This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Tb8OVZzvWbJjXVWJTha8del0cOw.roa File: Tb8OVZzvWbJjXVWJTha8del0cOw.roa (raw, json) Hash identifier: BHCJuEP97vvVp5fjQUDFhbPxG3wfZKyQgTvwcG48k+M= Subject key identifier: 4D:BF:0E:55:9C:EF:59:B2:63:5D:55:89:4E:16:BC:75:E9:74:70:EC Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019B882841387F5469A1A2326287B19842B4 Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Tb8OVZzvWbJjXVWJTha8del0cOw.roa Signing time: Sun 04 Jan 2026 08:38:17 +0000 ROA not before: Sun 04 Jan 2026 08:38:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215502 IP address blocks: 2a14:67c3:30::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:88:28:41:38:7f:54:69:a1:a2:32:62:87:b1:98:42:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Jan 4 08:38:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4dbf0e559cef59b2635d55894e16bc75e97470ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:13:11:a3:fe:f0:9c:43:cd:d2:80:2e:3d:86: ad:75:10:2e:99:44:22:0f:8e:69:64:77:78:b3:16: dc:59:c6:a0:ac:48:07:0f:20:b1:fd:15:46:82:d4: 4c:96:e9:c0:5f:82:d4:47:5a:52:33:5e:02:a2:49: 50:e4:eb:b1:59:94:ba:be:57:9c:ba:9f:6e:bc:67: 2f:b1:0c:22:5d:c8:00:59:5f:d9:e5:e7:0a:8d:f7: 77:76:c6:d8:37:8b:47:6c:19:80:06:8f:43:79:36: f1:0c:0c:f3:50:e0:a1:ab:64:93:54:26:0e:af:c3: d6:11:a4:eb:00:67:8d:40:88:e8:18:4f:c7:48:04: b1:5c:c9:e7:7f:8c:1e:fd:ea:d4:03:17:fe:12:20: 12:15:18:cc:22:f5:71:f0:ff:1c:2c:bc:32:32:0d: 1c:47:28:55:82:75:70:5d:00:70:59:51:1e:44:be: e1:ba:5c:ea:72:8c:95:18:01:ce:bd:10:a4:52:fd: b6:eb:9e:58:fe:ae:08:fc:ac:bd:ea:f5:9f:6c:74: 26:0c:53:1c:78:54:ee:d2:c7:76:28:b8:96:99:af: c4:79:82:c3:d5:c5:ef:c7:0b:66:c4:23:c8:b7:c6: d7:64:55:55:42:33:f2:11:f1:91:fa:fd:2c:8a:70: 96:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:BF:0E:55:9C:EF:59:B2:63:5D:55:89:4E:16:BC:75:E9:74:70:EC X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Tb8OVZzvWbJjXVWJTha8del0cOw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:67c3:30::/44 Signature Algorithm: sha256WithRSAEncryption a7:97:eb:7a:7c:1d:85:fb:23:14:0c:c0:47:4d:6f:7d:c2:58: 47:b2:1e:de:db:33:69:1c:04:16:24:4c:2a:d9:94:47:92:6e: f8:0f:bb:33:cb:fc:07:99:b3:2e:8e:ba:4c:34:f1:a8:d4:b5: c7:f0:e9:cd:4a:85:23:7a:e5:a0:44:c5:7f:ea:e2:94:5a:28: fd:e8:87:53:f3:6b:9f:a0:1a:19:c2:e9:f2:94:7d:84:98:31: 4a:8a:74:5f:4a:c2:02:9d:44:7b:6a:7b:d5:59:d3:b2:6b:a6: 79:45:a4:46:8d:50:66:b3:11:15:a9:f5:d1:a0:4d:a1:f2:1a: da:63:ab:a1:41:69:46:80:da:3c:2d:8f:7d:71:36:61:c1:b9: ab:a5:7b:0b:08:ec:5c:3c:80:0f:b5:10:de:11:b2:3f:ad:33: 45:76:b8:c8:3c:53:be:0c:5c:ae:f4:1b:a6:ff:f9:c6:8c:1d: f6:3e:8a:1f:fa:c4:fb:48:15:38:2c:e5:71:6b:fd:8e:0b:24: a7:69:30:f6:2d:15:cd:64:08:6b:57:4a:d3:2d:c9:c8:8b:d6: dc:fb:22:0a:84:da:bb:78:90:ac:d0:c6:0d:fb:6b:8a:df:0a: 26:dd:47:6f:c3:de:b0:44:ca:b5:4b:61:8e:f2:9f:f2:3c:46: 9a:95:3b:05 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZuIKEE4f1RpoaIyYoexmEK0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjYwMTA0MDgzODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZGJmMGU1NTljZWY1OWIyNjM1ZDU1ODk0ZTE2YmM3NWU5NzQ3MGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0RMRo/7wnEPN0oAuPYatdRAumUQi D45pZHd4sxbcWcagrEgHDyCx/RVGgtRMlunAX4LUR1pSM14CoklQ5OuxWZS6vlec up9uvGcvsQwiXcgAWV/Z5ecKjfd3dsbYN4tHbBmABo9DeTbxDAzzUOChq2STVCYO r8PWEaTrAGeNQIjoGE/HSASxXMnnf4we/erUAxf+EiASFRjMIvVx8P8cLLwyMg0c RyhVgnVwXQBwWVEeRL7hulzqcoyVGAHOvRCkUv22655Y/q4I/Ky96vWfbHQmDFMc eFTu0sd2KLiWma/EeYLD1cXvxwtmxCPIt8bXZFVVQjPyEfGR+v0sinCWGwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFE2/DlWc71myY11ViU4WvHXpdHDsMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEvVGI4T1ZaenZXYkpqWFZXSlRoYThkZWwwY093LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhRnwwAw MA0GCSqGSIb3DQEBCwUAA4IBAQCnl+t6fB2F+yMUDMBHTW99wlhHsh7e2zNpHAQW JEwq2ZRHkm74D7szy/wHmbMujrpMNPGo1LXH8OnNSoUjeuWgRMV/6uKUWij96IdT 82ufoBoZwunylH2EmDFKinRfSsICnUR7anvVWdOya6Z5RaRGjVBmsxEVqfXRoE2h 8hraY6uhQWlGgNo8LY99cTZhwbmrpXsLCOxcPIAPtRDeEbI/rTNFdrjIPFO+DFyu 9Bum//nGjB32Poof+sT7SBU4LOVxa/2OCySnaTD2LRXNZAhrV0rTLcnIi9bc+yIK hNq7eJCs0MYN+2uK3wom3Udvw96wRMq1S2GO8p/yPEaalTsF -----END CERTIFICATE-----Generated at Sun Jan 25 17:48:04 2026 by rpki-client