This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/fd9396OwfyvmAzKyBx3VzGYGcUo.roa File: fd9396OwfyvmAzKyBx3VzGYGcUo.roa (raw, json) Hash identifier: YCYApcDvzt3cYu0nRrcnf8eRckIYfSGxjh0WqkacoII= Subject key identifier: 7D:DF:77:F7:A3:B0:7F:2B:E6:03:32:B2:07:1D:D5:CC:66:06:71:4A Certificate issuer: /CN=a5a56ebf01e00349f673019180560c9a31aea871 Certificate serial: 019B7AC954E3F59DDE851ECAB70B2E8B3FEE Authority key identifier: A5:A5:6E:BF:01:E0:03:49:F6:73:01:91:80:56:0C:9A:31:AE:A8:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paVuvwHgA0n2cwGRgFYMmjGuqHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/fd9396OwfyvmAzKyBx3VzGYGcUo.roa Signing time: Thu 01 Jan 2026 18:19:33 +0000 ROA not before: Thu 01 Jan 2026 18:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 399976 IP address blocks: 2a12:c6c0::/29 maxlen: 64 2a12:c6c0::/32 maxlen: 48 2a12:c6c1::/32 maxlen: 48 2a12:c6c2::/32 maxlen: 48 2a12:c6c3::/32 maxlen: 48 2a12:c6c4::/32 maxlen: 48 2a12:c6c5::/32 maxlen: 48 2a12:c6c6::/32 maxlen: 48 2a12:c6c7::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/paVuvwHgA0n2cwGRgFYMmjGuqHE.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/paVuvwHgA0n2cwGRgFYMmjGuqHE.mft rsync://rpki.ripe.net/repository/DEFAULT/paVuvwHgA0n2cwGRgFYMmjGuqHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:54:e3:f5:9d:de:85:1e:ca:b7:0b:2e:8b:3f:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a5a56ebf01e00349f673019180560c9a31aea871 Validity Not Before: Jan 1 18:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7ddf77f7a3b07f2be60332b2071dd5cc6606714a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b7:5b:2c:84:4f:2e:6d:fa:1c:76:37:6a:8d: 82:5b:dd:18:56:8f:7a:8c:6b:eb:ee:27:a7:48:8f: e4:65:73:bb:01:4d:24:3e:fe:54:8d:91:70:75:08: a7:b6:40:87:d1:d6:5d:6a:a0:b6:85:52:cd:b3:9a: b5:e7:1b:ff:3d:5a:d7:54:e3:49:10:e7:fc:69:6f: 47:3f:07:d4:9a:36:15:a7:a5:55:b6:58:b6:da:26: 8c:8b:97:37:64:1b:06:79:f3:da:92:7a:64:d7:0d: 9f:34:cb:89:e0:7c:e1:e7:d6:b8:0e:fb:3c:08:ca: 11:df:82:1c:a9:6e:d4:21:13:0d:12:c4:38:d2:14: d0:81:e4:c9:c1:bb:65:0b:67:75:66:3e:bb:4d:e4: e3:0f:79:ed:d5:96:ed:5f:1d:3f:73:b2:10:3c:66: a3:26:0e:c0:50:7d:71:3a:73:e0:7d:78:51:b7:f8: b5:05:a1:d3:a7:6f:1b:64:65:f5:fc:ad:ac:d4:37: 6a:bc:36:78:e2:2b:2c:5a:b6:48:0d:0a:1f:1f:db: 18:34:0f:e3:4c:e7:4b:b5:39:9b:3f:94:fd:f7:5c: 9e:25:37:4d:e1:e3:6f:d9:e9:08:f6:60:0f:51:b8: 17:c0:1d:56:66:ad:03:9f:b4:fb:ca:2c:0d:9d:2e: 69:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:DF:77:F7:A3:B0:7F:2B:E6:03:32:B2:07:1D:D5:CC:66:06:71:4A X509v3 Authority Key Identifier: keyid:A5:A5:6E:BF:01:E0:03:49:F6:73:01:91:80:56:0C:9A:31:AE:A8:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paVuvwHgA0n2cwGRgFYMmjGuqHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/fd9396OwfyvmAzKyBx3VzGYGcUo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/paVuvwHgA0n2cwGRgFYMmjGuqHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:c6c0::/29 Signature Algorithm: sha256WithRSAEncryption 30:b4:9e:27:50:02:7d:b9:48:0e:f5:f6:de:0f:3c:d9:73:7f: 9e:15:2c:4f:5e:45:df:b1:2e:38:d2:05:da:4a:98:f7:ca:e8: 6d:d2:77:dc:49:bc:48:b2:e5:06:42:1b:5f:85:9b:20:d8:b5: 41:8e:1a:c8:5e:97:64:3f:2d:e3:1b:29:e0:b2:bc:9a:cb:b7: 56:bd:7d:c4:71:f3:df:83:f5:24:a5:f2:6f:24:89:fd:db:16: e3:ff:97:9f:8e:22:5d:b8:34:c3:56:b8:78:44:93:02:80:ab: 6b:ce:b1:1c:6c:7a:3d:6c:dd:54:2c:f9:6f:86:d6:24:11:e6: c6:d9:dc:79:2c:9e:77:9e:e9:51:76:d1:fb:c3:c4:36:93:4e: dc:df:6d:e9:a2:b7:40:94:3e:29:ff:51:b2:ce:6e:b9:1f:de: 98:5b:b2:38:9e:e2:b2:d0:bc:fb:e3:68:22:0f:4a:df:7a:94: ce:56:e1:50:5b:c6:24:83:57:e6:54:a1:09:58:bd:d5:da:10: 42:ed:57:9c:ad:c2:e8:e1:6b:9f:50:42:80:dc:ad:64:00:f2: d9:7d:90:5e:3e:56:40:66:f9:49:ed:3c:09:e0:f9:b3:27:5e: ad:09:d6:57:ca:69:9d:8d:cd:6e:4b:ac:77:bf:38:cb:21:a4: 09:40:1a:05 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt6yVTj9Z3ehR7Ktwsuiz/uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1YTU2ZWJmMDFlMDAzNDlmNjczMDE5MTgwNTYwYzlhMzFh ZWE4NzEwHhcNMjYwMTAxMTgxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZGRmNzdmN2EzYjA3ZjJiZTYwMzMyYjIwNzFkZDVjYzY2MDY3MTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7dbLIRPLm36HHY3ao2CW90YVo96 jGvr7ienSI/kZXO7AU0kPv5UjZFwdQintkCH0dZdaqC2hVLNs5q15xv/PVrXVONJ EOf8aW9HPwfUmjYVp6VVtli22iaMi5c3ZBsGefPaknpk1w2fNMuJ4Hzh59a4Dvs8 CMoR34IcqW7UIRMNEsQ40hTQgeTJwbtlC2d1Zj67TeTjD3nt1ZbtXx0/c7IQPGaj Jg7AUH1xOnPgfXhRt/i1BaHTp28bZGX1/K2s1DdqvDZ44issWrZIDQofH9sYNA/j TOdLtTmbP5T991yeJTdN4eNv2ekI9mAPUbgXwB1WZq0Dn7T7yiwNnS5p1QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFH3fd/ejsH8r5gMysgcd1cxmBnFKMB8GA1UdIwQY MBaAFKWlbr8B4ANJ9nMBkYBWDJoxrqhxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGFWdXZ3SGdBMG4yY3dHUmdGWU1takd1cUhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS81NTRjMzUtYTgzYy00MzI5LWEwOGQt MmQ0NmQzMGRhY2JmLzEvZmQ5Mzk2T3dmeXZtQXpLeUJ4M1Z6R1lHY1VvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS81NTRjMzUtYTgzYy00MzI5LWEwOGQtMmQ0NmQzMGRhY2Jm LzEvcGFWdXZ3SGdBMG4yY3dHUmdGWU1takd1cUhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhLGwDAN BgkqhkiG9w0BAQsFAAOCAQEAMLSeJ1ACfblIDvX23g882XN/nhUsT15F37EuONIF 2kqY98robdJ33Em8SLLlBkIbX4WbINi1QY4ayF6XZD8t4xsp4LK8msu3Vr19xHHz 34P1JKXybySJ/dsW4/+Xn44iXbg0w1a4eESTAoCra86xHGx6PWzdVCz5b4bWJBHm xtnceSyed57pUXbR+8PENpNO3N9t6aK3QJQ+Kf9Rss5uuR/emFuyOJ7istC8++No Ig9K33qUzlbhUFvGJINX5lShCVi91doQQu1XnK3C6OFrn1BCgNytZADy2X2QXj5W QGb5Se08CeD5syderQnWV8ppnY3Nbkusd784yyGkCUAaBQ== -----END CERTIFICATE-----Generated at Sun Jan 25 23:31:40 2026 by rpki-client