhjbE5kZAqjWdGCLTScF EWEuEztFfzoSe6p+XdZNARJIKU7t9rS8bcfBLmeu1GIDDwiI1sWsymMskScuEROr 5pp+ZZsHT7PzCZ+4KecWSwRJ+upTUIBa+Qj4rDjhY4U2CNmHqX4hrc4k4XxTSnJU ctiebzly9wp9HuKn8IFwrNVW9K9+2vd3dEjXtpIN9z89w1BggG/LkgZpRf0Hq/LW 2oP4hzVUG4cAzPwhf6Vcjd17wtI3yY0J87txDHiEehJjoBeFXawY7n6fOMS8CQey pX/f84+L+j2mVINR5Dq+l6hdBXFfx8WjMxSAqsYIv8l7r2V1 -----END CERTIFICATE-----Generated at Tue Jan 20 00:27:04 2026 by rpki-client