This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/AA4leRD0fxCP27pMiyTWgt1l_rg.roa File: AA4leRD0fxCP27pMiyTWgt1l_rg.roa (raw, json) Hash identifier: 7SvYjkQmEnHNW0Fizpa0BEm4+FNoAcLpGmBVskPF0pY= Subject key identifier: 00:0E:25:79:10:F4:7F:10:8F:DB:BA:4C:8B:24:D6:82:DD:65:FE:B8 Certificate issuer: /CN=d3d56f07be184cba52f6fdc049e8114d2616c32a Certificate serial: 019B7B3698EFC15C97D318073B5506A28E69 Authority key identifier: D3:D5:6F:07:BE:18:4C:BA:52:F6:FD:C0:49:E8:11:4D:26:16:C3:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/09VvB74YTLpS9v3ASegRTSYWwyo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/AA4leRD0fxCP27pMiyTWgt1l_rg.roa Signing time: Thu 01 Jan 2026 20:18:54 +0000 ROA not before: Thu 01 Jan 2026 20:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197961 IP address blocks: 2a10:f780:fffe::/48 maxlen: 48 2a10:f782::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/09VvB74YTLpS9v3ASegRTSYWwyo.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/09VvB74YTLpS9v3ASegRTSYWwyo.mft rsync://rpki.ripe.net/repository/DEFAULT/09VvB74YTLpS9v3ASegRTSYWwyo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Feb 2026 11:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:98:ef:c1:5c:97:d3:18:07:3b:55:06:a2:8e:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3d56f07be184cba52f6fdc049e8114d2616c32a Validity Not Before: Jan 1 20:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=000e257910f47f108fdbba4c8b24d682dd65feb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:48:3b:7d:c3:7b:2e:58:ad:11:a3:9f:50:b7: 81:f4:b3:27:29:d0:c0:9c:4c:91:74:38:e6:0f:fc: 1a:38:71:df:e9:14:c9:fd:27:34:b6:01:ae:9a:f1: 0d:82:fe:67:46:52:3f:d0:42:56:a9:46:8f:20:00: c1:90:90:99:d0:0c:8a:29:48:9e:3f:5e:93:50:6f: cf:87:4e:5c:88:bd:e9:c3:4a:e0:fd:2a:cd:c3:92: 72:e9:f4:9e:5f:21:0a:18:c4:8a:8e:f0:3a:76:31: f4:46:d5:b7:42:cb:65:70:43:c7:2d:a0:0f:b9:65: de:2c:b9:7b:9d:78:cb:3c:55:ba:8a:dd:18:07:13: 21:26:79:78:3a:48:c8:e6:8e:68:d3:d6:1d:46:0d: b0:3e:03:78:e4:a3:68:11:c3:18:c6:81:91:31:cd: 85:72:c7:28:d1:9b:0c:bf:cd:84:69:bc:2f:e2:40: 7e:d0:6f:f9:69:69:e7:8f:36:e5:02:91:56:e7:f7: ad:68:9c:1a:c9:19:cc:1c:8e:88:30:51:85:4e:f9: 02:a2:82:7d:58:af:b9:12:ec:e2:51:ee:20:c4:cd: 7c:ff:90:eb:c5:3b:b6:8d:90:eb:79:1c:f4:20:ed: 87:67:37:a4:ac:d5:2b:d9:00:16:e9:19:ed:cb:01: 0e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:0E:25:79:10:F4:7F:10:8F:DB:BA:4C:8B:24:D6:82:DD:65:FE:B8 X509v3 Authority Key Identifier: keyid:D3:D5:6F:07:BE:18:4C:BA:52:F6:FD:C0:49:E8:11:4D:26:16:C3:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/09VvB74YTLpS9v3ASegRTSYWwyo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/AA4leRD0fxCP27pMiyTWgt1l_rg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/09VvB74YTLpS9v3ASegRTSYWwyo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:f780:fffe::/48 2a10:f782::/48 Signature Algorithm: sha256WithRSAEncryption 13:91:8a:38:8b:49:9f:61:8e:0d:1e:d3:be:3e:21:a8:75:e0: 80:22:bb:7d:df:4d:b5:bf:6a:84:f9:07:91:c4:57:07:c4:99: d7:4b:a5:dc:08:9f:f2:a4:bc:01:d8:3a:26:3c:ac:cc:c5:38: 67:ca:42:ad:5c:dd:7f:58:ab:4e:3e:98:fb:f5:fe:22:83:21: fc:03:b7:f7:e4:0b:d6:b1:18:3c:c3:25:7b:21:55:05:1d:39: 07:65:1b:12:e0:07:c6:9f:8b:7c:14:ce:30:3f:59:05:6f:08: 96:e5:83:4d:07:70:80:cc:93:cf:b7:bf:ab:47:61:d7:c0:21: 20:29:05:eb:f4:55:b9:f0:9b:e5:ea:1c:b8:ab:25:ae:a9:2b: f2:e1:d3:8e:ce:91:3d:46:79:fe:45:2c:04:1c:09:d6:67:1d: 26:68:20:c7:84:f0:1c:77:81:5c:02:55:d7:c4:3e:4a:78:84: cc:06:a7:dd:77:c5:77:f6:9f:52:55:f2:9e:6b:a6:ba:bb:8d: 3d:e0:d8:49:a5:75:c6:e1:9b:e1:13:ae:78:4f:55:6b:ca:2e: 0a:c5:e8:e1:c0:a2:cd:35:29:c0:31:7d:95:8d:04:f3:df:3d: b3:ca:cf:0c:55:15:13:94:59:8c:8c:0c:36:0b:0b:4b:45:8c: 61:f1:6a:4e -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt7NpjvwVyX0xgHO1UGoo5pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzZDU2ZjA3YmUxODRjYmE1MmY2ZmRjMDQ5ZTgxMTRkMjYx NmMzMmEwHhcNMjYwMTAxMjAxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMDBlMjU3OTEwZjQ3ZjEwOGZkYmJhNGM4YjI0ZDY4MmRkNjVmZWI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskg7fcN7LlitEaOfULeB9LMnKdDA nEyRdDjmD/waOHHf6RTJ/Sc0tgGumvENgv5nRlI/0EJWqUaPIADBkJCZ0AyKKUie P16TUG/Ph05ciL3pw0rg/SrNw5Jy6fSeXyEKGMSKjvA6djH0RtW3QstlcEPHLaAP uWXeLLl7nXjLPFW6it0YBxMhJnl4OkjI5o5o09YdRg2wPgN45KNoEcMYxoGRMc2F csco0ZsMv82Eabwv4kB+0G/5aWnnjzblApFW5/etaJwayRnMHI6IMFGFTvkCooJ9 WK+5EuziUe4gxM18/5DrxTu2jZDreRz0IO2HZzekrNUr2QAW6RntywEOIwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFAAOJXkQ9H8Qj9u6TIsk1oLdZf64MB8GA1UdIwQY MBaAFNPVbwe+GEy6Uvb9wEnoEU0mFsMqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDlWdkI3NFlUTHBTOXYzQVNlZ1JUU1lXd3lvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC81Nzg2YWItMDY3ZS00NDBjLWIyNzYt MWIwNmQxYzcwNGMxLzEvQUE0bGVSRDBmeENQMjdwTWl5VFdndDFsX3JnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC81Nzg2YWItMDY3ZS00NDBjLWIyNzYtMWIwNmQxYzcwNGMx LzEvMDlWdkI3NFlUTHBTOXYzQVNlZ1JUU1lXd3lvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKhD3gP/+ AwcAKhD3ggAAMA0GCSqGSIb3DQEBCwUAA4IBAQATkYo4i0mfYY4NHtO+PiGodeCA Irt93021v2qE+QeRxFcHxJnXS6XcCJ/ypLwB2DomPKzMxThnykKtXN1/WKtOPpj7 9f4igyH8A7f35AvWsRg8wyV7IVUFHTkHZRsS4AfGn4t8FM4wP1kFbwiW5YNNB3CA zJPPt7+rR2HXwCEgKQXr9FW58Jvl6hy4qyWuqSvy4dOOzpE9Rnn+RSwEHAnWZx0m aCDHhPAcd4FcAlXXxD5KeITMBqfdd8V39p9SVfKea6a6u4094NhJpXXG4ZvhE654 T1Vryi4KxejhwKLNNSnAMX2VjQTz3z2zys8MVRUTlFmMjAw2CwtLRYxh8WpO -----END CERTIFICATE-----Generated at Fri Feb 6 20:12:20 2026 by rpki-client