This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/3gBGUy3u0kv0cMFfYhefm1zv6V4.roa File: 3gBGUy3u0kv0cMFfYhefm1zv6V4.roa (raw, json) Hash identifier: wbVQO0NG95NJdUKsQ+Wjm9lVf3DsbDyNxF0jF2IdjBg= Subject key identifier: DE:00:46:53:2D:EE:D2:4B:F4:70:C1:5F:62:17:9F:9B:5C:EF:E9:5E Certificate issuer: /CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1 Certificate serial: 019B77589A34C56D3F0C06E659D5EA279107 Authority key identifier: DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/3gBGUy3u0kv0cMFfYhefm1zv6V4.roa Signing time: Thu 01 Jan 2026 02:17:33 +0000 ROA not before: Thu 01 Jan 2026 02:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210542 IP address blocks: 2a0f:ca80:de0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.mft rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:9a:34:c5:6d:3f:0c:06:e6:59:d5:ea:27:91:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1 Validity Not Before: Jan 1 02:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=de0046532deed24bf470c15f62179f9b5cefe95e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b9:cb:fd:14:b5:02:0f:a6:04:a9:50:db:a0: da:5c:1e:ad:06:5e:34:52:39:8d:ff:cd:cd:41:3d: bc:06:72:dc:f3:bd:70:b2:06:18:45:26:fd:cb:d5: 51:d8:7d:48:ce:f0:b7:55:4b:a7:01:9c:72:04:23: 08:a2:4e:e3:81:76:a5:d8:c5:4f:c7:3d:c7:b7:18: 92:6f:5d:53:4b:18:fb:b6:26:ee:d0:20:22:02:0f: 2c:e7:6f:45:7f:27:27:46:78:74:db:82:53:3f:08: 53:91:31:d9:18:35:55:33:b4:64:97:61:92:3b:60: f3:44:de:36:85:b0:21:ad:43:ab:a3:05:9d:90:3b: 29:f9:ef:d1:48:f4:eb:ff:c6:6a:0c:8a:fa:42:f7: 4d:fb:6e:ab:b1:6e:f9:90:44:c7:55:87:c5:27:d0: 3b:35:e7:aa:d4:c0:4a:5b:8c:6b:dc:c4:ff:17:69: 32:83:38:4a:82:14:46:78:66:e7:96:54:59:78:0e: 93:1c:fd:04:f0:72:10:f5:c2:3c:9a:e4:7e:c0:c7: f1:4d:80:ba:f1:a5:06:3f:13:67:8e:79:aa:24:a2: b2:f9:64:be:08:1c:f2:da:08:9f:e8:e2:ed:c3:ad: 40:1c:5c:41:42:05:64:36:44:d3:40:fa:35:00:9a: bd:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:00:46:53:2D:EE:D2:4B:F4:70:C1:5F:62:17:9F:9B:5C:EF:E9:5E X509v3 Authority Key Identifier: keyid:DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/3gBGUy3u0kv0cMFfYhefm1zv6V4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:ca80:de0::/44 Signature Algorithm: sha256WithRSAEncryption 14:38:56:40:22:c8:1e:2f:17:e1:d9:36:a4:f3:5f:4c:37:a5: 3e:52:d0:a2:03:31:3a:e5:6b:29:00:2e:9f:ad:19:95:cc:59: 69:d4:b1:0b:a5:39:f0:8b:2d:64:70:a8:dd:a8:33:76:2b:4a: a7:dc:59:b0:53:c2:34:8a:0b:d6:36:5d:c1:a4:67:29:2b:e8: 3c:0c:58:e2:69:96:b1:54:29:3b:81:1d:09:b2:a3:6c:7f:2b: 9d:c0:5d:32:ff:c0:cd:68:0e:73:af:e1:0e:0b:83:59:aa:24: 0c:0b:77:15:66:6c:00:15:98:12:40:2c:e0:0a:3b:b4:2b:15: f0:95:f2:0e:cf:f6:63:99:09:cd:b2:b3:de:02:e5:ff:25:6f: 29:2f:4d:00:2f:9a:30:ea:80:90:eb:89:bc:b3:a5:aa:fe:c8: 0d:5d:eb:f6:36:66:1b:5e:8d:e8:36:e2:51:59:fd:21:0f:51: 30:cd:2c:20:66:57:20:2f:43:dc:dc:10:b9:c0:e9:16:d9:43: da:56:fe:37:3c:09:43:1b:cf:75:b5:04:1a:9c:98:8b:24:81: 62:e3:c8:1e:05:6e:aa:4b:6d:a9:81:f0:ed:28:d8:21:66:12: 8f:bb:56:bb:e7:47:8d:c6:50:b3:b2:ed:7a:0c:f9:f4:08:1a: 58:f5:91:4e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3WJo0xW0/DAbmWdXqJ5EHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiZTZhYjhlMGM0NmU4NDFiNDRkMmI5YzZiMDNiYjY1ZjU2 MjFkYjEwHhcNMjYwMTAxMDIxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZTAwNDY1MzJkZWVkMjRiZjQ3MGMxNWY2MjE3OWY5YjVjZWZlOTVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrnL/RS1Ag+mBKlQ26DaXB6tBl40 UjmN/83NQT28BnLc871wsgYYRSb9y9VR2H1IzvC3VUunAZxyBCMIok7jgXal2MVP xz3HtxiSb11TSxj7tibu0CAiAg8s529FfycnRnh024JTPwhTkTHZGDVVM7Rkl2GS O2DzRN42hbAhrUOrowWdkDsp+e/RSPTr/8ZqDIr6QvdN+26rsW75kETHVYfFJ9A7 Neeq1MBKW4xr3MT/F2kygzhKghRGeGbnllRZeA6THP0E8HIQ9cI8muR+wMfxTYC6 8aUGPxNnjnmqJKKy+WS+CBzy2gif6OLtw61AHFxBQgVkNkTTQPo1AJq9twIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFN4ARlMt7tJL9HDBX2IXn5tc7+leMB8GA1UdIwQY MBaAFNvmq44MRuhBtE0rnGsDu2X1Yh2xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMi1hcmpneEc2RUcwVFN1Y2F3TzdaZlZpSGJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS85NjQzNmMtZjZmYS00MGJhLWEyN2Mt ZmIxMDMwNjUxMDY3LzEvM2dCR1V5M3Uwa3YwY01GZlloZWZtMXp2NlY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS85NjQzNmMtZjZmYS00MGJhLWEyN2MtZmIxMDMwNjUxMDY3 LzEvMi1hcmpneEc2RUcwVFN1Y2F3TzdaZlZpSGJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg/KgA3g MA0GCSqGSIb3DQEBCwUAA4IBAQAUOFZAIsgeLxfh2Tak819MN6U+UtCiAzE65Wsp AC6frRmVzFlp1LELpTnwiy1kcKjdqDN2K0qn3FmwU8I0igvWNl3BpGcpK+g8DFji aZaxVCk7gR0JsqNsfyudwF0y/8DNaA5zr+EOC4NZqiQMC3cVZmwAFZgSQCzgCju0 KxXwlfIOz/ZjmQnNsrPeAuX/JW8pL00AL5ow6oCQ64m8s6Wq/sgNXev2NmYbXo3o NuJRWf0hD1EwzSwgZlcgL0Pc3BC5wOkW2UPaVv43PAlDG891tQQanJiLJIFi48ge BW6qS22pgfDtKNghZhKPu1a750eNxlCzsu16DPn0CBpY9ZFO -----END CERTIFICATE-----Generated at Wed Jan 21 01:09:26 2026 by rpki-client