This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/dT7xB_AVDGhZ5iHb3OqIlsrmGmQ.roa File: dT7xB_AVDGhZ5iHb3OqIlsrmGmQ.roa (raw, json) Hash identifier: 9I6NB6tgwzenrbz6TZapLlG56NaY3o8KJFSGZlT7HFk= Subject key identifier: 75:3E:F1:07:F0:15:0C:68:59:E6:21:DB:DC:EA:88:96:CA:E6:1A:64 Certificate issuer: /CN=b464e0af28b755c4ec88010d94298697d1883933 Certificate serial: 019B797EB5263113B9FEA8FDCE072BEB66E6 Authority key identifier: B4:64:E0:AF:28:B7:55:C4:EC:88:01:0D:94:29:86:97:D1:88:39:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tGTgryi3VcTsiAENlCmGl9GIOTM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/dT7xB_AVDGhZ5iHb3OqIlsrmGmQ.roa Signing time: Thu 01 Jan 2026 12:18:25 +0000 ROA not before: Thu 01 Jan 2026 12:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208641 IP address blocks: 2.56.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/tGTgryi3VcTsiAENlCmGl9GIOTM.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/tGTgryi3VcTsiAENlCmGl9GIOTM.mft rsync://rpki.ripe.net/repository/DEFAULT/tGTgryi3VcTsiAENlCmGl9GIOTM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:b5:26:31:13:b9:fe:a8:fd:ce:07:2b:eb:66:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b464e0af28b755c4ec88010d94298697d1883933 Validity Not Before: Jan 1 12:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=753ef107f0150c6859e621dbdcea8896cae61a64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2a:51:c0:b8:f0:dd:f0:81:64:b4:21:b0:52: 5c:16:d9:95:e7:04:7a:dd:77:8d:08:55:aa:66:e0: a8:9c:b2:d5:58:70:68:c5:c9:38:b2:d6:23:81:e9: ec:57:c5:06:bd:b0:33:8e:03:dc:a7:93:d2:0e:cf: 20:e7:a2:c0:dd:8c:e2:07:56:f3:8a:a0:c5:56:e5: 1f:6f:50:31:c7:c0:53:f3:28:45:2c:74:c2:8d:31: 40:a1:9d:9e:ff:15:9e:2f:f9:9c:24:8d:09:3c:f9: 94:3e:d2:01:ad:71:09:6a:3e:07:79:59:9e:60:1f: 28:cb:e0:4a:42:9f:0f:8d:57:e2:f9:87:b0:0e:e9: 05:e2:c9:01:ee:de:49:d4:d2:51:fa:8a:b4:2c:3b: dd:93:08:d3:1d:8c:bd:ee:a2:b7:e1:25:be:c8:11: 75:21:f6:8d:21:0e:d4:23:5c:07:99:ba:88:ab:27: b3:0c:37:1a:8b:32:44:c8:db:ba:e3:21:cf:f5:62: 66:8b:31:93:0c:bd:8d:cb:8e:e2:de:61:a5:e6:80: 33:6a:8d:92:9e:29:4a:a4:d2:38:85:1f:e9:23:f5: 0c:cb:ca:f9:d5:fb:f8:e5:2f:01:10:e9:03:88:46: 84:c9:24:22:9e:18:9d:9b:d1:b4:b6:58:71:9f:33: 71:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:3E:F1:07:F0:15:0C:68:59:E6:21:DB:DC:EA:88:96:CA:E6:1A:64 X509v3 Authority Key Identifier: keyid:B4:64:E0:AF:28:B7:55:C4:EC:88:01:0D:94:29:86:97:D1:88:39:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tGTgryi3VcTsiAENlCmGl9GIOTM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/dT7xB_AVDGhZ5iHb3OqIlsrmGmQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/tGTgryi3VcTsiAENlCmGl9GIOTM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.12.0/23 Signature Algorithm: sha256WithRSAEncryption be:d2:81:d3:1a:4b:4d:c5:90:ff:3c:c7:c5:16:35:00:5b:53: 5c:f5:5b:4c:7a:88:00:b0:79:70:c9:46:33:7b:f2:c3:b3:52: b0:11:c7:2d:9f:f1:56:23:ac:96:98:5a:2a:8c:48:48:25:5e: 6e:d9:da:6e:a3:48:53:02:38:6c:59:52:30:2e:06:e1:0c:7d: 64:4f:e1:5f:cb:98:b5:a9:02:26:c9:1d:c3:2c:f7:ef:10:e8: bc:cf:5d:f9:70:22:1b:a0:7e:7f:d7:55:e1:ee:10:bf:20:55: a9:ef:ab:d7:b8:cd:69:b0:d3:b4:ec:d4:4a:ab:a3:83:97:9a: b5:3c:19:f4:85:2d:b9:ad:8a:45:2c:25:16:aa:1a:83:49:05: 17:27:77:64:b8:6e:6d:00:5d:33:03:17:f1:ad:b4:b7:75:b8: 22:d6:03:63:cd:39:ae:25:8d:2f:dd:f3:68:70:e8:7c:e9:2b: 60:1e:e6:d8:a6:85:be:45:83:20:8f:5f:f3:b7:43:aa:86:d9: 84:5a:31:39:63:ff:e9:e6:6a:6c:e1:7b:60:65:1f:b1:67:2b: e0:fc:6e:5d:f7:1c:a5:72:3b:76:58:15:9d:84:c1:d5:c1:70: 18:c5:5f:6e:b2:12:5b:2a:41:7a:e5:9d:90:24:1f:cb:c3:70: 8f:f0:0c:fa -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5frUmMRO5/qj9zgcr62bmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0NjRlMGFmMjhiNzU1YzRlYzg4MDEwZDk0Mjk4Njk3ZDE4 ODM5MzMwHhcNMjYwMTAxMTIxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NTNlZjEwN2YwMTUwYzY4NTllNjIxZGJkY2VhODg5NmNhZTYxYTY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSpRwLjw3fCBZLQhsFJcFtmV5wR6 3XeNCFWqZuConLLVWHBoxck4stYjgensV8UGvbAzjgPcp5PSDs8g56LA3YziB1bz iqDFVuUfb1Axx8BT8yhFLHTCjTFAoZ2e/xWeL/mcJI0JPPmUPtIBrXEJaj4HeVme YB8oy+BKQp8PjVfi+YewDukF4skB7t5J1NJR+oq0LDvdkwjTHYy97qK34SW+yBF1 IfaNIQ7UI1wHmbqIqyezDDcaizJEyNu64yHP9WJmizGTDL2Ny47i3mGl5oAzao2S nilKpNI4hR/pI/UMy8r51fv45S8BEOkDiEaEySQinhidm9G0tlhxnzNxDQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHU+8QfwFQxoWeYh29zqiJbK5hpkMB8GA1UdIwQY MBaAFLRk4K8ot1XE7IgBDZQphpfRiDkzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEdUZ3J5aTNWY1RzaUFFTmxDbUdsOUdJT1RNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS8wY2FhNmQtMTA5ZS00NWYzLWE5MzIt NDc1YzVjOTFmNDc0LzEvZFQ3eEJfQVZER2haNWlIYjNPcUlsc3JtR21RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS8wY2FhNmQtMTA5ZS00NWYzLWE5MzItNDc1YzVjOTFmNDc0 LzEvdEdUZ3J5aTNWY1RzaUFFTmxDbUdsOUdJT1RNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBAjgMMA0G CSqGSIb3DQEBCwUAA4IBAQC+0oHTGktNxZD/PMfFFjUAW1Nc9VtMeogAsHlwyUYz e/LDs1KwEcctn/FWI6yWmFoqjEhIJV5u2dpuo0hTAjhsWVIwLgbhDH1kT+Ffy5i1 qQImyR3DLPfvEOi8z135cCIboH5/11Xh7hC/IFWp76vXuM1psNO07NRKq6ODl5q1 PBn0hS25rYpFLCUWqhqDSQUXJ3dkuG5tAF0zAxfxrbS3dbgi1gNjzTmuJY0v3fNo cOh86StgHubYpoW+RYMgj1/zt0OqhtmEWjE5Y//p5mps4XtgZR+xZyvg/G5d9xyl cjt2WBWdhMHVwXAYxV9ushJbKkF65Z2QJB/Lw3CP8Az6 -----END CERTIFICATE-----Generated at Tue Jan 27 11:48:53 2026 by rpki-client