This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/RN6drM--dD_6tv6f7ZT4g-Tmx4M.roa File: RN6drM--dD_6tv6f7ZT4g-Tmx4M.roa (raw, json) Hash identifier: 45pPotnyCUMx03gGTQCEe2Fo2L9SNyOnrMGfMN+GUgw= Subject key identifier: 44:DE:9D:AC:CF:BE:74:3F:FA:B6:FE:9F:ED:94:F8:83:E4:E6:C7:83 Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045 Certificate serial: 019B76EB831502D2730443C6BAF2FB9D4F97 Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/RN6drM--dD_6tv6f7ZT4g-Tmx4M.roa Signing time: Thu 01 Jan 2026 00:18:24 +0000 ROA not before: Thu 01 Jan 2026 00:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43260 IP address blocks: 2a11:840:24::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.mft rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:83:15:02:d2:73:04:43:c6:ba:f2:fb:9d:4f:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045 Validity Not Before: Jan 1 00:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=44de9daccfbe743ffab6fe9fed94f883e4e6c783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b1:36:c9:ac:3f:ea:cb:a9:0a:f7:c1:c9:01: 16:bf:52:0e:1d:fb:80:f3:a5:00:62:f7:a0:4c:62: 6f:5a:4d:73:88:fd:2f:3e:4c:dc:cc:44:6e:82:29: e6:da:95:23:76:82:df:2c:b0:09:49:5e:22:f3:f9: f9:d7:03:0b:8d:7e:ff:a1:76:0b:f3:23:35:b2:d8: 4a:d3:61:68:f0:77:d6:85:d5:86:a0:8b:12:67:f9: 7a:10:cb:f7:ad:dc:bf:d8:74:1c:54:7e:a2:cb:31: 49:65:0c:0e:e3:c3:95:88:05:f3:65:80:3c:81:43: d9:c8:bd:d1:5d:ba:6a:b5:68:80:a6:4f:c6:1d:84: cf:64:41:2f:f8:cb:98:57:1a:7e:5a:07:ba:ff:0c: 1c:9c:0c:0b:85:05:46:38:29:02:54:97:24:a4:31: 04:75:cc:57:73:a8:cb:1e:d9:fc:6f:e6:84:06:04: d1:00:14:68:27:d5:ec:2c:86:04:b5:fc:9a:c5:94: 9a:17:26:10:be:c5:fa:aa:2a:9a:2b:22:9d:02:78: 95:e8:fb:b8:1e:fb:79:3e:2b:04:c0:de:9c:e7:58: 66:67:51:ae:1d:1e:ef:8a:29:05:e8:61:88:56:d7: b0:d9:15:9c:fc:ae:34:1c:98:68:07:f2:ee:df:21: d5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:DE:9D:AC:CF:BE:74:3F:FA:B6:FE:9F:ED:94:F8:83:E4:E6:C7:83 X509v3 Authority Key Identifier: keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/RN6drM--dD_6tv6f7ZT4g-Tmx4M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:840:24::/48 Signature Algorithm: sha256WithRSAEncryption 67:50:ba:fc:74:5d:90:18:67:c7:95:9f:2e:1e:39:dd:4b:a1: 95:9e:32:80:49:28:6d:a2:5d:e9:14:01:5e:83:83:7b:39:64: d0:0f:d7:40:00:4c:35:a7:26:9b:b7:30:24:71:99:c9:2b:f6: 9a:05:64:e2:a3:c2:96:26:40:27:7e:df:66:4f:2e:74:cf:90: f5:13:f9:c3:f8:89:fb:9d:8e:fb:bd:80:24:6d:38:37:83:be: 94:9f:81:01:87:af:9e:7d:4f:21:9f:5e:3e:c4:b8:04:c1:a1: 30:8d:6f:be:2a:ea:e8:19:61:29:bb:23:ec:81:3c:42:ff:fb: 82:b1:ed:87:07:1b:a3:07:57:56:56:a1:1b:59:9c:a1:20:8c: 6b:d3:fe:ea:5a:c1:bb:f5:fa:a5:08:5f:44:25:90:bb:69:6b: 5d:95:74:18:97:5e:09:1d:73:6a:b2:a9:6f:da:a3:ec:2d:84: 1a:d0:44:1f:8a:a1:eb:3c:72:f1:27:fb:f6:91:96:2a:a3:75: 69:66:57:45:30:71:8a:dd:f7:ac:a7:ff:5d:8b:31:fc:d5:5d: 9a:76:f2:df:59:46:82:a5:68:df:c7:8a:5c:79:b9:1f:3c:57: ba:29:22:d2:9f:82:82:67:1d:b9:3d:7d:08:63:f0:58:26:aa: 87:bd:77:20 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt264MVAtJzBEPGuvL7nU+XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5MDU2ZmE5NjI1YjZjODc0MDQyNjdjNmRjMjE5OTI0YWMx NjAwNDUwHhcNMjYwMTAxMDAxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NGRlOWRhY2NmYmU3NDNmZmFiNmZlOWZlZDk0Zjg4M2U0ZTZjNzgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0LE2yaw/6supCvfByQEWv1IOHfuA 86UAYvegTGJvWk1ziP0vPkzczERuginm2pUjdoLfLLAJSV4i8/n51wMLjX7/oXYL 8yM1sthK02Fo8HfWhdWGoIsSZ/l6EMv3rdy/2HQcVH6iyzFJZQwO48OViAXzZYA8 gUPZyL3RXbpqtWiApk/GHYTPZEEv+MuYVxp+Wge6/wwcnAwLhQVGOCkCVJckpDEE dcxXc6jLHtn8b+aEBgTRABRoJ9XsLIYEtfyaxZSaFyYQvsX6qiqaKyKdAniV6Pu4 Hvt5PisEwN6c51hmZ1GuHR7viikF6GGIVtew2RWc/K40HJhoB/Lu3yHVuwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFETenazPvnQ/+rb+n+2U+IPk5seDMB8GA1UdIwQY MBaAFIkFb6liW2yHQEJnxtwhmSSsFgBFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQt NTE5MjAzNzMzNTNjLzEvUk42ZHJNLS1kRF82dHY2ZjdaVDRnLVRteDRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQtNTE5MjAzNzMzNTNj LzEvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhEIQAAk MA0GCSqGSIb3DQEBCwUAA4IBAQBnULr8dF2QGGfHlZ8uHjndS6GVnjKASShtol3p FAFeg4N7OWTQD9dAAEw1pyabtzAkcZnJK/aaBWTio8KWJkAnft9mTy50z5D1E/nD +In7nY77vYAkbTg3g76Un4EBh6+efU8hn14+xLgEwaEwjW++KuroGWEpuyPsgTxC //uCse2HBxujB1dWVqEbWZyhIIxr0/7qWsG79fqlCF9EJZC7aWtdlXQYl14JHXNq sqlv2qPsLYQa0EQfiqHrPHLxJ/v2kZYqo3VpZldFMHGK3fesp/9dizH81V2advLf WUaCpWjfx4pcebkfPFe6KSLSn4KCZx25PX0IY/BYJqqHvXcg -----END CERTIFICATE-----Generated at Mon Jan 19 16:52:01 2026 by rpki-client