This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/dDTXblpfw4e_IT4c8kZaMfC06Cw.roa File: dDTXblpfw4e_IT4c8kZaMfC06Cw.roa (raw, json) Hash identifier: b+jA1Jjy/tg0AVffR8Bs1rGJPFwYS6JP2eeG+taKslA= Subject key identifier: 74:34:D7:6E:5A:5F:C3:87:BF:21:3E:1C:F2:46:5A:31:F0:B4:E8:2C Certificate issuer: /CN=bbe026ef26920909d931ea4dac9d9390486b4153 Certificate serial: 019B7EA579C3604FF2FEAF7C8EF4D5FB046E Authority key identifier: BB:E0:26:EF:26:92:09:09:D9:31:EA:4D:AC:9D:93:90:48:6B:41:53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u-Am7yaSCQnZMepNrJ2TkEhrQVM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/dDTXblpfw4e_IT4c8kZaMfC06Cw.roa Signing time: Fri 02 Jan 2026 12:18:52 +0000 ROA not before: Fri 02 Jan 2026 12:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1680 IP address blocks: 2a10:640::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/u-Am7yaSCQnZMepNrJ2TkEhrQVM.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/u-Am7yaSCQnZMepNrJ2TkEhrQVM.mft rsync://rpki.ripe.net/repository/DEFAULT/u-Am7yaSCQnZMepNrJ2TkEhrQVM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:79:c3:60:4f:f2:fe:af:7c:8e:f4:d5:fb:04:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbe026ef26920909d931ea4dac9d9390486b4153 Validity Not Before: Jan 2 12:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7434d76e5a5fc387bf213e1cf2465a31f0b4e82c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:42:93:33:55:c1:df:2e:ac:cc:71:9c:3e:94: 18:a6:d2:b3:85:c9:06:8b:e5:f2:74:40:15:0c:a5: 6f:73:b9:a1:a0:e1:ab:b8:cd:db:6b:a8:dc:96:ae: 95:52:3c:b5:12:d6:ab:1d:52:03:11:9f:62:9e:96: ef:a4:ff:b8:b3:d9:5f:44:76:71:c9:54:ab:2f:b7: a5:42:d2:82:3a:f0:18:03:48:3f:c1:bf:06:85:b7: 1d:14:24:26:55:4b:d1:9c:f0:f6:67:6a:31:0c:2a: 7c:0b:bb:9e:b4:b7:44:5d:0c:91:42:a8:f6:d2:43: 0a:f2:57:61:7f:4c:cb:64:04:60:ef:36:df:6a:19: 5c:3c:b8:70:21:d3:50:3f:cf:ea:28:98:dc:93:bc: 7a:bd:a8:47:2b:6b:54:69:5f:93:52:1c:a5:61:a9: fc:59:0a:8d:68:ed:b9:21:d4:a0:aa:26:70:37:9b: 6d:49:e0:fd:ce:62:09:b6:7f:82:f6:fe:fd:7e:bd: df:af:20:d2:38:c7:c4:84:24:0e:91:f1:d0:f0:f3: b7:2e:53:cc:7d:72:65:30:30:6e:e8:46:51:3d:12: c6:de:24:03:88:ce:fd:b4:a5:ce:f0:ec:81:d8:ce: 48:a0:27:05:0c:ca:b3:05:7d:a8:64:40:78:a1:2a: f6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:34:D7:6E:5A:5F:C3:87:BF:21:3E:1C:F2:46:5A:31:F0:B4:E8:2C X509v3 Authority Key Identifier: keyid:BB:E0:26:EF:26:92:09:09:D9:31:EA:4D:AC:9D:93:90:48:6B:41:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u-Am7yaSCQnZMepNrJ2TkEhrQVM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/dDTXblpfw4e_IT4c8kZaMfC06Cw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/u-Am7yaSCQnZMepNrJ2TkEhrQVM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:640::/32 Signature Algorithm: sha256WithRSAEncryption 6a:a2:c1:17:da:ae:c3:4f:2d:d5:92:dd:6c:d3:62:ec:e6:86: 3c:00:59:f1:cb:4e:18:5e:39:15:9b:bf:32:a8:7d:0f:d3:38: 72:5f:17:2e:85:26:7d:66:ef:30:33:41:b4:01:c8:e9:40:72: 47:d9:72:d1:78:93:c6:be:07:31:8e:82:65:ec:00:66:3a:3a: aa:d7:86:43:fa:50:5b:3b:f3:46:4f:0a:ad:71:01:22:32:4f: 63:e3:e5:c0:fc:1d:38:4d:f9:cc:55:d1:8e:10:96:c3:0e:b2: de:6a:4b:28:b6:2e:59:12:ad:ca:db:9c:50:0d:f0:8f:86:8b: e7:45:df:ef:08:09:36:f5:ec:3a:ac:25:da:7e:5b:6c:64:45: fa:4e:ec:09:f9:f8:d4:e7:63:d9:0e:78:3d:6c:3d:1e:5c:fb: 16:f9:3c:e5:fa:b7:67:5c:2a:3b:00:b9:1f:9b:33:9a:4c:52: 43:2f:af:7e:54:60:d1:6b:b7:52:01:cc:49:50:c6:56:da:c9: 3c:e9:9c:43:10:d5:21:48:cf:74:0c:fe:b7:76:ec:62:7c:09: ad:1e:3b:2a:63:79:4c:70:0c:e4:5a:56:8e:c2:ef:54:30:79: 02:3d:b8:22:76:53:5e:32:a0:2e:a2:aa:21:b9:83:43:7b:32: 8d:f6:94:c7 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt+pXnDYE/y/q98jvTV+wRuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiZTAyNmVmMjY5MjA5MDlkOTMxZWE0ZGFjOWQ5MzkwNDg2 YjQxNTMwHhcNMjYwMTAyMTIxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NDM0ZDc2ZTVhNWZjMzg3YmYyMTNlMWNmMjQ2NWEzMWYwYjRlODJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUKTM1XB3y6szHGcPpQYptKzhckG i+XydEAVDKVvc7mhoOGruM3ba6jclq6VUjy1EtarHVIDEZ9inpbvpP+4s9lfRHZx yVSrL7elQtKCOvAYA0g/wb8GhbcdFCQmVUvRnPD2Z2oxDCp8C7uetLdEXQyRQqj2 0kMK8ldhf0zLZARg7zbfahlcPLhwIdNQP8/qKJjck7x6vahHK2tUaV+TUhylYan8 WQqNaO25IdSgqiZwN5ttSeD9zmIJtn+C9v79fr3fryDSOMfEhCQOkfHQ8PO3LlPM fXJlMDBu6EZRPRLG3iQDiM79tKXO8OyB2M5IoCcFDMqzBX2oZEB4oSr2ywIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFHQ0125aX8OHvyE+HPJGWjHwtOgsMB8GA1UdIwQY MBaAFLvgJu8mkgkJ2THqTaydk5BIa0FTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdS1BbTd5YVNDUW5aTWVwTnJKMlRrRWhyUVZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9iNzNhZGQtZWEwZi00YzIyLTk4MGUt MDU5YmFiMDE1Y2MzLzEvZERUWGJscGZ3NGVfSVQ0YzhrWmFNZkMwNkN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9iNzNhZGQtZWEwZi00YzIyLTk4MGUtMDU5YmFiMDE1Y2Mz LzEvdS1BbTd5YVNDUW5aTWVwTnJKMlRrRWhyUVZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhAGQDAN BgkqhkiG9w0BAQsFAAOCAQEAaqLBF9quw08t1ZLdbNNi7OaGPABZ8ctOGF45FZu/ Mqh9D9M4cl8XLoUmfWbvMDNBtAHI6UByR9ly0XiTxr4HMY6CZewAZjo6qteGQ/pQ WzvzRk8KrXEBIjJPY+PlwPwdOE35zFXRjhCWww6y3mpLKLYuWRKtytucUA3wj4aL 50Xf7wgJNvXsOqwl2n5bbGRF+k7sCfn41Odj2Q54PWw9Hlz7Fvk85fq3Z1wqOwC5 H5szmkxSQy+vflRg0Wu3UgHMSVDGVtrJPOmcQxDVIUjPdAz+t3bsYnwJrR47KmN5 THAM5FpWjsLvVDB5Aj24InZTXjKgLqKqIbmDQ3syjfaUxw== -----END CERTIFICATE-----Generated at Sun Jan 25 22:49:57 2026 by rpki-client