This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/dAmCb4Q0Lu8OSnL465WyYmvHdqs.roa File: dAmCb4Q0Lu8OSnL465WyYmvHdqs.roa (raw, json) Hash identifier: ihhOeF2biIt0LZI2QoL/OX+WXgwfGmKMeTYYQxzMVw4= Subject key identifier: 74:09:82:6F:84:34:2E:EF:0E:4A:72:F8:EB:95:B2:62:6B:C7:76:AB Certificate issuer: /CN=84abf0c981701aba97e4fcd0bed4e4cdb8692047 Certificate serial: 019B7C7FDD8C02ACA860D24A175E1664B560 Authority key identifier: 84:AB:F0:C9:81:70:1A:BA:97:E4:FC:D0:BE:D4:E4:CD:B8:69:20:47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKvwyYFwGrqX5PzQvtTkzbhpIEc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/dAmCb4Q0Lu8OSnL465WyYmvHdqs.roa Signing time: Fri 02 Jan 2026 02:18:33 +0000 ROA not before: Fri 02 Jan 2026 02:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 32482 IP address blocks: 2a0f:58c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/hKvwyYFwGrqX5PzQvtTkzbhpIEc.crl rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/hKvwyYFwGrqX5PzQvtTkzbhpIEc.mft rsync://rpki.ripe.net/repository/DEFAULT/hKvwyYFwGrqX5PzQvtTkzbhpIEc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:dd:8c:02:ac:a8:60:d2:4a:17:5e:16:64:b5:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84abf0c981701aba97e4fcd0bed4e4cdb8692047 Validity Not Before: Jan 2 02:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7409826f84342eef0e4a72f8eb95b2626bc776ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6c:4c:2c:7a:dd:6b:15:a4:d1:55:ac:75:07: 84:71:98:90:53:b8:8d:b4:b8:bb:6d:8c:73:cc:cf: 3b:6a:c9:89:79:b8:24:92:85:a3:7f:c2:14:8e:60: 39:02:6f:63:4b:9c:63:40:b0:29:3e:c1:ba:fd:65: 8b:8c:86:a1:8b:97:18:9c:cb:3d:6b:44:e3:ea:f5: bb:d4:2b:8d:27:f8:00:a0:74:25:07:66:e5:d0:ee: e5:df:5e:d6:17:0c:be:93:ef:f2:93:a5:b5:6b:b9: 52:e7:a0:4a:0f:75:3e:d8:9b:ec:44:38:b8:7c:f7: b8:d4:5e:cd:2c:25:da:bf:e3:28:34:7f:9d:5d:8a: af:bf:a5:ce:88:7a:02:d7:41:b2:e6:9c:f2:2b:77: 02:c1:fb:bc:ec:df:bf:2b:ee:41:fb:f1:f5:3a:b4: 7d:9b:a8:7f:14:18:d8:f1:de:95:43:f7:f9:56:03: a7:3d:5f:2a:01:09:ff:4f:5a:e0:90:98:02:9c:c2: 1f:94:cc:da:97:98:f1:bd:37:e2:e5:a0:5c:e1:7c: 02:37:d8:03:68:67:23:e4:c3:1a:ba:71:64:da:ab: e8:01:08:cd:bb:90:1c:62:6c:2b:10:af:a6:07:0e: 14:fd:6f:73:d1:21:cf:f8:a3:98:f0:81:16:88:e4: 9b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:09:82:6F:84:34:2E:EF:0E:4A:72:F8:EB:95:B2:62:6B:C7:76:AB X509v3 Authority Key Identifier: keyid:84:AB:F0:C9:81:70:1A:BA:97:E4:FC:D0:BE:D4:E4:CD:B8:69:20:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKvwyYFwGrqX5PzQvtTkzbhpIEc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/dAmCb4Q0Lu8OSnL465WyYmvHdqs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/hKvwyYFwGrqX5PzQvtTkzbhpIEc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:58c0::/32 Signature Algorithm: sha256WithRSAEncryption bc:5c:46:0f:5a:3c:4a:c0:d4:47:31:bb:e0:69:8f:e5:96:93: 00:9f:79:f5:be:cc:ff:ff:7b:3f:ae:54:f6:be:49:f6:c8:fa: f3:5c:10:2e:02:01:f8:95:8d:65:e7:6e:04:29:a0:db:6c:58: 95:46:e7:a7:aa:60:c9:1a:88:09:e7:f1:1d:06:bd:3b:29:79: 24:80:b5:a7:e8:b2:f0:94:9c:32:a5:eb:43:bf:c0:07:60:c2: 4f:19:c2:b8:00:f4:71:48:04:f4:48:b1:00:f6:62:e7:a3:5c: 8f:8d:1d:22:eb:96:c0:83:b2:cf:66:f6:0d:e3:5d:dd:d7:c4: 7f:fb:e2:e0:e5:1c:5c:8b:42:54:0f:ea:c4:9f:50:d2:0b:b1: 9c:aa:10:53:98:ef:97:9b:6c:17:e6:01:9f:09:59:11:2d:a8: 26:0b:e3:24:4f:c8:45:cf:2d:46:51:2a:5b:c7:29:66:88:5a: f2:47:3e:2d:a0:cd:d9:4d:a2:91:f8:80:37:19:b7:64:f7:36: 22:86:44:23:bf:08:bb:b0:00:d5:74:ea:86:e8:f6:41:b5:4f: 2f:13:42:48:bb:3f:ab:ee:ac:11:44:27:2d:33:5c:5f:1b:22: 55:61:88:d6:d3:da:01:c9:3a:d1:c7:8a:0c:4a:d8:85:94:94: 2e:65:bc:f5 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt8f92MAqyoYNJKF14WZLVgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YWJmMGM5ODE3MDFhYmE5N2U0ZmNkMGJlZDRlNGNkYjg2 OTIwNDcwHhcNMjYwMTAyMDIxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NDA5ODI2Zjg0MzQyZWVmMGU0YTcyZjhlYjk1YjI2MjZiYzc3NmFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsGxMLHrdaxWk0VWsdQeEcZiQU7iN tLi7bYxzzM87asmJebgkkoWjf8IUjmA5Am9jS5xjQLApPsG6/WWLjIahi5cYnMs9 a0Tj6vW71CuNJ/gAoHQlB2bl0O7l317WFwy+k+/yk6W1a7lS56BKD3U+2JvsRDi4 fPe41F7NLCXav+MoNH+dXYqvv6XOiHoC10Gy5pzyK3cCwfu87N+/K+5B+/H1OrR9 m6h/FBjY8d6VQ/f5VgOnPV8qAQn/T1rgkJgCnMIflMzal5jxvTfi5aBc4XwCN9gD aGcj5MMaunFk2qvoAQjNu5AcYmwrEK+mBw4U/W9z0SHP+KOY8IEWiOSb2wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFHQJgm+ENC7vDkpy+OuVsmJrx3arMB8GA1UdIwQY MBaAFISr8MmBcBq6l+T80L7U5M24aSBHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEt2d3lZRndHcnFYNVB6UXZ0VGt6YmhwSUVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC85OTUyYzgtMmQ0MC00MWUyLWJhNzAt NjFiYzdlY2M0ODVjLzEvZEFtQ2I0UTBMdThPU25MNDY1V3lZbXZIZHFzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC85OTUyYzgtMmQ0MC00MWUyLWJhNzAtNjFiYzdlY2M0ODVj LzEvaEt2d3lZRndHcnFYNVB6UXZ0VGt6YmhwSUVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg9YwDAN BgkqhkiG9w0BAQsFAAOCAQEAvFxGD1o8SsDURzG74GmP5ZaTAJ959b7M//97P65U 9r5J9sj681wQLgIB+JWNZeduBCmg22xYlUbnp6pgyRqICefxHQa9Oyl5JIC1p+iy 8JScMqXrQ7/AB2DCTxnCuAD0cUgE9EixAPZi56Ncj40dIuuWwIOyz2b2DeNd3dfE f/vi4OUcXItCVA/qxJ9Q0guxnKoQU5jvl5tsF+YBnwlZES2oJgvjJE/IRc8tRlEq W8cpZoha8kc+LaDN2U2ikfiANxm3ZPc2IoZEI78Iu7AA1XTqhuj2QbVPLxNCSLs/ q+6sEUQnLTNcXxsiVWGI1tPaAck60ceKDErYhZSULmW89Q== -----END CERTIFICATE-----Generated at Mon Feb 9 20:09:11 2026 by rpki-client