This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/xnZfFfssAsxjlwsGttN13zsIXc4.roa File: xnZfFfssAsxjlwsGttN13zsIXc4.roa (raw, json) Hash identifier: pZBHsMVpvq0uP/RJRXUDMZR2mnRsomxyBvkjBAFjg6o= Subject key identifier: C6:76:5F:15:FB:2C:02:CC:63:97:0B:06:B6:D3:75:DF:3B:08:5D:CE Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Certificate serial: 019B7F82B3BA876A02F7172CA1213529D012 Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/xnZfFfssAsxjlwsGttN13zsIXc4.roa Signing time: Fri 02 Jan 2026 16:20:30 +0000 ROA not before: Fri 02 Jan 2026 16:20:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 2a0b:b87:ffb0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:b3:ba:87:6a:02:f7:17:2c:a1:21:35:29:d0:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Validity Not Before: Jan 2 16:20:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c6765f15fb2c02cc63970b06b6d375df3b085dce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:e9:ad:39:92:f5:cf:3b:9e:29:dc:f1:e3:35: 14:3d:68:cc:16:16:7b:42:cb:09:78:aa:8b:85:00: b8:81:45:2d:08:38:5d:66:cb:d9:c9:1a:1e:5c:f6: be:ad:03:58:7d:49:80:f8:73:28:3d:97:a8:56:ef: 72:36:e7:96:88:42:23:53:6f:01:15:2a:ae:8e:fb: 2b:fa:98:ae:95:5f:02:1e:bd:bf:87:59:f5:69:18: 3c:12:ca:23:ce:24:52:fb:27:82:21:f9:4d:14:68: 6a:99:61:73:0e:92:3a:f1:9f:64:72:26:97:fa:03: 85:b3:93:5d:79:c1:94:96:01:12:49:7b:f3:60:50: 7d:57:36:72:82:ea:18:9f:1c:fa:c8:94:52:cb:da: 2d:1b:a3:10:33:e9:00:f3:92:d6:06:e7:05:f2:f0: 2b:db:96:1f:9b:23:97:19:6b:ff:aa:a6:44:79:ea: 6d:59:f2:61:49:6f:09:57:97:01:1b:93:80:0e:05: 9b:f7:86:0c:30:45:56:06:0f:5d:d9:e2:f1:f2:27: 27:ef:7e:5e:14:55:41:b4:0b:09:85:b0:71:45:ac: 5c:12:07:01:0e:63:58:7d:50:d7:07:bd:fd:b3:4e: f8:bd:82:e3:e1:26:5c:89:8d:71:ae:96:9f:b4:6f: 79:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:76:5F:15:FB:2C:02:CC:63:97:0B:06:B6:D3:75:DF:3B:08:5D:CE X509v3 Authority Key Identifier: keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/xnZfFfssAsxjlwsGttN13zsIXc4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:b87:ffb0::/48 Signature Algorithm: sha256WithRSAEncryption d1:44:97:31:f9:9d:8f:af:49:4f:40:a5:b9:dd:4a:b6:15:2c: b7:e1:f1:7f:87:3f:33:5f:6a:9e:1e:5d:f6:dd:4b:dd:9a:e3: 9d:6f:cf:1b:1b:b9:42:1f:dc:09:62:b0:60:f3:60:2c:7e:44: 1d:17:04:22:ec:e6:8c:6f:e0:ee:ce:91:15:eb:62:90:e5:b4: 65:13:9e:cf:93:75:5a:b4:1b:9d:14:31:03:3a:ff:b9:8f:85: 35:b0:09:a2:66:e0:0e:0c:b0:53:26:97:b7:7e:c0:91:d7:a2: 6c:0c:fa:e8:e6:59:2e:d5:82:40:49:8c:b7:8b:71:5f:40:7b: 7b:a7:ab:0c:76:7b:24:a0:80:72:21:f4:83:44:be:57:d0:95: 92:29:e2:32:af:d6:cf:57:a2:c6:ae:10:8f:1c:a4:8c:00:f0: cf:01:8e:9f:31:a3:a8:bd:30:e5:11:c2:c6:52:b9:46:75:e2: ef:64:61:4f:c4:8d:cd:dd:bd:42:1d:54:18:3c:1a:84:d4:ca: 9f:6b:24:4f:5c:b2:6c:4d:80:e6:d1:19:ec:8b:f8:35:c2:ba: 37:ed:5e:65:29:a3:47:6f:ad:7f:66:a5:86:01:f4:6e:4f:f1: c2:9b:fe:fb:83:c4:61:03:7c:a3:0d:64:8d:5c:60:17:89:c4: ed:76:0e:c1 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/grO6h2oC9xcsoSE1KdASMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz YjUwMzQwHhcNMjYwMTAyMTYyMDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNjc2NWYxNWZiMmMwMmNjNjM5NzBiMDZiNmQzNzVkZjNiMDg1ZGNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkumtOZL1zzueKdzx4zUUPWjMFhZ7 QssJeKqLhQC4gUUtCDhdZsvZyRoeXPa+rQNYfUmA+HMoPZeoVu9yNueWiEIjU28B FSqujvsr+piulV8CHr2/h1n1aRg8EsojziRS+yeCIflNFGhqmWFzDpI68Z9kciaX +gOFs5NdecGUlgESSXvzYFB9VzZyguoYnxz6yJRSy9otG6MQM+kA85LWBucF8vAr 25YfmyOXGWv/qqZEeeptWfJhSW8JV5cBG5OADgWb94YMMEVWBg9d2eLx8icn735e FFVBtAsJhbBxRaxcEgcBDmNYfVDXB739s074vYLj4SZciY1xrpaftG95uwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFMZ2XxX7LALMY5cLBrbTdd87CF3OMB8GA1UdIwQY MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It Mzk0YWNkMjFmMzliLzEveG5aZkZmc3NBc3hqbHdzR3R0TjEzenNJWGM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgsLh/+w MA0GCSqGSIb3DQEBCwUAA4IBAQDRRJcx+Z2Pr0lPQKW53Uq2FSy34fF/hz8zX2qe Hl323UvdmuOdb88bG7lCH9wJYrBg82AsfkQdFwQi7OaMb+DuzpEV62KQ5bRlE57P k3VatBudFDEDOv+5j4U1sAmiZuAODLBTJpe3fsCR16JsDPro5lku1YJASYy3i3Ff QHt7p6sMdnskoIByIfSDRL5X0JWSKeIyr9bPV6LGrhCPHKSMAPDPAY6fMaOovTDl EcLGUrlGdeLvZGFPxI3N3b1CHVQYPBqE1MqfayRPXLJsTYDm0Rnsi/g1wro37V5l KaNHb61/ZqWGAfRuT/HCm/77g8RhA3yjDWSNXGAXicTtdg7B -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:12 2026 by rpki-client