This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/jb81OuVJup1PLJeMNccOVNPoCJ8.roa File: jb81OuVJup1PLJeMNccOVNPoCJ8.roa (raw, json) Hash identifier: deKoWNZnlpwFwiqew1tUzp1N8o/V+tWA//EpRC0uV3s= Subject key identifier: 8D:BF:35:3A:E5:49:BA:9D:4F:2C:97:8C:35:C7:0E:54:D3:E8:08:9F Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16 Certificate serial: 019B7C1272F30B145AE22CEBDB6322405177 Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/jb81OuVJup1PLJeMNccOVNPoCJ8.roa Signing time: Fri 02 Jan 2026 00:19:02 +0000 ROA not before: Fri 02 Jan 2026 00:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211895 IP address blocks: 2a10:1fc0:c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:72:f3:0b:14:5a:e2:2c:eb:db:63:22:40:51:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16 Validity Not Before: Jan 2 00:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8dbf353ae549ba9d4f2c978c35c70e54d3e8089f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2a:c1:cb:27:6e:7a:42:63:08:2a:21:23:35: a5:e0:21:9a:09:45:e3:0e:4e:70:36:e1:0a:9f:82: 07:2c:5f:0f:79:c9:68:5b:b1:33:b2:76:18:1b:31: cd:3d:f3:58:a6:16:fe:73:b0:2f:c3:80:ad:48:bd: 12:58:a1:f1:1a:b9:06:36:57:c0:80:67:f2:89:4c: 48:93:37:00:4b:18:cf:37:e2:66:9f:f3:92:ee:4e: 2f:cf:f6:1a:ae:2c:00:02:9c:2f:69:b3:99:3e:62: 2b:3c:25:db:0a:73:a4:e1:59:8e:5e:63:ac:9b:b7: 7e:f0:e6:35:b4:31:27:d7:32:bf:a9:60:25:0c:3f: 72:ee:5c:f2:7c:b9:b4:00:52:25:aa:68:b7:b0:7a: c1:e8:5e:b0:fb:53:07:46:6f:5a:85:90:28:29:f8: 77:16:40:85:e3:42:bb:02:45:3b:4e:52:bb:d6:c8: 07:6f:ec:86:26:5d:a3:69:51:8d:9d:17:01:f8:89: 27:f2:c0:06:9a:8b:ab:ba:72:81:bf:b6:cd:58:65: cd:87:5d:b5:7c:1b:19:72:ae:35:42:2d:cb:e1:9f: f8:b7:0d:bf:d5:48:a8:3b:ca:c4:66:97:d7:49:aa: 11:e1:17:99:78:fd:7a:ae:cf:15:1e:35:f8:71:5d: db:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:BF:35:3A:E5:49:BA:9D:4F:2C:97:8C:35:C7:0E:54:D3:E8:08:9F X509v3 Authority Key Identifier: keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/jb81OuVJup1PLJeMNccOVNPoCJ8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:1fc0:c::/48 Signature Algorithm: sha256WithRSAEncryption 89:e3:5f:46:08:b4:1e:f6:8e:d8:9e:eb:94:ae:b7:0d:e6:26: a0:7f:e0:3d:66:a4:c8:de:38:1f:54:73:9a:e0:22:20:e5:27: 47:63:33:c3:36:2d:62:da:48:95:90:63:37:4a:79:60:f9:83: c8:22:95:d5:95:da:b2:c2:7c:b0:6c:a4:12:75:30:bd:75:2a: 55:83:bf:51:cb:39:34:15:14:bf:dc:c3:86:84:d2:9c:84:5d: 3a:59:9b:1a:3b:52:5a:f6:3a:56:3a:33:37:91:c3:d6:1b:19: 90:81:e1:70:1a:55:14:db:ee:82:7f:c5:c7:a4:3a:7a:d0:7a: af:b7:c7:86:36:9b:5a:e8:8b:9e:db:db:74:f0:2b:67:a3:ca: c5:f7:ba:4f:a2:0f:7f:0d:77:57:04:5c:0c:ab:6d:2d:df:b8: 2d:27:1e:83:91:25:cf:43:dc:84:b3:3a:96:1b:42:d5:60:5a: 17:fb:3e:c4:81:d5:d1:6e:c7:79:d7:3c:05:0b:1a:2b:08:8c: 05:53:d2:b1:db:fe:ef:e9:40:4c:74:a7:cc:32:49:27:ef:ff: 3a:8c:5c:43:d0:70:0c:56:e5:2c:9b:71:f3:37:99:80:58:e5: a0:78:db:3b:2f:ef:65:7f:d1:bf:aa:ea:c2:01:eb:a7:03:ff: cb:7c:30:64 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt8EnLzCxRa4izr22MiQFF3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0NzMyMGQwMzA5MzAxNzhlNmY3Y2VlZjkxZDJhYjg3ODRk M2RjMTYwHhcNMjYwMTAyMDAxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZGJmMzUzYWU1NDliYTlkNGYyYzk3OGMzNWM3MGU1NGQzZTgwODlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyirByyduekJjCCohIzWl4CGaCUXj Dk5wNuEKn4IHLF8PecloW7EzsnYYGzHNPfNYphb+c7Avw4CtSL0SWKHxGrkGNlfA gGfyiUxIkzcASxjPN+Jmn/OS7k4vz/YariwAApwvabOZPmIrPCXbCnOk4VmOXmOs m7d+8OY1tDEn1zK/qWAlDD9y7lzyfLm0AFIlqmi3sHrB6F6w+1MHRm9ahZAoKfh3 FkCF40K7AkU7TlK71sgHb+yGJl2jaVGNnRcB+Ikn8sAGmourunKBv7bNWGXNh121 fBsZcq41Qi3L4Z/4tw2/1UioO8rEZpfXSaoR4ReZeP16rs8VHjX4cV3bZwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFI2/NTrlSbqdTyyXjDXHDlTT6AifMB8GA1UdIwQY MBaAFJRzINAwkwF45vfO75HSq4eE09wWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEhNZzBEQ1RBWGptOTg3dmtkS3JoNFRUM0JZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC84MmU4NzYtYzk5Ny00NjA1LTg3YWEt OGFjNGEyMTkzOGI0LzEvamI4MU91Vkp1cDFQTEplTU5jY09WTlBvQ0o4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC84MmU4NzYtYzk5Ny00NjA1LTg3YWEtOGFjNGEyMTkzOGI0 LzEvbEhNZzBEQ1RBWGptOTg3dmtkS3JoNFRUM0JZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhAfwAAM MA0GCSqGSIb3DQEBCwUAA4IBAQCJ419GCLQe9o7YnuuUrrcN5iagf+A9ZqTI3jgf VHOa4CIg5SdHYzPDNi1i2kiVkGM3Snlg+YPIIpXVldqywnywbKQSdTC9dSpVg79R yzk0FRS/3MOGhNKchF06WZsaO1Ja9jpWOjM3kcPWGxmQgeFwGlUU2+6Cf8XHpDp6 0Hqvt8eGNpta6Iue29t08Ctno8rF97pPog9/DXdXBFwMq20t37gtJx6DkSXPQ9yE szqWG0LVYFoX+z7EgdXRbsd51zwFCxorCIwFU9Kx2/7v6UBMdKfMMkkn7/86jFxD 0HAMVuUsm3HzN5mAWOWgeNs7L+9lf9G/qurCAeunA//LfDBk -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:34 2026 by rpki-client