This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/tAXj2lTAU4pGXnl2-mD0BbXNUxs.roa File: tAXj2lTAU4pGXnl2-mD0BbXNUxs.roa (raw, json) Hash identifier: hasUWhaeJW5JTZvkwGQZNe+jO3cPWANP11u9M1UpMp4= Subject key identifier: B4:05:E3:DA:54:C0:53:8A:46:5E:79:76:FA:60:F4:05:B5:CD:53:1B Certificate issuer: /CN=4776afb74fad5baf0a6180b49510d8b8497df8d3 Certificate serial: 019B7BA5217C165E1F22A0F98C406E8911A7 Authority key identifier: 47:76:AF:B7:4F:AD:5B:AF:0A:61:80:B4:95:10:D8:B8:49:7D:F8:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/tAXj2lTAU4pGXnl2-mD0BbXNUxs.roa Signing time: Thu 01 Jan 2026 22:19:38 +0000 ROA not before: Thu 01 Jan 2026 22:19:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206925 IP address blocks: 2a04:2b00:119::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/R3avt0-tW68KYYC0lRDYuEl9-NM.crl rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/R3avt0-tW68KYYC0lRDYuEl9-NM.mft rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:21:7c:16:5e:1f:22:a0:f9:8c:40:6e:89:11:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4776afb74fad5baf0a6180b49510d8b8497df8d3 Validity Not Before: Jan 1 22:19:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b405e3da54c0538a465e7976fa60f405b5cd531b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b3:39:51:60:7d:e2:e0:46:4c:e0:35:65:ad: b2:55:46:30:5d:01:30:bb:2f:25:9d:0e:c4:3d:33: 5e:bf:9c:c3:3c:22:6a:6e:dc:ed:1f:4f:91:b4:74: 86:c4:f2:ec:10:64:80:10:66:eb:49:0a:87:95:36: 59:6c:af:d2:2f:79:0c:0b:07:0a:51:c1:42:d7:bb: 15:93:06:9c:94:16:70:96:f2:b2:a5:b8:2a:01:29: d7:fd:6b:8f:41:d0:af:b7:2f:53:21:1f:2a:ce:72: 8b:02:ee:e9:5c:ff:27:4d:af:d8:d7:4d:37:d7:b2: 35:fe:cc:3f:47:f0:93:0c:76:4d:a8:40:02:2a:4f: 14:d8:4a:c7:c1:26:9c:61:dd:4e:b2:39:6c:98:7c: c8:7c:85:51:30:3e:c0:f6:d2:cc:0e:68:83:14:f5: 4a:7f:6d:19:34:27:a9:b2:74:bb:e0:e5:9a:e6:ad: 68:71:e2:c0:a7:3b:55:11:55:70:bd:92:d1:07:6c: 13:6d:50:c5:a8:53:8f:80:10:5b:8c:0d:32:45:76: 24:3c:70:50:d6:38:6b:53:ed:1e:cb:d5:d9:8e:5a: b5:40:e1:ac:ba:6c:3e:5c:28:2f:40:f5:01:71:35: a3:3f:5e:42:be:74:5b:06:76:f0:b1:ff:5d:87:7c: aa:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:05:E3:DA:54:C0:53:8A:46:5E:79:76:FA:60:F4:05:B5:CD:53:1B X509v3 Authority Key Identifier: keyid:47:76:AF:B7:4F:AD:5B:AF:0A:61:80:B4:95:10:D8:B8:49:7D:F8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/tAXj2lTAU4pGXnl2-mD0BbXNUxs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/R3avt0-tW68KYYC0lRDYuEl9-NM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a04:2b00:119::/48 Signature Algorithm: sha256WithRSAEncryption 95:4f:17:59:97:fe:fd:68:c4:c9:86:02:10:bf:6b:fd:7d:54: fb:2d:8b:e2:f2:e5:f4:18:10:75:4c:aa:67:2e:dc:1f:a8:e4: a8:2a:2d:c2:29:a1:1b:85:7e:87:e7:14:79:04:5d:05:06:c4: be:6c:8e:68:0f:58:e4:48:ad:8a:43:a7:3c:a3:d7:14:a5:1c: 9f:5b:80:c1:d6:a1:d8:31:0e:f7:75:3c:5e:86:48:fe:06:2e: 1a:15:95:a9:f8:cd:a9:f2:04:dc:a4:30:e5:ba:f6:74:b4:85: 86:49:ee:9b:75:73:90:d4:7e:66:5d:9a:01:05:5a:fd:72:9c: fb:fd:a7:01:cf:d2:1f:cf:2f:58:bc:5b:9e:15:34:de:1a:86: dd:0b:e8:c0:bc:ff:0c:4d:02:ff:f8:d5:94:8b:61:80:ee:0d: 7e:ec:97:24:47:57:fb:e5:e2:d0:50:46:f0:49:e5:75:51:7c: 19:c5:f5:45:22:f7:07:4c:ae:d5:c3:e6:c4:7c:95:c3:a7:1f: 21:cf:5e:f8:0c:ec:2e:be:18:52:2f:48:2a:17:ed:8a:8a:ae: 9e:49:04:49:de:b6:33:35:ed:bb:15:94:26:e8:8c:ec:e2:32: e3:c6:bc:d4:d2:40:59:a3:df:8e:a7:ac:41:79:03:ed:1c:c7: 17:ed:d4:98 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7pSF8Fl4fIqD5jEBuiRGnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3NzZhZmI3NGZhZDViYWYwYTYxODBiNDk1MTBkOGI4NDk3 ZGY4ZDMwHhcNMjYwMTAxMjIxOTM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDA1ZTNkYTU0YzA1MzhhNDY1ZTc5NzZmYTYwZjQwNWI1Y2Q1MzFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyLM5UWB94uBGTOA1Za2yVUYwXQEw uy8lnQ7EPTNev5zDPCJqbtztH0+RtHSGxPLsEGSAEGbrSQqHlTZZbK/SL3kMCwcK UcFC17sVkwaclBZwlvKypbgqASnX/WuPQdCvty9TIR8qznKLAu7pXP8nTa/Y1003 17I1/sw/R/CTDHZNqEACKk8U2ErHwSacYd1OsjlsmHzIfIVRMD7A9tLMDmiDFPVK f20ZNCepsnS74OWa5q1oceLApztVEVVwvZLRB2wTbVDFqFOPgBBbjA0yRXYkPHBQ 1jhrU+0ey9XZjlq1QOGsumw+XCgvQPUBcTWjP15CvnRbBnbwsf9dh3yqOwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLQF49pUwFOKRl55dvpg9AW1zVMbMB8GA1UdIwQY MBaAFEd2r7dPrVuvCmGAtJUQ2LhJffjTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUjNhdnQwLXRXNjhLWVlDMGxSRFl1RWw5LU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9mNzFjYzItYjcxZC00NjY4LTg2NjEt MDUzOGU5NWYzZjEyLzEvdEFYajJsVEFVNHBHWG5sMi1tRDBCYlhOVXhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC9mNzFjYzItYjcxZC00NjY4LTg2NjEtMDUzOGU5NWYzZjEy LzEvUjNhdnQwLXRXNjhLWVlDMGxSRFl1RWw5LU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgQrAAEZ MA0GCSqGSIb3DQEBCwUAA4IBAQCVTxdZl/79aMTJhgIQv2v9fVT7LYvi8uX0GBB1 TKpnLtwfqOSoKi3CKaEbhX6H5xR5BF0FBsS+bI5oD1jkSK2KQ6c8o9cUpRyfW4DB 1qHYMQ73dTxehkj+Bi4aFZWp+M2p8gTcpDDluvZ0tIWGSe6bdXOQ1H5mXZoBBVr9 cpz7/acBz9Ifzy9YvFueFTTeGobdC+jAvP8MTQL/+NWUi2GA7g1+7JckR1f75eLQ UEbwSeV1UXwZxfVFIvcHTK7Vw+bEfJXDpx8hz174DOwuvhhSL0gqF+2Kiq6eSQRJ 3rYzNe27FZQm6Izs4jLjxrzU0kBZo9+Op6xBeQPtHMcX7dSY -----END CERTIFICATE-----Generated at Mon Jan 26 21:17:39 2026 by rpki-client