This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/aZ1Tmj5Fb0n-wAOpGfFgPSrHdBE.roa File: aZ1Tmj5Fb0n-wAOpGfFgPSrHdBE.roa (raw, json) Hash identifier: Gos9McZbPOXHaQCrEQsYEbpvs5QjrqdpWFlMgXSAVtE= Subject key identifier: 69:9D:53:9A:3E:45:6F:49:FE:C0:03:A9:19:F1:60:3D:2A:C7:74:11 Certificate issuer: /CN=1e45cc69b4d1ee151b5027442fbba944c274df97 Certificate serial: 019B7E3848D95770B25C9C29069FBDEFC195 Authority key identifier: 1E:45:CC:69:B4:D1:EE:15:1B:50:27:44:2F:BB:A9:44:C2:74:DF:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/aZ1Tmj5Fb0n-wAOpGfFgPSrHdBE.roa Signing time: Fri 02 Jan 2026 10:19:36 +0000 ROA not before: Fri 02 Jan 2026 10:19:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213376 IP address blocks: 2001:678:d08::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:48:d9:57:70:b2:5c:9c:29:06:9f:bd:ef:c1:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e45cc69b4d1ee151b5027442fbba944c274df97 Validity Not Before: Jan 2 10:19:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=699d539a3e456f49fec003a919f1603d2ac77411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:06:7a:de:79:dc:ce:12:8e:f9:eb:12:54:bd: 37:a3:f4:ce:fb:d9:47:2f:8b:26:a3:60:7d:a7:90: 0a:a6:20:a6:80:1d:9f:3c:23:26:d2:44:ed:8c:77: 3d:dd:bc:b8:28:1c:a1:4b:14:6a:44:50:13:20:94: 50:79:4a:c9:3e:be:6c:30:1a:1f:f4:73:30:97:1a: 69:b0:9d:2a:56:94:9d:6b:8e:b9:0c:31:55:c0:e9: 36:56:86:65:8f:aa:c7:aa:cc:a5:37:4f:4c:a4:1d: 2d:38:7f:b8:04:6e:cd:b9:b7:4b:d0:a3:8a:bb:48: a4:3e:e2:1f:b3:eb:9f:2a:f2:18:12:c1:b1:ef:99: 83:3b:52:02:67:38:10:23:51:cf:58:e9:8c:42:7a: 9a:74:1b:83:23:bd:76:b1:4b:e2:8f:d5:aa:34:04: ae:26:46:7b:2b:e6:e7:ec:9d:1a:20:b8:9c:5b:5d: d7:90:7b:7e:6b:e4:e9:d4:04:3f:b4:ea:1f:31:f9: ae:c9:16:7b:2b:9e:da:57:53:45:ad:aa:bb:9c:64: ab:aa:67:58:ad:25:94:00:6c:dc:ed:2c:ca:70:3e: ed:76:e8:11:85:2f:11:33:00:4f:9f:2f:29:46:fa: dc:4e:58:b5:0e:0c:b4:f1:2f:6b:18:b6:85:fb:1f: 5f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:9D:53:9A:3E:45:6F:49:FE:C0:03:A9:19:F1:60:3D:2A:C7:74:11 X509v3 Authority Key Identifier: keyid:1E:45:CC:69:B4:D1:EE:15:1B:50:27:44:2F:BB:A9:44:C2:74:DF:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/aZ1Tmj5Fb0n-wAOpGfFgPSrHdBE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:d08::/48 Signature Algorithm: sha256WithRSAEncryption 78:b8:ed:7f:5b:bf:b3:40:fe:89:99:de:ac:20:11:fa:a9:a8: 91:6f:47:b2:b4:f7:cb:fa:4d:df:7a:09:9f:7a:ac:70:4d:ee: 30:ce:aa:53:5f:a6:67:2c:84:8f:1d:db:cf:01:3b:ef:ea:0e: 9b:ef:4c:9d:ca:46:c5:b9:d8:e3:dd:55:22:dd:1e:af:a7:38: 0f:37:41:e2:53:9a:11:d1:f9:df:1a:4a:38:e1:68:dc:56:9f: e6:89:7f:96:ae:66:0d:f2:13:d6:b1:62:6a:2b:81:00:67:08: 06:34:2d:fd:71:d5:ba:a4:32:09:7a:bf:57:b0:b3:aa:05:f4: e0:d8:a3:ee:f8:9d:e0:e8:ca:c6:4f:26:a7:a1:f4:cd:c4:fa: d4:3a:7c:c6:a8:37:bd:a1:be:ed:b6:18:62:f5:4a:c1:04:9f: 9d:65:db:95:52:b0:6c:0a:11:d2:ab:73:11:fb:f3:49:45:57: 38:88:0c:64:b1:ae:c0:3a:cc:1e:4c:1c:cd:c0:5f:79:6b:b1: a3:b1:46:e4:59:47:7b:78:3c:5d:9b:c7:bc:7d:23:df:d1:f6: 5a:a7:8d:5a:1e:11:a7:da:a1:af:cb:2d:bf:ae:3b:3d:d4:d1: 8d:fc:d5:1d:65:05:c9:c1:39:1c:56:5b:3f:31:25:71:b2:c6: 39:00:20:d4 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OEjZV3CyXJwpBp+978GVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNDVjYzY5YjRkMWVlMTUxYjUwMjc0NDJmYmJhOTQ0YzI3 NGRmOTcwHhcNMjYwMTAyMTAxOTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTlkNTM5YTNlNDU2ZjQ5ZmVjMDAzYTkxOWYxNjAzZDJhYzc3NDExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkQZ63nnczhKO+esSVL03o/TO+9lH L4smo2B9p5AKpiCmgB2fPCMm0kTtjHc93by4KByhSxRqRFATIJRQeUrJPr5sMBof 9HMwlxppsJ0qVpSda465DDFVwOk2VoZlj6rHqsylN09MpB0tOH+4BG7NubdL0KOK u0ikPuIfs+ufKvIYEsGx75mDO1ICZzgQI1HPWOmMQnqadBuDI712sUvij9WqNASu JkZ7K+bn7J0aILicW13XkHt+a+Tp1AQ/tOofMfmuyRZ7K57aV1NFraq7nGSrqmdY rSWUAGzc7SzKcD7tdugRhS8RMwBPny8pRvrcTli1Dgy08S9rGLaF+x9f3QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFGmdU5o+RW9J/sADqRnxYD0qx3QRMB8GA1UdIwQY MBaAFB5FzGm00e4VG1AnRC+7qUTCdN+XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGtYTWFiVFI3aFViVUNkRUw3dXBSTUowMzVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy9kNDk1MjgtMmFhNC00YTdkLTk4NDUt YzI0NDNhYTU0N2UyLzEvYVoxVG1qNUZiMG4td0FPcEdmRmdQU3JIZEJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy9kNDk1MjgtMmFhNC00YTdkLTk4NDUtYzI0NDNhYTU0N2Uy LzEvSGtYTWFiVFI3aFViVUNkRUw3dXBSTUowMzVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA0I MA0GCSqGSIb3DQEBCwUAA4IBAQB4uO1/W7+zQP6Jmd6sIBH6qaiRb0eytPfL+k3f egmfeqxwTe4wzqpTX6ZnLISPHdvPATvv6g6b70ydykbFudjj3VUi3R6vpzgPN0Hi U5oR0fnfGko44WjcVp/miX+WrmYN8hPWsWJqK4EAZwgGNC39cdW6pDIJer9XsLOq BfTg2KPu+J3g6MrGTyanofTNxPrUOnzGqDe9ob7tthhi9UrBBJ+dZduVUrBsChHS q3MR+/NJRVc4iAxksa7AOsweTBzNwF95a7GjsUbkWUd7eDxdm8e8fSPf0fZap41a HhGn2qGvyy2/rjs91NGN/NUdZQXJwTkcVls/MSVxssY5ACDU -----END CERTIFICATE-----Generated at Mon Feb 9 20:59:24 2026 by rpki-client