This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/TtXo5-QRvXwKIgknKnZ4_4t2vL8.roa File: TtXo5-QRvXwKIgknKnZ4_4t2vL8.roa (raw, json) Hash identifier: mXHeMxujxsacK8/QlflktbO+DxAXX0UCko2MtIwDM0I= Subject key identifier: 4E:D5:E8:E7:E4:11:BD:7C:0A:22:09:27:2A:76:78:FF:8B:76:BC:BF Certificate issuer: /CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf Certificate serial: 019B78A2487878B22DB81BCBA652545584B8 Authority key identifier: 80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/TtXo5-QRvXwKIgknKnZ4_4t2vL8.roa Signing time: Thu 01 Jan 2026 08:17:39 +0000 ROA not before: Thu 01 Jan 2026 08:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200258 IP address blocks: 2001:67c:b50::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:48:78:78:b2:2d:b8:1b:cb:a6:52:54:55:84:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf Validity Not Before: Jan 1 08:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4ed5e8e7e411bd7c0a2209272a7678ff8b76bcbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bb:85:eb:07:f7:4b:d5:50:cd:43:92:86:7a: 96:e9:7c:a5:09:d5:32:86:bb:ce:7a:86:a0:2a:7c: 69:87:21:1e:51:2e:ef:4f:8a:fb:2e:66:92:f9:62: 83:1f:73:29:2f:17:5d:05:49:3f:dd:db:86:92:47: 36:36:5f:64:b4:24:14:f8:99:f1:d7:92:01:80:a3: 1c:87:b6:06:38:44:5b:66:7f:70:f7:53:25:10:b3: d2:b0:c0:3a:55:4e:57:0e:cb:83:52:4b:91:04:29: 61:be:5b:1f:14:10:fa:a7:9d:fe:f2:ef:b9:e6:be: 2f:cf:8c:2b:e1:b4:b6:06:10:e9:13:23:eb:09:03: 7a:a9:a6:1e:0c:68:14:7c:2c:c2:f4:cc:bc:d6:c1: 05:e7:4c:11:a0:f9:36:50:a3:81:b7:de:d6:01:ab: 7f:ec:9b:ba:8c:82:8e:cd:0a:93:f3:7b:76:c3:87: d5:f8:fb:63:32:1f:46:f3:a5:9a:06:df:2a:71:0c: 48:8c:76:8e:f9:3a:42:b2:63:45:3b:16:ad:ff:3b: 26:d0:55:22:b5:3c:5b:98:95:12:da:6a:ef:e1:32: 96:7c:2c:f5:32:02:1d:02:c5:c1:85:05:64:91:95: ef:5f:f9:f1:ff:7d:d5:99:b6:ff:a2:f5:0e:ac:e4: 90:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D5:E8:E7:E4:11:BD:7C:0A:22:09:27:2A:76:78:FF:8B:76:BC:BF X509v3 Authority Key Identifier: keyid:80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/TtXo5-QRvXwKIgknKnZ4_4t2vL8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:b50::/48 Signature Algorithm: sha256WithRSAEncryption a8:f4:ca:e3:dc:b7:a0:73:d3:b1:05:c7:f6:bf:8b:0e:5d:25: ed:da:de:f4:6e:21:99:c1:6d:7a:b6:b7:a5:91:23:2e:9e:3d: d2:bb:a0:65:c8:03:46:99:03:50:d5:fe:a2:b9:c0:c9:9d:6a: 39:4a:d6:34:af:8d:e4:7b:a3:95:8d:3a:b6:3b:14:2d:9b:62: 70:b6:09:6d:b4:12:12:64:3c:4f:f3:f9:98:f1:7d:8e:f9:81: c6:46:7f:fc:c8:76:83:2c:4a:87:fd:3c:b0:0f:39:28:4e:56: 13:ba:fd:65:73:6b:18:3a:3f:65:9a:0d:c9:8b:8c:b9:11:20: 1a:7f:2a:5f:ae:64:02:43:28:6e:cf:a7:bd:90:24:b0:7c:b7: 3e:63:35:33:d2:86:7e:cb:21:c6:fb:f4:09:1a:ab:2f:0f:0e: 97:cd:7b:c8:a5:f0:7f:b7:e9:e2:6e:2b:ec:24:c1:d2:7e:b7: aa:3e:43:47:1a:9a:83:a4:cb:b3:6d:68:6b:2c:76:52:37:4c: 3d:f5:19:46:38:ec:c7:48:60:e6:35:dd:73:cd:13:83:ec:a9: 5a:53:f8:ba:89:d2:a4:fa:45:64:56:6b:27:8f:5a:c3:84:12: 8d:53:e1:48:0d:a7:fa:70:d6:85:f1:55:14:f7:7e:ae:a3:7b: e6:56:8a:02 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt4okh4eLItuBvLplJUVYS4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwNDFmZWVhMTIzZmNiMDdlODcyYThjYjRiZGQ5YWI3Yjhk YTJmY2YwHhcNMjYwMTAxMDgxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZWQ1ZThlN2U0MTFiZDdjMGEyMjA5MjcyYTc2NzhmZjhiNzZiY2JmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxbuF6wf3S9VQzUOShnqW6XylCdUy hrvOeoagKnxphyEeUS7vT4r7LmaS+WKDH3MpLxddBUk/3duGkkc2Nl9ktCQU+Jnx 15IBgKMch7YGOERbZn9w91MlELPSsMA6VU5XDsuDUkuRBClhvlsfFBD6p53+8u+5 5r4vz4wr4bS2BhDpEyPrCQN6qaYeDGgUfCzC9My81sEF50wRoPk2UKOBt97WAat/ 7Ju6jIKOzQqT83t2w4fV+PtjMh9G86WaBt8qcQxIjHaO+TpCsmNFOxat/zsm0FUi tTxbmJUS2mrv4TKWfCz1MgIdAsXBhQVkkZXvX/nx/33Vmbb/ovUOrOSQAQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFE7V6OfkEb18CiIJJyp2eP+Ldry/MB8GA1UdIwQY MBaAFIBB/uoSP8sH6HKoy0vdmre42i/PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ0VILTZoSV95d2ZvY3FqTFM5MmF0N2phTDg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9kMzE3Y2EtMzk2MS00ZmUwLWJkZTgt ZjdjNTAxNDE4ZTU2LzEvVHRYbzUtUVJ2WHdLSWdrbktuWjRfNHQydkw4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi9kMzE3Y2EtMzk2MS00ZmUwLWJkZTgtZjdjNTAxNDE4ZTU2 LzEvZ0VILTZoSV95d2ZvY3FqTFM5MmF0N2phTDg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAtQ MA0GCSqGSIb3DQEBCwUAA4IBAQCo9Mrj3Legc9OxBcf2v4sOXSXt2t70biGZwW16 trelkSMunj3Su6BlyANGmQNQ1f6iucDJnWo5StY0r43ke6OVjTq2OxQtm2Jwtglt tBISZDxP8/mY8X2O+YHGRn/8yHaDLEqH/TywDzkoTlYTuv1lc2sYOj9lmg3Ji4y5 ESAafypfrmQCQyhuz6e9kCSwfLc+YzUz0oZ+yyHG+/QJGqsvDw6XzXvIpfB/t+ni bivsJMHSfreqPkNHGpqDpMuzbWhrLHZSN0w99RlGOOzHSGDmNd1zzROD7KlaU/i6 idKk+kVkVmsnj1rDhBKNU+FIDaf6cNaF8VUU936uo3vmVooC -----END CERTIFICATE-----Generated at Tue Feb 10 00:09:11 2026 by rpki-client