This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/AmdO1jA2vkBtxkn2vv7Y1wu4dFM.roa File: AmdO1jA2vkBtxkn2vv7Y1wu4dFM.roa (raw, json) Hash identifier: wY1LZtovvbzyHM2W8YhMwLuam5z9V3nwmwDqM8gEEF4= Subject key identifier: 02:67:4E:D6:30:36:BE:40:6D:C6:49:F6:BE:FE:D8:D7:0B:B8:74:53 Certificate issuer: /CN=255876412d20fbb6cab823481782ac47703b4404 Certificate serial: 019B7B36C998A56F080CE4A04C2A56EE53B5 Authority key identifier: 25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/AmdO1jA2vkBtxkn2vv7Y1wu4dFM.roa Signing time: Thu 01 Jan 2026 20:19:06 +0000 ROA not before: Thu 01 Jan 2026 20:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210475 IP address blocks: 2a01:ffc6:4000::/34 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:c9:98:a5:6f:08:0c:e4:a0:4c:2a:56:ee:53:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=255876412d20fbb6cab823481782ac47703b4404 Validity Not Before: Jan 1 20:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=02674ed63036be406dc649f6befed8d70bb87453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:62:8d:ac:b0:4b:01:4e:b6:25:7f:92:76:c8: 6d:5f:7a:81:61:80:c8:e2:fd:14:b2:fa:2d:36:57: 95:62:9e:94:41:e0:af:24:5c:d0:51:74:d0:4d:77: 5f:0b:18:f1:c6:8f:c5:f0:3c:96:4a:b5:5e:fe:f1: bc:48:6d:da:b5:e1:20:99:55:b1:64:c2:a0:57:a0: 07:f1:20:03:09:70:0a:aa:7e:26:41:79:cf:1c:64: 47:8a:60:0e:d7:5a:f5:eb:77:8b:60:da:3e:75:b8: e7:07:d5:36:6d:00:f4:53:f6:3b:ca:17:cf:2f:38: 1a:09:38:c0:5e:d1:8f:4b:57:3c:84:b0:ce:d8:f6: fa:2f:86:96:f5:81:18:db:57:b2:ae:d6:16:62:b6: 73:2a:3f:b1:fe:4d:21:c5:ca:46:8f:aa:57:e0:43: dd:d4:dc:a0:88:bd:97:86:0a:23:1c:49:18:9f:a4: e2:af:3c:d6:43:2f:3f:6f:23:ca:db:8f:b5:69:84: 0b:59:8d:35:74:80:0b:2a:66:9f:42:83:15:89:5f: f4:02:69:3c:7a:f3:04:7b:3b:6f:4d:26:05:04:a9: 91:09:c9:b7:38:0c:95:19:c1:28:73:06:2b:1c:48: 74:93:63:0f:b9:ba:9a:c6:e2:08:28:cf:26:a6:75: 4e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:67:4E:D6:30:36:BE:40:6D:C6:49:F6:BE:FE:D8:D7:0B:B8:74:53 X509v3 Authority Key Identifier: keyid:25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/AmdO1jA2vkBtxkn2vv7Y1wu4dFM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:ffc6:4000::/34 Signature Algorithm: sha256WithRSAEncryption 7c:d9:7c:a1:05:f6:ee:54:be:09:09:89:2c:ba:78:1c:f3:ff: 97:0a:60:54:7d:b4:35:46:90:93:62:63:2d:8a:d0:d3:32:73: d8:d1:7e:c6:80:fa:e8:0e:5d:75:aa:46:47:eb:90:0d:74:ba: b4:95:8e:c8:70:ce:97:1e:62:ae:4e:aa:cf:b3:08:61:92:80: 10:c1:dc:5b:5d:62:fd:ad:42:f5:83:ed:d6:f0:88:6d:ea:f7: 69:dd:1f:d5:c9:1b:95:43:b6:95:b7:45:1a:32:83:46:95:53: 71:55:42:20:ac:0a:f5:bf:40:ff:c4:2a:92:35:9e:eb:fe:36: 4a:3e:b7:d2:06:71:63:85:1c:72:3e:86:5d:2a:95:d1:13:73: e3:2c:25:21:9a:40:6c:82:e7:30:60:7c:54:a7:74:93:15:cd: 44:e0:75:61:36:87:e4:1d:c4:35:07:3c:8d:fb:05:8d:f9:85: 27:79:a8:cf:d3:fa:6c:97:32:ea:55:02:66:b5:fc:4b:a7:cb: 96:10:a6:b3:b2:d5:60:7d:bc:c5:09:cf:2c:82:d9:e5:d5:e3: 91:e8:25:03:d6:d8:a5:d6:12:42:e2:20:88:de:82:3e:89:5b: a9:fb:61:18:9e:8b:ea:fd:dc:46:dc:ce:d2:84:8e:95:49:73: 74:72:4f:fe -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt7NsmYpW8IDOSgTCpW7lO1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1NTg3NjQxMmQyMGZiYjZjYWI4MjM0ODE3ODJhYzQ3NzAz YjQ0MDQwHhcNMjYwMTAxMjAxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMjY3NGVkNjMwMzZiZTQwNmRjNjQ5ZjZiZWZlZDhkNzBiYjg3NDUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmKNrLBLAU62JX+SdshtX3qBYYDI 4v0UsvotNleVYp6UQeCvJFzQUXTQTXdfCxjxxo/F8DyWSrVe/vG8SG3ateEgmVWx ZMKgV6AH8SADCXAKqn4mQXnPHGRHimAO11r163eLYNo+dbjnB9U2bQD0U/Y7yhfP LzgaCTjAXtGPS1c8hLDO2Pb6L4aW9YEY21eyrtYWYrZzKj+x/k0hxcpGj6pX4EPd 1NygiL2XhgojHEkYn6TirzzWQy8/byPK24+1aYQLWY01dIALKmafQoMViV/0Amk8 evMEeztvTSYFBKmRCcm3OAyVGcEocwYrHEh0k2MPubqaxuIIKM8mpnVOiwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFAJnTtYwNr5AbcZJ9r7+2NcLuHRTMB8GA1UdIwQY MBaAFCVYdkEtIPu2yrgjSBeCrEdwO0QEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEt ODc2YzdmY2E0YjM0LzEvQW1kTzFqQTJ2a0J0eGtuMnZ2N1kxd3U0ZEZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEtODc2YzdmY2E0YjM0 LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGKgH/xkAw DQYJKoZIhvcNAQELBQADggEBAHzZfKEF9u5UvgkJiSy6eBzz/5cKYFR9tDVGkJNi Yy2K0NMyc9jRfsaA+ugOXXWqRkfrkA10urSVjshwzpceYq5Oqs+zCGGSgBDB3Ftd Yv2tQvWD7dbwiG3q92ndH9XJG5VDtpW3RRoyg0aVU3FVQiCsCvW/QP/EKpI1nuv+ Nko+t9IGcWOFHHI+hl0qldETc+MsJSGaQGyC5zBgfFSndJMVzUTgdWE2h+QdxDUH PI37BY35hSd5qM/T+myXMupVAma1/Euny5YQprOy1WB9vMUJzyyC2eXV45HoJQPW 2KXWEkLiIIjegj6JW6n7YRiei+r93EbcztKEjpVJc3RyT/4= -----END CERTIFICATE-----Generated at Sun Jan 25 15:14:06 2026 by rpki-client