This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/lxiAgfluoVaNRQVi4iLsO1-qGug.roa File: lxiAgfluoVaNRQVi4iLsO1-qGug.roa (raw, json) Hash identifier: oZ2uHGzF3a+GhzLpFCrGatkEqX80eZc8lpHPq5xBtlA= Subject key identifier: 97:18:80:81:F9:6E:A1:56:8D:45:05:62:E2:22:EC:3B:5F:AA:1A:E8 Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6 Certificate serial: 019B79ED4421F41EA13639EA6F4C23843FC9 Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/lxiAgfluoVaNRQVi4iLsO1-qGug.roa Signing time: Thu 01 Jan 2026 14:19:10 +0000 ROA not before: Thu 01 Jan 2026 14:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7480 IP address blocks: 2a0f:607:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.mft rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:44:21:f4:1e:a1:36:39:ea:6f:4c:23:84:3f:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6 Validity Not Before: Jan 1 14:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=97188081f96ea1568d450562e222ec3b5faa1ae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:60:b4:23:ad:0c:e1:6d:02:50:24:54:93:e2: b6:00:d8:c1:ce:f4:69:f1:98:e4:f2:fe:4e:62:94: a8:df:50:ee:28:1f:48:a4:3e:6e:7b:cc:66:a8:a0: b1:73:f2:b5:83:35:ae:6e:fe:2f:dd:5c:1c:7c:7d: 37:ce:36:c1:e3:70:28:f4:8b:90:73:6c:37:08:73: fd:a4:1d:5f:8a:c9:12:44:23:c5:94:c2:1f:b9:6e: d1:88:57:19:5b:0f:d1:9b:29:78:40:97:c4:f5:b7: 67:d7:ae:74:1b:5b:32:7a:ab:54:67:0a:8f:2f:cc: 0a:b7:cb:4b:85:61:3d:cf:20:38:3f:7b:6a:c5:bc: c6:f3:6a:59:c1:2a:12:58:27:f8:3b:6a:fa:d8:67: c2:ad:b0:f9:df:27:59:41:16:88:3f:85:ff:6b:c7: 12:f9:4c:33:79:8b:1b:99:7f:7f:8c:82:3f:f1:7b: a2:69:5f:56:4a:0c:5a:a4:5e:49:f6:ac:24:20:7e: 97:6e:2c:9d:59:2d:47:21:35:46:76:bf:2b:bc:b8: 1d:a5:12:c0:56:35:18:eb:94:94:86:11:15:f4:be: 77:bc:7b:ce:57:5d:fa:d9:77:19:6f:21:69:3e:3e: 00:a3:99:60:d0:e8:26:d9:89:c7:87:0a:98:99:95: 2c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:18:80:81:F9:6E:A1:56:8D:45:05:62:E2:22:EC:3B:5F:AA:1A:E8 X509v3 Authority Key Identifier: keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/lxiAgfluoVaNRQVi4iLsO1-qGug.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:607:1000::/40 Signature Algorithm: sha256WithRSAEncryption 73:c4:56:01:54:60:0a:a2:8b:2f:76:51:2d:5b:6c:da:06:11: a7:df:bb:84:23:bc:9f:4c:11:b9:33:e8:8f:1a:a6:0b:06:a2: 5b:29:5a:78:e3:ae:cf:a5:1c:76:aa:2c:7d:12:4c:0d:a3:a6: 99:6e:78:4e:4e:e5:14:4e:bf:b8:57:d4:4e:87:82:b6:20:6d: e1:2c:9a:a7:1c:d1:d2:01:4f:4d:82:25:2d:57:b0:d1:af:52: bc:30:1b:a7:b0:13:0d:fc:08:ca:d5:a3:00:86:72:5c:33:bc: 6d:54:4e:8a:ed:2c:9c:cd:2b:33:a7:cc:57:35:f6:2a:80:22: 36:42:8d:ce:1c:4d:76:b7:67:1b:a2:e1:39:bf:03:5b:fb:9c: d2:72:28:48:2c:73:7c:1a:65:16:ab:63:60:a1:a6:21:e4:a8: c9:18:8e:f4:5b:da:5c:73:81:81:db:e3:3e:dd:a7:8c:b9:65: 73:8a:7f:14:1b:d5:dc:31:3e:66:8f:fd:3c:00:93:b9:c5:a9: 44:d5:b5:e3:62:86:09:8e:40:ef:b6:82:37:c4:40:37:7e:ae: 23:43:c8:b6:41:12:b3:d3:1e:11:19:94:d2:6f:90:21:21:d7: 96:f2:bd:c1:a9:96:0e:7f:82:2a:70:b0:48:8e:b1:e4:74:a2: 1a:39:6d:09 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt57UQh9B6hNjnqb0wjhD/JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjMjFiOTI1YjRjNGJjYzMwZjc3YzljNDFiYThkMDQwYWM5 NWRmYzYwHhcNMjYwMTAxMTQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NzE4ODA4MWY5NmVhMTU2OGQ0NTA1NjJlMjIyZWMzYjVmYWExYWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWC0I60M4W0CUCRUk+K2ANjBzvRp 8Zjk8v5OYpSo31DuKB9IpD5ue8xmqKCxc/K1gzWubv4v3VwcfH03zjbB43Ao9IuQ c2w3CHP9pB1fiskSRCPFlMIfuW7RiFcZWw/Rmyl4QJfE9bdn1650G1syeqtUZwqP L8wKt8tLhWE9zyA4P3tqxbzG82pZwSoSWCf4O2r62GfCrbD53ydZQRaIP4X/a8cS +UwzeYsbmX9/jII/8XuiaV9WSgxapF5J9qwkIH6XbiydWS1HITVGdr8rvLgdpRLA VjUY65SUhhEV9L53vHvOV1362XcZbyFpPj4Ao5lg0Ogm2YnHhwqYmZUsqwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFJcYgIH5bqFWjUUFYuIi7DtfqhroMB8GA1UdIwQY MBaAFAwhuSW0xLzDD3fJxBuo0ECsld/GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRENHNUpiVEV2TU1QZDhuRUc2alFRS3lWMzhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jMGJkNjctZjdkZC00Y2UyLWFiN2Ut YTM0NzU2NDE1OGY4LzEvbHhpQWdmbHVvVmFOUlFWaTRpTHNPMS1xR3VnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9jMGJkNjctZjdkZC00Y2UyLWFiN2UtYTM0NzU2NDE1OGY4 LzEvRENHNUpiVEV2TU1QZDhuRUc2alFRS3lWMzhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKg8GBxAw DQYJKoZIhvcNAQELBQADggEBAHPEVgFUYAqiiy92US1bbNoGEaffu4QjvJ9MEbkz 6I8apgsGolspWnjjrs+lHHaqLH0STA2jpplueE5O5RROv7hX1E6HgrYgbeEsmqcc 0dIBT02CJS1XsNGvUrwwG6ewEw38CMrVowCGclwzvG1UTortLJzNKzOnzFc19iqA IjZCjc4cTXa3Zxui4Tm/A1v7nNJyKEgsc3waZRarY2ChpiHkqMkYjvRb2lxzgYHb 4z7dp4y5ZXOKfxQb1dwxPmaP/TwAk7nFqUTVteNihgmOQO+2gjfEQDd+riNDyLZB ErPTHhEZlNJvkCEh15byvcGplg5/gipwsEiOseR0oho5bQk= -----END CERTIFICATE-----Generated at Thu Jan 8 00:39:54 2026 by rpki-client