This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ba66f2-de3e-4de8-bd65-22f23fe29287/1/1-Jvy4cSjaj8AFJqw5ncsPjDeR28.roa File: 1-Jvy4cSjaj8AFJqw5ncsPjDeR28.roa (raw, json) Hash identifier: +Ni2CLOoRpCVmzTI9f4DnaA4YvB7dZwIDsF6rECn1wA= Subject key identifier: F8:9B:F2:E1:C4:A3:6A:3F:00:14:9A:B0:E6:77:2C:3E:30:DE:47:6F Certificate issuer: /CN=480e3cf0d122574c7e7b3bf034d0d3d013eebc15 Certificate serial: 019B7C12881FE9363F4A442B12F955D95103 Authority key identifier: 48:0E:3C:F0:D1:22:57:4C:7E:7B:3B:F0:34:D0:D3:D0:13:EE:BC:15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SA488NEiV0x-ezvwNNDT0BPuvBU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ba66f2-de3e-4de8-bd65-22f23fe29287/1/1-Jvy4cSjaj8AFJqw5ncsPjDeR28.roa Signing time: Fri 02 Jan 2026 00:19:07 +0000 ROA not before: Fri 02 Jan 2026 00:19:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20473 IP address blocks: 2001:67c:ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/ba66f2-de3e-4de8-bd65-22f23fe29287/1/SA488NEiV0x-ezvwNNDT0BPuvBU.crl rsync://rpki.ripe.net/repository/DEFAULT/99/ba66f2-de3e-4de8-bd65-22f23fe29287/1/SA488NEiV0x-ezvwNNDT0BPuvBU.mft rsync://rpki.ripe.net/repository/DEFAULT/SA488NEiV0x-ezvwNNDT0BPuvBU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:88:1f:e9:36:3f:4a:44:2b:12:f9:55:d9:51:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=480e3cf0d122574c7e7b3bf034d0d3d013eebc15 Validity Not Before: Jan 2 00:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f89bf2e1c4a36a3f00149ab0e6772c3e30de476f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:52:70:9f:f4:ff:39:0c:68:ec:1d:a5:01:e0: 45:c7:be:07:6b:b8:5f:a4:62:da:ea:94:0a:3a:a4: 37:2c:78:8b:30:2d:4d:b4:7d:27:4d:cb:bd:f6:62: 8c:9d:4b:17:c4:80:cf:ad:51:c8:1b:0a:e0:38:52: 97:07:21:02:e3:54:6f:23:88:97:bd:b7:4a:8f:c6: 29:35:81:9c:11:30:53:35:9c:33:a2:dc:ea:82:21: ed:b6:de:ee:65:3b:8e:cc:5a:58:93:94:9b:ec:c5: 0f:ec:01:8e:8d:21:b5:5a:18:0f:c0:ee:b1:40:ff: 6a:cd:1e:5f:4c:3e:54:99:1b:9b:a1:22:a9:e7:9d: 73:1a:7e:8d:3c:5e:0e:ea:d8:8e:9c:60:a7:59:fc: ea:2e:a2:75:c4:2b:a6:8f:6d:55:13:26:e8:6e:3a: 43:69:26:0b:eb:09:4d:6f:a2:af:8b:91:c2:2b:42: f5:4b:f6:08:30:f2:51:ba:06:59:b2:70:8c:3d:b2: ca:f7:8f:97:e9:97:eb:7b:22:81:5b:ca:d5:84:1c: 5e:a9:b7:f6:a6:a8:ad:5d:45:14:f9:a0:56:cf:11: 3a:a1:02:96:a0:63:18:40:4f:97:ad:35:1e:f4:9a: e0:fd:35:ba:7a:57:2e:6a:b5:f7:41:a2:a0:46:c4: 6a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:9B:F2:E1:C4:A3:6A:3F:00:14:9A:B0:E6:77:2C:3E:30:DE:47:6F X509v3 Authority Key Identifier: keyid:48:0E:3C:F0:D1:22:57:4C:7E:7B:3B:F0:34:D0:D3:D0:13:EE:BC:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SA488NEiV0x-ezvwNNDT0BPuvBU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ba66f2-de3e-4de8-bd65-22f23fe29287/1/1-Jvy4cSjaj8AFJqw5ncsPjDeR28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ba66f2-de3e-4de8-bd65-22f23fe29287/1/SA488NEiV0x-ezvwNNDT0BPuvBU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:ac0::/48 Signature Algorithm: sha256WithRSAEncryption 31:b2:7f:66:f8:db:90:2c:84:a3:45:89:54:cb:8d:e1:42:f9: 15:30:d7:6c:11:43:75:39:4a:8a:cb:02:bc:1a:e4:4c:bc:3d: 0a:31:b2:e2:90:a4:6d:b7:40:5f:43:9f:93:a3:47:ec:d4:a2: 5a:5f:5c:c8:07:39:46:9c:ed:41:e0:8c:b4:c3:48:1e:d0:e6: 2c:77:07:2d:be:0f:7a:99:84:f5:0a:88:61:77:91:11:9f:0d: 48:f1:0f:ac:4a:46:83:e2:0a:fe:9f:0e:0f:6a:dd:ec:0a:15: 9e:cb:f4:2d:11:53:3b:0b:88:90:6e:4c:12:e7:64:fa:0c:14: e2:e7:e4:32:93:ae:51:c6:32:da:79:7e:d8:af:22:66:38:10: 35:b7:6e:22:6c:ac:8a:03:7f:ff:58:aa:c1:fc:94:d2:1e:ee: 56:34:16:09:1a:42:d7:70:4d:5a:72:04:ce:11:5b:16:ad:4f: 03:0a:37:f9:a5:42:e5:c0:93:13:33:2c:fb:2a:f6:fb:ae:25: 31:d6:cc:b5:df:82:29:9e:26:6f:ae:2a:73:83:65:d4:bd:94: a4:59:f0:8b:f1:92:3d:e6:d9:9e:73:3f:c0:d4:a8:91:eb:59: ff:03:2a:0a:fe:04:11:96:0b:a5:35:e3:50:3d:ed:10:5d:84: cf:33:c4:98 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgISAZt8Eogf6TY/SkQrEvlV2VEDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ4MGUzY2YwZDEyMjU3NGM3ZTdiM2JmMDM0ZDBkM2QwMTNl ZWJjMTUwHhcNMjYwMTAyMDAxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmODliZjJlMWM0YTM2YTNmMDAxNDlhYjBlNjc3MmMzZTMwZGU0NzZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAslJwn/T/OQxo7B2lAeBFx74Ha7hf pGLa6pQKOqQ3LHiLMC1NtH0nTcu99mKMnUsXxIDPrVHIGwrgOFKXByEC41RvI4iX vbdKj8YpNYGcETBTNZwzotzqgiHttt7uZTuOzFpYk5Sb7MUP7AGOjSG1WhgPwO6x QP9qzR5fTD5UmRuboSKp551zGn6NPF4O6tiOnGCnWfzqLqJ1xCumj21VEybobjpD aSYL6wlNb6Kvi5HCK0L1S/YIMPJRugZZsnCMPbLK94+X6ZfreyKBW8rVhBxeqbf2 pqitXUUU+aBWzxE6oQKWoGMYQE+XrTUe9Jrg/TW6elcuarX3QaKgRsRqxwIDAQAB o4ICDTCCAgkwHQYDVR0OBBYEFPib8uHEo2o/ABSasOZ3LD4w3kdvMB8GA1UdIwQY MBaAFEgOPPDRIldMfns78DTQ09AT7rwVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU0E0ODhORWlWMHgtZXp2d05ORFQwQlB1dkJVLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9iYTY2ZjItZGUzZS00ZGU4LWJkNjUt MjJmMjNmZTI5Mjg3LzEvMS1Kdnk0Y1NqYWo4QUZKcXc1bmNzUGpEZVIyOC5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOTkvYmE2NmYyLWRlM2UtNGRlOC1iZDY1LTIyZjIzZmUyOTI4 Ny8xL1NBNDg4TkVpVjB4LWV6dndOTkRUMEJQdXZCVS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBnwK wDANBgkqhkiG9w0BAQsFAAOCAQEAMbJ/ZvjbkCyEo0WJVMuN4UL5FTDXbBFDdTlK issCvBrkTLw9CjGy4pCkbbdAX0Ofk6NH7NSiWl9cyAc5RpztQeCMtMNIHtDmLHcH Lb4PepmE9QqIYXeREZ8NSPEPrEpGg+IK/p8OD2rd7AoVnsv0LRFTOwuIkG5MEudk +gwU4ufkMpOuUcYy2nl+2K8iZjgQNbduImysigN//1iqwfyU0h7uVjQWCRpC13BN WnIEzhFbFq1PAwo3+aVC5cCTEzMs+yr2+64lMdbMtd+CKZ4mb64qc4Nl1L2UpFnw i/GSPebZnnM/wNSoketZ/wMqCv4EEZYLpTXjUD3tEF2EzzPEmA== -----END CERTIFICATE-----Generated at Mon Jan 26 08:38:30 2026 by rpki-client