This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/rTBw7OUwtGSKILuAAMVvJYBP0vE.roa File: rTBw7OUwtGSKILuAAMVvJYBP0vE.roa (raw, json) Hash identifier: 8C0oeoNbl9wTiQJjuLUroY9nJ9R1ZKFueVOsGJOgkiQ= Subject key identifier: AD:30:70:EC:E5:30:B4:64:8A:20:BB:80:00:C5:6F:25:80:4F:D2:F1 Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Certificate serial: 019B797E2B2E67C53443CECB7466A3AE79F5 Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/rTBw7OUwtGSKILuAAMVvJYBP0vE.roa Signing time: Thu 01 Jan 2026 12:17:50 +0000 ROA not before: Thu 01 Jan 2026 12:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47987 IP address blocks: 2a06:8ec0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.mft rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:2b:2e:67:c5:34:43:ce:cb:74:66:a3:ae:79:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Validity Not Before: Jan 1 12:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ad3070ece530b4648a20bb8000c56f25804fd2f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:64:0b:21:22:94:c7:d4:af:bf:a6:5a:12:3c: 54:84:39:e9:21:8d:d0:90:10:e9:f4:71:33:e7:64: d4:fe:63:2c:4a:7c:f0:88:61:27:94:4c:95:a8:14: 8d:0e:6d:24:32:ec:65:8b:74:f8:ad:33:75:5f:ab: d6:69:c1:0a:e2:8c:ea:8f:2f:e0:71:22:8f:6a:db: 71:43:ea:b4:bc:95:17:ee:f4:38:1a:3f:61:57:af: a3:18:c7:ce:af:f1:03:ae:3b:28:82:00:bd:84:60: 76:49:36:07:d2:51:91:27:06:bd:c5:6f:3c:be:ab: 85:b2:91:1e:98:16:54:de:2e:f3:b2:53:f4:13:62: 12:ed:89:9d:6c:21:27:a1:07:f5:02:a5:1e:70:72: 14:3c:85:c9:58:af:8b:96:1f:d2:af:8c:83:cc:27: 4a:20:79:13:e0:fd:86:3e:d3:00:09:15:ca:86:45: 2f:74:71:78:79:3d:33:a9:34:f0:dc:e1:53:9f:8c: e4:3d:97:ae:78:ef:74:bc:47:b7:2f:d9:94:e2:68: 70:62:64:cb:28:95:4e:cb:f8:66:c2:09:db:d7:94: 78:99:af:94:f9:b2:d6:89:e1:c2:c0:59:17:4c:33: 82:3c:6e:9d:38:d8:3c:18:27:ab:a0:24:08:b3:36: 78:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:30:70:EC:E5:30:B4:64:8A:20:BB:80:00:C5:6F:25:80:4F:D2:F1 X509v3 Authority Key Identifier: keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/rTBw7OUwtGSKILuAAMVvJYBP0vE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:8ec0:1::/48 Signature Algorithm: sha256WithRSAEncryption 21:f0:ec:b1:ea:01:57:7f:75:74:01:61:aa:73:e2:04:79:3b: b6:2b:c6:e6:c3:18:4f:fd:48:0c:21:74:e3:dc:32:44:40:03: 00:1a:0c:a1:28:23:88:47:d5:3e:8b:84:34:51:20:d2:6b:9c: a8:f8:ea:15:12:8b:27:ab:6f:9f:11:f1:bd:fc:e8:03:e0:86: 13:de:1b:65:f3:93:0d:9e:0a:5c:fc:81:87:e2:3b:4d:e1:2f: 35:e9:d2:61:9e:02:03:d6:81:bc:55:6d:92:a2:b9:63:ca:20: 42:ab:71:23:fe:35:49:1e:cd:f3:56:4b:f7:1b:4a:b4:bb:ee: 05:6b:6b:e6:58:4d:a2:d2:15:0c:93:86:6d:94:ed:0f:5f:fa: 61:71:cb:6f:e9:39:f6:e1:9a:0d:9a:2d:fb:f1:4f:d1:bc:ed: 98:80:d7:36:e3:df:f1:87:1b:ef:e4:a2:27:07:22:2b:52:89: 1b:3b:79:51:26:26:10:f5:ef:c8:71:65:be:e5:8a:a4:09:6f: f9:42:71:aa:b2:ab:41:07:e3:c7:90:8e:f2:81:13:ff:0b:e4: 2a:36:65:4b:50:44:4d:2c:7a:19:82:c4:74:b3:c1:79:7a:2b: b1:d5:0b:51:e8:55:08:7e:70:c9:b7:70:24:40:6b:b0:f8:aa: be:94:75:27 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5fisuZ8U0Q87LdGajrnn1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi YTU3NDUwHhcNMjYwMTAxMTIxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZDMwNzBlY2U1MzBiNDY0OGEyMGJiODAwMGM1NmYyNTgwNGZkMmYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2GQLISKUx9Svv6ZaEjxUhDnpIY3Q kBDp9HEz52TU/mMsSnzwiGEnlEyVqBSNDm0kMuxli3T4rTN1X6vWacEK4ozqjy/g cSKPattxQ+q0vJUX7vQ4Gj9hV6+jGMfOr/EDrjsoggC9hGB2STYH0lGRJwa9xW88 vquFspEemBZU3i7zslP0E2IS7YmdbCEnoQf1AqUecHIUPIXJWK+Llh/Sr4yDzCdK IHkT4P2GPtMACRXKhkUvdHF4eT0zqTTw3OFTn4zkPZeueO90vEe3L9mU4mhwYmTL KJVOy/hmwgnb15R4ma+U+bLWieHCwFkXTDOCPG6dONg8GCeroCQIszZ4TwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFK0wcOzlMLRkiiC7gADFbyWAT9LxMB8GA1UdIwQY MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt ZmVhYzI2ZWFlY2MyLzEvclRCdzdPVXd0R1NLSUx1QUFNVnZKWUJQMHZFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgaOwAAB MA0GCSqGSIb3DQEBCwUAA4IBAQAh8Oyx6gFXf3V0AWGqc+IEeTu2K8bmwxhP/UgM IXTj3DJEQAMAGgyhKCOIR9U+i4Q0USDSa5yo+OoVEosnq2+fEfG9/OgD4IYT3htl 85MNngpc/IGH4jtN4S816dJhngID1oG8VW2SorljyiBCq3Ej/jVJHs3zVkv3G0q0 u+4Fa2vmWE2i0hUMk4ZtlO0PX/phcctv6Tn24ZoNmi378U/RvO2YgNc249/xhxvv 5KInByIrUokbO3lRJiYQ9e/IcWW+5YqkCW/5QnGqsqtBB+PHkI7ygRP/C+QqNmVL UERNLHoZgsR0s8F5eiux1QtR6FUIfnDJt3AkQGuw+Kq+lHUn -----END CERTIFICATE-----Generated at Mon Jan 19 20:21:54 2026 by rpki-client