This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/tLZAPbek2ouyTp4yevQZizAET8s.roa File: tLZAPbek2ouyTp4yevQZizAET8s.roa (raw, json) Hash identifier: tADyVnGgx5bMdr4dmJRvuG7KHkNYQR4uWTbCCyaMg+Y= Subject key identifier: B4:B6:40:3D:B7:A4:DA:8B:B2:4E:9E:32:7A:F4:19:8B:30:04:4F:CB Certificate issuer: /CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606 Certificate serial: 019B7C8010170EEDDEC0EA5BD7B9CC8B1125 Authority key identifier: EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/tLZAPbek2ouyTp4yevQZizAET8s.roa Signing time: Fri 02 Jan 2026 02:18:46 +0000 ROA not before: Fri 02 Jan 2026 02:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 38042 IP address blocks: 2a13:2200::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/6i0QK2ESsNmouO66xLl8gZ-XxgY.crl rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/6i0QK2ESsNmouO66xLl8gZ-XxgY.mft rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:10:17:0e:ed:de:c0:ea:5b:d7:b9:cc:8b:11:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606 Validity Not Before: Jan 2 02:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4b6403db7a4da8bb24e9e327af4198b30044fcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ac:8c:0e:9f:9d:4f:a7:dc:5e:93:d8:33:12: 88:6a:eb:6d:55:87:2c:77:72:3c:f7:42:a4:4c:51: 8d:8d:03:68:ad:04:b4:0d:21:c0:a4:25:9a:e9:c3: 5d:2b:4c:a8:7c:d5:15:0d:fd:62:99:16:02:22:c4: 8c:72:0e:46:96:0d:03:f1:45:fa:02:91:d6:49:6c: 7c:5d:31:fb:51:75:55:89:cf:6e:ce:46:37:69:30: 93:50:4e:cf:7a:a3:6d:6e:c0:b3:3a:93:18:c0:de: 80:97:26:cf:29:e1:6b:a1:04:ec:be:cb:27:cb:80: a7:ec:f4:84:4a:f5:02:f8:41:d9:32:55:c5:96:04: 20:a5:09:bd:4f:f4:1f:31:f6:bb:99:b1:5c:58:5b: 93:d3:06:78:6b:67:22:73:ea:15:5e:a7:c5:be:6a: 29:59:3f:01:e5:e2:98:bb:5b:62:4a:a8:01:9b:5d: e1:83:f2:2b:c1:d2:ea:f2:f4:df:3d:dc:ff:7d:a4: 1e:4d:55:38:fd:43:25:ae:8f:c0:ec:9b:04:45:c6: 7b:9c:4f:11:c4:c8:7c:df:5d:49:f3:47:98:bf:b0: 01:42:f0:aa:40:24:d8:f8:a5:5d:70:c6:07:3f:a5: af:9c:87:48:98:58:4c:06:25:42:98:8a:1d:06:36: 83:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B6:40:3D:B7:A4:DA:8B:B2:4E:9E:32:7A:F4:19:8B:30:04:4F:CB X509v3 Authority Key Identifier: keyid:EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/tLZAPbek2ouyTp4yevQZizAET8s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/6i0QK2ESsNmouO66xLl8gZ-XxgY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:2200::/29 Signature Algorithm: sha256WithRSAEncryption 71:88:60:f2:d7:48:87:0c:d0:19:e8:a0:65:0f:a0:e3:bb:e2: 32:6e:c9:91:39:8e:9f:1b:84:ed:61:42:aa:65:be:2b:25:c2: 55:27:ea:bc:b5:08:5f:02:51:6c:2a:db:76:3b:4e:f2:f2:bd: 5f:39:b1:ce:7c:0d:ab:00:5d:ed:ed:43:de:56:db:fa:b3:c3: 29:dc:da:93:4f:c0:c6:21:aa:51:ae:5a:36:d2:99:d9:88:5b: d5:b4:0e:40:21:7b:dd:f3:32:54:c9:90:be:c9:98:91:ef:2e: 4e:1e:f7:10:ac:95:80:a0:07:f7:c6:f9:e5:88:be:1f:f9:99: 85:ad:a9:25:1f:c3:dc:54:fa:3d:05:aa:8e:48:fb:6d:53:25: 78:e5:d1:05:10:7e:7a:71:d5:6a:9d:d4:af:81:53:18:d3:fe: d8:6f:a8:90:3c:81:27:eb:55:0a:5a:1c:d0:a1:d3:15:d2:28: 7c:1e:1d:44:70:9e:b8:f8:c2:28:3b:c1:b3:9a:87:2f:02:a4: 61:8a:ca:01:85:e6:08:eb:3e:8d:8e:ed:49:f7:52:9e:61:0b: 78:ff:c1:1b:49:f7:bf:6b:05:0b:2d:2f:91:db:4c:9f:89:d6: 28:80:89:da:27:3a:15:bf:fd:e0:83:e2:ef:9a:0e:58:ad:36: 07:ba:74:71 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt8gBAXDu3ewOpb17nMixElMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhMmQxMDJiNjExMmIwZDlhOGI4ZWViYWM0Yjk3YzgxOWY5 N2M2MDYwHhcNMjYwMTAyMDIxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGI2NDAzZGI3YTRkYThiYjI0ZTllMzI3YWY0MTk4YjMwMDQ0ZmNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ayMDp+dT6fcXpPYMxKIauttVYcs d3I890KkTFGNjQNorQS0DSHApCWa6cNdK0yofNUVDf1imRYCIsSMcg5Glg0D8UX6 ApHWSWx8XTH7UXVVic9uzkY3aTCTUE7PeqNtbsCzOpMYwN6AlybPKeFroQTsvssn y4Cn7PSESvUC+EHZMlXFlgQgpQm9T/QfMfa7mbFcWFuT0wZ4a2cic+oVXqfFvmop WT8B5eKYu1tiSqgBm13hg/IrwdLq8vTfPdz/faQeTVU4/UMlro/A7JsERcZ7nE8R xMh8311J80eYv7ABQvCqQCTY+KVdcMYHP6WvnIdImFhMBiVCmIodBjaD1wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFLS2QD23pNqLsk6eMnr0GYswBE/LMB8GA1UdIwQY MBaAFOotECthErDZqLjuusS5fIGfl8YGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmkwUUsyRVNzTm1vdU82NnhMbDhnWi1YeGdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80Y2RlZmEtNWVlMi00NzE5LWE3ZTEt YjgyOWNjNDAxMDMxLzEvdExaQVBiZWsyb3V5VHA0eWV2UVppekFFVDhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC80Y2RlZmEtNWVlMi00NzE5LWE3ZTEtYjgyOWNjNDAxMDMx LzEvNmkwUUsyRVNzTm1vdU82NnhMbDhnWi1YeGdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhMiADAN BgkqhkiG9w0BAQsFAAOCAQEAcYhg8tdIhwzQGeigZQ+g47viMm7JkTmOnxuE7WFC qmW+KyXCVSfqvLUIXwJRbCrbdjtO8vK9XzmxznwNqwBd7e1D3lbb+rPDKdzak0/A xiGqUa5aNtKZ2Yhb1bQOQCF73fMyVMmQvsmYke8uTh73EKyVgKAH98b55Yi+H/mZ ha2pJR/D3FT6PQWqjkj7bVMleOXRBRB+enHVap3Ur4FTGNP+2G+okDyBJ+tVCloc 0KHTFdIofB4dRHCeuPjCKDvBs5qHLwKkYYrKAYXmCOs+jY7tSfdSnmELeP/BG0n3 v2sFCy0vkdtMn4nWKICJ2ic6Fb/94IPi75oOWK02B7p0cQ== -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:30 2026 by rpki-client