This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/003ca9-c390-4274-8fc6-7c504703bb02/1/1Xd9T-vmTqWcRzDMcqdo4DeoQuQ.roa File: 1Xd9T-vmTqWcRzDMcqdo4DeoQuQ.roa (raw, json) Hash identifier: xBqelHlXV4izENr8HmikmcGOwsrcVkd1Rr1h+hdnJUI= Subject key identifier: D5:77:7D:4F:EB:E6:4E:A5:9C:47:30:CC:72:A7:68:E0:37:A8:42:E4 Certificate issuer: /CN=e5da8e9cfc8b160ec59b540f39d8973d4218312a Certificate serial: 019B7DCA672825C776CE455F1540A7BE3049 Authority key identifier: E5:DA:8E:9C:FC:8B:16:0E:C5:9B:54:0F:39:D8:97:3D:42:18:31:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dqOnPyLFg7Fm1QPOdiXPUIYMSo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/003ca9-c390-4274-8fc6-7c504703bb02/1/1Xd9T-vmTqWcRzDMcqdo4DeoQuQ.roa Signing time: Fri 02 Jan 2026 08:19:35 +0000 ROA not before: Fri 02 Jan 2026 08:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42633 IP address blocks: 2a10:4780:4000::/36 maxlen: 36 2a10:4780:5000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/003ca9-c390-4274-8fc6-7c504703bb02/1/5dqOnPyLFg7Fm1QPOdiXPUIYMSo.crl rsync://rpki.ripe.net/repository/DEFAULT/44/003ca9-c390-4274-8fc6-7c504703bb02/1/5dqOnPyLFg7Fm1QPOdiXPUIYMSo.mft rsync://rpki.ripe.net/repository/DEFAULT/5dqOnPyLFg7Fm1QPOdiXPUIYMSo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 13:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:67:28:25:c7:76:ce:45:5f:15:40:a7:be:30:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5da8e9cfc8b160ec59b540f39d8973d4218312a Validity Not Before: Jan 2 08:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d5777d4febe64ea59c4730cc72a768e037a842e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:43:b8:82:f9:38:a1:a6:72:59:de:b9:ca:df: 1a:c8:f0:6b:24:88:05:43:d7:cc:69:09:b2:e1:ca: 25:13:49:2e:01:bc:e8:c1:f9:aa:ee:f9:ed:8a:62: a8:e5:7c:f2:67:2e:51:37:a5:3d:f8:70:8c:65:e2: 2b:92:b6:47:bb:41:cb:b0:4d:53:f6:8e:0d:b2:3b: 73:e6:33:cc:88:28:a7:fd:4d:85:ce:73:61:05:94: 7a:7c:b9:fb:54:9b:63:56:58:60:6a:a6:2d:ec:94: 7e:48:77:41:11:fc:cf:8f:c5:5a:6b:41:69:e4:cd: 53:1e:08:d7:f6:8b:65:9d:d5:a1:e9:c1:42:8a:16: 73:95:72:39:a6:9c:0a:05:3d:cb:b8:a7:b6:c9:8b: 57:49:b8:b9:ad:3e:ec:4d:ac:f6:53:22:17:01:02: 85:d8:84:ed:03:ce:fb:1e:96:6d:89:6e:69:3b:ca: a7:ea:a7:b1:c9:f1:ce:8e:5d:85:85:fb:82:5f:27: 7b:81:56:2f:c4:c4:4c:c9:cd:8d:52:be:9d:a3:38: 7a:de:b2:00:a7:5e:7d:d3:17:2d:72:9c:51:51:06: e8:6d:8d:92:85:d3:a5:3f:5a:8a:e1:74:50:7b:2b: 52:3f:b5:99:4a:15:75:bd:c7:6d:c0:74:97:9c:47: be:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:77:7D:4F:EB:E6:4E:A5:9C:47:30:CC:72:A7:68:E0:37:A8:42:E4 X509v3 Authority Key Identifier: keyid:E5:DA:8E:9C:FC:8B:16:0E:C5:9B:54:0F:39:D8:97:3D:42:18:31:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dqOnPyLFg7Fm1QPOdiXPUIYMSo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/003ca9-c390-4274-8fc6-7c504703bb02/1/1Xd9T-vmTqWcRzDMcqdo4DeoQuQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/003ca9-c390-4274-8fc6-7c504703bb02/1/5dqOnPyLFg7Fm1QPOdiXPUIYMSo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:4780:4000::/35 Signature Algorithm: sha256WithRSAEncryption 8a:8f:f5:b9:16:6b:6c:84:ea:30:98:3f:d1:f8:05:06:eb:b4: 2a:40:17:7e:d7:e3:e0:9f:a5:51:34:7c:b1:4e:d8:db:bb:9f: 92:97:0e:b4:2d:b6:79:2c:21:e4:52:18:c8:d5:d1:40:ab:d2: 63:40:f5:27:54:92:4c:d0:5f:0f:a8:44:4e:b2:24:7c:19:91: ec:c4:63:34:f4:ab:14:4d:dd:64:c5:4f:06:ac:51:1f:73:b2: 03:72:e3:06:90:5c:72:95:10:b8:e1:0b:e8:d5:c0:80:53:d9: 1c:76:62:02:d8:dd:fc:62:b9:c1:53:f4:1a:93:e6:28:9c:e9: 11:47:92:f0:ed:f0:a5:fb:33:1c:8b:b4:98:c1:bd:52:22:e7: 18:d0:06:ed:49:49:de:6f:95:0d:76:9a:d5:24:37:02:38:9e: 13:ca:39:4a:1b:b9:e0:3f:79:44:bf:9c:0d:d9:df:86:ca:dc: 8b:d1:f0:a6:38:eb:ee:a3:ac:43:54:c8:b0:50:63:02:0d:37: 52:61:3d:62:08:80:cb:7e:dd:e7:8a:86:3a:fc:cc:3d:11:41: 4b:58:de:14:16:6d:b8:71:cd:eb:bd:58:60:24:12:88:d7:d0: 94:f8:c5:9a:3c:94:14:94:e0:3b:eb:ca:a3:47:5d:54:b9:94: 2b:05:e5:28 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt9ymcoJcd2zkVfFUCnvjBJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ZGE4ZTljZmM4YjE2MGVjNTliNTQwZjM5ZDg5NzNkNDIx ODMxMmEwHhcNMjYwMTAyMDgxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNTc3N2Q0ZmViZTY0ZWE1OWM0NzMwY2M3MmE3NjhlMDM3YTg0MmU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvEO4gvk4oaZyWd65yt8ayPBrJIgF Q9fMaQmy4colE0kuAbzowfmq7vntimKo5XzyZy5RN6U9+HCMZeIrkrZHu0HLsE1T 9o4Nsjtz5jPMiCin/U2FznNhBZR6fLn7VJtjVlhgaqYt7JR+SHdBEfzPj8Vaa0Fp 5M1THgjX9otlndWh6cFCihZzlXI5ppwKBT3LuKe2yYtXSbi5rT7sTaz2UyIXAQKF 2ITtA877HpZtiW5pO8qn6qexyfHOjl2FhfuCXyd7gVYvxMRMyc2NUr6dozh63rIA p1590xctcpxRUQbobY2ShdOlP1qK4XRQeytSP7WZShV1vcdtwHSXnEe+nQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFNV3fU/r5k6lnEcwzHKnaOA3qELkMB8GA1UdIwQY MBaAFOXajpz8ixYOxZtUDznYlz1CGDEqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWRxT25QeUxGZzdGbTFRUE9kaVhQVUlZTVNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8wMDNjYTktYzM5MC00Mjc0LThmYzYt N2M1MDQ3MDNiYjAyLzEvMVhkOVQtdm1UcVdjUnpETWNxZG80RGVvUXVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC8wMDNjYTktYzM5MC00Mjc0LThmYzYtN2M1MDQ3MDNiYjAy LzEvNWRxT25QeUxGZzdGbTFRUE9kaVhQVUlZTVNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYFKhBHgEAw DQYJKoZIhvcNAQELBQADggEBAIqP9bkWa2yE6jCYP9H4BQbrtCpAF37X4+CfpVE0 fLFO2Nu7n5KXDrQttnksIeRSGMjV0UCr0mNA9SdUkkzQXw+oRE6yJHwZkezEYzT0 qxRN3WTFTwasUR9zsgNy4waQXHKVELjhC+jVwIBT2Rx2YgLY3fxiucFT9BqT5iic 6RFHkvDt8KX7MxyLtJjBvVIi5xjQBu1JSd5vlQ12mtUkNwI4nhPKOUobueA/eUS/ nA3Z34bK3IvR8KY46+6jrENUyLBQYwINN1JhPWIIgMt+3eeKhjr8zD0RQUtY3hQW bbhxzeu9WGAkEojX0JT4xZo8lBSU4DvryqNHXVS5lCsF5Sg= -----END CERTIFICATE-----Generated at Sat Jan 10 22:07:05 2026 by rpki-client