This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/IdbA3ga81eRnRIoyM9ZFsnJoq-0.roa File: IdbA3ga81eRnRIoyM9ZFsnJoq-0.roa (raw, json) Hash identifier: X6pEz6Y9VtUR71wHETOjVXSfvkgFN13w55bg4lUbPVI= Subject key identifier: 21:D6:C0:DE:06:BC:D5:E4:67:44:8A:32:33:D6:45:B2:72:68:AB:ED Certificate issuer: /CN=6ca977f854c63dc9f97a18be7b13002121a5d384 Certificate serial: 019B7D5C815919BA76989B7DC7B1C1EF7ADB Authority key identifier: 6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/IdbA3ga81eRnRIoyM9ZFsnJoq-0.roa Signing time: Fri 02 Jan 2026 06:19:32 +0000 ROA not before: Fri 02 Jan 2026 06:19:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211390 IP address blocks: 2a13:b487:1600::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.crl rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.mft rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 23 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:81:59:19:ba:76:98:9b:7d:c7:b1:c1:ef:7a:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ca977f854c63dc9f97a18be7b13002121a5d384 Validity Not Before: Jan 2 06:19:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=21d6c0de06bcd5e467448a3233d645b27268abed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:14:a0:f8:7d:d6:ca:44:74:d9:cb:7a:27:f4: fe:18:85:00:94:c3:20:1d:73:94:98:5e:82:45:b8: b0:1e:6b:a4:b2:ee:d2:30:45:35:3f:85:4e:a1:18: c6:bb:56:49:5b:e6:48:0f:fb:00:0c:e8:30:4a:35: 72:b6:91:86:86:50:8b:d7:c7:34:03:b6:35:01:13: a0:d0:8b:17:22:ce:9f:b9:fa:ed:0d:02:da:c1:08: af:ae:e6:d9:cb:10:79:6d:ad:35:59:78:70:77:21: 9f:5c:81:16:27:29:8f:b9:2b:2b:3d:f7:ba:01:31: 79:fe:f4:6e:17:8b:66:b8:75:e5:e5:58:be:e7:94: 08:3f:23:d5:c4:1d:93:5d:cd:ca:2e:36:25:0a:da: c7:bf:60:e6:0c:61:f0:2a:95:4f:cd:d0:e9:ea:c1: 1d:d3:19:1a:fb:76:01:14:36:b8:5a:69:53:ff:cc: 86:00:f9:58:84:d3:66:5b:b5:3e:4f:b6:d7:0b:b6: 7d:b7:49:11:fc:c6:9f:1f:3f:ad:70:7f:64:19:58: d6:05:56:8d:e2:94:7e:69:1f:a7:a1:07:ba:5c:40: 35:0e:64:d3:5a:e8:9b:ea:b9:13:da:4f:93:bd:05: e2:0f:16:f7:c6:8a:50:77:50:35:80:7e:70:da:dd: b1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D6:C0:DE:06:BC:D5:E4:67:44:8A:32:33:D6:45:B2:72:68:AB:ED X509v3 Authority Key Identifier: keyid:6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/IdbA3ga81eRnRIoyM9ZFsnJoq-0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:b487:1600::/40 Signature Algorithm: sha256WithRSAEncryption 75:f7:49:70:5f:c2:f9:fe:0d:7b:a7:f2:27:16:27:8f:c4:1b: b7:30:fd:f9:9e:64:5e:59:39:12:04:00:6f:38:62:17:a0:c1: db:e1:a8:e0:bc:c3:fd:45:b9:0a:54:51:2f:1d:0b:75:33:c6: 9e:80:a2:c9:f2:3d:ae:14:c8:c1:21:79:18:da:8f:38:3b:df: ba:68:23:f4:7f:94:8e:64:dc:5a:3d:46:75:17:8e:79:86:8d: 90:75:4e:39:2d:20:5f:ee:c2:57:af:94:bb:0e:60:42:93:23: bd:73:34:87:6b:e4:07:98:22:92:17:ea:be:1d:4e:bf:29:0c: d1:3d:a6:32:34:ee:68:44:71:47:05:a4:5c:a3:54:50:ef:a1: 54:0a:4e:8f:42:00:b9:72:7f:98:69:9b:f0:79:9b:94:f5:3a: e7:55:ea:70:5f:45:6a:26:66:0c:ae:bc:e8:70:fb:93:5d:85: 58:40:74:ae:68:54:d3:05:93:15:9c:bf:d5:ab:dc:f2:31:5b: f7:f8:67:4a:16:bc:ab:03:21:17:59:45:0d:c3:2e:be:fc:16: 31:b4:71:a1:56:a1:3c:83:a0:3f:a5:f8:82:b2:36:fa:47:20: 6d:e3:59:4e:76:f4:fd:c5:3d:46:cf:0d:c0:cb:49:6c:7c:11: c9:2b:f3:6e -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt9XIFZGbp2mJt9x7HB73rbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjYTk3N2Y4NTRjNjNkYzlmOTdhMThiZTdiMTMwMDIxMjFh NWQzODQwHhcNMjYwMTAyMDYxOTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMWQ2YzBkZTA2YmNkNWU0Njc0NDhhMzIzM2Q2NDViMjcyNjhhYmVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3xSg+H3WykR02ct6J/T+GIUAlMMg HXOUmF6CRbiwHmuksu7SMEU1P4VOoRjGu1ZJW+ZID/sADOgwSjVytpGGhlCL18c0 A7Y1AROg0IsXIs6fufrtDQLawQivrubZyxB5ba01WXhwdyGfXIEWJymPuSsrPfe6 ATF5/vRuF4tmuHXl5Vi+55QIPyPVxB2TXc3KLjYlCtrHv2DmDGHwKpVPzdDp6sEd 0xka+3YBFDa4WmlT/8yGAPlYhNNmW7U+T7bXC7Z9t0kR/MafHz+tcH9kGVjWBVaN 4pR+aR+noQe6XEA1DmTTWuib6rkT2k+TvQXiDxb3xopQd1A1gH5w2t2xHQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFCHWwN4GvNXkZ0SKMjPWRbJyaKvtMB8GA1UdIwQY MBaAFGypd/hUxj3J+XoYvnsTACEhpdOEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYktsMy1GVEdQY241ZWhpLWV4TUFJU0dsMDRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8wOWNjYjQtMjQ4My00YmE3LTk2MzQt ZDZhNTk1MGNhZGYyLzEvSWRiQTNnYTgxZVJuUklveU05WkZzbkpvcS0wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8wOWNjYjQtMjQ4My00YmE3LTk2MzQtZDZhNTk1MGNhZGYy LzEvYktsMy1GVEdQY241ZWhpLWV4TUFJU0dsMDRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhO0hxYw DQYJKoZIhvcNAQELBQADggEBAHX3SXBfwvn+DXun8icWJ4/EG7cw/fmeZF5ZORIE AG84YhegwdvhqOC8w/1FuQpUUS8dC3Uzxp6AosnyPa4UyMEheRjajzg737poI/R/ lI5k3Fo9RnUXjnmGjZB1TjktIF/uwlevlLsOYEKTI71zNIdr5AeYIpIX6r4dTr8p DNE9pjI07mhEcUcFpFyjVFDvoVQKTo9CALlyf5hpm/B5m5T1OudV6nBfRWomZgyu vOhw+5NdhVhAdK5oVNMFkxWcv9Wr3PIxW/f4Z0oWvKsDIRdZRQ3DLr78FjG0caFW oTyDoD+l+IKyNvpHIG3jWU529P3FPUbPDcDLSWx8Eckr824= -----END CERTIFICATE-----Generated at Thu Jan 22 06:17:30 2026 by rpki-client