This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/07228e-32a9-4e1c-aada-dee3333c367b/1/Is0EtUEGPtj5iPMrI__B634d_Gg.roa File: Is0EtUEGPtj5iPMrI__B634d_Gg.roa (raw, json) Hash identifier: UcnAE32bQjXyoFuSdzK7Ox1KjdWOO+CqE8BXmt6ncsQ= Subject key identifier: 22:CD:04:B5:41:06:3E:D8:F9:88:F3:2B:23:FF:C1:EB:7E:1D:FC:68 Certificate issuer: /CN=4196892d07a00906b1b7ad4bf850d8bf80886fbc Certificate serial: 019B77C6BD95D2AC1DC3EDB74A986CD68AF7 Authority key identifier: 41:96:89:2D:07:A0:09:06:B1:B7:AD:4B:F8:50:D8:BF:80:88:6F:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QZaJLQegCQaxt61L-FDYv4CIb7w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/07228e-32a9-4e1c-aada-dee3333c367b/1/Is0EtUEGPtj5iPMrI__B634d_Gg.roa Signing time: Thu 01 Jan 2026 04:17:51 +0000 ROA not before: Thu 01 Jan 2026 04:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215499 IP address blocks: 2001:678:1028::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/07228e-32a9-4e1c-aada-dee3333c367b/1/QZaJLQegCQaxt61L-FDYv4CIb7w.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/07228e-32a9-4e1c-aada-dee3333c367b/1/QZaJLQegCQaxt61L-FDYv4CIb7w.mft rsync://rpki.ripe.net/repository/DEFAULT/QZaJLQegCQaxt61L-FDYv4CIb7w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:bd:95:d2:ac:1d:c3:ed:b7:4a:98:6c:d6:8a:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4196892d07a00906b1b7ad4bf850d8bf80886fbc Validity Not Before: Jan 1 04:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=22cd04b541063ed8f988f32b23ffc1eb7e1dfc68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f0:05:b6:e1:2e:de:0c:97:3c:84:c9:28:09: 7d:1b:27:20:8f:11:b9:a4:f8:ed:fe:ba:88:51:23: 44:7f:67:23:39:b3:33:fb:e5:bd:fa:62:0b:a6:c7: 2f:68:3c:95:a7:52:c0:d0:cb:26:dc:e6:2d:d7:1d: 7f:e1:0a:b0:0e:4a:9d:cd:d4:31:02:b2:8b:3c:7b: a7:5d:dc:b1:5d:64:06:04:28:e1:7f:4e:00:a0:d3: 07:41:b2:24:91:e6:87:24:e5:48:8b:e2:72:62:4a: c4:3d:a0:37:a8:62:55:e9:03:86:72:f2:35:f4:f9: 81:46:b9:4a:f7:19:43:d8:3c:62:be:8d:59:a5:66: 34:4a:58:06:63:9f:c0:df:ef:e3:67:d4:0f:a5:fa: 02:8f:aa:ef:26:67:65:81:90:11:3b:00:85:35:46: e1:97:6b:d6:04:c5:22:46:e8:b8:2b:f2:b6:4b:8c: 31:d9:fe:c1:95:91:ca:2b:e6:05:6f:cd:c2:f8:5e: f3:23:69:6e:4e:2f:8c:99:9c:f9:7e:3e:f3:63:33: ca:c0:bc:80:d9:a1:da:1e:44:cf:f4:e5:85:02:7f: 06:f6:16:19:bc:f0:44:ec:b6:5c:7e:d2:0f:87:74: 04:e1:96:dd:26:ce:b9:68:71:b4:e5:7d:c3:7d:84: d8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:CD:04:B5:41:06:3E:D8:F9:88:F3:2B:23:FF:C1:EB:7E:1D:FC:68 X509v3 Authority Key Identifier: keyid:41:96:89:2D:07:A0:09:06:B1:B7:AD:4B:F8:50:D8:BF:80:88:6F:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QZaJLQegCQaxt61L-FDYv4CIb7w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/07228e-32a9-4e1c-aada-dee3333c367b/1/Is0EtUEGPtj5iPMrI__B634d_Gg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/07228e-32a9-4e1c-aada-dee3333c367b/1/QZaJLQegCQaxt61L-FDYv4CIb7w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1028::/48 Signature Algorithm: sha256WithRSAEncryption 36:6c:3f:69:d0:95:38:0d:28:9f:b8:e6:f3:4d:86:3c:bb:f8: b5:18:e3:67:a6:e3:59:84:62:b2:b4:77:1b:80:66:1b:1e:f5: 63:a7:c0:db:8a:64:c3:43:58:79:32:57:44:26:1f:96:d8:94: 30:7e:bc:e9:f3:57:a6:bb:50:78:31:74:35:48:c6:d3:a9:56: 04:47:d6:9a:0b:e4:95:bf:23:15:54:81:f3:99:64:39:bd:cd: 51:33:30:1d:08:fe:cf:a3:b5:c4:cd:cb:c8:0e:ce:3e:70:88: 17:ce:dc:66:53:a5:2b:ad:fa:44:11:98:18:b1:2a:c7:b1:05: ce:23:81:6f:7f:54:69:b9:d8:74:0b:84:cf:b9:82:d1:54:d4: 76:5b:1c:99:5d:f3:8a:2f:98:a9:3a:29:e7:01:76:81:ee:fb: fd:f8:6b:5c:14:b0:98:fd:97:79:40:83:3e:0d:a6:a0:19:4f: 60:bb:b7:a2:46:b1:01:e8:00:88:29:6b:6f:ee:e5:d0:a0:69: 81:de:07:e7:1b:73:2e:1c:40:72:c7:82:b0:01:d1:fa:a3:d3: 3e:7c:43:e1:3a:5f:c1:43:60:4f:cb:b4:d6:30:fa:fe:8e:64: 20:50:44:5e:5c:c2:09:03:21:41:6c:74:9e:55:69:9e:09:5e: ba:e4:ee:45 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3xr2V0qwdw+23Sphs1or3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxOTY4OTJkMDdhMDA5MDZiMWI3YWQ0YmY4NTBkOGJmODA4 ODZmYmMwHhcNMjYwMTAxMDQxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMmNkMDRiNTQxMDYzZWQ4Zjk4OGYzMmIyM2ZmYzFlYjdlMWRmYzY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2vAFtuEu3gyXPITJKAl9GycgjxG5 pPjt/rqIUSNEf2cjObMz++W9+mILpscvaDyVp1LA0Msm3OYt1x1/4QqwDkqdzdQx ArKLPHunXdyxXWQGBCjhf04AoNMHQbIkkeaHJOVIi+JyYkrEPaA3qGJV6QOGcvI1 9PmBRrlK9xlD2Dxivo1ZpWY0SlgGY5/A3+/jZ9QPpfoCj6rvJmdlgZAROwCFNUbh l2vWBMUiRui4K/K2S4wx2f7BlZHKK+YFb83C+F7zI2luTi+MmZz5fj7zYzPKwLyA 2aHaHkTP9OWFAn8G9hYZvPBE7LZcftIPh3QE4ZbdJs65aHG05X3DfYTYWwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFCLNBLVBBj7Y+YjzKyP/wet+HfxoMB8GA1UdIwQY MBaAFEGWiS0HoAkGsbetS/hQ2L+AiG+8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVphSkxRZWdDUWF4dDYxTC1GRFl2NENJYjd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS8wNzIyOGUtMzJhOS00ZTFjLWFhZGEt ZGVlMzMzM2MzNjdiLzEvSXMwRXRVRUdQdGo1aVBNcklfX0I2MzRkX0dnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS8wNzIyOGUtMzJhOS00ZTFjLWFhZGEtZGVlMzMzM2MzNjdi LzEvUVphSkxRZWdDUWF4dDYxTC1GRFl2NENJYjd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeBAo MA0GCSqGSIb3DQEBCwUAA4IBAQA2bD9p0JU4DSifuObzTYY8u/i1GONnpuNZhGKy tHcbgGYbHvVjp8DbimTDQ1h5MldEJh+W2JQwfrzp81emu1B4MXQ1SMbTqVYER9aa C+SVvyMVVIHzmWQ5vc1RMzAdCP7Po7XEzcvIDs4+cIgXztxmU6UrrfpEEZgYsSrH sQXOI4Fvf1Rpudh0C4TPuYLRVNR2WxyZXfOKL5ipOinnAXaB7vv9+GtcFLCY/Zd5 QIM+DaagGU9gu7eiRrEB6ACIKWtv7uXQoGmB3gfnG3MuHEByx4KwAdH6o9M+fEPh Ol/BQ2BPy7TWMPr+jmQgUEReXMIJAyFBbHSeVWmeCV665O5F -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:15 2026 by rpki-client