This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/DDoVbi1hwK810Q3__yAihbTnUzQ.roa File: DDoVbi1hwK810Q3__yAihbTnUzQ.roa (raw, json) Hash identifier: hkNUL3Jk8I6ohEW5lxLRCD9KCBglyppacl/pVvgBeSk= Subject key identifier: 0C:3A:15:6E:2D:61:C0:AF:35:D1:0D:FF:FF:20:22:85:B4:E7:53:34 Certificate issuer: /CN=43fd9362e83b852f3fd3311b09096f6289a6a0f8 Certificate serial: 019B791132602CE73EAE2093829995F60330 Authority key identifier: 43:FD:93:62:E8:3B:85:2F:3F:D3:31:1B:09:09:6F:62:89:A6:A0:F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/DDoVbi1hwK810Q3__yAihbTnUzQ.roa Signing time: Thu 01 Jan 2026 10:18:48 +0000 ROA not before: Thu 01 Jan 2026 10:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207576 IP address blocks: 2001:67c:2d38::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:32:60:2c:e7:3e:ae:20:93:82:99:95:f6:03:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43fd9362e83b852f3fd3311b09096f6289a6a0f8 Validity Not Before: Jan 1 10:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0c3a156e2d61c0af35d10dffff202285b4e75334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:62:8c:77:38:02:81:33:5a:f9:0d:d7:ff:d9: eb:da:3d:50:d1:39:fe:6d:5a:fb:8d:51:e5:3b:a5: 0b:77:ef:55:c3:18:8f:cb:02:3d:2d:8a:63:fc:62: 8d:a9:10:6f:10:5d:80:b4:c8:24:ee:fc:f6:cf:12: 5c:72:7d:70:df:f5:c4:cf:18:65:ac:08:40:2f:fa: c8:a0:5f:00:ea:27:ff:cd:3e:f3:0c:54:19:86:a1: e9:80:14:ad:0c:de:bd:4a:e2:9f:cc:99:35:dc:ec: eb:88:c6:ab:1d:6a:27:ff:ca:0e:ca:45:0c:a2:22: bf:cd:6c:44:77:59:ea:e6:d5:45:25:72:14:04:96: 9b:a9:68:65:c4:a4:dc:ba:17:8a:94:f5:93:69:bc: 5b:05:b4:1c:f6:93:b3:1d:76:98:a7:07:97:4c:3a: 95:fb:76:fd:a0:aa:cb:17:f7:c3:c1:2f:40:4f:7f: 42:66:12:5a:03:d9:85:f1:f8:ef:dc:df:cb:3e:41: 67:5a:be:67:a0:44:17:42:9d:37:1b:8c:8d:ac:bf: 75:5d:03:b8:d8:43:83:c2:e9:63:e0:94:3a:b5:c4: b2:d3:8a:54:2a:0e:ca:2f:4e:11:ce:f5:1c:90:76: d1:27:74:3c:c8:44:3e:ea:ee:2b:de:a3:ce:75:cc: ce:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:3A:15:6E:2D:61:C0:AF:35:D1:0D:FF:FF:20:22:85:B4:E7:53:34 X509v3 Authority Key Identifier: keyid:43:FD:93:62:E8:3B:85:2F:3F:D3:31:1B:09:09:6F:62:89:A6:A0:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/DDoVbi1hwK810Q3__yAihbTnUzQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2d38::/48 Signature Algorithm: sha256WithRSAEncryption 81:7a:ff:e6:f2:25:31:bb:b1:d0:77:ca:25:84:9c:6c:8b:cd: 44:ad:b7:b7:45:80:d7:8d:f8:cf:b1:d0:e5:3a:91:e7:4e:1c: 17:72:44:ff:68:51:e7:f5:7c:68:82:f5:30:fb:be:11:7f:79: 73:e8:04:52:46:fc:d2:9a:43:67:9c:10:9e:24:f8:30:68:bc: 10:70:57:99:a2:26:73:bf:96:be:d6:5a:8f:c6:20:14:ea:0b: 5a:7c:cd:f0:a5:ab:34:99:da:66:ed:5a:62:85:b9:57:bd:c0: 20:a9:6f:45:93:11:0c:e9:e3:fb:bc:8d:39:a0:d3:e5:88:91: ab:d0:b7:88:87:ee:8c:0f:27:ff:23:5e:aa:2f:c0:a5:d4:f0: f1:0c:c4:cc:1a:3f:43:80:67:ed:cd:33:24:a3:83:55:ce:ec: 72:1c:9e:91:4b:8a:73:f5:ce:74:d0:23:eb:19:58:43:3a:b1: db:12:34:5a:28:e4:55:02:dc:dd:9a:74:6b:a3:fe:78:66:e5: 0a:2d:c9:5f:b5:5b:b7:e6:14:cc:f6:48:f5:f7:99:8a:fc:ca: bf:07:14:16:f8:da:ac:2b:a6:f3:3a:d1:2d:9f:d6:0e:3e:e8: 0b:1c:d5:ac:c8:b6:da:6a:56:9d:02:72:74:72:ac:e8:c4:c7: 67:b2:5f:5b -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5ETJgLOc+riCTgpmV9gMwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzZmQ5MzYyZTgzYjg1MmYzZmQzMzExYjA5MDk2ZjYyODlh NmEwZjgwHhcNMjYwMTAxMTAxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYzNhMTU2ZTJkNjFjMGFmMzVkMTBkZmZmZjIwMjI4NWI0ZTc1MzM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0WKMdzgCgTNa+Q3X/9nr2j1Q0Tn+ bVr7jVHlO6ULd+9VwxiPywI9LYpj/GKNqRBvEF2AtMgk7vz2zxJccn1w3/XEzxhl rAhAL/rIoF8A6if/zT7zDFQZhqHpgBStDN69SuKfzJk13OzriMarHWon/8oOykUM oiK/zWxEd1nq5tVFJXIUBJabqWhlxKTcuheKlPWTabxbBbQc9pOzHXaYpweXTDqV +3b9oKrLF/fDwS9AT39CZhJaA9mF8fjv3N/LPkFnWr5noEQXQp03G4yNrL91XQO4 2EODwulj4JQ6tcSy04pUKg7KL04RzvUckHbRJ3Q8yEQ+6u4r3qPOdczO9wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFAw6FW4tYcCvNdEN//8gIoW051M0MB8GA1UdIwQY MBaAFEP9k2LoO4UvP9MxGwkJb2KJpqD4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUV8yVFl1ZzdoUzhfMHpFYkNRbHZZb21tb1BnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8xZDNjMTUtMzQxNi00NGFkLTlhODkt NjU0N2JiMWI4MGMyLzEvRERvVmJpMWh3SzgxMFEzX195QWloYlRuVXpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8xZDNjMTUtMzQxNi00NGFkLTlhODktNjU0N2JiMWI4MGMy LzEvUV8yVFl1ZzdoUzhfMHpFYkNRbHZZb21tb1BnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfC04 MA0GCSqGSIb3DQEBCwUAA4IBAQCBev/m8iUxu7HQd8olhJxsi81Erbe3RYDXjfjP sdDlOpHnThwXckT/aFHn9XxogvUw+74Rf3lz6ARSRvzSmkNnnBCeJPgwaLwQcFeZ oiZzv5a+1lqPxiAU6gtafM3wpas0mdpm7VpihblXvcAgqW9FkxEM6eP7vI05oNPl iJGr0LeIh+6MDyf/I16qL8Cl1PDxDMTMGj9DgGftzTMko4NVzuxyHJ6RS4pz9c50 0CPrGVhDOrHbEjRaKORVAtzdmnRro/54ZuUKLclftVu35hTM9kj195mK/Mq/BxQW +NqsK6bzOtEtn9YOPugLHNWsyLbaaladAnJ0cqzoxMdnsl9b -----END CERTIFICATE-----Generated at Tue Feb 10 01:07:21 2026 by rpki-client