This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/eff67f-40a9-4775-a9c2-ad28fa966b51/1/dGGdzraFBMqQuQOaaYdWRwXkWRo.roa File: dGGdzraFBMqQuQOaaYdWRwXkWRo.roa (raw, json) Hash identifier: 2J+i3mFaVsHOA07pasr4FZkQypfzyjabfUuePsjfpFk= Subject key identifier: 74:61:9D:CE:B6:85:04:CA:90:B9:03:9A:69:87:56:47:05:E4:59:1A Certificate issuer: /CN=0bb3e73aa8b7f0af3bd8400572dae72b0d46f55c Certificate serial: 019B775960ED29FBA36E03FF5F4411C4386D Authority key identifier: 0B:B3:E7:3A:A8:B7:F0:AF:3B:D8:40:05:72:DA:E7:2B:0D:46:F5:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C7PnOqi38K872EAFctrnKw1G9Vw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/eff67f-40a9-4775-a9c2-ad28fa966b51/1/dGGdzraFBMqQuQOaaYdWRwXkWRo.roa Signing time: Thu 01 Jan 2026 02:18:24 +0000 ROA not before: Thu 01 Jan 2026 02:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 52042 IP address blocks: 2a0e:48c0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/eff67f-40a9-4775-a9c2-ad28fa966b51/1/C7PnOqi38K872EAFctrnKw1G9Vw.crl rsync://rpki.ripe.net/repository/DEFAULT/11/eff67f-40a9-4775-a9c2-ad28fa966b51/1/C7PnOqi38K872EAFctrnKw1G9Vw.mft rsync://rpki.ripe.net/repository/DEFAULT/C7PnOqi38K872EAFctrnKw1G9Vw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:60:ed:29:fb:a3:6e:03:ff:5f:44:11:c4:38:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0bb3e73aa8b7f0af3bd8400572dae72b0d46f55c Validity Not Before: Jan 1 02:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=74619dceb68504ca90b9039a6987564705e4591a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4d:bd:5f:59:3e:96:ee:1c:96:71:a4:be:93: bd:c9:21:12:c9:32:f5:0d:7d:9c:fe:d7:75:17:85: 7a:40:86:34:44:16:39:d8:14:36:f7:d3:55:9b:82: bb:63:53:af:c4:93:75:e4:68:fc:0e:f2:6b:ac:1f: 71:25:1c:66:5e:54:10:80:1e:c0:f1:10:57:59:83: af:01:fc:7a:e0:3a:ee:48:00:f5:48:47:c7:33:66: fc:77:6e:5b:dd:92:54:a6:a2:c0:8d:5e:5a:1c:82: 98:ca:a3:f5:10:55:02:0e:d0:72:c0:e0:c4:32:fc: 15:52:2d:65:b3:29:0b:73:b7:58:8f:db:22:bd:d5: a3:b7:27:ab:29:33:58:50:58:97:87:c4:2f:3c:0c: dc:1d:b8:bc:52:05:fd:71:3a:4f:6b:b2:04:2c:d4: 19:56:fb:51:9b:88:5f:d8:b2:bc:7e:b4:08:d6:11: 52:40:7f:14:21:41:9e:09:18:27:d7:98:96:4e:20: e5:c8:8f:a1:cd:b8:bc:84:98:bf:e2:0a:14:2c:26: ba:13:38:f7:00:12:1d:1c:d4:2d:e4:5a:db:90:83: 6a:24:0e:1d:88:54:ca:e3:40:0f:96:1d:52:33:07: df:2f:71:2f:b9:ef:eb:65:e1:96:b1:22:26:2e:a5: 2b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:61:9D:CE:B6:85:04:CA:90:B9:03:9A:69:87:56:47:05:E4:59:1A X509v3 Authority Key Identifier: keyid:0B:B3:E7:3A:A8:B7:F0:AF:3B:D8:40:05:72:DA:E7:2B:0D:46:F5:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C7PnOqi38K872EAFctrnKw1G9Vw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/eff67f-40a9-4775-a9c2-ad28fa966b51/1/dGGdzraFBMqQuQOaaYdWRwXkWRo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/eff67f-40a9-4775-a9c2-ad28fa966b51/1/C7PnOqi38K872EAFctrnKw1G9Vw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:48c0::/29 Signature Algorithm: sha256WithRSAEncryption 9e:bf:80:97:a9:c0:b9:03:fd:9f:f1:da:e8:a4:9b:6e:f0:85: 27:5e:f7:b7:98:9c:11:be:94:31:cb:bf:d4:2b:49:8b:bf:07: 26:f3:cf:75:cb:d5:3d:79:7e:5f:3b:19:40:92:95:ab:ed:aa: 2f:8f:7b:08:99:2e:b5:ff:18:ab:1c:a0:a4:bb:2b:2f:d0:fe: a2:e1:72:66:59:1f:58:17:13:ca:f6:e5:44:7f:64:67:38:d7: 29:d8:12:b8:52:10:bb:aa:d1:13:19:bf:e6:fd:17:04:3d:93: 44:1d:96:2a:95:07:9b:cc:95:2f:12:c4:a1:f1:4a:84:3f:68: e6:47:4d:bb:9a:c2:3b:c6:48:6a:c4:af:e7:78:e7:9e:e2:18: 28:9f:c5:22:ec:9f:c5:91:83:42:76:de:d0:b6:5b:a6:e6:72: fd:ee:92:36:73:b7:0c:3e:c1:cf:8f:0a:8b:2e:4a:aa:12:c4: a2:2d:f2:66:be:25:49:4b:58:9d:19:96:ba:da:67:f0:3d:26: 36:1f:d5:04:09:65:4d:03:4d:d6:90:77:e9:cb:63:fe:c8:27: 22:42:e2:f4:0b:17:e2:fd:7c:98:be:6a:fc:a9:0e:ca:1a:64: d0:ad:5e:7d:25:ec:fd:9a:22:a9:12:fd:8f:c8:20:1c:88:ae: 82:b4:2d:c8 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt3WWDtKfujbgP/X0QRxDhtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiYjNlNzNhYThiN2YwYWYzYmQ4NDAwNTcyZGFlNzJiMGQ0 NmY1NWMwHhcNMjYwMTAxMDIxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NDYxOWRjZWI2ODUwNGNhOTBiOTAzOWE2OTg3NTY0NzA1ZTQ1OTFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArk29X1k+lu4clnGkvpO9ySESyTL1 DX2c/td1F4V6QIY0RBY52BQ299NVm4K7Y1OvxJN15Gj8DvJrrB9xJRxmXlQQgB7A 8RBXWYOvAfx64DruSAD1SEfHM2b8d25b3ZJUpqLAjV5aHIKYyqP1EFUCDtBywODE MvwVUi1lsykLc7dYj9sivdWjtyerKTNYUFiXh8QvPAzcHbi8UgX9cTpPa7IELNQZ VvtRm4hf2LK8frQI1hFSQH8UIUGeCRgn15iWTiDlyI+hzbi8hJi/4goULCa6Ezj3 ABIdHNQt5FrbkINqJA4diFTK40APlh1SMwffL3Evue/rZeGWsSImLqUr1QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFHRhnc62hQTKkLkDmmmHVkcF5FkaMB8GA1UdIwQY MBaAFAuz5zqot/CvO9hABXLa5ysNRvVcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQzdQbk9xaTM4Szg3MkVBRmN0cm5LdzFHOVZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9lZmY2N2YtNDBhOS00Nzc1LWE5YzIt YWQyOGZhOTY2YjUxLzEvZEdHZHpyYUZCTXFRdVFPYWFZZFdSd1hrV1JvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9lZmY2N2YtNDBhOS00Nzc1LWE5YzItYWQyOGZhOTY2YjUx LzEvQzdQbk9xaTM4Szg3MkVBRmN0cm5LdzFHOVZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg5IwDAN BgkqhkiG9w0BAQsFAAOCAQEAnr+Al6nAuQP9n/Ha6KSbbvCFJ173t5icEb6UMcu/ 1CtJi78HJvPPdcvVPXl+XzsZQJKVq+2qL497CJkutf8YqxygpLsrL9D+ouFyZlkf WBcTyvblRH9kZzjXKdgSuFIQu6rRExm/5v0XBD2TRB2WKpUHm8yVLxLEofFKhD9o 5kdNu5rCO8ZIasSv53jnnuIYKJ/FIuyfxZGDQnbe0LZbpuZy/e6SNnO3DD7Bz48K iy5KqhLEoi3yZr4lSUtYnRmWutpn8D0mNh/VBAllTQNN1pB36ctj/sgnIkLi9AsX 4v18mL5q/KkOyhpk0K1efSXs/ZoiqRL9j8ggHIiugrQtyA== -----END CERTIFICATE-----Generated at Sun Jan 18 13:13:17 2026 by rpki-client