This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/dnhblZcylCcbRj12R5ofCpHt7LU.roa File: dnhblZcylCcbRj12R5ofCpHt7LU.roa (raw, json) Hash identifier: oRIsfhmT16Rl0vK9L5ENWVnifqieHto224vdnp4iUt4= Subject key identifier: 76:78:5B:95:97:32:94:27:1B:46:3D:76:47:9A:1F:0A:91:ED:EC:B5 Certificate issuer: /CN=1c8fba993650348a135152eec348a119430e6340 Certificate serial: 019B797E953CC5FB9D4C85BEC574157517C0 Authority key identifier: 1C:8F:BA:99:36:50:34:8A:13:51:52:EE:C3:48:A1:19:43:0E:63:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HI-6mTZQNIoTUVLuw0ihGUMOY0A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/dnhblZcylCcbRj12R5ofCpHt7LU.roa Signing time: Thu 01 Jan 2026 12:18:17 +0000 ROA not before: Thu 01 Jan 2026 12:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210173 IP address blocks: 2001:67c:8dc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.crl rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.mft rsync://rpki.ripe.net/repository/DEFAULT/HI-6mTZQNIoTUVLuw0ihGUMOY0A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:95:3c:c5:fb:9d:4c:85:be:c5:74:15:75:17:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c8fba993650348a135152eec348a119430e6340 Validity Not Before: Jan 1 12:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=76785b95973294271b463d76479a1f0a91edecb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:0b:b0:8d:cc:7a:a5:f6:9b:bd:a7:f7:4c:69: 3d:90:09:00:45:d2:7a:58:f5:77:2a:ad:2f:13:36: 45:0a:35:52:f6:e3:30:a5:21:c9:3b:46:3b:dc:3f: b6:47:17:1a:1b:c5:79:4d:11:f1:0d:6f:89:98:90: 77:ec:61:e4:3c:1a:0b:52:38:5b:47:ca:00:e8:3b: b7:06:0b:f8:c5:1e:22:cb:ea:31:1d:39:d3:79:41: e9:f3:15:36:51:47:bf:6a:c6:f1:70:04:d6:a1:5d: 88:87:4e:38:11:b6:f7:be:74:8b:7b:31:8b:fe:4f: a4:e1:15:fe:67:02:58:58:a3:6d:83:b6:cb:e0:45: d6:3a:6a:fa:03:43:2a:69:30:a2:6a:67:33:c0:2d: 01:e5:61:cf:75:f9:50:cb:a6:03:24:4c:ec:2a:da: 22:23:6e:7c:5c:1a:d1:eb:70:79:cd:7e:58:eb:d2: 1e:e4:37:2a:d4:0a:71:33:15:04:ef:00:52:5b:08: 8a:01:49:df:f4:22:b0:be:df:8f:b3:c2:2d:10:04: 52:c5:47:b8:22:b5:83:d7:63:23:70:28:fb:d3:0e: f0:91:35:f7:7f:2f:43:44:de:46:a6:be:2a:68:78: 44:f9:3e:59:a2:0a:c3:35:8a:c8:31:b9:00:90:4c: 86:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:78:5B:95:97:32:94:27:1B:46:3D:76:47:9A:1F:0A:91:ED:EC:B5 X509v3 Authority Key Identifier: keyid:1C:8F:BA:99:36:50:34:8A:13:51:52:EE:C3:48:A1:19:43:0E:63:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HI-6mTZQNIoTUVLuw0ihGUMOY0A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/dnhblZcylCcbRj12R5ofCpHt7LU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:8dc::/48 Signature Algorithm: sha256WithRSAEncryption 86:6a:7a:61:9c:fe:a4:7e:67:b9:8f:89:b9:b8:8e:d2:59:69: 09:40:af:d0:06:0a:7c:6e:ab:f7:09:fc:10:d6:55:54:c4:d8: 90:80:dd:4e:bf:87:c0:4b:8a:ba:8f:4e:f4:02:29:aa:41:85: fb:d3:2e:67:e6:15:b1:fe:c9:29:89:23:47:f5:18:09:6e:8d: 13:51:2c:f2:94:a4:f0:da:3c:85:09:7f:6d:24:e6:d5:30:7a: 99:5c:fa:56:a1:3d:0d:99:c3:2d:52:88:28:46:cb:18:96:ec: 55:03:a8:4e:8c:58:02:6c:da:49:18:72:c3:80:b2:8b:61:8d: a8:ba:d1:80:4e:a9:60:be:78:15:8c:ac:f6:25:68:c1:1b:e6: e7:04:93:0c:c7:0f:03:dd:2a:a0:9f:c1:07:9e:0b:a8:63:d2: f9:21:86:f6:ab:57:22:66:e4:42:28:d2:86:4a:1d:b2:8c:b4: a8:06:0b:e0:05:10:c8:d3:f8:d3:2c:b8:ca:20:d9:75:a4:fb: 8f:a5:0b:75:95:7d:04:91:33:48:c4:f3:ab:af:e8:8c:e9:22: da:b8:e5:35:3a:41:03:88:f7:24:aa:c5:b7:4a:93:d4:04:f2: 73:47:ae:1a:5b:e3:e6:f3:0a:69:44:ef:9c:f1:09:ea:f0:38: ad:cc:ca:bb -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5fpU8xfudTIW+xXQVdRfAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOGZiYTk5MzY1MDM0OGExMzUxNTJlZWMzNDhhMTE5NDMw ZTYzNDAwHhcNMjYwMTAxMTIxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Njc4NWI5NTk3MzI5NDI3MWI0NjNkNzY0NzlhMWYwYTkxZWRlY2I1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlwuwjcx6pfabvaf3TGk9kAkARdJ6 WPV3Kq0vEzZFCjVS9uMwpSHJO0Y73D+2RxcaG8V5TRHxDW+JmJB37GHkPBoLUjhb R8oA6Du3Bgv4xR4iy+oxHTnTeUHp8xU2UUe/asbxcATWoV2Ih044Ebb3vnSLezGL /k+k4RX+ZwJYWKNtg7bL4EXWOmr6A0MqaTCiamczwC0B5WHPdflQy6YDJEzsKtoi I258XBrR63B5zX5Y69Ie5Dcq1ApxMxUE7wBSWwiKAUnf9CKwvt+Ps8ItEARSxUe4 IrWD12MjcCj70w7wkTX3fy9DRN5Gpr4qaHhE+T5ZogrDNYrIMbkAkEyGPQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFHZ4W5WXMpQnG0Y9dkeaHwqR7ey1MB8GA1UdIwQY MBaAFByPupk2UDSKE1FS7sNIoRlDDmNAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEktNm1UWlFOSW9UVVZMdXcwaWhHVU1PWTBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9mMGI4NGItMTE0NS00MDYzLTg2Yjct ZDVkOGI0NGZjZTM0LzEvZG5oYmxaY3lsQ2NiUmoxMlI1b2ZDcEh0N0xVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS9mMGI4NGItMTE0NS00MDYzLTg2YjctZDVkOGI0NGZjZTM0 LzEvSEktNm1UWlFOSW9UVVZMdXcwaWhHVU1PWTBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAjc MA0GCSqGSIb3DQEBCwUAA4IBAQCGanphnP6kfme5j4m5uI7SWWkJQK/QBgp8bqv3 CfwQ1lVUxNiQgN1Ov4fAS4q6j070AimqQYX70y5n5hWx/skpiSNH9RgJbo0TUSzy lKTw2jyFCX9tJObVMHqZXPpWoT0NmcMtUogoRssYluxVA6hOjFgCbNpJGHLDgLKL YY2outGATqlgvngVjKz2JWjBG+bnBJMMxw8D3Sqgn8EHnguoY9L5IYb2q1ciZuRC KNKGSh2yjLSoBgvgBRDI0/jTLLjKINl1pPuPpQt1lX0EkTNIxPOrr+iM6SLauOU1 OkEDiPckqsW3SpPUBPJzR64aW+Pm8wppRO+c8Qnq8DitzMq7 -----END CERTIFICATE-----Generated at Mon Feb 9 20:09:02 2026 by rpki-client