This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/bab0e5-ebe8-4e0a-a649-6ac1aff36c07/1/dkCET2TsQcDN0c2dtertiEUqhPc.roa File: dkCET2TsQcDN0c2dtertiEUqhPc.roa (raw, json) Hash identifier: UbBALHBb0UI7Hqy8fBR1ma0BVv2xaYRMtaFsCVJRBPs= Subject key identifier: 76:40:84:4F:64:EC:41:C0:CD:D1:CD:9D:B5:EA:ED:88:45:2A:84:F7 Certificate issuer: /CN=32eb2b51e3748c2527402e68601a88912883a058 Certificate serial: 019B7B357317B375D7F047ED0B70E8EC8ECF Authority key identifier: 32:EB:2B:51:E3:74:8C:25:27:40:2E:68:60:1A:88:91:28:83:A0:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MusrUeN0jCUnQC5oYBqIkSiDoFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/bab0e5-ebe8-4e0a-a649-6ac1aff36c07/1/dkCET2TsQcDN0c2dtertiEUqhPc.roa Signing time: Thu 01 Jan 2026 20:17:38 +0000 ROA not before: Thu 01 Jan 2026 20:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202039 IP address blocks: 2001:678:764::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/bab0e5-ebe8-4e0a-a649-6ac1aff36c07/1/MusrUeN0jCUnQC5oYBqIkSiDoFg.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/bab0e5-ebe8-4e0a-a649-6ac1aff36c07/1/MusrUeN0jCUnQC5oYBqIkSiDoFg.mft rsync://rpki.ripe.net/repository/DEFAULT/MusrUeN0jCUnQC5oYBqIkSiDoFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:73:17:b3:75:d7:f0:47:ed:0b:70:e8:ec:8e:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32eb2b51e3748c2527402e68601a88912883a058 Validity Not Before: Jan 1 20:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7640844f64ec41c0cdd1cd9db5eaed88452a84f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b4:d1:92:14:c4:e3:a8:a1:ad:66:eb:84:60: c1:4e:4c:d8:b5:38:b3:91:61:fb:6e:d9:d8:61:75: 11:4f:96:b7:3b:b7:90:bb:9a:35:6d:25:82:5b:2a: 70:0a:87:4b:6b:5b:3f:88:d5:2d:96:57:53:da:c0: 25:b8:66:b3:c8:19:79:55:fa:a6:5c:d6:f1:64:38: e6:19:fc:08:41:de:f7:ba:44:b2:a8:b3:e5:ec:b0: 24:85:0f:86:b3:cd:ba:85:f9:ef:6a:27:22:a7:bf: 8b:53:48:68:81:e3:2c:0f:6d:8d:d4:22:30:d9:17: ac:40:6c:70:3d:44:8d:7b:5c:2d:34:6d:15:44:60: 91:b7:c5:19:c9:b9:1b:ef:62:ff:db:50:37:e0:2f: fa:f0:11:37:a5:ad:d4:3c:ff:f9:28:be:db:0f:c4: 8f:26:7f:3d:58:19:ca:63:58:4d:c0:7c:60:ae:8c: ee:98:19:f3:e8:5e:f4:96:04:fd:2f:f6:60:ea:a9: be:97:07:99:4a:7f:2d:4e:20:78:15:c1:eb:cc:28: 56:c5:dc:c8:4f:33:39:32:e7:cf:93:8d:76:f7:8a: 71:17:a7:4b:74:13:bf:96:4f:3e:47:14:4d:1c:31: 48:72:40:29:c0:d6:ab:54:26:a9:cb:cd:1f:79:61: 2c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:40:84:4F:64:EC:41:C0:CD:D1:CD:9D:B5:EA:ED:88:45:2A:84:F7 X509v3 Authority Key Identifier: keyid:32:EB:2B:51:E3:74:8C:25:27:40:2E:68:60:1A:88:91:28:83:A0:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MusrUeN0jCUnQC5oYBqIkSiDoFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/bab0e5-ebe8-4e0a-a649-6ac1aff36c07/1/dkCET2TsQcDN0c2dtertiEUqhPc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/bab0e5-ebe8-4e0a-a649-6ac1aff36c07/1/MusrUeN0jCUnQC5oYBqIkSiDoFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:764::/48 Signature Algorithm: sha256WithRSAEncryption 50:f3:0c:e0:71:e5:46:5d:fc:23:2b:b3:a6:85:df:42:ec:58: 49:8c:4e:89:ef:df:c0:2b:89:79:b0:cf:92:ef:70:ba:5f:74: 3c:36:a5:96:07:c0:f9:e5:ed:a0:ed:74:21:7e:10:2c:b1:19: 6c:f7:64:4f:f3:ec:ef:61:ad:55:19:e9:c9:25:fd:83:5b:2f: ce:0b:7c:62:93:eb:2e:ab:ec:e7:92:82:8c:72:ab:58:16:10: 4f:45:bd:76:1a:ba:37:fe:10:cd:42:82:d0:5d:2e:36:ce:c7: 8a:9a:83:3c:21:ee:8f:7a:21:3e:56:78:e4:46:0f:2a:32:46: eb:66:cc:f5:94:ea:77:f7:d7:30:96:2d:78:94:1d:de:f3:c5: 3d:0f:da:b0:e9:d9:78:af:ae:db:b1:43:1a:90:82:a0:5d:44: 64:b4:0b:01:8e:0c:e4:5e:ae:0d:47:43:bc:d5:45:4a:a7:97: 14:c9:21:35:2b:a2:08:5b:d8:8c:95:cc:44:29:98:c5:57:55: 30:13:9f:e1:66:eb:17:55:f1:0b:c0:ce:28:58:98:f0:a5:e8: 2d:36:64:9a:4c:a3:4e:51:39:df:06:27:89:08:86:53:d7:db: 92:1d:e9:31:b9:4d:ae:ef:84:9b:38:a4:3d:c4:0e:14:a3:2c: 0d:31:b5:7d -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7NXMXs3XX8EftC3Do7I7PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyZWIyYjUxZTM3NDhjMjUyNzQwMmU2ODYwMWE4ODkxMjg4 M2EwNTgwHhcNMjYwMTAxMjAxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NjQwODQ0ZjY0ZWM0MWMwY2RkMWNkOWRiNWVhZWQ4ODQ1MmE4NGY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurTRkhTE46ihrWbrhGDBTkzYtTiz kWH7btnYYXURT5a3O7eQu5o1bSWCWypwCodLa1s/iNUtlldT2sAluGazyBl5Vfqm XNbxZDjmGfwIQd73ukSyqLPl7LAkhQ+Gs826hfnvaicip7+LU0hogeMsD22N1CIw 2ResQGxwPUSNe1wtNG0VRGCRt8UZybkb72L/21A34C/68BE3pa3UPP/5KL7bD8SP Jn89WBnKY1hNwHxgrozumBnz6F70lgT9L/Zg6qm+lweZSn8tTiB4FcHrzChWxdzI TzM5MufPk41294pxF6dLdBO/lk8+RxRNHDFIckApwNarVCapy80feWEsHQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFHZAhE9k7EHAzdHNnbXq7YhFKoT3MB8GA1UdIwQY MBaAFDLrK1HjdIwlJ0AuaGAaiJEog6BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXVzclVlTjBqQ1VuUUM1b1lCcUlrU2lEb0ZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi9iYWIwZTUtZWJlOC00ZTBhLWE2NDkt NmFjMWFmZjM2YzA3LzEvZGtDRVQyVHNRY0ROMGMyZHRlcnRpRVVxaFBjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi9iYWIwZTUtZWJlOC00ZTBhLWE2NDktNmFjMWFmZjM2YzA3 LzEvTXVzclVlTjBqQ1VuUUM1b1lCcUlrU2lEb0ZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAdk MA0GCSqGSIb3DQEBCwUAA4IBAQBQ8wzgceVGXfwjK7Omhd9C7FhJjE6J79/AK4l5 sM+S73C6X3Q8NqWWB8D55e2g7XQhfhAssRls92RP8+zvYa1VGenJJf2DWy/OC3xi k+suq+znkoKMcqtYFhBPRb12Gro3/hDNQoLQXS42zseKmoM8Ie6PeiE+VnjkRg8q MkbrZsz1lOp399cwli14lB3e88U9D9qw6dl4r67bsUMakIKgXURktAsBjgzkXq4N R0O81UVKp5cUySE1K6IIW9iMlcxEKZjFV1UwE5/hZusXVfELwM4oWJjwpegtNmSa TKNOUTnfBieJCIZT19uSHekxuU2u74SbOKQ9xA4UoywNMbV9 -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:47 2026 by rpki-client