This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/1-8B1HJiBNZt2mLa484DWmBMQSFU.roa File: 1-8B1HJiBNZt2mLa484DWmBMQSFU.roa (raw, json) Hash identifier: oP/xM98/RPfu/5TqpnGJmxNimUeay7qqliPVccblTpQ= Subject key identifier: FB:C0:75:1C:98:81:35:9B:76:98:B6:B8:F3:80:D6:98:13:10:48:55 Certificate issuer: /CN=962bd76a5cac283ece0a0f8eab2c97021401fb89 Certificate serial: 019B7B36987CB95ED1F9E1096E5299551774 Authority key identifier: 96:2B:D7:6A:5C:AC:28:3E:CE:0A:0F:8E:AB:2C:97:02:14:01:FB:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/livXalysKD7OCg-OqyyXAhQB-4k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/1-8B1HJiBNZt2mLa484DWmBMQSFU.roa Signing time: Thu 01 Jan 2026 20:18:54 +0000 ROA not before: Thu 01 Jan 2026 20:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20473 IP address blocks: 2a03:60c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/livXalysKD7OCg-OqyyXAhQB-4k.crl rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/livXalysKD7OCg-OqyyXAhQB-4k.mft rsync://rpki.ripe.net/repository/DEFAULT/livXalysKD7OCg-OqyyXAhQB-4k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 23:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:98:7c:b9:5e:d1:f9:e1:09:6e:52:99:55:17:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=962bd76a5cac283ece0a0f8eab2c97021401fb89 Validity Not Before: Jan 1 20:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fbc0751c9881359b7698b6b8f380d69813104855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:be:2c:a3:31:63:2e:47:ac:50:5c:f3:1b:03: e3:79:29:ec:4e:05:99:f9:53:10:75:6a:5f:ab:55: 63:e1:86:f4:4c:97:65:9e:35:a6:36:80:e7:ab:30: fc:ae:2e:ed:b1:af:b2:1d:e7:13:66:c2:5a:e9:94: 66:86:d9:ee:3b:bc:93:da:6f:cc:e8:3d:59:d1:37: 22:24:c2:c8:9f:10:51:e9:00:84:ff:4a:52:91:f8: 2e:30:b0:39:d8:2b:49:92:fc:8a:d5:01:43:60:5c: 83:a6:1b:8a:06:67:8a:b4:14:6b:08:cc:d0:23:b0: af:63:11:9a:97:4b:fa:44:ed:7f:be:ac:10:94:f5: 94:bf:cc:88:ea:68:c9:4c:8c:97:27:cb:88:8c:bd: 72:b9:b2:4a:22:68:0d:c5:3e:aa:84:2d:4a:17:91: 0f:1d:9b:ba:3f:4d:80:4c:c6:fc:a0:f6:4e:2c:6e: a0:04:96:e8:e7:85:87:f2:61:ae:f4:7c:c1:4a:a3: 8f:79:56:3c:a2:0f:ba:75:ef:3e:b7:86:21:61:c0: f5:cb:cd:14:21:21:7e:9d:46:fa:94:f6:dc:f0:9a: d0:88:db:60:df:6e:a4:2d:43:26:19:b4:e7:1c:6c: 3e:68:6b:29:f2:5c:f8:c2:1e:ff:c9:c0:c4:3b:18: fd:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C0:75:1C:98:81:35:9B:76:98:B6:B8:F3:80:D6:98:13:10:48:55 X509v3 Authority Key Identifier: keyid:96:2B:D7:6A:5C:AC:28:3E:CE:0A:0F:8E:AB:2C:97:02:14:01:FB:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/livXalysKD7OCg-OqyyXAhQB-4k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/1-8B1HJiBNZt2mLa484DWmBMQSFU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/livXalysKD7OCg-OqyyXAhQB-4k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:60c0::/32 Signature Algorithm: sha256WithRSAEncryption af:7c:fe:21:84:cf:87:5b:8c:f8:f9:7b:a7:a5:79:e8:25:6c: f9:1d:f1:42:47:23:6a:42:80:69:e2:66:1c:be:fb:59:13:af: 76:f1:9c:f9:f2:9b:54:89:de:0b:00:3e:c4:b2:d4:5a:10:84: 22:33:dc:a1:32:5e:76:7f:57:fe:f4:d3:84:86:a4:1a:75:9b: 19:3c:fc:af:9f:91:45:88:1c:7d:93:ff:e7:19:b2:a5:51:da: 47:13:8a:91:a5:38:f3:98:9e:c1:c1:3e:07:f7:12:08:05:20: 84:2d:a6:6f:6c:93:6e:50:d9:2a:2a:63:62:ac:1d:03:5f:c1: 0d:f1:5a:3c:55:bc:cc:f6:64:9c:7b:0d:38:e0:c3:c7:cc:47: 85:4e:0f:84:7d:33:66:de:5d:15:59:d4:45:a8:4b:f7:42:96: a9:94:e0:ba:65:f6:82:40:e9:4a:e9:38:51:a6:cd:e2:82:50: dd:b0:08:f9:64:9d:09:87:b9:ff:e6:d2:5e:e7:1e:1f:0b:3a: 41:87:41:a3:ec:f1:0a:c4:6c:50:2f:3a:8d:48:05:c7:e2:5e: 4d:cf:62:f0:fd:ca:79:f6:27:00:8e:57:ce:c1:86:10:08:df: ae:b2:08:f8:aa:45:6f:45:83:2e:a9:57:e8:45:11:1d:2e:75: d5:db:91:a6 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt7Nph8uV7R+eEJblKZVRd0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MmJkNzZhNWNhYzI4M2VjZTBhMGY4ZWFiMmM5NzAyMTQw MWZiODkwHhcNMjYwMTAxMjAxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYmMwNzUxYzk4ODEzNTliNzY5OGI2YjhmMzgwZDY5ODEzMTA0ODU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAor4sozFjLkesUFzzGwPjeSnsTgWZ +VMQdWpfq1Vj4Yb0TJdlnjWmNoDnqzD8ri7tsa+yHecTZsJa6ZRmhtnuO7yT2m/M 6D1Z0TciJMLInxBR6QCE/0pSkfguMLA52CtJkvyK1QFDYFyDphuKBmeKtBRrCMzQ I7CvYxGal0v6RO1/vqwQlPWUv8yI6mjJTIyXJ8uIjL1yubJKImgNxT6qhC1KF5EP HZu6P02ATMb8oPZOLG6gBJbo54WH8mGu9HzBSqOPeVY8og+6de8+t4YhYcD1y80U ISF+nUb6lPbc8JrQiNtg326kLUMmGbTnHGw+aGsp8lz4wh7/ycDEOxj9OwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFPvAdRyYgTWbdpi2uPOA1pgTEEhVMB8GA1UdIwQY MBaAFJYr12pcrCg+zgoPjqsslwIUAfuJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGl2WGFseXNLRDdPQ2ctT3F5eVhBaFFCLTRrLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC8wNDY0NjAtMTAyYy00OTMwLTg0MmMt NmFiMTExNTVmNmZiLzEvMS04QjFISmlCTlp0Mm1MYTQ4NERXbUJNUVNGVS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvODQvMDQ2NDYwLTEwMmMtNDkzMC04NDJjLTZhYjExMTU1ZjZm Yi8xL2xpdlhhbHlzS0Q3T0NnLU9xeXlYQWhRQi00ay5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoDYMAw DQYJKoZIhvcNAQELBQADggEBAK98/iGEz4dbjPj5e6eleeglbPkd8UJHI2pCgGni Zhy++1kTr3bxnPnym1SJ3gsAPsSy1FoQhCIz3KEyXnZ/V/7004SGpBp1mxk8/K+f kUWIHH2T/+cZsqVR2kcTipGlOPOYnsHBPgf3EggFIIQtpm9sk25Q2SoqY2KsHQNf wQ3xWjxVvMz2ZJx7DTjgw8fMR4VOD4R9M2beXRVZ1EWoS/dClqmU4Lpl9oJA6Urp OFGmzeKCUN2wCPlknQmHuf/m0l7nHh8LOkGHQaPs8QrEbFAvOo1IBcfiXk3PYvD9 ynn2JwCOV87BhhAI366yCPiqRW9Fgy6pV+hFER0uddXbkaY= -----END CERTIFICATE-----Generated at Wed Jan 21 02:50:06 2026 by rpki-client