This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/4vDYopNfblYxNyrSl7_Y8BBd78I.roa File: 4vDYopNfblYxNyrSl7_Y8BBd78I.roa (raw, json) Hash identifier: 9L22tlP5yMozusESHvaSo7CwK7JqSGuZhoMXYx5tMKw= Subject key identifier: E2:F0:D8:A2:93:5F:6E:56:31:37:2A:D2:97:BF:D8:F0:10:5D:EF:C2 Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b Certificate serial: 019B7F84180E33CB2763B7F119F5BAB7F101 Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/4vDYopNfblYxNyrSl7_Y8BBd78I.roa Signing time: Fri 02 Jan 2026 16:22:01 +0000 ROA not before: Fri 02 Jan 2026 16:22:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 397516 IP address blocks: 2a01:488:bb0f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.mft rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:18:0e:33:cb:27:63:b7:f1:19:f5:ba:b7:f1:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b Validity Not Before: Jan 2 16:22:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e2f0d8a2935f6e5631372ad297bfd8f0105defc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9b:f8:1c:7d:1b:f7:cb:ee:eb:4e:c9:ae:a2: 95:8d:a4:ba:33:78:1e:cb:28:f6:20:ed:41:0f:af: 8b:4c:92:e8:ad:db:d4:4a:ec:4f:ef:48:f3:aa:7f: 2c:95:2d:ff:6f:cf:ce:43:63:85:82:dc:c1:3e:8a: ff:62:73:db:e6:23:35:7a:6f:ac:e9:c6:ae:74:2c: e7:1d:d9:ca:83:28:91:45:cf:18:1c:71:57:19:2e: f8:38:ec:fa:eb:42:e9:b3:1f:3d:a2:23:63:6b:1d: f5:47:82:ca:a3:66:dc:34:b8:31:87:54:c1:33:30: 94:00:42:64:0b:7a:b0:c2:1a:c9:12:9e:b7:3e:4f: 6a:04:a7:52:bd:1a:2c:09:c7:35:8f:7f:cc:65:6a: 4f:65:2f:7c:ff:91:ce:e3:7c:55:bd:59:bf:e5:d5: 52:d6:ba:d7:8f:50:03:19:14:84:cb:0e:ac:b9:8b: 16:d8:56:ba:2b:0b:6a:6e:c2:51:1c:0a:16:be:86: f2:77:52:7e:46:71:bd:ce:0f:4d:93:5f:2f:cd:bb: a0:2b:28:60:e9:ae:e5:03:be:32:ec:d4:df:fe:8c: 7c:b6:1d:52:4b:90:d1:df:1e:4b:67:0b:2e:32:c0: 36:90:c1:e7:80:a8:c0:a1:68:22:52:0a:f7:86:74: b1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:F0:D8:A2:93:5F:6E:56:31:37:2A:D2:97:BF:D8:F0:10:5D:EF:C2 X509v3 Authority Key Identifier: keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/4vDYopNfblYxNyrSl7_Y8BBd78I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:488:bb0f::/48 Signature Algorithm: sha256WithRSAEncryption 6e:76:2c:e9:5a:a8:49:cd:ba:5d:7c:db:3f:48:a8:f6:fd:5f: cd:4b:11:22:77:aa:dd:a8:d7:cd:ae:1b:77:2e:c0:b4:3f:3d: 3c:d7:5a:5c:c4:87:87:d1:29:c0:bc:75:2d:68:1d:70:46:27: 7c:dd:7b:8b:41:80:cf:46:e8:66:78:17:bf:61:d1:cf:60:31: 5c:9f:3c:38:cf:50:2a:ac:a0:ff:29:32:39:00:aa:30:0a:ec: 34:0e:8a:8d:38:cf:1a:78:b0:13:e4:9d:4f:9b:de:a8:a5:94: 6a:65:55:e5:d5:28:cb:94:e6:69:4c:c9:f1:a6:4f:05:dc:d1: e3:a2:b7:16:9d:34:49:a4:1a:b9:71:57:1b:66:15:0d:3f:d4: 35:58:da:39:b6:54:22:fe:8e:77:a2:1e:1c:71:95:15:84:a0: 4b:41:30:9f:4b:53:a4:85:1b:e4:f8:80:1e:5c:b0:f7:d4:6e: bf:44:f7:e3:77:77:0d:02:46:6b:42:2d:d9:4e:67:99:d9:aa: 0f:60:05:58:44:4d:d6:f0:bd:87:12:a3:32:c9:a7:a9:11:e8: 00:95:6a:87:77:f2:03:d1:60:cc:91:70:6e:f6:d7:3d:aa:c7: b1:b3:d6:a2:fb:af:cb:9a:2a:2c:9e:87:06:3c:f6:18:1b:10: 5e:79:01:c3 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/hBgOM8snY7fxGfW6t/EBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNmVkMGZiN2IzMjA4MzJhYzE1ODA1MzRjN2IyNjNmMzA0 ZTk4MWIwHhcNMjYwMTAyMTYyMjAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMmYwZDhhMjkzNWY2ZTU2MzEzNzJhZDI5N2JmZDhmMDEwNWRlZmMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn5v4HH0b98vu607JrqKVjaS6M3ge yyj2IO1BD6+LTJLordvUSuxP70jzqn8slS3/b8/OQ2OFgtzBPor/YnPb5iM1em+s 6caudCznHdnKgyiRRc8YHHFXGS74OOz660Lpsx89oiNjax31R4LKo2bcNLgxh1TB MzCUAEJkC3qwwhrJEp63Pk9qBKdSvRosCcc1j3/MZWpPZS98/5HO43xVvVm/5dVS 1rrXj1ADGRSEyw6suYsW2Fa6KwtqbsJRHAoWvobyd1J+RnG9zg9Nk18vzbugKyhg 6a7lA74y7NTf/ox8th1SS5DR3x5LZwsuMsA2kMHngKjAoWgiUgr3hnSxrwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFOLw2KKTX25WMTcq0pe/2PAQXe/CMB8GA1UdIwQY MBaAFLpu0Pt7MggyrBWAU0x7Jj8wTpgbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQt MTYxZjM0MjM4N2QxLzEvNHZEWW9wTmZibFl4TnlyU2w3X1k4QkJkNzhJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQtMTYxZjM0MjM4N2Qx LzEvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgEEiLsP MA0GCSqGSIb3DQEBCwUAA4IBAQBudizpWqhJzbpdfNs/SKj2/V/NSxEid6rdqNfN rht3LsC0Pz0811pcxIeH0SnAvHUtaB1wRid83XuLQYDPRuhmeBe/YdHPYDFcnzw4 z1AqrKD/KTI5AKowCuw0DoqNOM8aeLAT5J1Pm96opZRqZVXl1SjLlOZpTMnxpk8F 3NHjorcWnTRJpBq5cVcbZhUNP9Q1WNo5tlQi/o53oh4ccZUVhKBLQTCfS1OkhRvk +IAeXLD31G6/RPfjd3cNAkZrQi3ZTmeZ2aoPYAVYRE3W8L2HEqMyyaepEegAlWqH d/ID0WDMkXBu9tc9qsexs9ai+6/LmiosnocGPPYYGxBeeQHD -----END CERTIFICATE-----Generated at Sun Jan 25 12:46:41 2026 by rpki-client