This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/rPAahRiAFhKEWjnyhz4z-0lkvXU.roa File: rPAahRiAFhKEWjnyhz4z-0lkvXU.roa (raw, json) Hash identifier: zzqyB+t4YAf4zoHDwM87ojkF2fRZqc5eAp62HCRrYX0= Subject key identifier: AC:F0:1A:85:18:80:16:12:84:5A:39:F2:87:3E:33:FB:49:64:BD:75 Certificate issuer: /CN=860d9f01a98b514ebd3c2723d7f7eb448326f5e2 Certificate serial: 019B7C1292D4EC1431481437282CAE64680E Authority key identifier: 86:0D:9F:01:A9:8B:51:4E:BD:3C:27:23:D7:F7:EB:44:83:26:F5:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hg2fAamLUU69PCcj1_frRIMm9eI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/rPAahRiAFhKEWjnyhz4z-0lkvXU.roa Signing time: Fri 02 Jan 2026 00:19:10 +0000 ROA not before: Fri 02 Jan 2026 00:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13020 IP address blocks: 2001:67c:20a1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/hg2fAamLUU69PCcj1_frRIMm9eI.crl rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/hg2fAamLUU69PCcj1_frRIMm9eI.mft rsync://rpki.ripe.net/repository/DEFAULT/hg2fAamLUU69PCcj1_frRIMm9eI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:92:d4:ec:14:31:48:14:37:28:2c:ae:64:68:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=860d9f01a98b514ebd3c2723d7f7eb448326f5e2 Validity Not Before: Jan 2 00:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=acf01a8518801612845a39f2873e33fb4964bd75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bd:a2:1b:53:04:26:e5:7c:32:5e:06:2c:60: 1f:a5:8c:5d:4f:03:0a:bb:72:ec:c8:30:7a:31:23: 9c:8f:86:d0:62:5f:d0:74:e6:41:de:4d:cc:c5:9d: 95:88:5b:d1:5e:23:81:c2:f5:e2:0a:ee:65:5c:4b: d6:a1:24:1c:ae:ba:bd:bb:a2:30:52:08:43:b9:e8: 20:38:4e:ab:9e:5a:58:82:1f:62:e8:19:3c:c5:24: 60:7c:ea:13:5b:ed:f6:0a:68:2f:23:d0:54:16:99: f7:05:e3:c3:63:8f:a2:37:7d:7d:d8:f0:c6:21:70: 3a:78:63:10:85:7a:1b:96:67:b0:e5:23:ed:66:e5: 01:4f:7f:b1:e8:01:37:02:82:ed:d6:d9:36:b8:2b: 7e:5e:ee:de:3f:f8:55:6f:69:b9:77:4b:68:84:ce: 24:f0:ee:20:ab:ae:19:85:be:4e:10:26:70:61:bc: e0:84:f9:f3:46:f9:9a:d9:ba:eb:c3:17:32:12:a4: af:75:9c:ff:4d:4c:9f:fc:fc:ab:ff:f2:70:45:a1: 70:52:09:53:49:ed:2b:17:56:be:d3:08:fd:36:9d: 35:e9:b9:6a:14:1c:2c:43:0d:54:ee:77:65:76:0e: 93:0d:78:d0:74:2b:6f:5a:97:13:69:e6:15:99:64: ef:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:F0:1A:85:18:80:16:12:84:5A:39:F2:87:3E:33:FB:49:64:BD:75 X509v3 Authority Key Identifier: keyid:86:0D:9F:01:A9:8B:51:4E:BD:3C:27:23:D7:F7:EB:44:83:26:F5:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hg2fAamLUU69PCcj1_frRIMm9eI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/rPAahRiAFhKEWjnyhz4z-0lkvXU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/hg2fAamLUU69PCcj1_frRIMm9eI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:20a1::/48 Signature Algorithm: sha256WithRSAEncryption 6d:23:5f:dc:49:5a:1c:b7:72:09:d0:7b:1e:5b:e4:21:c3:34: 94:e0:6f:46:87:23:06:28:b7:2b:53:ef:70:e4:1c:62:ec:99: ac:37:6a:0c:b9:24:b2:06:3e:0b:0a:62:e1:9a:2f:61:15:7b: 88:05:bb:27:1c:51:2f:07:12:30:75:5c:2b:d2:46:b4:0a:6e: ba:fe:cd:7f:ca:82:47:62:c3:78:c5:ef:43:fe:f6:da:e5:c3: e3:10:c1:b1:89:5b:48:7a:52:17:b3:0f:8f:ac:27:de:7f:3c: d8:11:de:79:bf:67:71:9f:14:69:9b:14:23:88:f9:e9:80:e1: ff:1a:34:ed:43:db:c2:c3:88:ee:f3:48:99:14:c4:c9:31:10: 8b:8c:58:27:6b:70:31:52:60:99:8b:7f:32:33:4c:46:96:21: bf:36:c1:d6:82:2e:f5:c5:9c:2d:28:2f:b0:89:05:20:a0:e8: e1:5b:d7:61:0a:6d:cd:32:12:c6:82:92:45:27:9b:f0:2b:a1: 3c:c5:04:18:d5:a6:7f:fb:bc:b9:6f:c0:ef:89:63:61:72:0b: 59:91:0a:4e:77:77:65:70:e7:80:61:96:68:65:64:15:f8:72: df:e4:d2:14:ba:08:3a:b9:d9:7b:29:4c:0c:a0:6a:da:99:e3: 76:82:47:cc -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt8EpLU7BQxSBQ3KCyuZGgOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MGQ5ZjAxYTk4YjUxNGViZDNjMjcyM2Q3ZjdlYjQ0ODMy NmY1ZTIwHhcNMjYwMTAyMDAxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhY2YwMWE4NTE4ODAxNjEyODQ1YTM5ZjI4NzNlMzNmYjQ5NjRiZDc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtb2iG1MEJuV8Ml4GLGAfpYxdTwMK u3LsyDB6MSOcj4bQYl/QdOZB3k3MxZ2ViFvRXiOBwvXiCu5lXEvWoSQcrrq9u6Iw UghDueggOE6rnlpYgh9i6Bk8xSRgfOoTW+32CmgvI9BUFpn3BePDY4+iN3192PDG IXA6eGMQhXoblmew5SPtZuUBT3+x6AE3AoLt1tk2uCt+Xu7eP/hVb2m5d0tohM4k 8O4gq64Zhb5OECZwYbzghPnzRvma2brrwxcyEqSvdZz/TUyf/Pyr//JwRaFwUglT Se0rF1a+0wj9Np016blqFBwsQw1U7ndldg6TDXjQdCtvWpcTaeYVmWTvswIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKzwGoUYgBYShFo58oc+M/tJZL11MB8GA1UdIwQY MBaAFIYNnwGpi1FOvTwnI9f360SDJvXiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGcyZkFhbUxVVTY5UENjajFfZnJSSU1tOWVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8yM2JlYTYtOTAwMS00NDFkLTgzNjQt NjFjYjQzYzJkYjg1LzEvclBBYWhSaUFGaEtFV2pueWh6NHotMGxrdlhVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC8yM2JlYTYtOTAwMS00NDFkLTgzNjQtNjFjYjQzYzJkYjg1 LzEvaGcyZkFhbUxVVTY5UENjajFfZnJSSU1tOWVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCCh MA0GCSqGSIb3DQEBCwUAA4IBAQBtI1/cSVoct3IJ0HseW+QhwzSU4G9GhyMGKLcr U+9w5Bxi7JmsN2oMuSSyBj4LCmLhmi9hFXuIBbsnHFEvBxIwdVwr0ka0Cm66/s1/ yoJHYsN4xe9D/vba5cPjEMGxiVtIelIXsw+PrCfefzzYEd55v2dxnxRpmxQjiPnp gOH/GjTtQ9vCw4ju80iZFMTJMRCLjFgna3AxUmCZi38yM0xGliG/NsHWgi71xZwt KC+wiQUgoOjhW9dhCm3NMhLGgpJFJ5vwK6E8xQQY1aZ/+7y5b8DviWNhcgtZkQpO d3dlcOeAYZZoZWQV+HLf5NIUugg6udl7KUwMoGrameN2gkfM -----END CERTIFICATE-----Generated at Mon Jan 26 04:51:32 2026 by rpki-client