This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/4XlWrcpKp73JmNE_TYGdFMer_68.roa File: 4XlWrcpKp73JmNE_TYGdFMer_68.roa (raw, json) Hash identifier: iFFQ7ZGIoYm0QNTEQ9/1dEJrXHo9YkBhgDXfPankBQU= Subject key identifier: E1:79:56:AD:CA:4A:A7:BD:C9:98:D1:3F:4D:81:9D:14:C7:AB:FF:AF Certificate issuer: /CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355 Certificate serial: 019B7BA4EF3D23556C0A6957297003546F08 Authority key identifier: 83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/4XlWrcpKp73JmNE_TYGdFMer_68.roa Signing time: Thu 01 Jan 2026 22:19:25 +0000 ROA not before: Thu 01 Jan 2026 22:19:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47602 IP address blocks: 2a04:2b87::/32 maxlen: 32 2a09:4200::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/g5ka_NRV6xsXT8-J-OEOr39ws1U.crl rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/g5ka_NRV6xsXT8-J-OEOr39ws1U.mft rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:ef:3d:23:55:6c:0a:69:57:29:70:03:54:6f:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355 Validity Not Before: Jan 1 22:19:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e17956adca4aa7bdc998d13f4d819d14c7abffaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:5a:7f:76:3b:3f:4d:c3:01:fd:8f:87:89:e6: 59:60:ca:3a:1d:22:e9:71:7b:18:6d:68:0e:59:05: 79:c1:ad:b3:cd:98:08:16:90:0c:41:61:52:d8:ee: ad:f8:c4:9a:a4:1a:02:fe:50:63:48:df:21:2e:02: e9:ce:44:23:41:e9:ca:4d:a9:ce:51:65:ac:72:29: 98:d2:1f:10:37:3c:5d:a8:e4:87:4a:62:80:35:90: 71:f4:21:64:4d:14:ba:15:00:24:35:a6:a0:d9:1c: 6f:ce:e1:30:a5:d7:76:1d:2e:12:a2:6c:d1:4c:a1: 48:4b:a6:68:41:fd:0d:de:bf:7e:2e:14:b9:ba:7b: 3f:e8:42:85:29:e3:88:32:03:33:95:b2:18:70:04: 89:ec:17:e4:86:a3:ea:23:ea:6c:7c:6e:1e:86:06: 15:1e:31:6e:81:d3:bc:56:bf:90:b5:3d:b7:6c:c6: bc:a0:c0:96:0e:da:12:3f:16:5a:56:12:53:9e:ad: ae:18:b3:f8:9d:7a:ae:c9:54:da:4a:c1:b2:7a:1c: 6a:4e:d9:9b:e7:ae:e6:61:3e:96:10:3e:92:54:89: 6c:5b:b3:d6:82:94:1b:7a:06:dc:cd:7a:66:f7:31: 1e:1a:21:43:d9:2d:16:fa:d4:e9:9f:c4:14:be:e7: a0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:79:56:AD:CA:4A:A7:BD:C9:98:D1:3F:4D:81:9D:14:C7:AB:FF:AF X509v3 Authority Key Identifier: keyid:83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/4XlWrcpKp73JmNE_TYGdFMer_68.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/g5ka_NRV6xsXT8-J-OEOr39ws1U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a04:2b87::/32 2a09:4200::/29 Signature Algorithm: sha256WithRSAEncryption 3e:2d:27:ed:72:a3:50:e1:2c:ea:68:8d:51:76:b2:2c:66:79: af:a4:ab:cf:d4:ee:94:32:60:76:19:00:7f:35:2b:e8:ea:2b: 47:50:ed:60:5f:9f:64:df:ba:08:38:1a:ea:4f:6e:27:5e:11: d8:ec:74:7c:a7:ad:e7:aa:fd:93:0d:04:bb:a2:89:3d:d6:f4: b2:d0:cf:df:f7:2b:f2:73:b8:e2:8a:09:3b:91:04:f5:5a:2c: dd:d1:2f:36:d1:03:f4:53:84:5d:3c:b0:d8:f8:9d:0d:69:2c: f6:1f:b0:fc:47:d1:77:87:b6:89:00:6c:65:06:06:40:bc:33: 3a:15:84:7e:34:02:64:47:e0:c5:5e:50:e6:25:bd:6f:87:6b: c0:0d:35:6b:bd:fd:77:1d:7d:8f:8f:ac:3e:51:68:79:6a:ee: 66:a2:e4:cd:99:cd:58:0c:06:cb:aa:66:8f:3b:af:19:9e:e3: 4a:5d:60:12:79:6b:78:37:5b:83:88:4c:18:ef:16:cf:77:9f: f8:6e:49:bc:db:e9:d1:3c:a5:33:30:b5:4a:00:31:2f:dc:96: ff:ff:4b:a2:3c:d6:1a:a3:ca:62:39:c4:43:89:56:8d:f7:5b: 7f:31:c3:0b:38:f0:dc:2f:65:70:de:90:08:fb:32:19:60:ea: ee:a0:43:d5 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt7pO89I1VsCmlXKXADVG8IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzOTkxYWZjZDQ1NWViMWIxNzRmY2Y4OWY4ZTEwZWFmN2Y3 MGIzNTUwHhcNMjYwMTAxMjIxOTI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMTc5NTZhZGNhNGFhN2JkYzk5OGQxM2Y0ZDgxOWQxNGM3YWJmZmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA51p/djs/TcMB/Y+HieZZYMo6HSLp cXsYbWgOWQV5wa2zzZgIFpAMQWFS2O6t+MSapBoC/lBjSN8hLgLpzkQjQenKTanO UWWscimY0h8QNzxdqOSHSmKANZBx9CFkTRS6FQAkNaag2RxvzuEwpdd2HS4SomzR TKFIS6ZoQf0N3r9+LhS5uns/6EKFKeOIMgMzlbIYcASJ7BfkhqPqI+psfG4ehgYV HjFugdO8Vr+QtT23bMa8oMCWDtoSPxZaVhJTnq2uGLP4nXquyVTaSsGyehxqTtmb 567mYT6WED6SVIlsW7PWgpQbegbczXpm9zEeGiFD2S0W+tTpn8QUvueg6wIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFOF5Vq3KSqe9yZjRP02BnRTHq/+vMB8GA1UdIwQY MBaAFIOZGvzUVesbF0/PifjhDq9/cLNVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzVrYV9OUlY2eHNYVDgtSi1PRU9yMzl3czFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS82OWVkMjktYWY0ZS00NTI0LWFkZmIt ZTE1NDM3MzgwMDk5LzEvNFhsV3JjcEtwNzNKbU5FX1RZR2RGTWVyXzY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS82OWVkMjktYWY0ZS00NTI0LWFkZmItZTE1NDM3MzgwMDk5 LzEvZzVrYV9OUlY2eHNYVDgtSi1PRU9yMzl3czFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUAKgQrhwMF AyoJQgAwDQYJKoZIhvcNAQELBQADggEBAD4tJ+1yo1DhLOpojVF2sixmea+kq8/U 7pQyYHYZAH81K+jqK0dQ7WBfn2Tfugg4GupPbideEdjsdHynreeq/ZMNBLuiiT3W 9LLQz9/3K/JzuOKKCTuRBPVaLN3RLzbRA/RThF08sNj4nQ1pLPYfsPxH0XeHtokA bGUGBkC8MzoVhH40AmRH4MVeUOYlvW+Ha8ANNWu9/XcdfY+PrD5RaHlq7mai5M2Z zVgMBsuqZo87rxme40pdYBJ5a3g3W4OITBjvFs93n/huSbzb6dE8pTMwtUoAMS/c lv//S6I81hqjymI5xEOJVo33W38xwws48NwvZXDekAj7Mhlg6u6gQ9U= -----END CERTIFICATE-----Generated at Sun Jan 25 18:20:47 2026 by rpki-client