This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/ddac0d-3743-4cd2-a6a3-a1246c67d9de/1/sy-wPXvfKLWfZlxG6JFjMdz2jc4.roa File: sy-wPXvfKLWfZlxG6JFjMdz2jc4.roa (raw, json) Hash identifier: hlaNZxdKE60uOdHncJsjvUxLctHZFlI5jG9Xoxf9FL4= Subject key identifier: B3:2F:B0:3D:7B:DF:28:B5:9F:66:5C:46:E8:91:63:31:DC:F6:8D:CE Certificate issuer: /CN=1b1b4b5c2daaa6fc35071f438f968af6ff6ca4da Certificate serial: 019B7A5A9C0FB10444999232459F2C9DF12E Authority key identifier: 1B:1B:4B:5C:2D:AA:A6:FC:35:07:1F:43:8F:96:8A:F6:FF:6C:A4:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GxtLXC2qpvw1Bx9Dj5aK9v9spNo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/ddac0d-3743-4cd2-a6a3-a1246c67d9de/1/sy-wPXvfKLWfZlxG6JFjMdz2jc4.roa Signing time: Thu 01 Jan 2026 16:18:37 +0000 ROA not before: Thu 01 Jan 2026 16:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210577 IP address blocks: 2001:67c:13dc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/ddac0d-3743-4cd2-a6a3-a1246c67d9de/1/GxtLXC2qpvw1Bx9Dj5aK9v9spNo.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/ddac0d-3743-4cd2-a6a3-a1246c67d9de/1/GxtLXC2qpvw1Bx9Dj5aK9v9spNo.mft rsync://rpki.ripe.net/repository/DEFAULT/GxtLXC2qpvw1Bx9Dj5aK9v9spNo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:9c:0f:b1:04:44:99:92:32:45:9f:2c:9d:f1:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1b4b5c2daaa6fc35071f438f968af6ff6ca4da Validity Not Before: Jan 1 16:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b32fb03d7bdf28b59f665c46e8916331dcf68dce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c4:d1:89:b5:d4:7d:18:03:cc:9c:24:7f:c2: 13:96:eb:8c:fc:0f:01:fa:2e:9b:9b:03:5f:50:bb: e2:91:f8:23:fe:00:00:a1:0e:25:e7:72:43:7b:1b: 95:c4:78:47:34:1b:9f:8d:ba:1c:60:d7:97:a4:6f: 9d:14:c3:12:0d:58:98:af:b8:9a:f1:74:fd:c0:ad: e3:a7:c5:bc:4a:db:e5:54:df:76:82:2a:4c:e3:2c: 3d:5e:e6:05:21:40:7c:16:6f:0d:15:b5:b6:4b:eb: 13:d4:7f:79:7e:d2:bb:e4:b1:1d:b5:72:cb:0f:bf: b3:54:26:36:7b:ef:ed:08:60:bc:21:27:45:f6:eb: f7:98:03:a6:69:fa:35:88:9a:eb:b8:40:9e:54:fb: 12:4f:00:f3:00:60:93:5a:f1:7c:21:14:aa:5a:63: 8b:89:ca:81:c4:11:3b:bc:ef:e3:35:99:28:19:df: 20:17:a6:86:52:e7:90:84:6a:5b:3d:93:ed:b3:d6: 3f:d4:05:f2:f2:e4:dc:72:53:ff:98:c1:46:50:cc: 92:90:20:7c:17:3a:66:54:2b:2c:be:d3:2a:42:23: f1:59:07:35:5a:54:6f:68:7a:0b:c8:0f:b6:51:9b: 0a:7d:72:ad:fe:09:d3:19:06:13:56:eb:33:a6:95: 04:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:2F:B0:3D:7B:DF:28:B5:9F:66:5C:46:E8:91:63:31:DC:F6:8D:CE X509v3 Authority Key Identifier: keyid:1B:1B:4B:5C:2D:AA:A6:FC:35:07:1F:43:8F:96:8A:F6:FF:6C:A4:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GxtLXC2qpvw1Bx9Dj5aK9v9spNo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ddac0d-3743-4cd2-a6a3-a1246c67d9de/1/sy-wPXvfKLWfZlxG6JFjMdz2jc4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ddac0d-3743-4cd2-a6a3-a1246c67d9de/1/GxtLXC2qpvw1Bx9Dj5aK9v9spNo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:13dc::/48 Signature Algorithm: sha256WithRSAEncryption b1:fa:04:17:8a:ce:47:40:c2:15:85:0d:2a:42:ce:e9:9a:ed: 75:8c:ff:f1:d0:f0:e5:7b:dd:42:ae:2b:f0:c9:80:9d:2e:45: d4:1d:8e:32:6a:13:e5:7c:dd:96:ab:8f:2d:e9:1d:f8:c6:8e: 73:a2:67:ac:dd:a4:d3:57:90:d9:e8:ee:bb:15:96:28:26:a3: 66:87:c2:c5:46:8c:29:8f:68:ed:bc:b2:c1:ce:09:3b:e8:88: e4:cb:53:67:59:00:a1:20:b6:f1:a3:79:c2:3e:3f:31:4a:13: 16:42:ad:3b:c5:e8:d8:cf:30:24:7e:a6:32:e9:49:5d:30:24: 98:df:6f:38:6b:27:ed:86:ab:82:a2:a1:89:8f:55:4e:0f:f4: 38:18:0f:2d:b2:6e:b2:91:1b:30:11:6b:b3:6b:96:89:cd:04: 1b:08:21:fc:6b:86:9f:99:f2:b5:c8:32:3c:a3:60:07:cd:2f: b0:ff:20:e9:2b:e7:5b:4e:ec:8e:79:ea:41:21:e2:99:ab:5b: c6:f2:0e:39:b3:bb:14:3f:c7:24:4c:64:43:77:4c:67:42:31: 0d:0d:e1:37:66:04:27:ac:36:cf:86:38:88:41:5b:88:42:df: bd:b1:de:08:7f:8b:9e:d5:f7:9e:89:b3:56:6a:ba:6d:50:e6: 12:a3:19:72 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt6WpwPsQREmZIyRZ8snfEuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiMWI0YjVjMmRhYWE2ZmMzNTA3MWY0MzhmOTY4YWY2ZmY2 Y2E0ZGEwHhcNMjYwMTAxMTYxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMzJmYjAzZDdiZGYyOGI1OWY2NjVjNDZlODkxNjMzMWRjZjY4ZGNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMTRibXUfRgDzJwkf8ITluuM/A8B +i6bmwNfULvikfgj/gAAoQ4l53JDexuVxHhHNBufjbocYNeXpG+dFMMSDViYr7ia 8XT9wK3jp8W8StvlVN92gipM4yw9XuYFIUB8Fm8NFbW2S+sT1H95ftK75LEdtXLL D7+zVCY2e+/tCGC8ISdF9uv3mAOmafo1iJrruECeVPsSTwDzAGCTWvF8IRSqWmOL icqBxBE7vO/jNZkoGd8gF6aGUueQhGpbPZPts9Y/1AXy8uTcclP/mMFGUMySkCB8 FzpmVCssvtMqQiPxWQc1WlRvaHoLyA+2UZsKfXKt/gnTGQYTVuszppUEGQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLMvsD173yi1n2ZcRuiRYzHc9o3OMB8GA1UdIwQY MBaAFBsbS1wtqqb8NQcfQ4+Wivb/bKTaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3h0TFhDMnFwdncxQng5RGo1YUs5djlzcE5vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9kZGFjMGQtMzc0My00Y2QyLWE2YTMt YTEyNDZjNjdkOWRlLzEvc3ktd1BYdmZLTFdmWmx4RzZKRmpNZHoyamM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy9kZGFjMGQtMzc0My00Y2QyLWE2YTMtYTEyNDZjNjdkOWRl LzEvR3h0TFhDMnFwdncxQng5RGo1YUs5djlzcE5vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBPc MA0GCSqGSIb3DQEBCwUAA4IBAQCx+gQXis5HQMIVhQ0qQs7pmu11jP/x0PDle91C rivwyYCdLkXUHY4yahPlfN2Wq48t6R34xo5zomes3aTTV5DZ6O67FZYoJqNmh8LF Rowpj2jtvLLBzgk76Ijky1NnWQChILbxo3nCPj8xShMWQq07xejYzzAkfqYy6Uld MCSY3284ayfthquCoqGJj1VOD/Q4GA8tsm6ykRswEWuza5aJzQQbCCH8a4afmfK1 yDI8o2AHzS+w/yDpK+dbTuyOeepBIeKZq1vG8g45s7sUP8ckTGRDd0xnQjENDeE3 ZgQnrDbPhjiIQVuIQt+9sd4If4ue1feeibNWarptUOYSoxly -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:37 2026 by rpki-client