This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/35f9c4-7b96-4fcb-bca2-9dd3d21907a3/1/TtRKH9knUsTtGw8i9ETNhV45f1A.roa File: TtRKH9knUsTtGw8i9ETNhV45f1A.roa (raw, json) Hash identifier: /FXsS0uTBoFuVqv1ofXkL6jk4IQYFBWtqa9QOl+TE6U= Subject key identifier: 4E:D4:4A:1F:D9:27:52:C4:ED:1B:0F:22:F4:44:CD:85:5E:39:7F:50 Certificate issuer: /CN=176eb71bd55576f45763badeb676ed59990d396a Certificate serial: 019B783541D2A8C206EDAB7F3758701C20FD Authority key identifier: 17:6E:B7:1B:D5:55:76:F4:57:63:BA:DE:B6:76:ED:59:99:0D:39:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F263G9VVdvRXY7retnbtWZkNOWo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/35f9c4-7b96-4fcb-bca2-9dd3d21907a3/1/TtRKH9knUsTtGw8i9ETNhV45f1A.roa Signing time: Thu 01 Jan 2026 06:18:34 +0000 ROA not before: Thu 01 Jan 2026 06:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206020 IP address blocks: 2001:67c:9b4::/48 maxlen: 48 2001:67c:9b8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/35f9c4-7b96-4fcb-bca2-9dd3d21907a3/1/F263G9VVdvRXY7retnbtWZkNOWo.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/35f9c4-7b96-4fcb-bca2-9dd3d21907a3/1/F263G9VVdvRXY7retnbtWZkNOWo.mft rsync://rpki.ripe.net/repository/DEFAULT/F263G9VVdvRXY7retnbtWZkNOWo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:41:d2:a8:c2:06:ed:ab:7f:37:58:70:1c:20:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=176eb71bd55576f45763badeb676ed59990d396a Validity Not Before: Jan 1 06:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4ed44a1fd92752c4ed1b0f22f444cd855e397f50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:79:45:b8:67:a6:18:41:e9:23:85:a8:f3:0f: b5:90:9d:88:7b:cb:59:f6:50:aa:39:55:ce:2c:27: d0:27:80:82:67:63:af:77:6b:05:dd:e5:06:55:45: aa:82:03:03:05:5a:05:3d:e2:72:d9:72:07:b7:1d: b2:1b:e3:41:7c:71:dc:16:a2:f9:55:2f:8c:a6:8d: 76:1e:9b:4b:aa:e3:e1:d3:93:29:de:bf:d0:fa:fc: cb:81:32:25:4c:7b:22:86:fe:31:81:d7:4e:2e:e9: 01:c4:9d:8c:26:5d:53:35:15:d3:47:f5:a7:9f:df: ef:63:a2:ee:19:2a:e1:17:6d:37:2a:a8:6f:21:0a: 70:eb:19:4a:97:9b:d9:21:b0:43:42:78:10:d5:5d: 1a:e6:1f:f6:23:4a:70:ff:ba:70:16:78:bf:01:6b: a9:da:d7:9c:5e:57:99:af:e0:fb:d2:30:c4:e1:e4: 24:23:29:9b:61:11:da:0f:27:3c:8c:70:6d:44:e3: 38:9a:fe:0f:de:ed:97:6e:fe:a0:1a:74:af:9e:e0: 7a:02:0e:93:c8:bb:68:dc:e2:19:74:b4:f3:e7:6b: bd:dc:e3:18:bc:cb:c6:4c:85:4c:ac:5a:89:4f:bb: e3:84:0e:21:8f:23:be:be:07:6e:ae:46:e3:88:81: 21:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D4:4A:1F:D9:27:52:C4:ED:1B:0F:22:F4:44:CD:85:5E:39:7F:50 X509v3 Authority Key Identifier: keyid:17:6E:B7:1B:D5:55:76:F4:57:63:BA:DE:B6:76:ED:59:99:0D:39:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F263G9VVdvRXY7retnbtWZkNOWo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/35f9c4-7b96-4fcb-bca2-9dd3d21907a3/1/TtRKH9knUsTtGw8i9ETNhV45f1A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/35f9c4-7b96-4fcb-bca2-9dd3d21907a3/1/F263G9VVdvRXY7retnbtWZkNOWo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:9b4::/48 2001:67c:9b8::/48 Signature Algorithm: sha256WithRSAEncryption 0b:e2:b9:01:a1:84:c1:9c:15:4b:b2:da:4b:05:58:fb:53:6b: ab:92:5c:9f:5c:18:bc:b3:80:aa:aa:bf:ef:fb:65:13:4d:25: 97:7c:11:c7:87:77:5d:b2:df:5f:10:2d:56:29:d8:79:bf:3e: f1:05:b4:10:1b:e5:1c:7d:47:6f:cd:77:65:b1:fd:c3:b7:ed: 46:b6:72:4c:d7:73:74:58:dc:33:9e:23:53:d9:3b:dd:03:0c: 59:fe:56:9f:af:cf:c9:e9:5d:b4:44:88:98:29:4a:47:38:b6: dd:24:f7:18:93:b5:38:7c:b3:af:a6:88:43:38:e0:63:ec:41: 60:9b:73:83:68:37:f2:5a:57:01:0a:cc:8e:5c:d7:7a:f4:05: d5:c7:90:a0:d7:e4:30:5d:ea:dc:84:e2:1c:3f:11:f7:24:3c: 81:d5:6b:cf:55:0d:7d:6e:b2:7f:36:15:07:f4:ed:07:9c:22: 5d:91:2b:b8:3f:67:ee:98:28:f7:4a:9f:36:fd:0f:5e:7b:44: 43:ba:6d:33:a5:65:04:b8:5f:5b:89:b0:f2:dc:e6:81:b0:26: 81:27:80:e3:b7:f1:0d:8f:39:12:f4:66:fd:fc:fe:49:5d:8e: 20:39:b0:39:1f:5e:3f:be:1f:5c:96:4d:51:5f:6a:6c:8f:92: 47:6d:08:14 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt4NUHSqMIG7at/N1hwHCD9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3NmViNzFiZDU1NTc2ZjQ1NzYzYmFkZWI2NzZlZDU5OTkw ZDM5NmEwHhcNMjYwMTAxMDYxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZWQ0NGExZmQ5Mjc1MmM0ZWQxYjBmMjJmNDQ0Y2Q4NTVlMzk3ZjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArnlFuGemGEHpI4Wo8w+1kJ2Ie8tZ 9lCqOVXOLCfQJ4CCZ2Ovd2sF3eUGVUWqggMDBVoFPeJy2XIHtx2yG+NBfHHcFqL5 VS+Mpo12HptLquPh05Mp3r/Q+vzLgTIlTHsihv4xgddOLukBxJ2MJl1TNRXTR/Wn n9/vY6LuGSrhF203KqhvIQpw6xlKl5vZIbBDQngQ1V0a5h/2I0pw/7pwFni/AWup 2tecXleZr+D70jDE4eQkIymbYRHaDyc8jHBtROM4mv4P3u2Xbv6gGnSvnuB6Ag6T yLto3OIZdLTz52u93OMYvMvGTIVMrFqJT7vjhA4hjyO+vgdurkbjiIEhDwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFE7USh/ZJ1LE7RsPIvREzYVeOX9QMB8GA1UdIwQY MBaAFBdutxvVVXb0V2O63rZ27VmZDTlqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjI2M0c5VlZkdlJYWTdyZXRuYnRXWmtOT1dvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi8zNWY5YzQtN2I5Ni00ZmNiLWJjYTIt OWRkM2QyMTkwN2EzLzEvVHRSS0g5a25Vc1R0R3c4aTlFVE5oVjQ1ZjFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi8zNWY5YzQtN2I5Ni00ZmNiLWJjYTItOWRkM2QyMTkwN2Ez LzEvRjI2M0c5VlZkdlJYWTdyZXRuYnRXWmtOT1dvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAIAEGfAm0 AwcAIAEGfAm4MA0GCSqGSIb3DQEBCwUAA4IBAQAL4rkBoYTBnBVLstpLBVj7U2ur klyfXBi8s4Cqqr/v+2UTTSWXfBHHh3ddst9fEC1WKdh5vz7xBbQQG+UcfUdvzXdl sf3Dt+1GtnJM13N0WNwzniNT2TvdAwxZ/lafr8/J6V20RIiYKUpHOLbdJPcYk7U4 fLOvpohDOOBj7EFgm3ODaDfyWlcBCsyOXNd69AXVx5Cg1+QwXerchOIcPxH3JDyB 1WvPVQ19brJ/NhUH9O0HnCJdkSu4P2fumCj3Sp82/Q9ee0RDum0zpWUEuF9bibDy 3OaBsCaBJ4Djt/ENjzkS9Gb9/P5JXY4gObA5H14/vh9clk1RX2psj5JHbQgU -----END CERTIFICATE-----Generated at Mon Feb 9 23:55:51 2026 by rpki-client