This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/gNGCtakJ63HNmb2cUTy0u-qp3f0.roa File: gNGCtakJ63HNmb2cUTy0u-qp3f0.roa (raw, json) Hash identifier: 6bq9JK8sv1GmS2NkhZSO0stGxzDjR88qEWqAWE8rgeM= Subject key identifier: 80:D1:82:B5:A9:09:EB:71:CD:99:BD:9C:51:3C:B4:BB:EA:A9:DD:FD Certificate issuer: /CN=1d43a2484569d20e3f53c17be7b9fb29c34ee5be Certificate serial: 019B7EA70CA70D994E3CE36C992A3CCA3CE1 Authority key identifier: 1D:43:A2:48:45:69:D2:0E:3F:53:C1:7B:E7:B9:FB:29:C3:4E:E5:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HUOiSEVp0g4_U8F757n7KcNO5b4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/gNGCtakJ63HNmb2cUTy0u-qp3f0.roa Signing time: Fri 02 Jan 2026 12:20:35 +0000 ROA not before: Fri 02 Jan 2026 12:20:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213702 IP address blocks: 2a01:ecc0:80::/42 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/HUOiSEVp0g4_U8F757n7KcNO5b4.crl rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/HUOiSEVp0g4_U8F757n7KcNO5b4.mft rsync://rpki.ripe.net/repository/DEFAULT/HUOiSEVp0g4_U8F757n7KcNO5b4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:0c:a7:0d:99:4e:3c:e3:6c:99:2a:3c:ca:3c:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d43a2484569d20e3f53c17be7b9fb29c34ee5be Validity Not Before: Jan 2 12:20:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=80d182b5a909eb71cd99bd9c513cb4bbeaa9ddfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:7c:5c:70:b8:ff:9c:3c:6a:b0:51:6c:1b:d4: e1:ec:9f:19:32:32:77:31:a5:f0:d8:31:a3:ef:c5: 84:8d:3c:e9:c9:13:d8:09:8a:9f:8e:04:82:84:1f: 01:0d:57:ec:79:f1:80:a2:2b:27:db:74:d3:4a:27: 7d:62:21:3a:f5:96:3d:d7:04:c9:e5:ef:8c:95:b2: 8e:9f:21:55:ce:8d:6e:32:fd:53:18:6f:6c:d5:39: e2:d0:61:a0:14:76:57:66:7d:83:cb:1d:e7:48:f8: 72:1d:8f:e5:97:88:e4:97:ff:5d:c4:32:74:00:4c: 2a:99:69:bc:5d:c2:10:1f:ef:fd:6d:54:91:aa:7d: 1e:47:47:9c:7c:b2:45:cb:12:e4:db:f4:a7:e0:aa: 9e:76:ab:14:3a:20:79:16:12:99:50:00:6a:2c:2c: 32:a9:0c:92:d4:0a:1d:67:0c:68:ea:4d:5c:31:f1: 25:2d:cd:7c:98:d6:b9:73:38:75:16:56:51:ac:36: 3a:8a:85:82:41:02:90:71:cf:fd:99:dc:f4:a0:b0: d7:e8:6f:2c:ad:db:77:d0:7a:d9:d4:1e:10:b5:87: 12:a8:27:0d:c2:26:ed:6f:aa:aa:83:86:53:0e:8f: 58:9c:8a:39:e0:5c:8b:8f:3c:e3:8d:d3:b7:8b:f4: 5a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:D1:82:B5:A9:09:EB:71:CD:99:BD:9C:51:3C:B4:BB:EA:A9:DD:FD X509v3 Authority Key Identifier: keyid:1D:43:A2:48:45:69:D2:0E:3F:53:C1:7B:E7:B9:FB:29:C3:4E:E5:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HUOiSEVp0g4_U8F757n7KcNO5b4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/gNGCtakJ63HNmb2cUTy0u-qp3f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/HUOiSEVp0g4_U8F757n7KcNO5b4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:ecc0:80::/42 Signature Algorithm: sha256WithRSAEncryption 4b:7e:8e:7f:3a:76:1d:29:53:d5:76:45:0a:91:a8:0b:1c:61: 48:61:b9:e3:9c:5d:b3:80:df:8d:77:ed:73:3c:66:31:4f:3f: f5:5c:48:97:9b:36:4a:89:ec:1a:27:f8:81:4d:eb:0b:a7:7a: 65:7a:95:ae:9f:09:95:ca:6f:a7:c5:9b:ea:a9:f1:d4:91:11: b9:f0:a3:6e:4a:f7:86:e1:40:60:1d:2c:27:a7:77:10:e8:cf: 5e:d1:99:27:d4:a3:d1:d3:23:21:9e:fa:7e:88:96:57:9c:50: 4f:c2:21:c6:9c:d3:66:00:b4:13:b7:93:e8:25:69:67:35:85: 05:ba:0d:6f:11:06:76:48:ee:65:3a:0b:bb:18:0d:eb:fb:cd: 4c:09:f2:8e:66:aa:6b:7d:1c:36:01:36:54:85:dd:d4:d3:11: a9:08:12:89:4f:22:9d:87:22:37:74:d7:bb:04:11:8a:c4:4f: e7:85:60:a6:c7:16:8e:f0:38:8a:3d:34:0b:a9:9e:04:f4:db: e1:ff:8c:35:46:3c:8a:43:ef:f8:76:d0:18:f8:ac:8b:69:e2: e9:43:ec:d8:c6:4b:1c:09:75:58:fa:72:01:bc:31:09:34:4b: 30:c6:8d:32:5c:3c:68:1a:4f:71:1b:14:c2:2e:dd:54:67:77: 02:dc:22:d3 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+pwynDZlOPONsmSo8yjzhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkNDNhMjQ4NDU2OWQyMGUzZjUzYzE3YmU3YjlmYjI5YzM0 ZWU1YmUwHhcNMjYwMTAyMTIyMDM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MGQxODJiNWE5MDllYjcxY2Q5OWJkOWM1MTNjYjRiYmVhYTlkZGZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmXxccLj/nDxqsFFsG9Th7J8ZMjJ3 MaXw2DGj78WEjTzpyRPYCYqfjgSChB8BDVfsefGAoisn23TTSid9YiE69ZY91wTJ 5e+MlbKOnyFVzo1uMv1TGG9s1Tni0GGgFHZXZn2Dyx3nSPhyHY/ll4jkl/9dxDJ0 AEwqmWm8XcIQH+/9bVSRqn0eR0ecfLJFyxLk2/Sn4KqedqsUOiB5FhKZUABqLCwy qQyS1AodZwxo6k1cMfElLc18mNa5czh1FlZRrDY6ioWCQQKQcc/9mdz0oLDX6G8s rdt30HrZ1B4QtYcSqCcNwibtb6qqg4ZTDo9YnIo54FyLjzzjjdO3i/Ra5wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFIDRgrWpCetxzZm9nFE8tLvqqd39MB8GA1UdIwQY MBaAFB1DokhFadIOP1PBe+e5+ynDTuW+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFVPaVNFVnAwZzRfVThGNzU3bjdLY05PNWI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS9jOTNkODctMzJlMC00NmYxLTlmYjkt NjM0NTE1NDg5NzlkLzEvZ05HQ3Rha0o2M0hObWIyY1VUeTB1LXFwM2YwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS9jOTNkODctMzJlMC00NmYxLTlmYjktNjM0NTE1NDg5Nzlk LzEvSFVPaVNFVnAwZzRfVThGNzU3bjdLY05PNWI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcGKgHswACA MA0GCSqGSIb3DQEBCwUAA4IBAQBLfo5/OnYdKVPVdkUKkagLHGFIYbnjnF2zgN+N d+1zPGYxTz/1XEiXmzZKiewaJ/iBTesLp3plepWunwmVym+nxZvqqfHUkRG58KNu SveG4UBgHSwnp3cQ6M9e0Zkn1KPR0yMhnvp+iJZXnFBPwiHGnNNmALQTt5PoJWln NYUFug1vEQZ2SO5lOgu7GA3r+81MCfKOZqprfRw2ATZUhd3U0xGpCBKJTyKdhyI3 dNe7BBGKxE/nhWCmxxaO8DiKPTQLqZ4E9Nvh/4w1RjyKQ+/4dtAY+KyLaeLpQ+zY xkscCXVY+nIBvDEJNEswxo0yXDxoGk9xGxTCLt1UZ3cC3CLT -----END CERTIFICATE-----Generated at Sun Jan 25 22:15:53 2026 by rpki-client