This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/xt2hck0iNiJOY_MIM20wT5NCLGo.roa File: xt2hck0iNiJOY_MIM20wT5NCLGo.roa (raw, json) Hash identifier: //y/D2+vgTBgPbt/2pbGmTN0KjJEuqOi0kceT5bVYPs= Subject key identifier: C6:DD:A1:72:4D:22:36:22:4E:63:F3:08:33:6D:30:4F:93:42:2C:6A Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce Certificate serial: 019B7CEDED960D14399FED93D1CEBC7BB4F8 Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/xt2hck0iNiJOY_MIM20wT5NCLGo.roa Signing time: Fri 02 Jan 2026 04:18:46 +0000 ROA not before: Fri 02 Jan 2026 04:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198889 IP address blocks: 2a05:1083::/32 maxlen: 48 2a0d:2584::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.mft rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:ed:96:0d:14:39:9f:ed:93:d1:ce:bc:7b:b4:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce Validity Not Before: Jan 2 04:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c6dda1724d2236224e63f308336d304f93422c6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:af:ab:35:12:43:1b:c2:e2:95:42:72:21:cb: f1:98:86:3a:0b:fe:d2:f3:36:e4:7a:bf:72:de:24: 91:8f:ff:a5:56:73:be:4e:e9:53:8e:82:88:2b:b8: 5e:e7:13:b3:86:6d:45:ae:19:c2:d2:d0:4e:88:0b: 46:02:2c:2e:25:9b:52:5f:ff:f5:8b:62:e3:42:1a: 99:49:c6:1f:8e:9a:31:07:62:8f:c3:ec:2b:d4:8b: a7:68:ef:b0:34:ee:fb:41:eb:be:00:51:51:9d:a7: 44:97:1b:ad:0f:89:b4:b0:6c:ca:e2:ec:d9:1b:b2: 90:22:ff:39:2b:f9:40:4b:d3:70:b9:7e:12:0a:b5: ad:cf:32:98:07:f1:6e:89:21:e3:e6:17:e1:a0:60: 23:87:99:2c:b4:7e:7a:f7:56:9c:9f:3f:e3:6d:9e: 81:f4:2f:c0:ef:89:d5:45:7b:d7:2a:aa:41:6a:a8: 2b:02:2f:68:5f:ad:ed:a8:b1:76:30:16:c7:18:57: 76:a9:51:5d:53:c5:54:df:e8:00:64:04:41:3e:c7: 6d:b5:a5:e3:23:14:57:63:8c:e1:ef:af:fa:90:d0: 82:0a:9f:08:0a:db:6c:f0:dc:33:e9:a5:1b:8b:37: bb:4e:f5:a4:90:ff:f6:fa:06:e3:5e:14:0a:3b:3d: 16:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:DD:A1:72:4D:22:36:22:4E:63:F3:08:33:6D:30:4F:93:42:2C:6A X509v3 Authority Key Identifier: keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/xt2hck0iNiJOY_MIM20wT5NCLGo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:1083::/32 2a0d:2584::/32 Signature Algorithm: sha256WithRSAEncryption 4d:19:40:8d:b3:43:6f:a6:7c:86:d5:0d:f1:45:70:a9:87:78: c1:29:c9:1e:3f:0b:72:73:dd:1c:7c:3f:de:cf:17:d9:e3:52: ed:11:0d:fe:f9:73:44:21:02:90:44:be:b5:33:b2:02:fb:34: f3:bc:bb:5c:34:10:08:4b:ac:d4:92:1c:fe:aa:d1:3a:e5:65: 35:a6:cb:33:37:7f:16:4d:14:81:79:80:b7:75:38:70:36:90: 0a:84:bd:21:21:a7:9b:44:b2:7a:95:0c:bd:7a:ec:9c:ab:ec: 6e:c5:ff:d5:99:9a:11:85:38:e3:08:0e:bb:97:71:a6:89:05: 90:f9:9b:55:32:f9:3f:ad:42:89:86:47:dc:a7:e8:98:7a:57: 97:d4:44:6b:64:a2:66:27:41:1a:0c:c1:3b:4c:4a:ca:42:62: 53:23:e9:88:41:f0:71:21:f8:b1:a5:05:a8:9b:86:ea:06:d3: 7c:50:ff:cc:59:58:68:0c:10:41:2c:cd:dc:3e:83:9a:fb:77: b7:10:61:c8:3e:7a:60:c3:a0:08:f8:3b:54:7c:e9:04:ba:c8: 45:65:73:b2:d8:1c:01:9e:de:ea:03:d6:c0:b6:9f:2e:5e:94: b1:6e:91:d4:30:ec:e3:f7:04:9b:2d:39:72:e5:d9:cb:af:73: 30:66:c7:5c -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt87e2WDRQ5n+2T0c68e7T4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczYzY5ZDA0NTgzNTAwYzVlZjgxMTM2ODMxMjM3NTkzZTBi Yjg2Y2UwHhcNMjYwMTAyMDQxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNmRkYTE3MjRkMjIzNjIyNGU2M2YzMDgzMzZkMzA0ZjkzNDIyYzZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0K+rNRJDG8LilUJyIcvxmIY6C/7S 8zbker9y3iSRj/+lVnO+TulTjoKIK7he5xOzhm1FrhnC0tBOiAtGAiwuJZtSX//1 i2LjQhqZScYfjpoxB2KPw+wr1IunaO+wNO77Qeu+AFFRnadElxutD4m0sGzK4uzZ G7KQIv85K/lAS9NwuX4SCrWtzzKYB/FuiSHj5hfhoGAjh5kstH5691acnz/jbZ6B 9C/A74nVRXvXKqpBaqgrAi9oX63tqLF2MBbHGFd2qVFdU8VU3+gAZARBPsdttaXj IxRXY4zh76/6kNCCCp8ICtts8Nwz6aUbize7TvWkkP/2+gbjXhQKOz0WLQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFMbdoXJNIjYiTmPzCDNtME+TQixqMB8GA1UdIwQY MBaAFHPGnQRYNQDF74ETaDEjdZPgu4bOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQt ZjljYjBhN2IyMDZjLzEveHQyaGNrMGlOaUpPWV9NSU0yMHdUNU5DTEdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQtZjljYjBhN2IyMDZj LzEvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUAKgUQgwMF ACoNJYQwDQYJKoZIhvcNAQELBQADggEBAE0ZQI2zQ2+mfIbVDfFFcKmHeMEpyR4/ C3Jz3Rx8P97PF9njUu0RDf75c0QhApBEvrUzsgL7NPO8u1w0EAhLrNSSHP6q0Trl ZTWmyzM3fxZNFIF5gLd1OHA2kAqEvSEhp5tEsnqVDL167Jyr7G7F/9WZmhGFOOMI DruXcaaJBZD5m1Uy+T+tQomGR9yn6Jh6V5fURGtkomYnQRoMwTtMSspCYlMj6YhB 8HEh+LGlBaibhuoG03xQ/8xZWGgMEEEszdw+g5r7d7cQYcg+emDDoAj4O1R86QS6 yEVlc7LYHAGe3uoD1sC2ny5elLFukdQw7OP3BJstOXLl2cuvczBmx1w= -----END CERTIFICATE-----Generated at Sun Jan 25 16:17:50 2026 by rpki-client