This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/999647-1e7f-499b-9d48-f950327f88d3/1/gIvmrtP4qhP-p_HNvQknynsugUc.roa File: gIvmrtP4qhP-p_HNvQknynsugUc.roa (raw, json) Hash identifier: T7F6BSJaNt+yN8P1agGWT43ZlvcgWoTw7wuq3mofmEI= Subject key identifier: 80:8B:E6:AE:D3:F8:AA:13:FE:A7:F1:CD:BD:09:27:CA:7B:2E:81:47 Certificate issuer: /CN=cef501d2d052185d4f6569218c28bf35859000fc Certificate serial: 019B7EA4D4BAA7755C837B9725B02D7AB465 Authority key identifier: CE:F5:01:D2:D0:52:18:5D:4F:65:69:21:8C:28:BF:35:85:90:00:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvUB0tBSGF1PZWkhjCi_NYWQAPw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/999647-1e7f-499b-9d48-f950327f88d3/1/gIvmrtP4qhP-p_HNvQknynsugUc.roa Signing time: Fri 02 Jan 2026 12:18:10 +0000 ROA not before: Fri 02 Jan 2026 12:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197275 IP address blocks: 2a11:1681:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/999647-1e7f-499b-9d48-f950327f88d3/1/zvUB0tBSGF1PZWkhjCi_NYWQAPw.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/999647-1e7f-499b-9d48-f950327f88d3/1/zvUB0tBSGF1PZWkhjCi_NYWQAPw.mft rsync://rpki.ripe.net/repository/DEFAULT/zvUB0tBSGF1PZWkhjCi_NYWQAPw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:d4:ba:a7:75:5c:83:7b:97:25:b0:2d:7a:b4:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cef501d2d052185d4f6569218c28bf35859000fc Validity Not Before: Jan 2 12:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=808be6aed3f8aa13fea7f1cdbd0927ca7b2e8147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:16:92:f9:b3:6a:83:81:e2:21:47:ba:40:49: cb:f8:c5:48:db:77:71:3a:f4:3e:85:ae:67:aa:94: b3:87:bd:48:f2:76:a9:37:f7:25:0b:16:06:a0:2e: d2:8f:46:46:4a:21:f5:61:6e:a6:36:0b:23:26:13: a1:3c:cf:f1:49:91:15:39:b9:85:93:7e:05:f8:b0: f0:6d:46:88:71:b6:16:b5:45:64:7a:a2:ca:e7:f1: 29:ec:52:46:80:85:6c:37:0d:dc:de:fa:55:d4:4c: 7d:3b:e0:47:87:c4:b9:07:ba:10:32:39:f2:aa:8e: eb:66:09:46:62:cc:67:3c:2c:2c:bf:0a:4f:5c:1c: b7:b6:b6:c0:d4:c3:87:cf:35:95:42:86:72:14:3e: 57:34:a4:34:3d:73:3c:72:ef:99:98:3c:49:85:e2: 12:31:20:3b:5e:8a:6e:06:2b:73:46:4d:c9:e8:4f: f4:05:87:09:ec:f7:c5:1f:5e:43:66:10:da:54:f9: 10:b9:10:f6:d1:3d:54:8f:2f:75:63:82:30:e9:c9: 3f:07:a9:a9:45:90:00:18:ac:c4:d9:63:66:64:e5: f0:bc:ef:c4:1a:63:5e:29:ee:0e:d8:d1:03:a9:66: 9c:36:52:bd:f2:fd:4a:84:1e:19:8a:5e:06:5b:a8: 71:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:8B:E6:AE:D3:F8:AA:13:FE:A7:F1:CD:BD:09:27:CA:7B:2E:81:47 X509v3 Authority Key Identifier: keyid:CE:F5:01:D2:D0:52:18:5D:4F:65:69:21:8C:28:BF:35:85:90:00:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvUB0tBSGF1PZWkhjCi_NYWQAPw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/999647-1e7f-499b-9d48-f950327f88d3/1/gIvmrtP4qhP-p_HNvQknynsugUc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/999647-1e7f-499b-9d48-f950327f88d3/1/zvUB0tBSGF1PZWkhjCi_NYWQAPw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:1681:1::/48 Signature Algorithm: sha256WithRSAEncryption a1:31:ec:86:34:7d:34:e6:29:87:7f:fd:67:d2:2c:5d:bc:cd: 6f:76:1a:0c:c4:de:b9:0c:dd:96:e5:40:70:69:2d:a7:d1:15: d0:0f:ac:19:a8:69:81:b9:24:28:cc:b4:c8:a0:f9:09:8f:38: 60:ce:cc:cd:35:aa:4a:8e:d6:31:2f:47:a3:39:88:59:fd:d1: fe:a6:7c:cc:1b:35:58:48:80:64:61:fc:b6:28:69:6e:6e:b6: c8:13:21:1a:6d:54:5b:89:84:2a:f4:47:8c:83:70:fd:6b:c8: 11:c2:a0:d0:81:73:b5:28:53:c1:20:e2:96:34:4f:c8:ca:69: 5f:96:b6:5b:a0:bc:f4:75:7b:d3:ea:05:56:0d:e5:5e:c3:d7: 3e:a1:7e:4b:a7:33:ff:4b:d1:3f:51:5f:fd:58:ae:a6:4e:a6: 5f:a3:87:bd:7e:90:80:b8:14:84:66:c8:6f:83:3c:3c:17:1a: 46:b7:5a:e1:02:4d:9c:36:b3:b2:2a:f1:9f:c4:ad:9c:16:d1: 32:b6:c5:77:74:04:15:e0:41:57:91:c2:c6:da:70:2c:90:9c: e6:41:11:3d:20:a4:92:12:90:58:b4:7d:81:b5:6a:11:4a:36: d2:60:5f:53:96:82:9e:6f:0f:e7:e9:90:5c:98:8a:08:ed:80: 1f:a6:65:75 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+pNS6p3Vcg3uXJbAterRlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlZjUwMWQyZDA1MjE4NWQ0ZjY1NjkyMThjMjhiZjM1ODU5 MDAwZmMwHhcNMjYwMTAyMTIxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MDhiZTZhZWQzZjhhYTEzZmVhN2YxY2RiZDA5MjdjYTdiMmU4MTQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBaS+bNqg4HiIUe6QEnL+MVI23dx OvQ+ha5nqpSzh71I8napN/clCxYGoC7Sj0ZGSiH1YW6mNgsjJhOhPM/xSZEVObmF k34F+LDwbUaIcbYWtUVkeqLK5/Ep7FJGgIVsNw3c3vpV1Ex9O+BHh8S5B7oQMjny qo7rZglGYsxnPCwsvwpPXBy3trbA1MOHzzWVQoZyFD5XNKQ0PXM8cu+ZmDxJheIS MSA7XopuBitzRk3J6E/0BYcJ7PfFH15DZhDaVPkQuRD20T1Ujy91Y4Iw6ck/B6mp RZAAGKzE2WNmZOXwvO/EGmNeKe4O2NEDqWacNlK98v1KhB4Zil4GW6hxNQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFICL5q7T+KoT/qfxzb0JJ8p7LoFHMB8GA1UdIwQY MBaAFM71AdLQUhhdT2VpIYwovzWFkAD8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenZVQjB0QlNHRjFQWldraGpDaV9OWVdRQVB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi85OTk2NDctMWU3Zi00OTliLTlkNDgt Zjk1MDMyN2Y4OGQzLzEvZ0l2bXJ0UDRxaFAtcF9ITnZRa255bnN1Z1VjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi85OTk2NDctMWU3Zi00OTliLTlkNDgtZjk1MDMyN2Y4OGQz LzEvenZVQjB0QlNHRjFQWldraGpDaV9OWVdRQVB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhEWgQAB MA0GCSqGSIb3DQEBCwUAA4IBAQChMeyGNH005imHf/1n0ixdvM1vdhoMxN65DN2W 5UBwaS2n0RXQD6wZqGmBuSQozLTIoPkJjzhgzszNNapKjtYxL0ejOYhZ/dH+pnzM GzVYSIBkYfy2KGlubrbIEyEabVRbiYQq9EeMg3D9a8gRwqDQgXO1KFPBIOKWNE/I ymlflrZboLz0dXvT6gVWDeVew9c+oX5LpzP/S9E/UV/9WK6mTqZfo4e9fpCAuBSE Zshvgzw8FxpGt1rhAk2cNrOyKvGfxK2cFtEytsV3dAQV4EFXkcLG2nAskJzmQRE9 IKSSEpBYtH2BtWoRSjbSYF9TloKebw/n6ZBcmIoI7YAfpmV1 -----END CERTIFICATE-----Generated at Sun Jan 25 13:55:02 2026 by rpki-client