This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7619ec-5438-4552-abab-480df8f41e44/1/dlAKs2OGLWJirE63ZpdfiOJ1IDw.roa File: dlAKs2OGLWJirE63ZpdfiOJ1IDw.roa (raw, json) Hash identifier: 1fH4y0wj0PpFc5LsMAZ3oXLqRp58JujDDG0+JToDmTM= Subject key identifier: 76:50:0A:B3:63:86:2D:62:62:AC:4E:B7:66:97:5F:88:E2:75:20:3C Certificate issuer: /CN=6187169e030e3725d6eb478a327e6bdf36be8d2f Certificate serial: 019B79ECABADAABEDAC3C410716A2E304E27 Authority key identifier: 61:87:16:9E:03:0E:37:25:D6:EB:47:8A:32:7E:6B:DF:36:BE:8D:2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYcWngMONyXW60eKMn5r3za-jS8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/7619ec-5438-4552-abab-480df8f41e44/1/dlAKs2OGLWJirE63ZpdfiOJ1IDw.roa Signing time: Thu 01 Jan 2026 14:18:32 +0000 ROA not before: Thu 01 Jan 2026 14:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207911 IP address blocks: 2001:678:10d8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/7619ec-5438-4552-abab-480df8f41e44/1/YYcWngMONyXW60eKMn5r3za-jS8.crl rsync://rpki.ripe.net/repository/DEFAULT/21/7619ec-5438-4552-abab-480df8f41e44/1/YYcWngMONyXW60eKMn5r3za-jS8.mft rsync://rpki.ripe.net/repository/DEFAULT/YYcWngMONyXW60eKMn5r3za-jS8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:ab:ad:aa:be:da:c3:c4:10:71:6a:2e:30:4e:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6187169e030e3725d6eb478a327e6bdf36be8d2f Validity Not Before: Jan 1 14:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=76500ab363862d6262ac4eb766975f88e275203c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f2:77:bd:97:6e:80:27:0b:db:99:11:70:df: 9d:be:ad:5a:52:32:80:88:47:22:2c:52:20:df:6b: aa:b3:c3:88:28:db:42:5f:1f:d0:17:cd:b8:02:88: 1e:cc:f1:5d:bb:9c:f1:07:7e:16:36:38:41:52:be: d7:37:7d:ba:b5:df:53:53:8a:22:39:22:44:d5:b0: fb:81:9b:78:ff:4e:e6:b7:eb:79:78:32:88:cd:58: 56:82:ae:d1:03:42:7a:89:8f:34:55:26:23:de:f6: 7d:8e:d4:35:db:48:5b:1c:bf:2c:d4:cd:01:bb:c2: 24:19:a0:c1:ef:7e:65:36:68:02:75:e5:1c:ea:1c: cc:99:d5:53:6c:3a:c7:41:3b:40:2c:76:2e:90:9e: 8d:47:05:bb:2c:8d:08:ce:83:df:fc:1c:46:2d:4f: b3:84:79:67:6f:d5:a0:24:6e:a5:47:8c:56:1c:79: 36:9c:da:0a:d6:b0:85:f6:ff:a6:cc:a6:b6:b6:97: b1:e2:b0:8c:48:e4:e5:ab:b9:aa:4a:ec:78:db:49: 07:cb:22:11:22:d5:8c:14:78:1e:e4:e9:62:81:47: e7:d4:2c:01:4d:21:95:cb:4a:81:7f:9d:f5:e1:5b: d6:0c:4f:04:3c:40:89:2d:23:da:c9:90:0d:df:51: 7b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:50:0A:B3:63:86:2D:62:62:AC:4E:B7:66:97:5F:88:E2:75:20:3C X509v3 Authority Key Identifier: keyid:61:87:16:9E:03:0E:37:25:D6:EB:47:8A:32:7E:6B:DF:36:BE:8D:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYcWngMONyXW60eKMn5r3za-jS8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7619ec-5438-4552-abab-480df8f41e44/1/dlAKs2OGLWJirE63ZpdfiOJ1IDw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7619ec-5438-4552-abab-480df8f41e44/1/YYcWngMONyXW60eKMn5r3za-jS8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:10d8::/48 Signature Algorithm: sha256WithRSAEncryption 8a:a1:a3:ac:9a:0d:6c:54:53:f2:0d:6b:43:0d:8a:60:52:9d: ba:a4:69:5a:41:2f:fb:e9:b1:ef:b0:51:25:b1:d2:e5:08:9a: f8:1b:0d:d6:47:ec:09:50:77:92:f2:11:93:98:de:84:12:67: 4e:55:de:c5:5e:74:06:c2:cd:9e:15:12:90:4b:99:d9:23:73: c0:cd:a3:00:ff:6b:b7:ed:b6:ea:8b:43:cb:63:71:c3:dc:cd: 0d:bc:28:eb:e3:46:f5:f1:d9:38:b1:27:13:a5:85:a2:ed:4e: ad:b4:dc:d2:4e:0c:2e:59:36:fe:8c:96:4f:c6:c6:8b:58:43: 62:30:93:80:02:c4:52:9d:75:23:74:1c:73:a2:15:e5:2a:ca: 2b:f7:29:cd:ce:6a:30:ff:90:e3:4c:e2:0e:df:5e:6c:a2:65: db:38:fb:09:60:72:ce:13:89:bf:fb:57:84:c8:61:63:a9:bb: 1e:f1:2b:0a:37:76:db:bf:0f:69:c2:b6:d5:e8:3f:69:0e:a5: 24:57:46:de:8b:eb:35:ab:03:d1:1c:c7:bf:75:a2:53:31:8a: eb:99:64:db:0b:9d:97:f5:c5:28:54:8f:3b:32:23:4b:92:4d: 37:34:f8:46:b8:64:fc:75:82:84:2d:37:db:82:8e:ab:a6:7a: a1:24:e8:09 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt57Kutqr7aw8QQcWouME4nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxODcxNjllMDMwZTM3MjVkNmViNDc4YTMyN2U2YmRmMzZi ZThkMmYwHhcNMjYwMTAxMTQxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NjUwMGFiMzYzODYyZDYyNjJhYzRlYjc2Njk3NWY4OGUyNzUyMDNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvJ3vZdugCcL25kRcN+dvq1aUjKA iEciLFIg32uqs8OIKNtCXx/QF824AogezPFdu5zxB34WNjhBUr7XN326td9TU4oi OSJE1bD7gZt4/07mt+t5eDKIzVhWgq7RA0J6iY80VSYj3vZ9jtQ120hbHL8s1M0B u8IkGaDB735lNmgCdeUc6hzMmdVTbDrHQTtALHYukJ6NRwW7LI0IzoPf/BxGLU+z hHlnb9WgJG6lR4xWHHk2nNoK1rCF9v+mzKa2tpex4rCMSOTlq7mqSux420kHyyIR ItWMFHge5OligUfn1CwBTSGVy0qBf5314VvWDE8EPECJLSPayZAN31F7ZQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFHZQCrNjhi1iYqxOt2aXX4jidSA8MB8GA1UdIwQY MBaAFGGHFp4DDjcl1utHijJ+a982vo0vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVljV25nTU9OeVhXNjBlS01uNXIzemEtalM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS83NjE5ZWMtNTQzOC00NTUyLWFiYWIt NDgwZGY4ZjQxZTQ0LzEvZGxBS3MyT0dMV0ppckU2M1pwZGZpT0oxSUR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS83NjE5ZWMtNTQzOC00NTUyLWFiYWItNDgwZGY4ZjQxZTQ0 LzEvWVljV25nTU9OeVhXNjBlS01uNXIzemEtalM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeBDY MA0GCSqGSIb3DQEBCwUAA4IBAQCKoaOsmg1sVFPyDWtDDYpgUp26pGlaQS/76bHv sFElsdLlCJr4Gw3WR+wJUHeS8hGTmN6EEmdOVd7FXnQGws2eFRKQS5nZI3PAzaMA /2u37bbqi0PLY3HD3M0NvCjr40b18dk4sScTpYWi7U6ttNzSTgwuWTb+jJZPxsaL WENiMJOAAsRSnXUjdBxzohXlKsor9ynNzmow/5DjTOIO315somXbOPsJYHLOE4m/ +1eEyGFjqbse8SsKN3bbvw9pwrbV6D9pDqUkV0bei+s1qwPRHMe/daJTMYrrmWTb C52X9cUoVI87MiNLkk03NPhGuGT8dYKELTfbgo6rpnqhJOgJ -----END CERTIFICATE-----Generated at Sun Jan 25 19:59:51 2026 by rpki-client