This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/nbEyzwbyFXZciM8F-9e1dkIzrao.roa File: nbEyzwbyFXZciM8F-9e1dkIzrao.roa (raw, json) Hash identifier: YX1CEGsLriayTcWNcXvhaE3p5TpYkjHzE5qRO+3Ix9o= Subject key identifier: 9D:B1:32:CF:06:F2:15:76:5C:88:CF:05:FB:D7:B5:76:42:33:AD:AA Certificate issuer: /CN=b307c87e7b6e294f2700790eef19e82939d85cd6 Certificate serial: 019B7B366AD48654EAF8398D310F31C086D7 Authority key identifier: B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/nbEyzwbyFXZciM8F-9e1dkIzrao.roa Signing time: Thu 01 Jan 2026 20:18:42 +0000 ROA not before: Thu 01 Jan 2026 20:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20940 IP address blocks: 2a10:fa44::/48 maxlen: 48 2a10:fa44:100::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.mft rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:6a:d4:86:54:ea:f8:39:8d:31:0f:31:c0:86:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b307c87e7b6e294f2700790eef19e82939d85cd6 Validity Not Before: Jan 1 20:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9db132cf06f215765c88cf05fbd7b5764233adaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:eb:2c:12:0f:0d:15:aa:fc:23:03:cd:7d:f1: 5b:e6:5b:9e:34:f1:11:b4:b9:3e:c8:6b:f3:46:3b: ae:f7:cb:7a:a9:cf:3f:e0:23:b8:74:9b:38:64:4a: 10:9c:8a:58:e7:79:24:8a:9d:24:a7:06:36:23:47: d4:61:0d:2f:0b:43:d3:9a:1e:a6:74:e2:84:75:54: a8:d0:d9:35:05:06:d0:19:12:e9:2f:7f:96:ba:66: 89:d8:41:6f:7f:66:37:74:23:da:de:23:1d:a2:ad: 61:c4:0e:16:20:a3:87:fd:f7:06:9e:1f:36:c4:62: 20:fc:6b:bc:3c:12:70:1e:76:55:6b:69:d4:e2:7d: ff:1d:1a:30:dd:98:57:66:bf:6a:79:2c:e5:2f:f2: cd:2d:15:37:d6:47:fd:64:ea:5d:72:cc:12:aa:84: 73:c8:27:d6:f2:81:bb:5b:57:31:53:9b:e0:23:63: 99:b6:6c:f7:33:50:51:6c:3c:e2:56:01:20:42:d1: 58:ab:f9:1b:ef:02:8c:9b:52:bb:50:da:62:c8:54: ee:4a:d5:27:75:be:93:b9:8b:c4:27:1f:7b:22:66: 98:a7:72:51:43:b0:ae:a2:49:95:13:cf:4d:4d:3c: b3:dd:16:41:05:12:a9:42:74:4d:b4:71:5e:95:b7: 1e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B1:32:CF:06:F2:15:76:5C:88:CF:05:FB:D7:B5:76:42:33:AD:AA X509v3 Authority Key Identifier: keyid:B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/nbEyzwbyFXZciM8F-9e1dkIzrao.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:fa44::/48 2a10:fa44:100::/64 Signature Algorithm: sha256WithRSAEncryption c7:ac:0b:84:9c:77:7a:24:0d:4c:6a:98:7c:66:45:bf:f9:1f: 2c:6a:1a:8b:68:9a:88:02:5d:d0:59:99:a2:d9:4c:60:80:06: eb:d3:ea:c2:06:5a:56:b0:18:e1:6d:5e:41:a6:1a:0e:dd:da: 01:34:31:0c:5c:a4:e9:9c:39:85:ff:32:1d:cb:f7:cc:11:6f: 0f:6f:ec:3b:d0:67:4b:1c:d0:5b:54:8d:b3:ce:b1:b2:85:ad: 11:80:77:c8:7e:01:d2:71:4c:80:23:61:0d:28:f4:27:ca:90: eb:c6:6f:f3:2d:3d:0c:07:fc:2e:37:1e:82:23:67:ab:80:3e: 63:b3:71:bd:73:fc:75:0f:d7:fc:e7:25:70:d0:68:43:3c:5d: 4a:6c:b7:04:1c:84:57:2a:3d:12:f4:fd:63:2c:15:43:19:78: ad:26:aa:3c:27:24:8b:bf:50:38:ec:dd:88:22:d6:f4:86:f7: 2e:2e:e3:c3:11:22:9d:6f:e5:71:6e:a2:d2:62:a7:d9:8d:96: bc:40:2c:34:06:0b:69:ed:99:0e:53:70:70:b0:68:81:5c:f7: db:ff:fd:28:6a:22:6f:b3:7f:2c:4b:73:41:72:66:1c:c3:c9: 68:e9:38:5c:a1:8d:ee:a0:13:e4:4e:aa:a5:80:ee:2e:32:3e: 7a:21:4b:85 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt7NmrUhlTq+DmNMQ8xwIbXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzMDdjODdlN2I2ZTI5NGYyNzAwNzkwZWVmMTllODI5Mzlk ODVjZDYwHhcNMjYwMTAxMjAxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZGIxMzJjZjA2ZjIxNTc2NWM4OGNmMDVmYmQ3YjU3NjQyMzNhZGFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8essEg8NFar8IwPNffFb5lueNPER tLk+yGvzRjuu98t6qc8/4CO4dJs4ZEoQnIpY53kkip0kpwY2I0fUYQ0vC0PTmh6m dOKEdVSo0Nk1BQbQGRLpL3+WumaJ2EFvf2Y3dCPa3iMdoq1hxA4WIKOH/fcGnh82 xGIg/Gu8PBJwHnZVa2nU4n3/HRow3ZhXZr9qeSzlL/LNLRU31kf9ZOpdcswSqoRz yCfW8oG7W1cxU5vgI2OZtmz3M1BRbDziVgEgQtFYq/kb7wKMm1K7UNpiyFTuStUn db6TuYvEJx97ImaYp3JRQ7CuokmVE89NTTyz3RZBBRKpQnRNtHFelbceOwIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFJ2xMs8G8hV2XIjPBfvXtXZCM62qMB8GA1UdIwQY MBaAFLMHyH57bilPJwB5Du8Z6Ck52FzWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3dmSWZudHVLVThuQUhrTzd4bm9LVG5ZWE5ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9kYTY0MmEtYTZhYi00NzA1LTk1ODct NjQ5NDVhNGY4ZTEyLzEvbmJFeXp3YnlGWFpjaU04Ri05ZTFka0l6cmFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS9kYTY0MmEtYTZhYi00NzA1LTk1ODctNjQ5NDVhNGY4ZTEy LzEvc3dmSWZudHVLVThuQUhrTzd4bm9LVG5ZWE5ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUAwcAKhD6RAAA AwkAKhD6RAEAAAAwDQYJKoZIhvcNAQELBQADggEBAMesC4Scd3okDUxqmHxmRb/5 HyxqGotomogCXdBZmaLZTGCABuvT6sIGWlawGOFtXkGmGg7d2gE0MQxcpOmcOYX/ Mh3L98wRbw9v7DvQZ0sc0FtUjbPOsbKFrRGAd8h+AdJxTIAjYQ0o9CfKkOvGb/Mt PQwH/C43HoIjZ6uAPmOzcb1z/HUP1/znJXDQaEM8XUpstwQchFcqPRL0/WMsFUMZ eK0mqjwnJIu/UDjs3Ygi1vSG9y4u48MRIp1v5XFuotJip9mNlrxALDQGC2ntmQ5T cHCwaIFc99v//ShqIm+zfyxLc0FyZhzDyWjpOFyhje6gE+ROqqWA7i4yPnohS4U= -----END CERTIFICATE-----Generated at Tue Jan 20 08:02:13 2026 by rpki-client