This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/gB1pX4BxgfU_EYAITWsbI-n7JYM.roa File: gB1pX4BxgfU_EYAITWsbI-n7JYM.roa (raw, json) Hash identifier: 9HJZFE7Q9DE0uz+hhoDcpQ1v4qVPN4Dd5bNQtWv7Amk= Subject key identifier: 80:1D:69:5F:80:71:81:F5:3F:11:80:08:4D:6B:1B:23:E9:FB:25:83 Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071 Certificate serial: 019B7E38988149A830225E500E8943DCFCD3 Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/gB1pX4BxgfU_EYAITWsbI-n7JYM.roa Signing time: Fri 02 Jan 2026 10:19:56 +0000 ROA not before: Fri 02 Jan 2026 10:19:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29311 IP address blocks: 2a04:9a04::/32 maxlen: 36 2a07:3506:4c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.mft rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 19:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:98:81:49:a8:30:22:5e:50:0e:89:43:dc:fc:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071 Validity Not Before: Jan 2 10:19:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=801d695f807181f53f1180084d6b1b23e9fb2583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:93:49:e5:fd:30:67:22:9b:b6:53:a8:a6:8d: a6:6c:dd:6f:89:de:37:dc:09:76:9f:90:b2:69:77: 73:36:04:ec:b6:58:05:6a:1b:3f:47:c6:00:1d:ee: 8a:88:49:5f:ba:6c:02:71:0f:15:80:3f:66:64:0c: 9f:22:cc:6a:8b:a7:27:1c:76:c8:28:b6:a9:fb:0f: 7f:0e:7a:cd:33:94:63:09:ec:ee:bb:01:ed:98:16: 43:d9:a2:3e:70:75:40:9e:77:8e:d1:35:b7:c1:76: b4:4b:fc:80:46:15:59:63:95:ac:bc:b5:e9:8b:8f: af:f9:a2:a9:ab:f7:52:17:8f:cb:a1:e2:1d:54:e7: cf:d0:bf:5c:9d:77:34:db:92:b5:a4:f9:5b:e7:b5: 5b:0c:21:e6:a8:fb:49:85:dc:2f:94:98:48:93:03: 52:d7:e6:8a:41:b3:02:c4:a3:7d:f9:d2:6b:a4:a3: 9d:13:49:39:74:08:06:0b:b4:38:16:39:d5:4c:c9: fd:a4:83:7b:b3:3a:f4:1e:41:0c:c3:c2:dd:5c:2b: 8d:f8:b4:f5:1b:63:4f:b3:14:65:25:a1:57:e0:d1: b6:91:07:2a:7b:aa:62:ce:2a:6e:6d:79:c1:3d:3f: f8:e1:d2:2c:b1:c6:24:a2:13:82:75:bd:96:c6:69: eb:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:1D:69:5F:80:71:81:F5:3F:11:80:08:4D:6B:1B:23:E9:FB:25:83 X509v3 Authority Key Identifier: keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/gB1pX4BxgfU_EYAITWsbI-n7JYM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a04:9a04::/32 2a07:3506:4c::/48 Signature Algorithm: sha256WithRSAEncryption 17:01:3c:fd:39:7c:45:06:40:2b:be:c0:05:08:80:20:74:6d: b6:41:8f:89:0f:4a:76:d5:ed:11:37:f8:c0:f8:de:fe:c9:dc: 1f:b3:60:ae:55:55:4e:ec:ae:15:6a:f8:85:6c:6c:04:a4:6b: a9:6a:12:c8:fe:b2:a7:e2:26:40:2d:41:b5:ef:d0:7b:47:c7: e9:50:42:1a:7c:fa:e1:e5:1d:63:79:3a:29:df:94:55:cf:3c: 68:35:f1:c4:c1:ef:3f:b4:35:e7:1d:66:36:dd:ac:6d:d4:7c: 92:d6:22:6e:55:a2:21:37:01:96:d4:b0:bd:39:97:9e:7a:c5: a3:0a:01:07:30:65:ac:ce:8f:d9:d2:9a:bc:f5:61:bd:ad:26: f6:29:89:d1:e6:9a:d8:0f:fb:a2:a5:f5:5d:ae:81:72:f6:e9: 60:46:84:9d:7a:27:37:3d:c7:15:fb:b4:50:41:36:c3:fb:1c: 5f:aa:5b:c4:aa:e1:00:fb:3c:4d:4c:a3:c2:67:32:f9:46:ea: c4:12:f8:ea:44:ec:2f:c4:ef:9e:25:89:39:cd:97:02:12:6f: e0:07:23:da:81:94:ab:d3:a4:3d:a4:c8:ff:eb:8c:53:a7:92: 3e:26:3d:26:c3:06:92:86:49:1c:7c:3b:70:ee:0d:da:a8:f4: cf:c9:2c:fc -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZt+OJiBSagwIl5QDolD3PzTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwNWQyOGQxNjYyNmJjNWRjYWJmMmU5MTU0MzU3ODJiOTZl MTQwNzEwHhcNMjYwMTAyMTAxOTU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MDFkNjk1ZjgwNzE4MWY1M2YxMTgwMDg0ZDZiMWIyM2U5ZmIyNTgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpNJ5f0wZyKbtlOopo2mbN1vid43 3Al2n5CyaXdzNgTstlgFahs/R8YAHe6KiElfumwCcQ8VgD9mZAyfIsxqi6cnHHbI KLap+w9/DnrNM5RjCezuuwHtmBZD2aI+cHVAnneO0TW3wXa0S/yARhVZY5WsvLXp i4+v+aKpq/dSF4/LoeIdVOfP0L9cnXc025K1pPlb57VbDCHmqPtJhdwvlJhIkwNS 1+aKQbMCxKN9+dJrpKOdE0k5dAgGC7Q4FjnVTMn9pIN7szr0HkEMw8LdXCuN+LT1 G2NPsxRlJaFX4NG2kQcqe6pizipubXnBPT/44dIsscYkohOCdb2WxmnrbQIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFIAdaV+AcYH1PxGACE1rGyPp+yWDMB8GA1UdIwQY MBaAFLBdKNFmJrxdyr8ukVQ1eCuW4UBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEt YWQ1NzU1MjJiMzY1LzEvZ0IxcFg0QnhnZlVfRVlBSVRXc2JJLW43SllNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEtYWQ1NzU1MjJiMzY1 LzEvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwUAKgSaBAMH ACoHNQYATDANBgkqhkiG9w0BAQsFAAOCAQEAFwE8/Tl8RQZAK77ABQiAIHRttkGP iQ9KdtXtETf4wPje/sncH7NgrlVVTuyuFWr4hWxsBKRrqWoSyP6yp+ImQC1Bte/Q e0fH6VBCGnz64eUdY3k6Kd+UVc88aDXxxMHvP7Q15x1mNt2sbdR8ktYiblWiITcB ltSwvTmXnnrFowoBBzBlrM6P2dKavPVhva0m9imJ0eaa2A/7oqX1Xa6BcvbpYEaE nXonNz3HFfu0UEE2w/scX6pbxKrhAPs8TUyjwmcy+UbqxBL46kTsL8TvniWJOc2X AhJv4Acj2oGUq9OkPaTI/+uMU6eSPiY9JsMGkoZJHHw7cO4N2qj0z8ks/A== -----END CERTIFICATE-----Generated at Tue Jan 20 04:47:57 2026 by rpki-client