This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/lBlo6PUCc6IqER-nFwmpK7D7yqo.roa File: lBlo6PUCc6IqER-nFwmpK7D7yqo.roa (raw, json) Hash identifier: Z5uCFtdD3Jko3O/Znx9FA924V5ua0wn5UjLkJKE8KyE= Subject key identifier: 94:19:68:E8:F5:02:73:A2:2A:11:1F:A7:17:09:A9:2B:B0:FB:CA:AA Certificate issuer: /CN=255876412d20fbb6cab823481782ac47703b4404 Certificate serial: 019B7B36CB6DF49E86C333E05557C6F8FEF3 Authority key identifier: 25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/lBlo6PUCc6IqER-nFwmpK7D7yqo.roa Signing time: Thu 01 Jan 2026 20:19:07 +0000 ROA not before: Thu 01 Jan 2026 20:19:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213988 IP address blocks: 2a01:ffc6::/34 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:cb:6d:f4:9e:86:c3:33:e0:55:57:c6:f8:fe:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=255876412d20fbb6cab823481782ac47703b4404 Validity Not Before: Jan 1 20:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=941968e8f50273a22a111fa71709a92bb0fbcaaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1d:dd:65:9f:73:16:70:99:6c:8f:ad:e5:38: 38:c2:c2:e6:31:43:90:38:69:d7:40:72:fa:8e:6d: e1:03:ae:9f:6f:c6:38:96:62:4b:ef:8f:bd:80:65: c3:0a:2c:af:ed:e1:fe:49:1d:5c:a9:05:fd:01:d7: d4:48:1f:5b:9e:6f:42:9e:21:0a:86:02:4a:da:c9: ec:bf:66:e2:15:6f:3a:23:c4:0d:d5:5e:69:09:28: 85:ff:fb:13:81:64:84:1d:29:78:76:61:73:62:75: 15:a3:e6:c9:9a:8b:56:6a:c6:41:ce:19:51:4c:69: f7:bd:e8:bb:2c:cc:95:7e:9e:ef:a3:ad:c1:fe:b7: 5d:8c:c4:0e:31:ff:a9:7d:a3:dd:72:fe:34:09:b4: 0f:96:8b:51:a7:46:8d:fe:71:f0:81:c1:59:20:45: 06:9f:7b:c1:45:5a:e2:30:bd:c6:08:63:f7:17:6f: e8:2f:ca:ab:a8:83:51:a8:4f:6f:22:c2:0e:c1:06: c0:3b:aa:bf:07:8a:9c:39:84:c1:e0:0f:90:fb:2f: 8d:36:47:15:e7:bb:26:2d:ab:73:b6:cf:10:69:f8: a2:40:f2:d6:02:18:73:85:34:b4:0c:9a:3c:20:b1: ee:48:01:d8:ff:81:5f:70:4a:0b:98:d0:4e:f1:1f: 68:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:19:68:E8:F5:02:73:A2:2A:11:1F:A7:17:09:A9:2B:B0:FB:CA:AA X509v3 Authority Key Identifier: keyid:25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/lBlo6PUCc6IqER-nFwmpK7D7yqo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:ffc6::/34 Signature Algorithm: sha256WithRSAEncryption b4:8f:71:b5:94:44:8e:b5:62:fd:6f:a5:48:2f:62:25:19:b8: 34:16:93:c9:ca:10:d3:fc:0f:39:41:00:ca:17:41:fa:34:00: e1:9b:1d:b2:0b:64:5e:f0:85:c1:f3:d2:57:1a:82:f3:ee:16: 13:17:6a:70:ac:43:8d:e2:f9:d4:f1:26:ed:92:e6:56:d0:7e: 55:24:5e:c8:09:be:cf:a7:e0:ae:53:db:02:d5:d5:62:70:45: 68:bb:66:75:58:79:07:75:9d:64:b7:40:3f:e7:2c:8b:8c:34: 3b:8a:5e:4c:d9:2d:26:f1:ee:5d:e4:39:e4:be:9c:85:65:2b: 20:6f:50:57:bc:b3:e4:52:39:f8:61:3a:c2:bd:65:57:94:7e: 8f:24:27:fb:c9:9e:35:be:f6:a6:28:75:f6:1e:4a:4e:6d:d8: 52:e9:de:c0:a7:fa:c0:1c:49:64:38:11:e5:ce:dd:43:49:61: 18:e9:3e:8c:a8:b3:d2:89:af:ec:5d:c3:a0:50:58:d0:31:69: c3:bb:e3:f2:51:4c:30:31:07:46:78:ec:f8:9f:26:1d:f9:73: 96:ef:88:00:15:bf:f5:b0:12:ef:d7:dd:d9:54:e8:f0:86:2d: dc:de:8e:4c:7c:42:df:50:7a:a9:a7:2b:cb:7a:46:78:9d:a4: 28:2e:7c:32 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt7Nstt9J6GwzPgVVfG+P7zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1NTg3NjQxMmQyMGZiYjZjYWI4MjM0ODE3ODJhYzQ3NzAz YjQ0MDQwHhcNMjYwMTAxMjAxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NDE5NjhlOGY1MDI3M2EyMmExMTFmYTcxNzA5YTkyYmIwZmJjYWFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsR3dZZ9zFnCZbI+t5Tg4wsLmMUOQ OGnXQHL6jm3hA66fb8Y4lmJL74+9gGXDCiyv7eH+SR1cqQX9AdfUSB9bnm9CniEK hgJK2snsv2biFW86I8QN1V5pCSiF//sTgWSEHSl4dmFzYnUVo+bJmotWasZBzhlR TGn3vei7LMyVfp7vo63B/rddjMQOMf+pfaPdcv40CbQPlotRp0aN/nHwgcFZIEUG n3vBRVriML3GCGP3F2/oL8qrqINRqE9vIsIOwQbAO6q/B4qcOYTB4A+Q+y+NNkcV 57smLatzts8QafiiQPLWAhhzhTS0DJo8ILHuSAHY/4FfcEoLmNBO8R9o6QIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFJQZaOj1AnOiKhEfpxcJqSuw+8qqMB8GA1UdIwQY MBaAFCVYdkEtIPu2yrgjSBeCrEdwO0QEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEt ODc2YzdmY2E0YjM0LzEvbEJsbzZQVUNjNklxRVItbkZ3bXBLN0Q3eXFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEtODc2YzdmY2E0YjM0 LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGKgH/xgAw DQYJKoZIhvcNAQELBQADggEBALSPcbWURI61Yv1vpUgvYiUZuDQWk8nKENP8DzlB AMoXQfo0AOGbHbILZF7whcHz0lcagvPuFhMXanCsQ43i+dTxJu2S5lbQflUkXsgJ vs+n4K5T2wLV1WJwRWi7ZnVYeQd1nWS3QD/nLIuMNDuKXkzZLSbx7l3kOeS+nIVl KyBvUFe8s+RSOfhhOsK9ZVeUfo8kJ/vJnjW+9qYodfYeSk5t2FLp3sCn+sAcSWQ4 EeXO3UNJYRjpPoyos9KJr+xdw6BQWNAxacO74/JRTDAxB0Z47PifJh35c5bviAAV v/WwEu/X3dlU6PCGLdzejkx8Qt9QeqmnK8t6RnidpCgufDI= -----END CERTIFICATE-----Generated at Mon Jan 26 17:26:39 2026 by rpki-client