This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/dbe923-aaef-4912-843f-a4efc43a0478/1/tG0LVlaf72tjaFcLZI694UkMyBM.roa File: tG0LVlaf72tjaFcLZI694UkMyBM.roa (raw, json) Hash identifier: TqiU8MWJoU3H6JgdgSsoTmNJ+nJJZVq6ZzlSY2+KtJ8= Subject key identifier: B4:6D:0B:56:56:9F:EF:6B:63:68:57:0B:64:8E:BD:E1:49:0C:C8:13 Certificate issuer: /CN=00b4fe4394e33fc22ac5cbb545f9cd1094087567 Certificate serial: 019B7BA4E52C2CEB27BF1261CD500298CBE7 Authority key identifier: 00:B4:FE:43:94:E3:3F:C2:2A:C5:CB:B5:45:F9:CD:10:94:08:75:67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALT-Q5TjP8Iqxcu1RfnNEJQIdWc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/dbe923-aaef-4912-843f-a4efc43a0478/1/tG0LVlaf72tjaFcLZI694UkMyBM.roa Signing time: Thu 01 Jan 2026 22:19:22 +0000 ROA not before: Thu 01 Jan 2026 22:19:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206155 IP address blocks: 2001:678:3cc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/dbe923-aaef-4912-843f-a4efc43a0478/1/ALT-Q5TjP8Iqxcu1RfnNEJQIdWc.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/dbe923-aaef-4912-843f-a4efc43a0478/1/ALT-Q5TjP8Iqxcu1RfnNEJQIdWc.mft rsync://rpki.ripe.net/repository/DEFAULT/ALT-Q5TjP8Iqxcu1RfnNEJQIdWc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:e5:2c:2c:eb:27:bf:12:61:cd:50:02:98:cb:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00b4fe4394e33fc22ac5cbb545f9cd1094087567 Validity Not Before: Jan 1 22:19:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b46d0b56569fef6b6368570b648ebde1490cc813 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5e:11:cf:ec:6b:6c:f6:28:b7:b9:fa:48:c7: 9f:a8:1e:6e:d0:d6:07:43:d1:28:83:88:06:13:e6: a4:ff:58:d7:c5:78:77:31:02:31:19:a4:69:31:19: 85:20:a8:ea:2e:c8:ad:9f:fa:af:12:52:79:6a:8e: 4b:26:94:4b:72:49:d7:99:9a:9a:2f:24:07:43:2e: b7:9c:6f:23:20:bd:21:f3:49:b2:99:c4:e3:ff:27: 82:88:7a:55:3e:5f:3e:9c:ee:56:76:97:4b:bc:c0: b7:19:b2:56:74:c9:9b:91:23:c4:36:f2:b7:bd:9e: 9c:8b:b7:98:70:b8:88:f7:05:0f:d8:6f:eb:b7:66: b8:8f:7c:d2:7a:78:4f:3d:ea:9e:3a:ad:ce:40:92: 39:c3:83:2b:06:26:0c:93:ba:bd:d5:a5:1b:cc:ed: 85:d0:7f:da:a4:7b:ff:41:a0:96:23:4e:0f:25:5b: eb:28:5b:4c:c1:b1:3a:5a:15:d6:23:89:99:e1:d2: c1:8a:34:03:00:17:c0:45:43:f0:7d:22:78:ea:9d: 3a:e0:8e:84:97:0f:f5:a8:6b:b3:7a:11:28:4d:5a: 8b:5b:10:9c:20:1f:ce:f7:7b:3c:b5:13:5c:d0:e2: 09:c5:34:71:8d:06:5b:36:03:1f:f6:e6:0e:02:37: 8d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:6D:0B:56:56:9F:EF:6B:63:68:57:0B:64:8E:BD:E1:49:0C:C8:13 X509v3 Authority Key Identifier: keyid:00:B4:FE:43:94:E3:3F:C2:2A:C5:CB:B5:45:F9:CD:10:94:08:75:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALT-Q5TjP8Iqxcu1RfnNEJQIdWc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/dbe923-aaef-4912-843f-a4efc43a0478/1/tG0LVlaf72tjaFcLZI694UkMyBM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/dbe923-aaef-4912-843f-a4efc43a0478/1/ALT-Q5TjP8Iqxcu1RfnNEJQIdWc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:3cc::/48 Signature Algorithm: sha256WithRSAEncryption 85:e0:f3:f0:51:9c:ee:18:87:67:32:3e:27:ad:20:06:62:6c: 29:a6:8c:98:8e:3f:77:20:97:82:ff:0a:6c:2c:8a:41:c2:b4: c4:54:04:38:eb:1f:6d:33:61:58:c7:c9:c8:d0:fb:25:13:84: 15:ea:fc:8a:22:b9:3f:4a:31:16:7b:30:8c:cb:49:25:df:21: 9c:25:19:66:37:25:13:4b:d2:a6:54:68:4b:91:1c:29:79:b8: 21:fe:33:2c:64:e9:a0:37:4c:e3:72:5d:c1:62:08:90:7b:32: 81:de:61:b3:bd:84:1e:74:0b:24:fa:20:bf:42:6c:bb:a3:f8: d6:38:a7:bf:a0:42:f8:cf:96:94:cf:cf:d6:e4:6c:6f:7a:dc: ac:bf:7a:66:ee:ac:a2:1b:67:44:8f:7e:99:b9:95:42:48:ad: a7:0a:45:0f:e6:0d:e6:48:ad:5d:36:53:50:7b:dd:ab:40:2d: d8:a6:27:d1:2c:83:3c:d5:02:7f:0b:e7:2c:76:17:7d:a5:ad: 40:14:70:21:de:8a:bd:63:f8:d8:73:b7:1a:a9:b8:78:e0:27: fd:70:90:e2:9f:63:04:c1:50:7b:3e:52:e7:d0:71:f9:ac:c0: e5:35:8e:18:c1:6e:78:f2:c3:3b:32:ac:9d:04:b5:46:b1:12: 68:d3:81:f0 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7pOUsLOsnvxJhzVACmMvnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwYjRmZTQzOTRlMzNmYzIyYWM1Y2JiNTQ1ZjljZDEwOTQw ODc1NjcwHhcNMjYwMTAxMjIxOTIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDZkMGI1NjU2OWZlZjZiNjM2ODU3MGI2NDhlYmRlMTQ5MGNjODEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw14Rz+xrbPYot7n6SMefqB5u0NYH Q9Eog4gGE+ak/1jXxXh3MQIxGaRpMRmFIKjqLsitn/qvElJ5ao5LJpRLcknXmZqa LyQHQy63nG8jIL0h80mymcTj/yeCiHpVPl8+nO5WdpdLvMC3GbJWdMmbkSPENvK3 vZ6ci7eYcLiI9wUP2G/rt2a4j3zSenhPPeqeOq3OQJI5w4MrBiYMk7q91aUbzO2F 0H/apHv/QaCWI04PJVvrKFtMwbE6WhXWI4mZ4dLBijQDABfARUPwfSJ46p064I6E lw/1qGuzehEoTVqLWxCcIB/O93s8tRNc0OIJxTRxjQZbNgMf9uYOAjeNqQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLRtC1ZWn+9rY2hXC2SOveFJDMgTMB8GA1UdIwQY MBaAFAC0/kOU4z/CKsXLtUX5zRCUCHVnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUxULVE1VGpQOElxeGN1MVJmbk5FSlFJZFdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9kYmU5MjMtYWFlZi00OTEyLTg0M2Yt YTRlZmM0M2EwNDc4LzEvdEcwTFZsYWY3MnRqYUZjTFpJNjk0VWtNeUJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi9kYmU5MjMtYWFlZi00OTEyLTg0M2YtYTRlZmM0M2EwNDc4 LzEvQUxULVE1VGpQOElxeGN1MVJmbk5FSlFJZFdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAPM MA0GCSqGSIb3DQEBCwUAA4IBAQCF4PPwUZzuGIdnMj4nrSAGYmwppoyYjj93IJeC /wpsLIpBwrTEVAQ46x9tM2FYx8nI0PslE4QV6vyKIrk/SjEWezCMy0kl3yGcJRlm NyUTS9KmVGhLkRwpebgh/jMsZOmgN0zjcl3BYgiQezKB3mGzvYQedAsk+iC/Qmy7 o/jWOKe/oEL4z5aUz8/W5Gxvetysv3pm7qyiG2dEj36ZuZVCSK2nCkUP5g3mSK1d NlNQe92rQC3YpifRLIM81QJ/C+csdhd9pa1AFHAh3oq9Y/jYc7caqbh44Cf9cJDi n2MEwVB7PlLn0HH5rMDlNY4YwW548sM7MqydBLVGsRJo04Hw -----END CERTIFICATE-----Generated at Tue Feb 10 00:14:39 2026 by rpki-client