This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/060f32-a48b-4657-a58b-41b730327c78/1/imDE-vm0239dppVXb0LoZMIxQT4.roa File: imDE-vm0239dppVXb0LoZMIxQT4.roa (raw, json) Hash identifier: ZrWuVeoYPtUeLU8Yup3YRBMApC7w6f3LjOnoid5LP80= Subject key identifier: 8A:60:C4:FA:F9:B4:DB:7F:5D:A6:95:57:6F:42:E8:64:C2:31:41:3E Certificate issuer: /CN=da7d5fca1e469929d4a8b6f57af3cbcdc639a35e Certificate serial: 019BE24327864582A96A1963595F3AAAD7A2 Authority key identifier: DA:7D:5F:CA:1E:46:99:29:D4:A8:B6:F5:7A:F3:CB:CD:C6:39:A3:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2n1fyh5GmSnUqLb1evPLzcY5o14.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/060f32-a48b-4657-a58b-41b730327c78/1/imDE-vm0239dppVXb0LoZMIxQT4.roa Signing time: Wed 21 Jan 2026 20:33:30 +0000 ROA not before: Wed 21 Jan 2026 20:33:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210644 IP address blocks: 2a01:e5c0:2000::/36 maxlen: 36 2a01:e5c0:3000::/36 maxlen: 36 2a01:e5c0:4000::/36 maxlen: 36 2a01:e5c0:5000::/36 maxlen: 36 2a01:e5c0:6000::/36 maxlen: 36 2a01:e5c0:7000::/36 maxlen: 36 2a01:e5c0:8003::/48 maxlen: 48 2a01:e5c0:8004::/48 maxlen: 48 2a01:e5c0:8008::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/060f32-a48b-4657-a58b-41b730327c78/1/2n1fyh5GmSnUqLb1evPLzcY5o14.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/060f32-a48b-4657-a58b-41b730327c78/1/2n1fyh5GmSnUqLb1evPLzcY5o14.mft rsync://rpki.ripe.net/repository/DEFAULT/2n1fyh5GmSnUqLb1evPLzcY5o14.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e2:43:27:86:45:82:a9:6a:19:63:59:5f:3a:aa:d7:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da7d5fca1e469929d4a8b6f57af3cbcdc639a35e Validity Not Before: Jan 21 20:33:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8a60c4faf9b4db7f5da695576f42e864c231413e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ad:b5:e3:dd:ef:a2:ae:28:a7:f8:5f:76:ec: c6:d2:16:9f:23:ba:3f:5b:31:ae:64:fa:91:9b:d6: 70:32:8a:a1:66:71:80:48:a7:da:74:4c:ff:33:b2: 39:60:22:4e:bb:a9:42:5e:e2:17:cb:35:08:11:74: ea:43:4a:35:76:04:6b:f9:57:ea:7d:08:e5:ff:c5: aa:7e:48:21:6a:50:1f:73:55:f6:03:71:89:ab:e9: 84:ec:3d:f2:56:82:33:20:55:cb:64:0b:04:b1:17: 14:9d:50:88:7f:97:6c:a6:02:c4:f8:8f:21:95:20: 42:8c:ca:82:fc:67:02:f7:b4:b6:eb:40:fb:dc:cb: da:af:71:c7:ea:ec:08:8c:12:66:f8:bd:ce:32:0f: 48:7d:b0:3e:cc:93:ce:e6:62:77:7e:c8:62:64:68: 83:3d:5f:bb:99:9f:21:5d:0e:bd:84:6d:ce:9a:0a: af:16:cf:1f:dd:5d:61:82:31:30:44:bc:db:76:12: d4:8a:44:50:02:b9:b7:c4:ba:54:64:0a:c1:c9:dd: 2d:18:85:c9:b6:ec:45:8b:3f:dc:62:e8:44:ab:c4: d9:93:35:b1:e9:eb:ef:ff:ca:2a:ab:57:ab:72:a6: 8a:8e:93:90:98:54:37:87:4a:49:26:aa:54:38:98: a1:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:60:C4:FA:F9:B4:DB:7F:5D:A6:95:57:6F:42:E8:64:C2:31:41:3E X509v3 Authority Key Identifier: keyid:DA:7D:5F:CA:1E:46:99:29:D4:A8:B6:F5:7A:F3:CB:CD:C6:39:A3:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2n1fyh5GmSnUqLb1evPLzcY5o14.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/060f32-a48b-4657-a58b-41b730327c78/1/imDE-vm0239dppVXb0LoZMIxQT4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/060f32-a48b-4657-a58b-41b730327c78/1/2n1fyh5GmSnUqLb1evPLzcY5o14.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:e5c0:2000::-2a01:e5c0:7fff:ffff:ffff:ffff:ffff:ffff 2a01:e5c0:8003::-2a01:e5c0:8004:ffff:ffff:ffff:ffff:ffff 2a01:e5c0:8008::/48 Signature Algorithm: sha256WithRSAEncryption 8b:c4:7f:f8:cd:5b:47:55:3b:4c:87:f1:a1:da:a3:2b:08:0f: 47:0f:b6:81:09:ca:ad:cc:5c:cd:9d:6d:4a:04:4d:74:34:fd: de:6e:43:44:e9:30:71:14:cc:e3:12:65:70:98:20:7d:ed:98: ea:26:9b:ab:58:75:77:63:04:19:63:0c:61:61:dc:03:9d:81: 91:2f:e4:1d:56:80:87:f1:e3:a9:6c:09:47:4d:a9:be:14:2e: be:39:e0:14:06:a1:7f:39:e8:d0:6c:ea:51:2a:5e:78:d3:8a: bf:1a:5b:f6:ce:5f:0a:90:61:dd:d8:58:7f:52:bf:4e:2c:06: 7e:76:3e:2f:28:f1:11:04:03:5a:cb:b9:f3:f9:2f:93:99:a1: ff:5f:09:57:db:6f:fb:ee:c0:f7:63:ab:1f:a3:ae:8f:03:3e: 59:d2:c9:6a:7d:70:96:9e:c6:df:80:fb:de:09:64:ef:87:15: a8:90:e3:92:a5:c9:a5:b7:72:43:40:d0:83:c9:9b:cb:e5:d3: 28:b5:6f:17:e6:ea:ac:50:4b:e9:11:7a:f1:b3:01:1f:2e:22: 71:09:0e:9f:96:aa:9b:89:26:c8:65:7e:c8:8d:f1:3e:98:f9: 0f:fb:76:be:33:1d:da:85:e3:e5:55:17:ab:d5:cb:02:f5:56: 7a:44:57:54 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZviQyeGRYKpahljWV86qteiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhN2Q1ZmNhMWU0Njk5MjlkNGE4YjZmNTdhZjNjYmNkYzYz OWEzNWUwHhcNMjYwMTIxMjAzMzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YTYwYzRmYWY5YjRkYjdmNWRhNjk1NTc2ZjQyZTg2NGMyMzE0MTNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl621493voq4op/hfduzG0hafI7o/ WzGuZPqRm9ZwMoqhZnGASKfadEz/M7I5YCJOu6lCXuIXyzUIEXTqQ0o1dgRr+Vfq fQjl/8WqfkghalAfc1X2A3GJq+mE7D3yVoIzIFXLZAsEsRcUnVCIf5dspgLE+I8h lSBCjMqC/GcC97S260D73Mvar3HH6uwIjBJm+L3OMg9IfbA+zJPO5mJ3fshiZGiD PV+7mZ8hXQ69hG3OmgqvFs8f3V1hgjEwRLzbdhLUikRQArm3xLpUZArByd0tGIXJ tuxFiz/cYuhEq8TZkzWx6evv/8oqq1ercqaKjpOQmFQ3h0pJJqpUOJihgQIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFIpgxPr5tNt/XaaVV29C6GTCMUE+MB8GA1UdIwQY MBaAFNp9X8oeRpkp1Ki29Xrzy83GOaNeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMm4xZnloNUdtU25VcUxiMWV2UEx6Y1k1bzE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8wNjBmMzItYTQ4Yi00NjU3LWE1OGIt NDFiNzMwMzI3Yzc4LzEvaW1ERS12bTAyMzlkcHBWWGIwTG9aTUl4UVQ0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8wNjBmMzItYTQ4Yi00NjU3LWE1OGItNDFiNzMwMzI3Yzc4 LzEvMm4xZnloNUdtU25VcUxiMWV2UEx6Y1k1bzE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzA1BAIAAjAvMBADBgUqAeXA IAMGByoB5cAAMBIDBwAqAeXAgAMDBwAqAeXAgAQDBwAqAeXAgAgwDQYJKoZIhvcN AQELBQADggEBAIvEf/jNW0dVO0yH8aHaoysID0cPtoEJyq3MXM2dbUoETXQ0/d5u Q0TpMHEUzOMSZXCYIH3tmOomm6tYdXdjBBljDGFh3AOdgZEv5B1WgIfx46lsCUdN qb4ULr454BQGoX856NBs6lEqXnjTir8aW/bOXwqQYd3YWH9Sv04sBn52Pi8o8REE A1rLufP5L5OZof9fCVfbb/vuwPdjqx+jro8DPlnSyWp9cJaext+A+94JZO+HFaiQ 45KlyaW3ckNA0IPJm8vl0yi1bxfm6qxQS+kRevGzAR8uInEJDp+WqpuJJshlfsiN 8T6Y+Q/7dr4zHdqF4+VVF6vVywL1VnpEV1Q= -----END CERTIFICATE-----Generated at Mon Jan 26 08:38:48 2026 by rpki-client