This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/aa9e97-4001-48a4-bf80-3d25458b39ee/1/0ibaNhvkh_ai2Nma-Mqh8s8JKk4.roa File: 0ibaNhvkh_ai2Nma-Mqh8s8JKk4.roa (raw, json) Hash identifier: 1HFFSbzbTWw5e/xnBaTxYT53w0nfp8E1BQCPhlrQ8yw= Subject key identifier: D2:26:DA:36:1B:E4:87:F6:A2:D8:D9:9A:F8:CA:A1:F2:CF:09:2A:4E Certificate issuer: /CN=d2cb5d181afea69f39e17112593be4b00e584b4d Certificate serial: 019B9390210A7471AE62E388674635FE0C90 Authority key identifier: D2:CB:5D:18:1A:FE:A6:9F:39:E1:71:12:59:3B:E4:B0:0E:58:4B:4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0stdGBr-pp854XESWTvksA5YS00.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/aa9e97-4001-48a4-bf80-3d25458b39ee/1/0ibaNhvkh_ai2Nma-Mqh8s8JKk4.roa Signing time: Tue 06 Jan 2026 13:47:34 +0000 ROA not before: Tue 06 Jan 2026 13:47:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202971 IP address blocks: 2a0f:e080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/aa9e97-4001-48a4-bf80-3d25458b39ee/1/0stdGBr-pp854XESWTvksA5YS00.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/aa9e97-4001-48a4-bf80-3d25458b39ee/1/0stdGBr-pp854XESWTvksA5YS00.mft rsync://rpki.ripe.net/repository/DEFAULT/0stdGBr-pp854XESWTvksA5YS00.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:93:90:21:0a:74:71:ae:62:e3:88:67:46:35:fe:0c:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2cb5d181afea69f39e17112593be4b00e584b4d Validity Not Before: Jan 6 13:47:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d226da361be487f6a2d8d99af8caa1f2cf092a4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:19:33:43:f8:9f:6f:e1:b3:84:5c:e7:c9:51: 1e:4f:c5:40:af:21:72:4b:3e:68:b5:a9:91:17:99: 20:8f:cc:8f:f8:ce:47:42:67:98:02:ea:76:45:e4: b3:23:1f:8f:dd:7d:c1:fb:db:3f:69:68:54:16:87: e4:a7:c1:39:d0:b6:b7:bb:ad:d3:ba:c9:dd:01:cf: f3:a7:54:51:86:88:41:ba:fb:41:ee:3f:70:e6:80: e3:b1:7c:a2:b2:98:2a:36:78:4c:1c:a1:d2:f3:95: 2b:f4:c8:e6:e1:fe:99:2d:3f:08:3e:cf:6c:8e:7c: b6:2a:38:55:c5:74:48:5b:0f:47:79:51:2e:c8:ab: 27:21:9c:7e:63:b3:1d:75:0c:71:ad:ab:e3:3b:b1: 7b:a2:c5:6f:14:ef:f2:27:c5:83:f8:6d:2e:11:39: 2f:f7:03:8d:a3:70:a1:7d:2d:38:10:04:72:6a:ce: 9b:9a:77:60:e1:d8:ae:1f:14:05:8c:18:0c:33:8f: ab:29:34:e7:85:03:02:e0:0d:61:b7:13:ae:e7:31: 0b:8f:c2:26:f5:39:45:05:80:9c:85:54:43:05:05: d4:7a:4f:05:04:bb:4c:97:58:96:f7:81:4e:c7:3c: ef:46:d1:dd:47:da:a1:0d:be:8c:8f:ed:ff:10:a5: 24:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:26:DA:36:1B:E4:87:F6:A2:D8:D9:9A:F8:CA:A1:F2:CF:09:2A:4E X509v3 Authority Key Identifier: keyid:D2:CB:5D:18:1A:FE:A6:9F:39:E1:71:12:59:3B:E4:B0:0E:58:4B:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0stdGBr-pp854XESWTvksA5YS00.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/aa9e97-4001-48a4-bf80-3d25458b39ee/1/0ibaNhvkh_ai2Nma-Mqh8s8JKk4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/aa9e97-4001-48a4-bf80-3d25458b39ee/1/0stdGBr-pp854XESWTvksA5YS00.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:e080::/48 Signature Algorithm: sha256WithRSAEncryption 22:9b:d5:bb:74:79:c2:1c:70:ff:fd:34:8f:95:51:1c:6a:3b: bd:58:45:3b:70:20:71:3b:46:17:16:89:b8:65:7d:4a:bc:3f: f0:16:ef:65:4a:14:ee:4c:91:d9:66:7b:56:38:2d:9f:e9:fa: 92:83:8a:ed:fa:15:55:75:da:97:9f:c0:ba:88:5e:d8:f3:62: 16:c7:66:a0:83:59:5f:30:49:2a:e4:78:c3:3b:b5:4c:eb:97: ab:fb:f4:ad:b5:4f:e1:85:a4:d0:4b:93:11:36:52:e4:41:84: c9:8c:a7:ba:d8:c3:74:7d:5d:df:e9:3b:ad:16:c7:59:61:a2: 9e:b6:01:44:66:35:69:b7:9f:a1:27:44:9f:38:bd:00:f1:d1: b0:f6:8f:d1:c3:0c:e9:72:21:6f:b7:8a:6c:df:a2:f4:fb:4f: c8:12:a6:80:3b:31:a9:d2:22:f5:ee:3b:9b:9b:0b:24:f0:a7: f9:b0:46:51:64:fa:7f:4b:5a:f6:74:32:bc:4c:8a:13:a4:6b: b9:52:ef:05:85:1d:6f:3f:14:de:0d:98:02:75:20:c9:e7:15: 86:10:10:09:3b:e0:ad:88:50:1e:5f:c3:13:0e:45:f3:5b:77: 82:f1:f4:92:c9:1d:f9:fd:f6:f2:a9:68:89:55:7c:e4:34:e3: a3:5a:78:57 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZuTkCEKdHGuYuOIZ0Y1/gyQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyY2I1ZDE4MWFmZWE2OWYzOWUxNzExMjU5M2JlNGIwMGU1 ODRiNGQwHhcNMjYwMTA2MTM0NzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjI2ZGEzNjFiZTQ4N2Y2YTJkOGQ5OWFmOGNhYTFmMmNmMDkyYTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6xkzQ/ifb+GzhFznyVEeT8VAryFy Sz5otamRF5kgj8yP+M5HQmeYAup2ReSzIx+P3X3B+9s/aWhUFofkp8E50La3u63T usndAc/zp1RRhohBuvtB7j9w5oDjsXyispgqNnhMHKHS85Ur9Mjm4f6ZLT8IPs9s jny2KjhVxXRIWw9HeVEuyKsnIZx+Y7MddQxxravjO7F7osVvFO/yJ8WD+G0uETkv 9wONo3ChfS04EARyas6bmndg4diuHxQFjBgMM4+rKTTnhQMC4A1htxOu5zELj8Im 9TlFBYCchVRDBQXUek8FBLtMl1iW94FOxzzvRtHdR9qhDb6Mj+3/EKUkzQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNIm2jYb5If2otjZmvjKofLPCSpOMB8GA1UdIwQY MBaAFNLLXRga/qafOeFxElk75LAOWEtNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHN0ZEdCci1wcDg1NFhFU1dUdmtzQTVZUzAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9hYTllOTctNDAwMS00OGE0LWJmODAt M2QyNTQ1OGIzOWVlLzEvMGliYU5odmtoX2FpMk5tYS1NcWg4czhKS2s0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi9hYTllOTctNDAwMS00OGE0LWJmODAtM2QyNTQ1OGIzOWVl LzEvMHN0ZEdCci1wcDg1NFhFU1dUdmtzQTVZUzAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg/ggAAA MA0GCSqGSIb3DQEBCwUAA4IBAQAim9W7dHnCHHD//TSPlVEcaju9WEU7cCBxO0YX Fom4ZX1KvD/wFu9lShTuTJHZZntWOC2f6fqSg4rt+hVVddqXn8C6iF7Y82IWx2ag g1lfMEkq5HjDO7VM65er+/SttU/hhaTQS5MRNlLkQYTJjKe62MN0fV3f6TutFsdZ YaKetgFEZjVpt5+hJ0SfOL0A8dGw9o/RwwzpciFvt4ps36L0+0/IEqaAOzGp0iL1 7jubmwsk8Kf5sEZRZPp/S1r2dDK8TIoTpGu5Uu8FhR1vPxTeDZgCdSDJ5xWGEBAJ O+CtiFAeX8MTDkXzW3eC8fSSyR35/fbyqWiJVXzkNOOjWnhX -----END CERTIFICATE-----Generated at Mon Jan 26 16:59:10 2026 by rpki-client