This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/013c99-7d7a-482b-bb51-eb4e13be506a/1/guL1UhYmKCRQakOp74_jQ7ZHKiA.roa File: guL1UhYmKCRQakOp74_jQ7ZHKiA.roa (raw, json) Hash identifier: jSpnFus5fN8uZMH2l9dvvnq1nha+27Kc+Yx+n1wweXA= Subject key identifier: 82:E2:F5:52:16:26:28:24:50:6A:43:A9:EF:8F:E3:43:B6:47:2A:20 Certificate issuer: /CN=9416d8e02b5a1a75859f64a05c5a8d77c84c50f1 Certificate serial: 019B7D5C5A80BA463258CE6E08B7864F255B Authority key identifier: 94:16:D8:E0:2B:5A:1A:75:85:9F:64:A0:5C:5A:8D:77:C8:4C:50:F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBbY4CtaGnWFn2SgXFqNd8hMUPE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/013c99-7d7a-482b-bb51-eb4e13be506a/1/guL1UhYmKCRQakOp74_jQ7ZHKiA.roa Signing time: Fri 02 Jan 2026 06:19:23 +0000 ROA not before: Fri 02 Jan 2026 06:19:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 2a10:6640:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/013c99-7d7a-482b-bb51-eb4e13be506a/1/lBbY4CtaGnWFn2SgXFqNd8hMUPE.crl rsync://rpki.ripe.net/repository/DEFAULT/df/013c99-7d7a-482b-bb51-eb4e13be506a/1/lBbY4CtaGnWFn2SgXFqNd8hMUPE.mft rsync://rpki.ripe.net/repository/DEFAULT/lBbY4CtaGnWFn2SgXFqNd8hMUPE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:5a:80:ba:46:32:58:ce:6e:08:b7:86:4f:25:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9416d8e02b5a1a75859f64a05c5a8d77c84c50f1 Validity Not Before: Jan 2 06:19:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=82e2f55216262824506a43a9ef8fe343b6472a20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:17:e6:11:ae:ec:58:fd:ff:0d:98:02:ad:cb: d7:49:fd:2b:b8:d5:08:c4:dd:44:bf:c3:61:6a:2a: 0d:d0:3e:c6:52:df:5f:86:84:2b:ba:59:c5:ac:56: 3d:16:60:5e:6c:2e:0a:06:de:34:91:34:15:9d:cf: 02:59:3f:54:7f:00:e3:24:5e:86:d6:6f:cf:c7:ae: 90:6b:0e:0b:66:a9:30:d2:03:b0:42:b5:b2:26:f9: 72:95:95:ae:3b:0e:9f:b9:6c:4f:2c:cb:b2:98:91: 5d:1b:ce:f2:8b:c0:0d:06:ba:67:2e:fe:61:3e:f6: 23:c9:23:c4:16:70:4d:a5:5f:20:6b:ba:e2:52:7a: 7a:65:b1:80:17:25:2f:0c:47:4f:ac:db:47:30:01: 68:81:bb:94:bc:cf:94:1d:b4:e5:0e:d6:9d:85:8b: 40:1e:a1:ac:a1:2a:bd:50:b3:1c:de:9a:41:f1:81: c9:d0:f2:2d:05:24:a4:e3:3e:80:73:5f:11:c2:d1: b1:d6:d1:84:54:b7:50:53:f8:8c:25:3a:59:1e:c8: a2:2d:96:4c:b2:61:6b:ad:0a:cf:19:72:88:3f:72: 48:c3:60:59:89:96:aa:55:1d:b0:86:49:36:46:e0: 63:15:c5:7e:36:1e:ca:29:20:7f:89:f9:52:9d:f1: f7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E2:F5:52:16:26:28:24:50:6A:43:A9:EF:8F:E3:43:B6:47:2A:20 X509v3 Authority Key Identifier: keyid:94:16:D8:E0:2B:5A:1A:75:85:9F:64:A0:5C:5A:8D:77:C8:4C:50:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBbY4CtaGnWFn2SgXFqNd8hMUPE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/013c99-7d7a-482b-bb51-eb4e13be506a/1/guL1UhYmKCRQakOp74_jQ7ZHKiA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/013c99-7d7a-482b-bb51-eb4e13be506a/1/lBbY4CtaGnWFn2SgXFqNd8hMUPE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:6640:1::/48 Signature Algorithm: sha256WithRSAEncryption 47:fb:a7:6a:6a:00:91:c0:8f:38:db:49:72:af:58:ee:98:03: 79:a7:d7:92:68:09:fe:4d:9f:e0:34:30:35:6d:3c:69:fb:ad: 44:32:f4:b5:da:66:b8:1f:cd:ff:bc:f2:ee:6c:75:68:82:a3: 5c:4f:58:70:26:90:c0:79:5f:3d:b1:0f:97:41:03:fb:7d:a9: d1:42:ce:cf:20:c9:a5:41:8a:0b:8d:bc:e4:66:1a:49:d8:76: d1:8b:c3:af:ef:32:a7:72:42:db:58:4d:86:ea:26:c8:0a:bb: 38:bd:23:e0:cb:85:38:1c:5b:a4:cc:88:ea:dc:11:1f:51:c9: 29:54:a7:5b:29:01:51:07:47:2d:a8:0f:7a:c7:52:ee:e7:8d: b1:ea:c6:54:40:21:be:5c:8f:5b:be:8c:ad:80:d9:40:24:6c: 9b:57:49:5a:34:b9:3b:62:e5:96:fe:a5:32:2d:db:0d:3d:10: 9c:1b:29:e9:94:12:6f:ad:7a:9b:48:e7:0e:ed:76:e5:88:5c: 2e:89:d6:08:da:7b:40:b2:24:7f:19:a5:86:c0:07:d0:85:ac: f0:0d:a7:72:b7:e6:70:69:9f:4a:67:14:04:35:ba:7f:74:e0: 53:3e:a5:98:d7:fc:91:fb:c2:e1:a3:b5:08:73:6f:8a:ea:81: 4a:7e:eb:a1 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XFqAukYyWM5uCLeGTyVbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0MTZkOGUwMmI1YTFhNzU4NTlmNjRhMDVjNWE4ZDc3Yzg0 YzUwZjEwHhcNMjYwMTAyMDYxOTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MmUyZjU1MjE2MjYyODI0NTA2YTQzYTllZjhmZTM0M2I2NDcyYTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjRfmEa7sWP3/DZgCrcvXSf0ruNUI xN1Ev8NhaioN0D7GUt9fhoQrulnFrFY9FmBebC4KBt40kTQVnc8CWT9UfwDjJF6G 1m/Px66Qaw4LZqkw0gOwQrWyJvlylZWuOw6fuWxPLMuymJFdG87yi8ANBrpnLv5h PvYjySPEFnBNpV8ga7riUnp6ZbGAFyUvDEdPrNtHMAFogbuUvM+UHbTlDtadhYtA HqGsoSq9ULMc3ppB8YHJ0PItBSSk4z6Ac18RwtGx1tGEVLdQU/iMJTpZHsiiLZZM smFrrQrPGXKIP3JIw2BZiZaqVR2whkk2RuBjFcV+Nh7KKSB/iflSnfH3VQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFILi9VIWJigkUGpDqe+P40O2RyogMB8GA1UdIwQY MBaAFJQW2OArWhp1hZ9koFxajXfITFDxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEJiWTRDdGFHbldGbjJTZ1hGcU5kOGhNVVBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8wMTNjOTktN2Q3YS00ODJiLWJiNTEt ZWI0ZTEzYmU1MDZhLzEvZ3VMMVVoWW1LQ1JRYWtPcDc0X2pRN1pIS2lBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8wMTNjOTktN2Q3YS00ODJiLWJiNTEtZWI0ZTEzYmU1MDZh LzEvbEJiWTRDdGFHbldGbjJTZ1hGcU5kOGhNVVBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhBmQAAB MA0GCSqGSIb3DQEBCwUAA4IBAQBH+6dqagCRwI8420lyr1jumAN5p9eSaAn+TZ/g NDA1bTxp+61EMvS12ma4H83/vPLubHVogqNcT1hwJpDAeV89sQ+XQQP7fanRQs7P IMmlQYoLjbzkZhpJ2HbRi8Ov7zKnckLbWE2G6ibICrs4vSPgy4U4HFukzIjq3BEf UckpVKdbKQFRB0ctqA96x1Lu542x6sZUQCG+XI9bvoytgNlAJGybV0laNLk7YuWW /qUyLdsNPRCcGynplBJvrXqbSOcO7XbliFwuidYI2ntAsiR/GaWGwAfQhazwDady t+ZwaZ9KZxQENbp/dOBTPqWY1/yR+8Lho7UIc2+K6oFKfuuh -----END CERTIFICATE-----Generated at Fri Jan 2 09:27:23 2026 by rpki-client