This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d608b8-501f-491f-a2f2-10e57f56a17a/1/iCDdGA_7tQsgfDibWuYcU70NfTs.roa File: iCDdGA_7tQsgfDibWuYcU70NfTs.roa (raw, json) Hash identifier: BwHpqgb+51nQjkzwTsIhaODzLjTxX1oHWG2GvyC+9Qw= Subject key identifier: 88:20:DD:18:0F:FB:B5:0B:20:7C:38:9B:5A:E6:1C:53:BD:0D:7D:3B Certificate issuer: /CN=4d77ccd7a94415dfc68ccca874e94c2e8c22202d Certificate serial: 019B7F15CDA3FF8F9B0B80F397CA6BFB9CD3 Authority key identifier: 4D:77:CC:D7:A9:44:15:DF:C6:8C:CC:A8:74:E9:4C:2E:8C:22:20:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXfM16lEFd_GjMyodOlMLowiIC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d608b8-501f-491f-a2f2-10e57f56a17a/1/iCDdGA_7tQsgfDibWuYcU70NfTs.roa Signing time: Fri 02 Jan 2026 14:21:33 +0000 ROA not before: Fri 02 Jan 2026 14:21:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9512 IP address blocks: 2a00:fd80:aaaa::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/d608b8-501f-491f-a2f2-10e57f56a17a/1/TXfM16lEFd_GjMyodOlMLowiIC0.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/d608b8-501f-491f-a2f2-10e57f56a17a/1/TXfM16lEFd_GjMyodOlMLowiIC0.mft rsync://rpki.ripe.net/repository/DEFAULT/TXfM16lEFd_GjMyodOlMLowiIC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:cd:a3:ff:8f:9b:0b:80:f3:97:ca:6b:fb:9c:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d77ccd7a94415dfc68ccca874e94c2e8c22202d Validity Not Before: Jan 2 14:21:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8820dd180ffbb50b207c389b5ae61c53bd0d7d3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:36:4b:0c:e6:b4:f8:20:18:6c:9f:04:db:4c: c8:27:3c:17:7c:5e:da:f1:04:ce:ec:23:67:d1:a3: 76:b7:f9:1f:3d:1e:87:bf:7f:5d:e3:04:a5:3a:6d: cf:c5:78:43:18:13:92:66:db:a7:37:0e:e3:d7:37: e1:24:03:44:c0:f9:7f:3a:cb:80:13:8d:6d:27:03: 7e:05:e2:6c:8f:11:6d:10:c5:e6:8c:38:6f:69:f7: 12:ec:3f:33:8e:2b:7c:25:a9:ec:0d:d4:67:df:50: 07:69:92:e9:ef:a0:43:51:07:23:27:53:a6:4f:f7: b4:4a:22:7d:d6:0f:34:1b:dd:45:f2:68:cd:62:b6: 0e:76:49:6a:a1:d6:b0:6b:a3:f8:12:f9:99:eb:03: 39:54:20:f4:a4:72:46:6b:09:1c:77:ec:be:51:63: 4d:45:c2:df:c1:d2:5a:56:0c:bf:97:ab:1e:d0:7c: c1:8d:76:43:fe:c6:9e:09:8e:c7:6c:41:51:dc:06: 3c:de:ac:7d:7b:e6:54:34:f1:16:62:17:64:80:bc: 1d:7b:b8:3e:cc:71:6b:98:f0:20:75:93:5e:c4:16: 7b:19:dc:03:96:3d:62:7b:e0:30:b2:bd:fc:75:b7: b7:0f:c6:c7:10:a1:a1:61:78:13:1d:39:05:27:92: dd:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:20:DD:18:0F:FB:B5:0B:20:7C:38:9B:5A:E6:1C:53:BD:0D:7D:3B X509v3 Authority Key Identifier: keyid:4D:77:CC:D7:A9:44:15:DF:C6:8C:CC:A8:74:E9:4C:2E:8C:22:20:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXfM16lEFd_GjMyodOlMLowiIC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d608b8-501f-491f-a2f2-10e57f56a17a/1/iCDdGA_7tQsgfDibWuYcU70NfTs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d608b8-501f-491f-a2f2-10e57f56a17a/1/TXfM16lEFd_GjMyodOlMLowiIC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:fd80:aaaa::/48 Signature Algorithm: sha256WithRSAEncryption 61:8d:4a:12:d5:b2:b1:d0:97:d9:53:26:8c:d6:67:f0:09:93: 4d:09:7a:38:c6:f8:e1:67:be:7d:49:1a:7a:c4:73:cd:7f:cd: 49:08:9c:07:79:dd:fe:87:a3:55:59:cf:36:f7:a9:ef:69:a1: b5:28:fd:0a:63:bc:45:a3:f2:6e:1d:e6:91:86:57:53:19:0d: 3c:34:55:09:41:ae:ff:6e:49:7c:2c:90:c5:1d:1d:72:0d:89: 2f:15:22:1d:7d:64:b7:3b:67:20:5f:28:c1:08:0d:e6:7c:7c: f0:c4:ab:55:29:9a:21:07:51:a2:03:fa:dc:35:dc:b6:75:84: c3:39:31:75:30:a3:c9:67:8b:91:16:be:6e:cc:51:f2:09:c6: 56:21:8c:56:dd:cb:be:a6:18:a9:4a:b9:5e:87:cf:7f:3a:f1: da:38:cb:cc:ab:3c:35:bd:93:30:62:ce:4a:84:e3:77:1f:5e: 8b:ad:06:ca:c4:2e:1a:5c:aa:65:fb:a3:60:4d:c4:3d:2c:3b: 93:de:44:0a:74:7a:af:86:cb:09:fe:4b:3f:af:24:70:f0:dc: cb:9d:f6:6a:99:6f:2f:51:cd:49:73:a1:2b:76:89:d5:8f:71: 6d:7c:e4:d7:4e:e7:bf:3c:3f:e5:ee:0f:2e:6f:9a:6e:10:df: cf:ad:dd:03 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/Fc2j/4+bC4Dzl8pr+5zTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkNzdjY2Q3YTk0NDE1ZGZjNjhjY2NhODc0ZTk0YzJlOGMy MjIwMmQwHhcNMjYwMTAyMTQyMTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODIwZGQxODBmZmJiNTBiMjA3YzM4OWI1YWU2MWM1M2JkMGQ3ZDNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApTZLDOa0+CAYbJ8E20zIJzwXfF7a 8QTO7CNn0aN2t/kfPR6Hv39d4wSlOm3PxXhDGBOSZtunNw7j1zfhJANEwPl/OsuA E41tJwN+BeJsjxFtEMXmjDhvafcS7D8zjit8JansDdRn31AHaZLp76BDUQcjJ1Om T/e0SiJ91g80G91F8mjNYrYOdklqodawa6P4EvmZ6wM5VCD0pHJGawkcd+y+UWNN RcLfwdJaVgy/l6se0HzBjXZD/saeCY7HbEFR3AY83qx9e+ZUNPEWYhdkgLwde7g+ zHFrmPAgdZNexBZ7GdwDlj1ie+Awsr38dbe3D8bHEKGhYXgTHTkFJ5LdBQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFIgg3RgP+7ULIHw4m1rmHFO9DX07MB8GA1UdIwQY MBaAFE13zNepRBXfxozMqHTpTC6MIiAtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFhmTTE2bEVGZF9Hak15b2RPbE1Mb3dpSUMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9kNjA4YjgtNTAxZi00OTFmLWEyZjIt MTBlNTdmNTZhMTdhLzEvaUNEZEdBXzd0UXNnZkRpYld1WWNVNzBOZlRzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9kNjA4YjgtNTAxZi00OTFmLWEyZjItMTBlNTdmNTZhMTdh LzEvVFhmTTE2bEVGZF9Hak15b2RPbE1Mb3dpSUMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgD9gKqq MA0GCSqGSIb3DQEBCwUAA4IBAQBhjUoS1bKx0JfZUyaM1mfwCZNNCXo4xvjhZ759 SRp6xHPNf81JCJwHed3+h6NVWc8296nvaaG1KP0KY7xFo/JuHeaRhldTGQ08NFUJ Qa7/bkl8LJDFHR1yDYkvFSIdfWS3O2cgXyjBCA3mfHzwxKtVKZohB1GiA/rcNdy2 dYTDOTF1MKPJZ4uRFr5uzFHyCcZWIYxW3cu+phipSrleh89/OvHaOMvMqzw1vZMw Ys5KhON3H16LrQbKxC4aXKpl+6NgTcQ9LDuT3kQKdHqvhssJ/ks/ryRw8NzLnfZq mW8vUc1Jc6ErdonVj3FtfOTXTue/PD/l7g8ub5puEN/Prd0D -----END CERTIFICATE-----Generated at Sun Jan 25 18:20:25 2026 by rpki-client