This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/fbfacc-a4f0-4bdb-abbb-0f73661d5f35/1/DBz0WhaRA9wNrK9K1etEW30ajBM.roa File: DBz0WhaRA9wNrK9K1etEW30ajBM.roa (raw, json) Hash identifier: TIvrus04yBKxsgpsBLzS8XeHM34FR+aAzVV81lSqNzA= Subject key identifier: 0C:1C:F4:5A:16:91:03:DC:0D:AC:AF:4A:D5:EB:44:5B:7D:1A:8C:13 Certificate issuer: /CN=ed900a55518b679edc78faa9883ec6e6035ae71c Certificate serial: 019B7F1588CFD1A5AFD740F44962A05B4626 Authority key identifier: ED:90:0A:55:51:8B:67:9E:DC:78:FA:A9:88:3E:C6:E6:03:5A:E7:1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7ZAKVVGLZ57cePqpiD7G5gNa5xw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/fbfacc-a4f0-4bdb-abbb-0f73661d5f35/1/DBz0WhaRA9wNrK9K1etEW30ajBM.roa Signing time: Fri 02 Jan 2026 14:21:16 +0000 ROA not before: Fri 02 Jan 2026 14:21:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215472 IP address blocks: 2001:678:b74::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/fbfacc-a4f0-4bdb-abbb-0f73661d5f35/1/7ZAKVVGLZ57cePqpiD7G5gNa5xw.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/fbfacc-a4f0-4bdb-abbb-0f73661d5f35/1/7ZAKVVGLZ57cePqpiD7G5gNa5xw.mft rsync://rpki.ripe.net/repository/DEFAULT/7ZAKVVGLZ57cePqpiD7G5gNa5xw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:88:cf:d1:a5:af:d7:40:f4:49:62:a0:5b:46:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ed900a55518b679edc78faa9883ec6e6035ae71c Validity Not Before: Jan 2 14:21:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0c1cf45a169103dc0dacaf4ad5eb445b7d1a8c13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:57:31:c5:26:f1:f3:bc:01:45:8c:32:98:33: a3:b5:55:d8:90:31:1d:16:11:d3:4b:e1:c8:0e:29: 7a:37:fc:28:9b:51:d8:57:45:53:dc:2d:9e:d8:3f: 83:a6:07:ad:64:a2:7d:99:d5:58:dc:6e:50:09:a4: e1:6d:65:02:cd:ea:12:7a:aa:70:46:d3:86:06:4b: 85:77:2b:8f:ea:e2:9e:67:70:b8:e7:35:24:ee:1b: 63:b0:ed:f3:4e:b8:fe:e2:75:3e:6a:a0:e7:be:79: 25:a3:9e:ca:83:e2:2d:99:b8:d5:19:90:c7:31:36: 18:2d:12:b8:ab:c9:73:e3:61:a7:e5:67:ea:74:49: e5:5b:a8:fb:e7:4a:c3:2e:ea:2e:ed:34:f2:2a:88: 89:7c:fd:f8:89:5b:52:ef:d1:16:63:31:df:5a:41: f4:a6:01:66:a8:ae:72:75:52:ac:00:52:fe:15:98: 3d:af:3d:7b:be:93:6d:07:80:64:1e:d8:b5:e1:24: 03:e4:07:9c:8c:2f:43:65:6b:c3:11:a7:2d:fd:4e: 25:08:53:0d:b9:27:a6:49:4e:bb:1b:62:07:7b:a7: 16:5f:01:d2:0c:4c:aa:b2:11:91:53:ed:72:9f:0c: 04:80:b6:1a:f5:54:01:20:cd:8d:36:f4:96:d4:3b: 98:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:1C:F4:5A:16:91:03:DC:0D:AC:AF:4A:D5:EB:44:5B:7D:1A:8C:13 X509v3 Authority Key Identifier: keyid:ED:90:0A:55:51:8B:67:9E:DC:78:FA:A9:88:3E:C6:E6:03:5A:E7:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7ZAKVVGLZ57cePqpiD7G5gNa5xw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/fbfacc-a4f0-4bdb-abbb-0f73661d5f35/1/DBz0WhaRA9wNrK9K1etEW30ajBM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/fbfacc-a4f0-4bdb-abbb-0f73661d5f35/1/7ZAKVVGLZ57cePqpiD7G5gNa5xw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:b74::/48 Signature Algorithm: sha256WithRSAEncryption 1f:84:6e:9c:b9:e6:20:3b:5a:38:1a:1c:a1:39:40:b2:9d:a3: 4a:b8:9c:8a:42:11:93:91:33:ad:4f:35:ff:c6:d3:08:2c:97: 64:7c:20:dd:ef:f9:b1:2d:51:6f:63:2d:78:34:0c:05:49:41: f6:e5:31:2f:f5:92:81:df:b5:e6:ed:8f:85:61:93:88:0d:4b: 3f:f2:58:18:0b:2a:e2:06:c5:31:2c:cb:22:e2:2f:b5:39:f7: 1c:ef:bb:ea:b5:f8:1e:dc:4f:95:ad:b4:9f:c6:36:34:b0:ac: 1c:ae:45:67:40:7c:82:e6:85:6a:72:90:4d:4c:55:58:b6:ed: 91:86:fc:60:f0:32:70:6f:fe:a2:f6:fd:4c:de:a9:1d:43:02: f6:e3:50:a9:8e:c4:3c:cb:7a:6a:77:7c:f1:40:7a:e6:a1:60: bd:78:a4:90:46:f7:ac:97:ca:1c:4f:d1:db:06:32:6a:b9:64: 40:24:28:6e:64:a0:92:b5:f4:c1:81:cd:75:ac:c4:3b:aa:23: cd:e3:c6:fd:df:78:43:71:eb:99:25:cc:65:91:ab:4a:17:fe: 0d:58:c3:c9:6d:5f:de:2e:c8:4c:2a:5e:5d:f7:ec:a6:b8:ae: cf:a5:54:67:ad:8a:4c:99:4b:83:b0:a4:11:0f:fe:5b:d9:a2: c0:09:65:b4 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/FYjP0aWv10D0SWKgW0YmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkOTAwYTU1NTE4YjY3OWVkYzc4ZmFhOTg4M2VjNmU2MDM1 YWU3MWMwHhcNMjYwMTAyMTQyMTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYzFjZjQ1YTE2OTEwM2RjMGRhY2FmNGFkNWViNDQ1YjdkMWE4YzEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAglcxxSbx87wBRYwymDOjtVXYkDEd FhHTS+HIDil6N/wom1HYV0VT3C2e2D+DpgetZKJ9mdVY3G5QCaThbWUCzeoSeqpw RtOGBkuFdyuP6uKeZ3C45zUk7htjsO3zTrj+4nU+aqDnvnklo57Kg+ItmbjVGZDH MTYYLRK4q8lz42Gn5WfqdEnlW6j750rDLuou7TTyKoiJfP34iVtS79EWYzHfWkH0 pgFmqK5ydVKsAFL+FZg9rz17vpNtB4BkHti14SQD5AecjC9DZWvDEact/U4lCFMN uSemSU67G2IHe6cWXwHSDEyqshGRU+1ynwwEgLYa9VQBIM2NNvSW1DuYpQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFAwc9FoWkQPcDayvStXrRFt9GowTMB8GA1UdIwQY MBaAFO2QClVRi2ee3Hj6qYg+xuYDWuccMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN1pBS1ZWR0xaNTdjZVBxcGlEN0c1Z05hNXh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9mYmZhY2MtYTRmMC00YmRiLWFiYmIt MGY3MzY2MWQ1ZjM1LzEvREJ6MFdoYVJBOXdOcks5SzFldEVXMzBhakJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS9mYmZhY2MtYTRmMC00YmRiLWFiYmItMGY3MzY2MWQ1ZjM1 LzEvN1pBS1ZWR0xaNTdjZVBxcGlEN0c1Z05hNXh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAt0 MA0GCSqGSIb3DQEBCwUAA4IBAQAfhG6cueYgO1o4GhyhOUCynaNKuJyKQhGTkTOt TzX/xtMILJdkfCDd7/mxLVFvYy14NAwFSUH25TEv9ZKB37Xm7Y+FYZOIDUs/8lgY CyriBsUxLMsi4i+1Ofcc77vqtfge3E+VrbSfxjY0sKwcrkVnQHyC5oVqcpBNTFVY tu2Rhvxg8DJwb/6i9v1M3qkdQwL241CpjsQ8y3pqd3zxQHrmoWC9eKSQRvesl8oc T9HbBjJquWRAJChuZKCStfTBgc11rMQ7qiPN48b933hDceuZJcxlkatKF/4NWMPJ bV/eLshMKl5d9+ymuK7PpVRnrYpMmUuDsKQRD/5b2aLACWW0 -----END CERTIFICATE-----Generated at Mon Jan 26 01:00:16 2026 by rpki-client