This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/PTOKGofu3G1uG5_fxOd74f_ZXh0.roa File: PTOKGofu3G1uG5_fxOd74f_ZXh0.roa (raw, json) Hash identifier: ZiSN2vOLbtTuKEgjWMp+GtOHR2q9sXWEPgT77A0wtP8= Subject key identifier: 3D:33:8A:1A:87:EE:DC:6D:6E:1B:9F:DF:C4:E7:7B:E1:FF:D9:5E:1D Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Certificate serial: 019B7F82E0B99A7F868D9C960B669576AC63 Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/PTOKGofu3G1uG5_fxOd74f_ZXh0.roa Signing time: Fri 02 Jan 2026 16:20:42 +0000 ROA not before: Fri 02 Jan 2026 16:20:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213115 IP address blocks: 2a0b:b87:ffb0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 07:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:e0:b9:9a:7f:86:8d:9c:96:0b:66:95:76:ac:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Validity Not Before: Jan 2 16:20:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3d338a1a87eedc6d6e1b9fdfc4e77be1ffd95e1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:1c:13:41:7e:6d:34:61:6d:bd:cb:a2:d3:c8: 68:00:bc:75:69:b4:63:66:7f:ed:ef:40:de:33:34: 14:fe:c8:d4:57:4b:da:dd:68:1f:16:85:7c:ec:f3: b3:0f:1a:7c:d4:e3:d7:33:3c:10:be:30:17:8d:a2: 7e:e9:f9:93:a2:04:ba:cf:6c:36:25:c9:2b:45:43: 96:5e:ea:50:e1:37:5a:ec:c6:90:ad:77:a1:dc:d9: 50:b1:a9:d2:d3:03:51:ec:4d:2b:af:33:f6:3a:dd: 96:dd:35:2f:6f:f5:aa:6e:cc:9e:1b:29:df:39:9d: 72:de:0d:ce:e5:c8:e5:3a:36:21:4b:3e:17:92:91: 6d:17:a7:08:0a:34:7a:96:b1:83:f6:39:60:2d:5c: 02:fc:8c:28:ed:17:cd:eb:53:a4:88:2a:f3:26:5c: 92:2c:c6:d4:55:5d:69:04:fb:77:0d:0c:85:47:c1: e8:61:58:1a:ec:9d:a9:89:37:56:14:3d:08:a1:c8: ac:7b:8c:9d:5a:60:f8:38:b0:a4:24:f8:eb:03:94: 7c:1f:be:61:3c:c2:51:a5:91:06:01:24:78:a6:90: d9:49:14:cc:55:47:c8:71:45:61:54:5a:86:87:c5: ae:fe:f8:43:a6:5d:44:06:d1:5c:89:3c:d6:bc:46: fa:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:33:8A:1A:87:EE:DC:6D:6E:1B:9F:DF:C4:E7:7B:E1:FF:D9:5E:1D X509v3 Authority Key Identifier: keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/PTOKGofu3G1uG5_fxOd74f_ZXh0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:b87:ffb0::/48 Signature Algorithm: sha256WithRSAEncryption 4b:d1:e9:88:27:56:8c:14:ec:56:d4:d8:95:a7:9b:2b:4b:6e: 43:ee:e7:7f:63:03:ef:64:ea:2b:b4:f2:67:4c:16:94:bc:10: 6b:48:00:fb:42:e0:f4:dc:4c:4e:86:7e:5c:fa:f2:3d:0b:65: 3f:44:a8:5f:f3:69:cb:fe:49:a4:67:49:33:93:37:67:c7:91: 1f:05:22:f9:e2:fa:88:6e:18:0a:86:4b:f7:3c:7c:1e:f4:74: be:2f:2b:31:81:1a:9a:f2:ed:3d:bf:79:31:11:72:53:85:2b: b3:6a:a9:74:91:e7:e6:88:54:51:3b:e0:3d:58:0c:45:6d:f5: 01:bf:0f:0b:dc:1c:8e:a9:fb:b9:98:5a:71:a4:e4:ba:57:e2: 54:b2:93:93:e3:86:68:88:52:a0:e3:10:03:89:20:37:ba:23: 3e:ca:92:dc:77:45:ec:2c:56:07:5c:0e:11:2b:27:8d:fd:90: 37:81:6b:52:e3:2e:98:48:17:e1:dc:9c:d5:c2:77:b4:13:38: df:50:52:bb:78:7f:84:c7:22:74:c0:a2:c2:a4:16:2c:dc:93: 1f:38:2d:99:46:4e:67:9a:f3:2d:cb:45:0f:12:2b:ba:e9:b0: d6:b2:50:24:1c:7f:cb:df:98:91:c3:27:37:25:a8:50:8b:ea: 42:c1:c2:ad -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/guC5mn+GjZyWC2aVdqxjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz YjUwMzQwHhcNMjYwMTAyMTYyMDQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZDMzOGExYTg3ZWVkYzZkNmUxYjlmZGZjNGU3N2JlMWZmZDk1ZTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9xwTQX5tNGFtvcui08hoALx1abRj Zn/t70DeMzQU/sjUV0va3WgfFoV87POzDxp81OPXMzwQvjAXjaJ+6fmTogS6z2w2 JckrRUOWXupQ4Tda7MaQrXeh3NlQsanS0wNR7E0rrzP2Ot2W3TUvb/WqbsyeGynf OZ1y3g3O5cjlOjYhSz4XkpFtF6cICjR6lrGD9jlgLVwC/Iwo7RfN61OkiCrzJlyS LMbUVV1pBPt3DQyFR8HoYVga7J2piTdWFD0Iocise4ydWmD4OLCkJPjrA5R8H75h PMJRpZEGASR4ppDZSRTMVUfIcUVhVFqGh8Wu/vhDpl1EBtFciTzWvEb6kwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFD0zihqH7txtbhuf38Tne+H/2V4dMB8GA1UdIwQY MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It Mzk0YWNkMjFmMzliLzEvUFRPS0dvZnUzRzF1RzVfZnhPZDc0Zl9aWGgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgsLh/+w MA0GCSqGSIb3DQEBCwUAA4IBAQBL0emIJ1aMFOxW1NiVp5srS25D7ud/YwPvZOor tPJnTBaUvBBrSAD7QuD03ExOhn5c+vI9C2U/RKhf82nL/kmkZ0kzkzdnx5EfBSL5 4vqIbhgKhkv3PHwe9HS+LysxgRqa8u09v3kxEXJThSuzaql0kefmiFRRO+A9WAxF bfUBvw8L3ByOqfu5mFpxpOS6V+JUspOT44ZoiFKg4xADiSA3uiM+ypLcd0XsLFYH XA4RKyeN/ZA3gWtS4y6YSBfh3JzVwne0EzjfUFK7eH+ExyJ0wKLCpBYs3JMfOC2Z Rk5nmvMty0UPEiu66bDWslAkHH/L35iRwyc3JahQi+pCwcKt -----END CERTIFICATE-----Generated at Tue Jan 20 15:18:58 2026 by rpki-client