This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/tIxWkdRjQM6AUyf4Fw_Xzyi3joY.roa File: tIxWkdRjQM6AUyf4Fw_Xzyi3joY.roa (raw, json) Hash identifier: jNYZxsHoHaK1jILM9/oCfLoPW92uI3bYlyUW81wDh3U= Subject key identifier: B4:8C:56:91:D4:63:40:CE:80:53:27:F8:17:0F:D7:CF:28:B7:8E:86 Certificate issuer: /CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d Certificate serial: 019B7E38BCA51C038B1465037BF5F02F7509 Authority key identifier: FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/tIxWkdRjQM6AUyf4Fw_Xzyi3joY.roa Signing time: Fri 02 Jan 2026 10:20:06 +0000 ROA not before: Fri 02 Jan 2026 10:20:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213903 IP address blocks: 2a13:a5c3:f100::/40 maxlen: 48 2a13:a5c7:2600::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/_dbuAQuZCjNzV1a0_i89PCZx3Z0.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/_dbuAQuZCjNzV1a0_i89PCZx3Z0.mft rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 05 Jan 2026 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:bc:a5:1c:03:8b:14:65:03:7b:f5:f0:2f:75:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fdd6ee010b990a33735756b4fe2f3d3c2671dd9d Validity Not Before: Jan 2 10:20:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b48c5691d46340ce805327f8170fd7cf28b78e86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bb:e9:8e:00:0c:cb:af:6c:7b:51:ab:ff:f1: d5:72:38:53:30:f3:d6:ac:7a:1a:fd:00:eb:cf:53: d0:98:91:0b:9e:28:19:93:4d:50:4e:47:bc:8f:93: 08:84:ec:53:c5:11:99:d4:20:8a:80:6e:82:e5:85: c1:53:21:ba:be:4c:ae:1c:38:ed:50:fb:2c:b9:f8: 10:b2:29:ad:72:c9:00:8d:79:f1:cb:fb:8c:3f:ec: 3e:a4:e6:26:d1:7c:f1:fb:98:0b:58:3c:7f:4c:ad: 04:56:82:a7:63:25:ca:38:a8:36:cd:28:c3:ff:52: e0:7e:6c:99:fa:5b:15:19:36:de:7a:ef:ed:73:eb: 11:46:b4:c5:da:11:23:9b:4d:b6:8f:3f:b5:08:1a: f5:53:ab:5d:79:d2:59:1a:92:d6:1c:a2:4b:92:1c: c8:ea:b0:02:3f:e8:b7:a4:2e:70:0d:fc:0a:42:c0: b4:76:8e:ce:36:3a:9d:19:4a:ca:2a:a8:a6:70:a5: 1b:61:f6:ab:f5:1b:ca:a7:0a:91:64:ae:98:cb:9c: 5c:93:41:17:b7:7f:5e:28:64:97:b3:52:fe:ec:0d: f7:b3:9e:ba:b7:c1:35:2c:4c:29:e2:81:ce:44:8b: 7e:a1:f5:1b:45:2f:b5:6d:2b:43:c0:be:06:09:ac: 59:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:8C:56:91:D4:63:40:CE:80:53:27:F8:17:0F:D7:CF:28:B7:8E:86 X509v3 Authority Key Identifier: keyid:FD:D6:EE:01:0B:99:0A:33:73:57:56:B4:FE:2F:3D:3C:26:71:DD:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dbuAQuZCjNzV1a0_i89PCZx3Z0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/tIxWkdRjQM6AUyf4Fw_Xzyi3joY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2d1a35-ff8a-46b4-8c47-63c721cf1f56/1/_dbuAQuZCjNzV1a0_i89PCZx3Z0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:a5c3:f100::/40 2a13:a5c7:2600::/40 Signature Algorithm: sha256WithRSAEncryption 29:50:98:33:9d:98:a8:86:ea:fe:0c:4d:c2:a6:47:06:27:7b: 8c:b4:30:64:d2:8b:c2:89:57:8e:8d:72:c0:cb:f3:94:5e:82: 75:ff:c6:55:7a:9c:7c:aa:cb:ad:a4:60:7c:bb:20:d9:41:00: ac:c6:49:59:ef:4c:5d:64:50:68:ea:7b:cc:14:06:b2:f0:b4: b1:0b:5e:31:d8:67:5f:8e:05:f2:d9:c2:56:bf:27:65:3f:83: d1:e7:40:e7:ec:8e:6f:b7:53:e6:f1:37:34:f2:62:44:f2:73: ee:d9:e3:1f:5d:51:d7:6b:f7:7c:32:0c:a0:14:89:e2:03:b6: 03:a8:97:5d:aa:18:58:62:c1:97:08:01:3a:a4:59:21:e0:55: 35:d8:75:76:07:b1:40:13:9b:65:cd:d6:b5:c3:67:64:8b:5a: 2d:89:36:64:76:73:b5:b0:f5:e8:43:89:5d:0f:22:51:7a:66: 24:a2:35:95:80:ad:09:26:62:ec:ef:51:79:42:a8:1c:b5:f8: 8d:bc:95:99:80:42:7c:30:4e:26:2d:ee:77:99:c8:52:17:f7: 43:d9:10:e1:a7:59:a0:19:3c:49:f6:f8:92:28:7c:c3:c4:eb: bf:ff:f7:8d:c9:9f:5f:a1:ff:7a:0a:89:06:fd:01:d4:01:4b: 12:13:7a:67 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZt+OLylHAOLFGUDe/XwL3UJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkZDZlZTAxMGI5OTBhMzM3MzU3NTZiNGZlMmYzZDNjMjY3 MWRkOWQwHhcNMjYwMTAyMTAyMDA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDhjNTY5MWQ0NjM0MGNlODA1MzI3ZjgxNzBmZDdjZjI4Yjc4ZTg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbvpjgAMy69se1Gr//HVcjhTMPPW rHoa/QDrz1PQmJELnigZk01QTke8j5MIhOxTxRGZ1CCKgG6C5YXBUyG6vkyuHDjt UPssufgQsimtcskAjXnxy/uMP+w+pOYm0Xzx+5gLWDx/TK0EVoKnYyXKOKg2zSjD /1LgfmyZ+lsVGTbeeu/tc+sRRrTF2hEjm022jz+1CBr1U6tdedJZGpLWHKJLkhzI 6rACP+i3pC5wDfwKQsC0do7ONjqdGUrKKqimcKUbYfar9RvKpwqRZK6Yy5xck0EX t39eKGSXs1L+7A33s566t8E1LEwp4oHORIt+ofUbRS+1bStDwL4GCaxZFQIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFLSMVpHUY0DOgFMn+BcP188ot46GMB8GA1UdIwQY MBaAFP3W7gELmQozc1dWtP4vPTwmcd2dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2RidUFRdVpDak56VjFhMF9pODlQQ1p4M1owLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8yZDFhMzUtZmY4YS00NmI0LThjNDct NjNjNzIxY2YxZjU2LzEvdEl4V2tkUmpRTTZBVXlmNEZ3X1h6eWkzam9ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8yZDFhMzUtZmY4YS00NmI0LThjNDctNjNjNzIxY2YxZjU2 LzEvX2RidUFRdVpDak56VjFhMF9pODlQQ1p4M1owLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYAKhOlw/ED BgAqE6XHJjANBgkqhkiG9w0BAQsFAAOCAQEAKVCYM52YqIbq/gxNwqZHBid7jLQw ZNKLwolXjo1ywMvzlF6Cdf/GVXqcfKrLraRgfLsg2UEArMZJWe9MXWRQaOp7zBQG svC0sQteMdhnX44F8tnCVr8nZT+D0edA5+yOb7dT5vE3NPJiRPJz7tnjH11R12v3 fDIMoBSJ4gO2A6iXXaoYWGLBlwgBOqRZIeBVNdh1dgexQBObZc3WtcNnZItaLYk2 ZHZztbD16EOJXQ8iUXpmJKI1lYCtCSZi7O9ReUKoHLX4jbyVmYBCfDBOJi3ud5nI Uhf3Q9kQ4adZoBk8Sfb4kih8w8Trv//3jcmfX6H/egqJBv0B1AFLEhN6Zw== -----END CERTIFICATE-----Generated at Mon Jan 5 03:50:59 2026 by rpki-client