This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/3252c0-5725-449f-92a1-643bb27f7fbf/1/DXnEQHiVvNu7Vyoq9JcZ6dLMCdI.roa File: DXnEQHiVvNu7Vyoq9JcZ6dLMCdI.roa (raw, json) Hash identifier: 4AlE0r+iRVTgtlkq9V/mm0BrnXYUrFnqbuKHIAvSdgs= Subject key identifier: 0D:79:C4:40:78:95:BC:DB:BB:57:2A:2A:F4:97:19:E9:D2:CC:09:D2 Certificate issuer: /CN=dce1b25fd91b5fbc1ffb1218c67ed558ae778c04 Certificate serial: 019B7A5ACCF4E3239DA1F99C693A156B7DF9 Authority key identifier: DC:E1:B2:5F:D9:1B:5F:BC:1F:FB:12:18:C6:7E:D5:58:AE:77:8C:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3OGyX9kbX7wf-xIYxn7VWK53jAQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/3252c0-5725-449f-92a1-643bb27f7fbf/1/DXnEQHiVvNu7Vyoq9JcZ6dLMCdI.roa Signing time: Thu 01 Jan 2026 16:18:49 +0000 ROA not before: Thu 01 Jan 2026 16:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47773 IP address blocks: 2a10:8dc0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/3252c0-5725-449f-92a1-643bb27f7fbf/1/3OGyX9kbX7wf-xIYxn7VWK53jAQ.crl rsync://rpki.ripe.net/repository/DEFAULT/45/3252c0-5725-449f-92a1-643bb27f7fbf/1/3OGyX9kbX7wf-xIYxn7VWK53jAQ.mft rsync://rpki.ripe.net/repository/DEFAULT/3OGyX9kbX7wf-xIYxn7VWK53jAQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:cc:f4:e3:23:9d:a1:f9:9c:69:3a:15:6b:7d:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dce1b25fd91b5fbc1ffb1218c67ed558ae778c04 Validity Not Before: Jan 1 16:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0d79c4407895bcdbbb572a2af49719e9d2cc09d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:24:25:d0:4a:0d:c7:5b:cf:c8:f1:ae:89:80: cf:fb:8a:a2:24:27:f0:f7:98:21:33:9e:fd:7f:be: 1a:8c:27:c5:1a:87:13:fa:3e:cf:5b:e5:30:6c:04: a0:65:4c:4f:6c:d8:3f:2c:da:34:43:0d:59:a6:7b: d7:e1:15:44:ef:ce:8a:53:9c:d2:b4:b9:5b:60:a3: c9:36:fc:7f:5c:6f:10:61:d9:17:2f:6a:4c:69:4e: 43:06:0e:88:83:c2:3f:3b:5f:52:78:f1:2e:21:28: d5:ea:af:e2:a3:a0:23:32:f9:33:94:27:0d:f7:50: f5:46:22:22:50:ad:14:ef:32:c3:c9:24:44:18:e9: 3d:73:d7:ff:6e:74:0c:d0:9d:6e:d6:f2:5d:2e:89: c3:61:89:e4:d5:62:10:62:42:48:27:98:2a:4d:cc: fe:7f:4a:1f:45:81:7b:dc:b5:75:5d:29:e0:3b:7b: fa:3a:a7:9f:b9:df:d6:bd:64:ea:80:ca:60:0f:eb: d4:c6:3d:d8:ea:ff:b7:64:85:8e:00:1d:1f:62:82: ac:2c:89:f9:67:8d:d5:97:6e:86:41:50:47:2f:c1: 58:80:1d:ca:ea:fd:e3:21:a3:cb:1b:2b:fb:fe:e6: 74:6d:b1:db:e2:93:2b:c7:c4:06:6b:0b:2b:c1:90: 44:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:79:C4:40:78:95:BC:DB:BB:57:2A:2A:F4:97:19:E9:D2:CC:09:D2 X509v3 Authority Key Identifier: keyid:DC:E1:B2:5F:D9:1B:5F:BC:1F:FB:12:18:C6:7E:D5:58:AE:77:8C:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3OGyX9kbX7wf-xIYxn7VWK53jAQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3252c0-5725-449f-92a1-643bb27f7fbf/1/DXnEQHiVvNu7Vyoq9JcZ6dLMCdI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3252c0-5725-449f-92a1-643bb27f7fbf/1/3OGyX9kbX7wf-xIYxn7VWK53jAQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:8dc0::/32 Signature Algorithm: sha256WithRSAEncryption 6e:7f:13:c8:8f:6b:50:3f:4a:1c:3b:56:78:0f:04:87:19:b9: 1d:49:b5:1c:27:fc:55:8d:78:04:43:ad:02:46:a3:58:d6:1f: 81:88:4a:cd:8f:3b:4f:45:60:cd:65:0d:98:b2:0d:a6:3b:99: 2c:3f:4c:39:64:38:f0:f2:4c:16:d3:17:1f:56:b2:1a:cd:c0: 47:91:5e:3e:89:83:67:7b:91:af:c9:11:71:31:b7:51:0e:5c: 4e:6d:92:35:2f:3b:88:8c:62:89:d0:46:05:94:0e:aa:c0:99: fb:bf:08:78:50:02:11:78:92:3f:c1:80:63:28:54:33:e6:98: fe:73:69:eb:ec:cb:e3:40:cd:ea:df:0c:71:4a:cf:d3:7a:5e: f8:c9:be:fd:fb:5b:1b:a2:87:7c:dc:16:5a:21:29:e7:be:54: 75:da:19:38:af:de:ee:3c:04:f9:09:ac:dc:e5:5b:e6:be:ee: f9:cd:7b:ab:d2:33:a0:33:51:96:a3:fb:db:9e:56:0b:ef:55: 90:76:ca:1a:e6:de:fc:94:04:fa:31:8e:06:1f:73:36:9a:62: ba:67:69:eb:90:58:e9:ac:0b:2c:48:0b:83:0f:aa:40:16:3b: 35:b9:cc:a0:fd:57:0c:e5:e6:fc:bc:e8:a2:b8:bf:f4:50:3c: 92:02:49:98 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt6Wsz04yOdofmcaToVa335MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjZTFiMjVmZDkxYjVmYmMxZmZiMTIxOGM2N2VkNTU4YWU3 NzhjMDQwHhcNMjYwMTAxMTYxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZDc5YzQ0MDc4OTViY2RiYmI1NzJhMmFmNDk3MTllOWQyY2MwOWQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqyQl0EoNx1vPyPGuiYDP+4qiJCfw 95ghM579f74ajCfFGocT+j7PW+UwbASgZUxPbNg/LNo0Qw1ZpnvX4RVE786KU5zS tLlbYKPJNvx/XG8QYdkXL2pMaU5DBg6Ig8I/O19SePEuISjV6q/io6AjMvkzlCcN 91D1RiIiUK0U7zLDySREGOk9c9f/bnQM0J1u1vJdLonDYYnk1WIQYkJIJ5gqTcz+ f0ofRYF73LV1XSngO3v6Oqefud/WvWTqgMpgD+vUxj3Y6v+3ZIWOAB0fYoKsLIn5 Z43Vl26GQVBHL8FYgB3K6v3jIaPLGyv7/uZ0bbHb4pMrx8QGawsrwZBEQQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFA15xEB4lbzbu1cqKvSXGenSzAnSMB8GA1UdIwQY MBaAFNzhsl/ZG1+8H/sSGMZ+1Viud4wEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM09HeVg5a2JYN3dmLXhJWXhuN1ZXSzUzakFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS8zMjUyYzAtNTcyNS00NDlmLTkyYTEt NjQzYmIyN2Y3ZmJmLzEvRFhuRVFIaVZ2TnU3VnlvcTlKY1o2ZExNQ2RJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS8zMjUyYzAtNTcyNS00NDlmLTkyYTEtNjQzYmIyN2Y3ZmJm LzEvM09HeVg5a2JYN3dmLXhJWXhuN1ZXSzUzakFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhCNwDAN BgkqhkiG9w0BAQsFAAOCAQEAbn8TyI9rUD9KHDtWeA8Ehxm5HUm1HCf8VY14BEOt AkajWNYfgYhKzY87T0VgzWUNmLINpjuZLD9MOWQ48PJMFtMXH1ayGs3AR5FePomD Z3uRr8kRcTG3UQ5cTm2SNS87iIxiidBGBZQOqsCZ+78IeFACEXiSP8GAYyhUM+aY /nNp6+zL40DN6t8McUrP03pe+Mm+/ftbG6KHfNwWWiEp575UddoZOK/e7jwE+Qms 3OVb5r7u+c17q9IzoDNRlqP7255WC+9VkHbKGube/JQE+jGOBh9zNppiumdp65BY 6awLLEgLgw+qQBY7NbnMoP1XDOXm/Lzoori/9FA8kgJJmA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:31:54 2026 by rpki-client