This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/38zDD4es76pMYfxWO9Kebz-WjWM.roa File: 38zDD4es76pMYfxWO9Kebz-WjWM.roa (raw, json) Hash identifier: XhOYbvn2vBE0qAcPQlydDXoWbTL6inMfuQq3MWi5org= Subject key identifier: DF:CC:C3:0F:87:AC:EF:AA:4C:61:FC:56:3B:D2:9E:6F:3F:96:8D:63 Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6 Certificate serial: 019B79ED4D9545A2BB31F53A8B75B7670AB4 Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/38zDD4es76pMYfxWO9Kebz-WjWM.roa Signing time: Thu 01 Jan 2026 14:19:13 +0000 ROA not before: Thu 01 Jan 2026 14:19:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212057 IP address blocks: 2a0f:607:1056::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.mft rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 14:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:4d:95:45:a2:bb:31:f5:3a:8b:75:b7:67:0a:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6 Validity Not Before: Jan 1 14:19:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dfccc30f87acefaa4c61fc563bd29e6f3f968d63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7f:3e:a6:3b:ec:0a:62:23:11:ad:a8:25:1b: 34:7b:63:1e:fc:50:68:27:2d:0a:ba:fd:59:33:b8: db:b9:b8:47:fe:83:cc:8c:0d:a1:76:ac:39:16:7a: 86:a2:4a:96:6f:d5:ec:bd:2a:c0:7d:cc:a3:39:40: 74:c7:52:38:06:55:c8:6e:29:10:be:18:5c:4b:26: 07:39:62:e7:8d:fe:94:aa:e2:84:2c:18:51:50:04: 9e:91:92:cb:5d:84:88:9f:d5:05:45:66:f9:ea:7d: 1d:a4:7a:b1:96:bd:93:0f:d2:04:48:c1:af:1d:f8: 05:4d:05:2a:73:e5:f0:ac:5d:3f:79:a2:6c:14:04: 8f:90:f4:2c:4b:43:51:c2:60:be:7a:58:f0:4c:f0: 62:cc:a8:08:0a:70:28:c9:91:97:83:27:27:36:0b: 5c:a6:48:cb:36:dc:1f:da:5e:58:83:09:a2:e0:61: b2:2e:d0:9b:b5:1d:6f:2a:a4:35:53:10:04:6d:bf: 33:7c:1c:53:da:4e:24:ad:28:00:af:48:ad:20:d6: db:91:b9:7d:87:94:da:89:3f:87:72:b2:a6:77:9b: 97:cb:b0:6a:91:57:4f:b4:ad:80:41:66:aa:1c:9d: 58:09:e8:ed:a1:4a:cc:38:17:17:bb:57:f4:d6:7d: 39:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:CC:C3:0F:87:AC:EF:AA:4C:61:FC:56:3B:D2:9E:6F:3F:96:8D:63 X509v3 Authority Key Identifier: keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/38zDD4es76pMYfxWO9Kebz-WjWM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:607:1056::/48 Signature Algorithm: sha256WithRSAEncryption b6:2b:31:7f:a9:29:f1:8a:2f:a5:05:9d:36:16:d1:c5:af:df: df:ea:05:01:19:ce:32:a3:65:56:9d:db:3a:06:64:fe:80:1b: 49:72:79:f9:01:41:72:28:4a:4e:d4:a4:fc:80:ab:24:3e:bc: a9:4e:7e:ee:4e:03:ed:f4:ad:77:3c:f7:8c:e3:2b:46:fa:c5: a0:ef:0f:32:7c:fd:9e:de:b5:e1:29:a4:5f:38:6f:73:a9:9f: b2:b9:3a:50:3d:eb:ce:ca:95:20:18:e9:66:40:1d:b3:90:5f: 31:01:dc:f4:f9:c2:89:7a:55:e6:6c:51:2d:4f:dd:81:9b:9f: ae:a1:61:09:02:d3:32:06:4a:a1:5a:e2:32:87:7e:b9:bc:37: aa:d0:7e:3c:d1:0b:bf:3c:8b:b2:99:8d:ea:03:c5:8e:9d:62: 8f:08:47:18:0e:f9:19:3a:89:84:66:f8:60:40:e0:2e:0d:e0: 93:9c:d0:dc:f2:78:cf:72:fd:19:5f:d4:9c:b2:68:f1:3e:11: 5b:52:b4:a9:84:82:83:3e:d4:99:d8:cd:e3:26:58:e7:cd:2d: d6:83:f9:da:1c:50:f0:57:cd:d6:3e:ec:32:d3:05:ec:a8:87: a8:36:31:10:2c:4b:c8:da:1e:65:6b:79:eb:36:1e:04:e0:41: 19:9d:6a:4c -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt57U2VRaK7MfU6i3W3Zwq0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjMjFiOTI1YjRjNGJjYzMwZjc3YzljNDFiYThkMDQwYWM5 NWRmYzYwHhcNMjYwMTAxMTQxOTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZmNjYzMwZjg3YWNlZmFhNGM2MWZjNTYzYmQyOWU2ZjNmOTY4ZDYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwX8+pjvsCmIjEa2oJRs0e2Me/FBo Jy0Kuv1ZM7jbubhH/oPMjA2hdqw5FnqGokqWb9XsvSrAfcyjOUB0x1I4BlXIbikQ vhhcSyYHOWLnjf6UquKELBhRUASekZLLXYSIn9UFRWb56n0dpHqxlr2TD9IESMGv HfgFTQUqc+XwrF0/eaJsFASPkPQsS0NRwmC+eljwTPBizKgICnAoyZGXgycnNgtc pkjLNtwf2l5Ygwmi4GGyLtCbtR1vKqQ1UxAEbb8zfBxT2k4krSgAr0itINbbkbl9 h5TaiT+HcrKmd5uXy7BqkVdPtK2AQWaqHJ1YCejtoUrMOBcXu1f01n05AwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFN/Mww+HrO+qTGH8VjvSnm8/lo1jMB8GA1UdIwQY MBaAFAwhuSW0xLzDD3fJxBuo0ECsld/GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRENHNUpiVEV2TU1QZDhuRUc2alFRS3lWMzhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jMGJkNjctZjdkZC00Y2UyLWFiN2Ut YTM0NzU2NDE1OGY4LzEvMzh6REQ0ZXM3NnBNWWZ4V085S2Viei1XaldNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9jMGJkNjctZjdkZC00Y2UyLWFiN2UtYTM0NzU2NDE1OGY4 LzEvRENHNUpiVEV2TU1QZDhuRUc2alFRS3lWMzhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg8GBxBW MA0GCSqGSIb3DQEBCwUAA4IBAQC2KzF/qSnxii+lBZ02FtHFr9/f6gUBGc4yo2VW nds6BmT+gBtJcnn5AUFyKEpO1KT8gKskPrypTn7uTgPt9K13PPeM4ytG+sWg7w8y fP2e3rXhKaRfOG9zqZ+yuTpQPevOypUgGOlmQB2zkF8xAdz0+cKJelXmbFEtT92B m5+uoWEJAtMyBkqhWuIyh365vDeq0H480Qu/PIuymY3qA8WOnWKPCEcYDvkZOomE ZvhgQOAuDeCTnNDc8njPcv0ZX9ScsmjxPhFbUrSphIKDPtSZ2M3jJljnzS3Wg/na HFDwV83WPuwy0wXsqIeoNjEQLEvI2h5la3nrNh4E4EEZnWpM -----END CERTIFICATE-----Generated at Thu Jan 8 00:39:23 2026 by rpki-client