This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/d1DdXgc0G77dhrd6ZdfdSd_hf70.roa File: d1DdXgc0G77dhrd6ZdfdSd_hf70.roa (raw, json) Hash identifier: VPxYVo5tR4ALJMz9uvC5RMlfofG9QR9Ag17Z6g94IPk= Subject key identifier: 77:50:DD:5E:07:34:1B:BE:DD:86:B7:7A:65:D7:DD:49:DF:E1:7F:BD Certificate issuer: /CN=fd21cb4baa15862d1b5773bf2be60ca5f4fc24d4 Certificate serial: 019B7C1116AB23FAC67ECE8BC8FE6C7F1FB4 Authority key identifier: FD:21:CB:4B:AA:15:86:2D:1B:57:73:BF:2B:E6:0C:A5:F4:FC:24:D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/d1DdXgc0G77dhrd6ZdfdSd_hf70.roa Signing time: Fri 02 Jan 2026 00:17:33 +0000 ROA not before: Fri 02 Jan 2026 00:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56781 IP address blocks: 2a10:ba87:ff00::/44 maxlen: 44 2a10:ba87:ff10::/44 maxlen: 44 2a10:ba87:ff20::/44 maxlen: 44 2a10:ba87:ff30::/44 maxlen: 44 2a10:ba87:ff40::/44 maxlen: 44 2a10:ba87:ff50::/44 maxlen: 44 2a10:ba87:ff60::/44 maxlen: 44 2a10:ba87:ff70::/44 maxlen: 44 2a10:ba87:ff80::/44 maxlen: 44 2a10:ba87:ff90::/44 maxlen: 44 2a10:ba87:ffa0::/44 maxlen: 44 2a10:ba87:ffb0::/44 maxlen: 44 2a10:ba87:ffc0::/44 maxlen: 44 2a10:ba87:ffd0::/44 maxlen: 44 2a10:ba87:ffe0::/44 maxlen: 44 2a10:ba87:fff0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.crl rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.mft rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:16:ab:23:fa:c6:7e:ce:8b:c8:fe:6c:7f:1f:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd21cb4baa15862d1b5773bf2be60ca5f4fc24d4 Validity Not Before: Jan 2 00:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7750dd5e07341bbedd86b77a65d7dd49dfe17fbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:af:b1:d0:5a:11:17:db:8f:a0:82:7e:48:17: de:e4:67:3e:e1:29:92:4b:f9:0b:38:95:a2:a8:67: 95:4e:7d:65:dd:41:2a:6d:f0:b8:85:bb:27:82:b0: bc:64:30:ff:cb:86:b5:b6:3c:c8:37:f5:33:13:63: 30:cf:0f:fb:dd:cc:99:92:b3:58:80:97:63:a8:67: 10:84:a7:c8:07:3f:fc:09:9b:9c:32:da:c6:7a:da: f5:88:d1:37:22:d2:f8:1a:e4:fb:19:f3:d5:70:b1: 9e:ea:c2:30:83:c7:44:2c:87:5c:a9:0e:e1:20:4b: 0a:d6:bd:2b:90:15:88:e5:bb:70:f6:c9:68:2d:29: a9:ef:5a:44:61:36:78:cd:20:e0:b3:b7:e6:8d:be: 78:6c:21:38:cc:ef:2a:c1:7b:e0:7a:7b:eb:75:4f: c6:26:d1:8f:61:7d:dd:f4:e5:7f:1a:91:7b:69:d4: 3b:f0:bb:b3:24:2c:27:cb:5c:fb:39:ab:d9:0d:d2: d0:33:26:33:2a:ac:f5:66:63:29:24:59:b6:f6:64: fd:89:7a:c0:c0:5c:dc:5d:58:fd:c2:f4:44:6a:2f: fc:66:c0:2e:40:d3:ae:fc:b5:33:8f:b7:33:0c:91: 59:07:5a:6a:00:87:72:27:fc:26:03:64:e2:97:12: 28:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:50:DD:5E:07:34:1B:BE:DD:86:B7:7A:65:D7:DD:49:DF:E1:7F:BD X509v3 Authority Key Identifier: keyid:FD:21:CB:4B:AA:15:86:2D:1B:57:73:BF:2B:E6:0C:A5:F4:FC:24:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/d1DdXgc0G77dhrd6ZdfdSd_hf70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:ba87:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 7f:5e:5e:72:e6:29:a0:23:cc:4f:7e:18:3d:15:23:66:41:85: ef:3b:72:4e:ae:f9:7e:fd:b2:14:9e:a0:86:1b:55:b0:05:4f: 15:a0:8a:da:af:5e:b7:66:13:d2:95:4b:d3:b8:13:77:a7:8b: 3c:79:15:53:0b:25:71:96:7b:90:11:3a:59:2f:f2:df:f4:01: e9:f4:71:f5:39:35:bc:dc:00:5f:2e:86:57:17:bb:e6:f0:36: c9:86:74:b2:cc:1b:5d:f4:12:10:35:93:86:34:b4:b1:8f:f6: 54:73:31:f1:b0:c0:0f:b5:d2:70:99:c1:57:60:64:a6:25:81: e5:59:f2:c0:c8:48:43:c1:28:dd:3f:71:e4:51:53:56:50:16: ad:59:2c:05:35:c2:f0:07:76:4a:6f:7c:30:fd:83:b3:9a:a3: f8:b8:86:0e:06:d7:e0:d3:ae:97:04:55:15:4a:fc:4d:73:2d: 8c:88:f3:5b:53:1a:30:09:4e:2c:2b:5b:d7:18:af:84:a9:2a: 46:d5:4c:3a:e2:16:80:e9:63:eb:de:b1:21:c5:7b:cc:e8:b9: a0:40:b1:cb:3a:2d:a5:e6:f2:5d:da:78:94:0c:86:a2:5e:90: 94:d3:18:68:8d:d5:c6:22:e0:28:e3:0c:f8:70:4d:e3:0a:9b: f5:f2:15:03 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt8ERarI/rGfs6LyP5sfx+0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkMjFjYjRiYWExNTg2MmQxYjU3NzNiZjJiZTYwY2E1ZjRm YzI0ZDQwHhcNMjYwMTAyMDAxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzUwZGQ1ZTA3MzQxYmJlZGQ4NmI3N2E2NWQ3ZGQ0OWRmZTE3ZmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx6+x0FoRF9uPoIJ+SBfe5Gc+4SmS S/kLOJWiqGeVTn1l3UEqbfC4hbsngrC8ZDD/y4a1tjzIN/UzE2Mwzw/73cyZkrNY gJdjqGcQhKfIBz/8CZucMtrGetr1iNE3ItL4GuT7GfPVcLGe6sIwg8dELIdcqQ7h IEsK1r0rkBWI5btw9sloLSmp71pEYTZ4zSDgs7fmjb54bCE4zO8qwXvgenvrdU/G JtGPYX3d9OV/GpF7adQ78LuzJCwny1z7OavZDdLQMyYzKqz1ZmMpJFm29mT9iXrA wFzcXVj9wvREai/8ZsAuQNOu/LUzj7czDJFZB1pqAIdyJ/wmA2TilxIoOQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFHdQ3V4HNBu+3Ya3emXX3Unf4X+9MB8GA1UdIwQY MBaAFP0hy0uqFYYtG1dzvyvmDKX0/CTUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1NITFM2b1ZoaTBiVjNPX0stWU1wZlQ4Sk5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8zMjY2MDYtMTRiYS00NDM2LTk5ODUt YmU1NTIwYTVjODIxLzEvZDFEZFhnYzBHNzdkaHJkNlpkZmRTZF9oZjcwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny8zMjY2MDYtMTRiYS00NDM2LTk5ODUtYmU1NTIwYTVjODIx LzEvX1NITFM2b1ZoaTBiVjNPX0stWU1wZlQ4Sk5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhC6h/8w DQYJKoZIhvcNAQELBQADggEBAH9eXnLmKaAjzE9+GD0VI2ZBhe87ck6u+X79shSe oIYbVbAFTxWgitqvXrdmE9KVS9O4E3enizx5FVMLJXGWe5AROlkv8t/0Aen0cfU5 NbzcAF8uhlcXu+bwNsmGdLLMG130EhA1k4Y0tLGP9lRzMfGwwA+10nCZwVdgZKYl geVZ8sDISEPBKN0/ceRRU1ZQFq1ZLAU1wvAHdkpvfDD9g7Oao/i4hg4G1+DTrpcE VRVK/E1zLYyI81tTGjAJTiwrW9cYr4SpKkbVTDriFoDpY+vesSHFe8zouaBAscs6 LaXm8l3aeJQMhqJekJTTGGiN1cYi4CjjDPhwTeMKm/XyFQM= -----END CERTIFICATE-----Generated at Mon Jan 26 01:00:29 2026 by rpki-client