This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/tsHmi25vrKfns5kPGhl6myHWaVw.roa File: tsHmi25vrKfns5kPGhl6myHWaVw.roa (raw, json) Hash identifier: 8MIMAYAM0/jsI9v0uOOSYvki5uUrLoYRmY+NS2ZIDRg= Subject key identifier: B6:C1:E6:8B:6E:6F:AC:A7:E7:B3:99:0F:1A:19:7A:9B:21:D6:69:5C Certificate issuer: /CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a Certificate serial: 019B78A2BD24EB432EC58D18E242FFD86A9C Authority key identifier: 8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/tsHmi25vrKfns5kPGhl6myHWaVw.roa Signing time: Thu 01 Jan 2026 08:18:09 +0000 ROA not before: Thu 01 Jan 2026 08:18:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212374 IP address blocks: 2a07:7940:15::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:bd:24:eb:43:2e:c5:8d:18:e2:42:ff:d8:6a:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a Validity Not Before: Jan 1 08:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b6c1e68b6e6faca7e7b3990f1a197a9b21d6695c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:55:f6:6d:5d:44:2d:46:aa:2c:af:eb:e7:69: 1d:3d:63:29:14:3a:e0:35:36:ee:bf:02:cc:19:d7: f0:c8:ef:6d:dc:dc:1b:d1:f7:16:3c:8c:94:08:9d: 04:85:4c:64:48:16:cb:d0:a3:31:41:f4:ad:fa:55: 54:6e:a5:31:6d:22:c3:29:07:ac:2b:93:ea:97:b5: dc:72:60:13:ed:18:83:04:d7:4b:1e:cb:86:72:a6: 7d:ca:dd:e9:b0:02:5c:1b:82:08:9f:82:85:de:e5: f7:43:fc:0c:8f:89:18:e5:e1:8e:b6:fb:ca:5a:2d: 62:c8:45:28:a6:50:4a:3d:12:3f:5b:49:64:7b:31: ed:3c:40:8f:91:fc:fd:43:44:81:76:6a:b5:26:cd: 5a:f7:87:41:68:b0:49:f3:dc:6d:e9:7c:52:18:ce: b2:5e:b3:44:b3:2b:8b:02:2f:8f:df:ec:12:5c:d2: 1a:70:8e:cd:81:03:88:9b:06:d9:a2:0f:42:34:64: f7:e0:1b:1c:1b:cd:ef:e6:1d:de:94:be:32:e5:98: 2d:19:0b:72:d7:6d:14:1a:68:e9:02:d1:97:a1:72: 28:98:c2:24:2c:ea:5f:c4:83:e1:36:e5:22:b7:30: f8:fd:34:c0:e4:97:8c:d7:07:4e:41:94:b4:d1:47: b7:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:C1:E6:8B:6E:6F:AC:A7:E7:B3:99:0F:1A:19:7A:9B:21:D6:69:5C X509v3 Authority Key Identifier: keyid:8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/tsHmi25vrKfns5kPGhl6myHWaVw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:7940:15::/48 Signature Algorithm: sha256WithRSAEncryption 12:0c:ed:5b:62:51:6a:93:1f:17:08:1a:ec:53:a4:7c:c0:ca: de:40:2c:ff:51:61:f4:eb:06:37:89:a6:f2:81:65:1f:5d:37: 0d:d5:37:e5:f1:05:35:7e:4d:a8:1d:12:a6:dc:fd:99:ce:fc: d6:21:53:89:56:f5:9d:99:d1:74:9f:bb:ba:25:47:99:f1:cc: b5:49:d2:ca:8f:90:af:e6:79:e8:a9:10:22:a9:a9:ba:11:93: 5a:45:c8:7c:42:2b:b9:33:ab:40:66:1b:c6:f1:5b:f4:26:49: 2e:cb:47:b8:ee:4a:21:38:a5:7c:36:b0:62:5d:b9:3c:8c:22: f2:af:42:37:12:6d:59:8b:2d:c1:f4:4c:bf:69:51:e8:75:1e: e4:14:cc:2d:6f:69:59:cb:ae:6f:f4:1b:0c:44:fb:44:1d:00: 72:1a:74:43:5a:96:cc:29:e6:5d:3c:cc:18:26:62:36:67:0a: 1e:5e:63:f4:22:8b:d1:fd:73:2a:cf:e4:6f:18:cf:19:e4:6e: 75:5c:7e:8e:3d:32:82:40:38:64:0f:92:58:d2:bb:16:fb:a3: fb:a0:e8:63:29:27:55:7f:07:0a:66:c9:9f:1e:4a:bd:3f:77: 4f:eb:f9:0d:65:04:1c:57:3b:11:f4:80:d3:fa:fa:bd:c6:82: 9a:54:b9:4c -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt4or0k60MuxY0Y4kL/2GqcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhYWI0YzBjZjIxYzFhM2Q2ZWE0MTA2OGNiZTkwOGJlMzg4 ZTQ1MGEwHhcNMjYwMTAxMDgxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNmMxZTY4YjZlNmZhY2E3ZTdiMzk5MGYxYTE5N2E5YjIxZDY2OTVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmVX2bV1ELUaqLK/r52kdPWMpFDrg NTbuvwLMGdfwyO9t3Nwb0fcWPIyUCJ0EhUxkSBbL0KMxQfSt+lVUbqUxbSLDKQes K5Pql7XccmAT7RiDBNdLHsuGcqZ9yt3psAJcG4IIn4KF3uX3Q/wMj4kY5eGOtvvK Wi1iyEUoplBKPRI/W0lkezHtPECPkfz9Q0SBdmq1Js1a94dBaLBJ89xt6XxSGM6y XrNEsyuLAi+P3+wSXNIacI7NgQOImwbZog9CNGT34BscG83v5h3elL4y5ZgtGQty 120UGmjpAtGXoXIomMIkLOpfxIPhNuUitzD4/TTA5JeM1wdOQZS00Ue3qQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLbB5otub6yn57OZDxoZepsh1mlcMB8GA1UdIwQY MBaAFIqrTAzyHBo9bqQQaMvpCL44jkUKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMt NTM3YjFiNDlkZmU3LzEvdHNIbWkyNXZyS2ZuczVrUEdobDZteUhXYVZ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMtNTM3YjFiNDlkZmU3 LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgd5QAAV MA0GCSqGSIb3DQEBCwUAA4IBAQASDO1bYlFqkx8XCBrsU6R8wMreQCz/UWH06wY3 iabygWUfXTcN1Tfl8QU1fk2oHRKm3P2ZzvzWIVOJVvWdmdF0n7u6JUeZ8cy1SdLK j5Cv5nnoqRAiqam6EZNaRch8Qiu5M6tAZhvG8Vv0Jkkuy0e47kohOKV8NrBiXbk8 jCLyr0I3Em1Ziy3B9Ey/aVHodR7kFMwtb2lZy65v9BsMRPtEHQByGnRDWpbMKeZd PMwYJmI2ZwoeXmP0IovR/XMqz+RvGM8Z5G51XH6OPTKCQDhkD5JY0rsW+6P7oOhj KSdVfwcKZsmfHkq9P3dP6/kNZQQcVzsR9IDT+vq9xoKaVLlM -----END CERTIFICATE-----Generated at Mon Jan 26 00:14:09 2026 by rpki-client