This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/1xyHsYNUFoJ-pAioaST7r-4iNoY.roa File: 1xyHsYNUFoJ-pAioaST7r-4iNoY.roa (raw, json) Hash identifier: wxDqW3rd3N4FjlubcyoVvj1qY2eHpaWt4iZm04KnwmU= Subject key identifier: D7:1C:87:B1:83:54:16:82:7E:A4:08:A8:69:24:FB:AF:EE:22:36:86 Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f Certificate serial: 019B7C12B7440F26AEBE7B0FD309EFA70D16 Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/1xyHsYNUFoJ-pAioaST7r-4iNoY.roa Signing time: Fri 02 Jan 2026 00:19:19 +0000 ROA not before: Fri 02 Jan 2026 00:19:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201217 IP address blocks: 2a0a:280:1700::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.mft rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 12:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:b7:44:0f:26:ae:be:7b:0f:d3:09:ef:a7:0d:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f Validity Not Before: Jan 2 00:19:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d71c87b1835416827ea408a86924fbafee223686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e2:60:b4:13:dd:ca:1b:8f:7f:0a:b0:b1:85: 51:7c:b2:2f:71:20:09:2b:6c:39:16:ed:f2:61:cb: 27:67:44:7e:57:72:af:f9:2a:1e:4d:82:c9:3e:86: 97:d7:be:7a:0d:59:aa:0b:86:38:b7:3a:38:ba:d6: 36:02:cd:24:5c:1d:6f:a8:f1:ce:9f:31:bb:55:14: 59:f8:87:7f:b6:da:39:5d:b6:52:6a:c5:13:28:5f: a1:01:c8:14:c8:28:08:b4:73:a7:bb:9a:21:98:e3: 22:5c:2f:17:39:b4:9c:c8:19:60:5b:ee:21:c3:10: ca:1f:89:be:5a:53:0a:d5:61:33:57:2c:b1:2a:47: e1:51:46:d5:bb:22:ba:7d:5e:e8:20:58:a9:e5:45: 8b:41:ab:b3:85:70:2b:b1:99:3e:ac:ba:65:73:1f: c9:5c:50:6b:90:5f:c8:03:97:22:89:09:0a:1e:b9: 36:46:43:42:cd:f1:2b:f8:b5:01:f6:2f:90:85:a6: ea:1a:6f:91:96:8d:97:b9:97:33:a8:13:10:9b:f2: fc:54:e6:c7:b4:97:f7:5d:fc:cf:56:46:97:a7:ba: 5d:df:4d:17:43:b7:17:ea:25:cd:f5:55:07:90:a8: 99:19:83:f0:7f:5e:b0:64:b3:64:c5:9c:70:bf:55: 3c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:1C:87:B1:83:54:16:82:7E:A4:08:A8:69:24:FB:AF:EE:22:36:86 X509v3 Authority Key Identifier: keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/1xyHsYNUFoJ-pAioaST7r-4iNoY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:280:1700::/40 Signature Algorithm: sha256WithRSAEncryption 51:df:87:6d:2c:91:dd:5f:d1:8b:bf:40:e2:7d:b5:b5:34:b7: 72:3b:5f:10:51:e5:59:f0:14:bf:13:cd:57:34:28:f0:07:9d: 0f:09:a2:ca:8f:e6:a2:a3:b1:81:6b:db:71:63:35:22:c0:1f: f1:fe:01:e7:e2:47:89:6c:8f:fc:13:c4:d0:d6:72:1d:e8:0d: 1d:2b:d9:28:28:58:88:0d:a9:2f:00:77:b4:43:51:b7:09:ff: 95:37:21:a1:b6:73:b2:5b:b4:7b:b1:2f:e9:74:d8:ed:f0:aa: c2:83:ee:6e:01:35:ad:30:35:43:15:3e:9d:41:7d:c0:9e:c6: ad:3c:d6:fc:27:13:8a:9e:1b:41:d5:56:44:0a:64:bd:79:d7: 89:9d:0c:98:3a:31:bc:1c:c0:9e:6b:c9:5b:7e:58:96:85:20: a9:8a:4e:96:b8:2d:50:a1:de:3f:38:a4:99:f9:df:2e:7e:16: ec:a9:45:ca:33:c0:fa:45:bb:ac:98:27:39:ee:92:92:4a:ba: 93:17:fb:7d:ee:a7:5c:98:59:59:39:4b:03:53:28:07:41:83: ef:0b:cd:b8:8f:ea:92:c6:6e:10:13:8d:b1:3e:06:19:10:bd: 75:7a:f8:c0:d1:49:07:0e:53:d0:82:85:9b:7e:7a:4a:f1:99: 30:3b:cc:ef -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt8ErdEDyauvnsP0wnvpw0WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiOWYyMWJhMDRlNWUzMDc3YjM5MWUzZDQ4ZmY1YjBhNTBi MzM2OWYwHhcNMjYwMTAyMDAxOTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNzFjODdiMTgzNTQxNjgyN2VhNDA4YTg2OTI0ZmJhZmVlMjIzNjg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnuJgtBPdyhuPfwqwsYVRfLIvcSAJ K2w5Fu3yYcsnZ0R+V3Kv+SoeTYLJPoaX1756DVmqC4Y4tzo4utY2As0kXB1vqPHO nzG7VRRZ+Id/tto5XbZSasUTKF+hAcgUyCgItHOnu5ohmOMiXC8XObScyBlgW+4h wxDKH4m+WlMK1WEzVyyxKkfhUUbVuyK6fV7oIFip5UWLQauzhXArsZk+rLplcx/J XFBrkF/IA5ciiQkKHrk2RkNCzfEr+LUB9i+QhabqGm+Rlo2XuZczqBMQm/L8VObH tJf3XfzPVkaXp7pd300XQ7cX6iXN9VUHkKiZGYPwf16wZLNkxZxwv1U8NQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFNcch7GDVBaCfqQIqGkk+6/uIjaGMB8GA1UdIwQY MBaAFBufIboE5eMHezkePUj/WwpQszafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUt ZjUxYzVmYjNkZjlhLzEvMXh5SHNZTlVGb0otcEFpb2FTVDdyLTRpTm9ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUtZjUxYzVmYjNkZjlh LzEvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgoCgBcw DQYJKoZIhvcNAQELBQADggEBAFHfh20skd1f0Yu/QOJ9tbU0t3I7XxBR5VnwFL8T zVc0KPAHnQ8JosqP5qKjsYFr23FjNSLAH/H+AefiR4lsj/wTxNDWch3oDR0r2Sgo WIgNqS8Ad7RDUbcJ/5U3IaG2c7JbtHuxL+l02O3wqsKD7m4BNa0wNUMVPp1BfcCe xq081vwnE4qeG0HVVkQKZL1514mdDJg6MbwcwJ5ryVt+WJaFIKmKTpa4LVCh3j84 pJn53y5+FuypRcozwPpFu6yYJznukpJKupMX+33up1yYWVk5SwNTKAdBg+8LzbiP 6pLGbhATjbE+BhkQvXV6+MDRSQcOU9CChZt+ekrxmTA7zO8= -----END CERTIFICATE-----Generated at Wed Jan 21 17:35:14 2026 by rpki-client