This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/tKFH2HoWkbg9bb1yJ7KiMyAru7Q.roa File: tKFH2HoWkbg9bb1yJ7KiMyAru7Q.roa (raw, json) Hash identifier: Hl1JR0aJQiWIXrA53WzTjCP5mFFzxpdo6sRUi29w3iI= Subject key identifier: B4:A1:47:D8:7A:16:91:B8:3D:6D:BD:72:27:B2:A2:33:20:2B:BB:B4 Certificate issuer: /CN=87be093097097c4457ff5aa3e5893c8c15432612 Certificate serial: 019B7BA31BFE664B2DFC481209509BACB20A Authority key identifier: 87:BE:09:30:97:09:7C:44:57:FF:5A:A3:E5:89:3C:8C:15:43:26:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/tKFH2HoWkbg9bb1yJ7KiMyAru7Q.roa Signing time: Thu 01 Jan 2026 22:17:25 +0000 ROA not before: Thu 01 Jan 2026 22:17:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212828 IP address blocks: 2a10:9903:600::/48 maxlen: 48 2a10:9903:601::/48 maxlen: 48 2a10:9903:602::/48 maxlen: 48 2a10:9903:603::/48 maxlen: 48 2a10:9903:604::/48 maxlen: 48 2a10:9903:605::/48 maxlen: 48 2a10:9903:606::/48 maxlen: 48 2a10:9903:607::/48 maxlen: 48 2a10:9903:608::/48 maxlen: 48 2a10:9903:609::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/h74JMJcJfERX_1qj5Yk8jBVDJhI.crl rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/h74JMJcJfERX_1qj5Yk8jBVDJhI.mft rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:1b:fe:66:4b:2d:fc:48:12:09:50:9b:ac:b2:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87be093097097c4457ff5aa3e5893c8c15432612 Validity Not Before: Jan 1 22:17:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4a147d87a1691b83d6dbd7227b2a233202bbbb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3d:fb:ca:57:ff:07:d1:f0:28:08:ad:18:b7: 4d:ff:6a:e5:62:28:75:ad:4b:7c:13:4f:e7:52:66: fb:cf:45:17:7e:03:d0:ee:99:4a:2b:24:f1:cf:66: bf:76:7f:33:02:e8:e7:9c:fc:4a:76:00:1d:bc:c1: 24:6d:f4:ea:f7:49:45:ff:b4:1d:6a:f3:15:46:9a: 27:7c:6c:78:97:b7:35:4f:0a:2a:fd:24:de:a7:e1: 2a:c0:26:cb:18:21:19:f3:42:db:8d:d2:e7:ee:e8: 9a:2d:bb:b9:62:52:b4:85:92:ee:c5:4e:af:3b:57: c5:6a:3f:ca:dd:8b:dc:09:ec:18:47:e5:5c:71:df: a1:54:c0:cb:3c:89:09:86:38:50:d0:85:d7:eb:ce: 2b:4e:ef:64:6a:c7:03:c4:a3:d4:39:5c:ba:5f:51: 4f:d6:72:3d:ac:0e:c2:5d:b1:bd:23:82:b3:01:c5: 62:7e:dc:43:03:8d:f3:10:7b:09:b7:9b:ce:fe:94: 68:5c:e6:96:1a:47:65:5c:8a:b9:c8:f3:98:ba:52: 95:8a:68:e5:23:a3:b5:3a:67:52:16:fa:ac:ea:5e: 3b:02:52:cd:dd:86:9c:93:90:2d:b8:76:b9:37:e5: 01:1f:31:e3:67:cc:e6:ea:f5:1a:b9:bf:b4:e6:70: 72:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:A1:47:D8:7A:16:91:B8:3D:6D:BD:72:27:B2:A2:33:20:2B:BB:B4 X509v3 Authority Key Identifier: keyid:87:BE:09:30:97:09:7C:44:57:FF:5A:A3:E5:89:3C:8C:15:43:26:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/tKFH2HoWkbg9bb1yJ7KiMyAru7Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/h74JMJcJfERX_1qj5Yk8jBVDJhI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:9903:600::-2a10:9903:609:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 86:fc:06:eb:27:d7:fe:95:66:4c:6e:df:92:c2:b3:53:a6:91: c3:eb:ae:5f:85:6b:f2:a6:a9:96:ed:82:53:5f:84:4e:20:b1: 3c:10:6a:7f:eb:4d:ad:83:9f:5b:03:d9:06:84:b8:37:6e:3a: bc:b9:38:d3:d4:06:3e:94:bc:cb:c2:72:9a:a8:40:74:c5:ea: d6:32:b6:43:a0:09:8d:de:6e:06:80:70:06:5c:8e:87:48:1c: 82:d1:d5:85:1c:6f:fc:5d:94:cd:e8:fc:c2:d0:fc:c8:ad:6b: 0b:0b:e3:e8:b3:43:bd:52:d0:78:83:fb:23:57:e4:1b:21:50: 03:09:bd:77:50:ba:ce:93:28:43:82:81:82:ae:4a:91:6e:9f: 5e:7d:de:89:1a:1e:c8:a7:8e:cf:be:bd:c5:fa:a1:f2:1d:47: 45:a6:b0:02:01:25:80:37:96:32:81:73:d6:79:12:24:55:f3: 77:e3:d1:38:31:7e:b0:b2:bf:7b:95:a7:93:66:7b:a4:0f:39: c9:e1:5a:d7:a1:1a:2f:64:a7:f7:a0:54:90:cb:bb:19:dc:52: 75:ed:5f:68:56:8c:84:7f:7f:ae:47:e6:c1:e7:bf:82:f6:be: 86:50:46:3c:1b:df:78:12:64:ad:c0:b9:fc:2b:63:00:c2:b0: 3d:57:aa:33 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgISAZt7oxv+Zkst/EgSCVCbrLIKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3YmUwOTMwOTcwOTdjNDQ1N2ZmNWFhM2U1ODkzYzhjMTU0 MzI2MTIwHhcNMjYwMTAxMjIxNzI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGExNDdkODdhMTY5MWI4M2Q2ZGJkNzIyN2IyYTIzMzIwMmJiYmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApj37ylf/B9HwKAitGLdN/2rlYih1 rUt8E0/nUmb7z0UXfgPQ7plKKyTxz2a/dn8zAujnnPxKdgAdvMEkbfTq90lF/7Qd avMVRponfGx4l7c1Twoq/STep+EqwCbLGCEZ80LbjdLn7uiaLbu5YlK0hZLuxU6v O1fFaj/K3YvcCewYR+Vccd+hVMDLPIkJhjhQ0IXX684rTu9kascDxKPUOVy6X1FP 1nI9rA7CXbG9I4KzAcViftxDA43zEHsJt5vO/pRoXOaWGkdlXIq5yPOYulKVimjl I6O1OmdSFvqs6l47AlLN3Yack5AtuHa5N+UBHzHjZ8zm6vUaub+05nBybQIDAQAB o4ICFjCCAhIwHQYDVR0OBBYEFLShR9h6FpG4PW29cieyojMgK7u0MB8GA1UdIwQY MBaAFIe+CTCXCXxEV/9ao+WJPIwVQyYSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDc0Sk1KY0pmRVJYXzFxajVZazhqQlZESmhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jYzhmNGEtNGMwMi00MDRiLThkOTMt MmNkZTY1ZjMxMTJhLzEvdEtGSDJIb1drYmc5YmIxeUo3S2lNeUFydTdRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9jYzhmNGEtNGMwMi00MDRiLThkOTMtMmNkZTY1ZjMxMTJh LzEvaDc0Sk1KY0pmRVJYXzFxajVZazhqQlZESmhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATMBEDBgEqEJkD BgMHASoQmQMGCDANBgkqhkiG9w0BAQsFAAOCAQEAhvwG6yfX/pVmTG7fksKzU6aR w+uuX4Vr8qaplu2CU1+ETiCxPBBqf+tNrYOfWwPZBoS4N246vLk409QGPpS8y8Jy mqhAdMXq1jK2Q6AJjd5uBoBwBlyOh0gcgtHVhRxv/F2Uzej8wtD8yK1rCwvj6LND vVLQeIP7I1fkGyFQAwm9d1C6zpMoQ4KBgq5KkW6fXn3eiRoeyKeOz769xfqh8h1H RaawAgElgDeWMoFz1nkSJFXzd+PRODF+sLK/e5Wnk2Z7pA85yeFa16EaL2Sn96BU kMu7GdxSde1faFaMhH9/rkfmwee/gva+hlBGPBvfeBJkrcC5/CtjAMKwPVeqMw== -----END CERTIFICATE-----Generated at Sun Jan 25 21:03:08 2026 by rpki-client