This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/vDbCCOT3vhOZzutA2EHoS2QvLSY.roa File: vDbCCOT3vhOZzutA2EHoS2QvLSY.roa (raw, json) Hash identifier: vMf05bJDwlrzw7Fuc43x5Pw+PkCQGWnYOUzDmH2bBss= Subject key identifier: BC:36:C2:08:E4:F7:BE:13:99:CE:EB:40:D8:41:E8:4B:64:2F:2D:26 Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0 Certificate serial: 019B7758EBDBC48C231390B548BAFEF62354 Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/vDbCCOT3vhOZzutA2EHoS2QvLSY.roa Signing time: Thu 01 Jan 2026 02:17:54 +0000 ROA not before: Thu 01 Jan 2026 02:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210590 IP address blocks: 2a0f:5707:111::/48 maxlen: 48 2a0f:5707:1000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.mft rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 05:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:eb:db:c4:8c:23:13:90:b5:48:ba:fe:f6:23:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0 Validity Not Before: Jan 1 02:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc36c208e4f7be1399ceeb40d841e84b642f2d26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f9:5f:73:48:5e:84:92:3a:02:b7:8c:89:b0: e8:82:81:6a:80:7b:a5:41:85:dd:9c:5b:f9:5e:a2: 24:95:f2:c0:b9:2e:52:3d:78:bf:76:4b:78:8e:36: 4d:59:1f:b4:31:f0:d6:9f:6a:80:e5:d7:51:8f:e4: a1:4e:92:f4:19:e0:66:55:03:aa:3e:73:de:ce:28: ab:7f:33:49:c8:42:a3:b6:3a:91:68:c0:66:bc:2e: 72:97:2d:51:c2:45:f4:44:f7:79:14:d2:6d:4d:00: 9c:62:8a:2b:ad:0e:20:11:fa:53:95:4d:4e:85:34: 63:9d:26:83:f2:a1:63:29:aa:c5:77:7e:b7:f0:7c: bd:f3:ee:64:07:56:97:bb:52:25:eb:ea:71:87:90: c9:cb:9f:ca:8a:46:4d:8f:f5:1e:c8:f7:65:d3:af: 6b:06:2a:b5:ff:0f:cc:8b:b6:44:1b:f1:da:2f:3d: 87:f1:49:61:6e:d1:52:29:e1:56:53:67:47:6f:e3: 4a:30:ff:62:86:78:56:e5:38:a8:dc:64:52:26:24: 19:f4:f2:a3:69:48:7f:d8:5b:f6:02:7f:20:1c:bf: 78:09:dc:aa:d6:18:cf:80:6f:4d:02:9d:88:df:a4: 5a:7b:b3:75:1f:ef:e8:a2:01:69:82:57:c2:48:f9: ff:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:36:C2:08:E4:F7:BE:13:99:CE:EB:40:D8:41:E8:4B:64:2F:2D:26 X509v3 Authority Key Identifier: keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/vDbCCOT3vhOZzutA2EHoS2QvLSY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:5707:111::/48 2a0f:5707:1000::/44 Signature Algorithm: sha256WithRSAEncryption 4d:42:3d:3c:2d:9b:ed:f4:2e:5f:a5:f1:e0:50:23:ab:8a:66: 71:35:76:7d:3c:e6:a8:ca:86:80:69:f7:8e:35:e7:ae:f3:15: 6a:e1:6d:8a:07:82:df:0d:94:9b:d9:5f:8f:64:d8:29:de:5f: 1b:b9:92:2e:b0:1a:e5:8c:70:2a:ed:8b:96:9d:93:b3:18:2a: c7:0a:59:63:8f:e3:6a:66:7e:3c:41:9f:47:9d:57:65:81:a9: 83:93:b8:35:1e:46:fb:c3:b0:3f:a8:31:80:b3:d2:96:2c:20: 98:e7:ff:a5:ad:19:ec:56:93:d4:c2:ad:fc:5d:83:58:c0:e3: c0:cb:cc:ee:65:06:95:79:fb:55:32:54:39:14:1e:3b:71:e2: 33:f7:f3:2f:cb:bf:a2:ff:bd:0d:a6:bb:df:b4:b6:2e:8b:f3: 25:30:e4:25:b8:e8:ac:a5:4b:27:f5:8c:a3:14:ea:f6:c8:5c: 38:ea:00:5e:e6:41:81:bd:b0:06:e5:f9:30:65:0d:2c:89:b5: c1:fd:31:df:9a:41:bd:e6:95:db:fb:cb:f7:04:e8:ba:49:44: ea:9d:57:98:ce:f1:c6:b3:2d:57:8b:9a:25:11:2a:7b:ed:4f: 3e:b9:e8:05:59:6a:46:2e:0b:e9:ce:40:ca:43:d4:c2:a6:30: bc:b6:38:66 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt3WOvbxIwjE5C1SLr+9iNUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhNjQ0YzExNTY4NTE4MDNmMzdhZGVlYzA4NzZjY2Y5ODlk NWFlZjAwHhcNMjYwMTAxMDIxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzM2YzIwOGU0ZjdiZTEzOTljZWViNDBkODQxZTg0YjY0MmYyZDI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/lfc0hehJI6AreMibDogoFqgHul QYXdnFv5XqIklfLAuS5SPXi/dkt4jjZNWR+0MfDWn2qA5ddRj+ShTpL0GeBmVQOq PnPeziirfzNJyEKjtjqRaMBmvC5yly1RwkX0RPd5FNJtTQCcYoorrQ4gEfpTlU1O hTRjnSaD8qFjKarFd3638Hy98+5kB1aXu1Il6+pxh5DJy5/KikZNj/UeyPdl069r Biq1/w/Mi7ZEG/HaLz2H8UlhbtFSKeFWU2dHb+NKMP9ihnhW5Tio3GRSJiQZ9PKj aUh/2Fv2An8gHL94Cdyq1hjPgG9NAp2I36Rae7N1H+/oogFpglfCSPn/KQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFLw2wgjk974Tmc7rQNhB6EtkLy0mMB8GA1UdIwQY MBaAFEpkTBFWhRgD83re7Ah2zPmJ1a7wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3Mzkt Y2MxYzliNWY2NjQwLzEvdkRiQ0NPVDN2aE9aenV0QTJFSG9TMlF2TFNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3MzktY2MxYzliNWY2NjQw LzEvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKg9XBwER AwcEKg9XBxAAMA0GCSqGSIb3DQEBCwUAA4IBAQBNQj08LZvt9C5fpfHgUCOrimZx NXZ9POaoyoaAafeONeeu8xVq4W2KB4LfDZSb2V+PZNgp3l8buZIusBrljHAq7YuW nZOzGCrHClljj+NqZn48QZ9HnVdlgamDk7g1Hkb7w7A/qDGAs9KWLCCY5/+lrRns VpPUwq38XYNYwOPAy8zuZQaVeftVMlQ5FB47ceIz9/Mvy7+i/70NprvftLYui/Ml MOQluOispUsn9YyjFOr2yFw46gBe5kGBvbAG5fkwZQ0sibXB/THfmkG95pXb+8v3 BOi6SUTqnVeYzvHGsy1Xi5olESp77U8+uegFWWpGLgvpzkDKQ9TCpjC8tjhm -----END CERTIFICATE-----Generated at Mon Jan 26 12:31:43 2026 by rpki-client