This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/90e70f-85dc-44a9-bb23-27f2bc162a07/1/tFxjCwXyMaEt_QnMeC7XIYXxC2w.roa File: tFxjCwXyMaEt_QnMeC7XIYXxC2w.roa (raw, json) Hash identifier: PxrGTWaTcjZcpK9gCVSwzRCuIdE/O6cOmfGjhOCu2XY= Subject key identifier: B4:5C:63:0B:05:F2:31:A1:2D:FD:09:CC:78:2E:D7:21:85:F1:0B:6C Certificate issuer: /CN=df8f961c6efbb7f9ce74217b1d5dbb54e981c6f2 Certificate serial: 019B7F13A83B0293A1B4756310570D18E405 Authority key identifier: DF:8F:96:1C:6E:FB:B7:F9:CE:74:21:7B:1D:5D:BB:54:E9:81:C6:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/34-WHG77t_nOdCF7HV27VOmBxvI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/90e70f-85dc-44a9-bb23-27f2bc162a07/1/tFxjCwXyMaEt_QnMeC7XIYXxC2w.roa Signing time: Fri 02 Jan 2026 14:19:13 +0000 ROA not before: Fri 02 Jan 2026 14:19:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 398781 IP address blocks: 2a09:77c4::/30 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/90e70f-85dc-44a9-bb23-27f2bc162a07/1/34-WHG77t_nOdCF7HV27VOmBxvI.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/90e70f-85dc-44a9-bb23-27f2bc162a07/1/34-WHG77t_nOdCF7HV27VOmBxvI.mft rsync://rpki.ripe.net/repository/DEFAULT/34-WHG77t_nOdCF7HV27VOmBxvI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:a8:3b:02:93:a1:b4:75:63:10:57:0d:18:e4:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df8f961c6efbb7f9ce74217b1d5dbb54e981c6f2 Validity Not Before: Jan 2 14:19:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b45c630b05f231a12dfd09cc782ed72185f10b6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f7:20:49:d9:5a:cf:6b:83:c8:ff:dd:0f:e7: 8f:b0:56:7a:0e:3b:59:e4:85:35:9e:6e:2e:8c:05: d1:4b:a6:c4:30:5e:b2:54:01:59:f2:33:51:80:56: 04:49:93:d5:54:c4:40:68:b0:7d:f5:11:76:e9:9e: cf:99:7a:6e:2a:d2:7e:83:e3:70:9f:b7:1c:9c:3b: bb:d1:dd:7a:d1:00:07:26:84:9c:50:1c:98:5a:27: 14:08:b0:1a:d6:53:d5:3b:d0:35:fe:60:32:fa:cb: 53:95:b8:f4:93:92:28:6b:5a:0c:f1:d7:ba:27:78: f1:15:87:22:ce:3b:20:9b:fa:cf:62:a9:62:30:18: 30:dd:64:6c:ff:9e:3e:93:34:a4:40:e3:c8:71:a1: 8a:fb:a8:d3:c4:27:bb:22:6c:61:cf:0b:9d:d8:39: 5a:ea:c5:43:85:22:6a:f3:ed:7c:5a:e6:69:78:d1: 54:33:91:9d:b4:4a:85:87:dd:05:f8:b1:0f:0d:0b: 09:6a:58:c4:f7:02:10:20:88:8b:be:75:26:8c:59: 3f:4f:bf:50:b7:6b:1f:ce:e7:94:1a:90:20:d7:cb: 81:ea:d0:85:92:24:c2:a5:9e:c2:ce:18:2c:ae:1e: e6:28:9b:4d:43:1f:3a:56:03:89:34:14:ab:aa:ae: 35:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:5C:63:0B:05:F2:31:A1:2D:FD:09:CC:78:2E:D7:21:85:F1:0B:6C X509v3 Authority Key Identifier: keyid:DF:8F:96:1C:6E:FB:B7:F9:CE:74:21:7B:1D:5D:BB:54:E9:81:C6:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/34-WHG77t_nOdCF7HV27VOmBxvI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/90e70f-85dc-44a9-bb23-27f2bc162a07/1/tFxjCwXyMaEt_QnMeC7XIYXxC2w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/90e70f-85dc-44a9-bb23-27f2bc162a07/1/34-WHG77t_nOdCF7HV27VOmBxvI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:77c4::/30 Signature Algorithm: sha256WithRSAEncryption 9d:18:0b:81:8c:d9:50:2c:79:a7:3c:b7:96:2c:ca:b7:7b:54: b2:41:fa:18:e7:ed:d3:b4:9a:c5:a7:e2:c7:9f:09:3c:e1:a5: 37:14:ce:a7:a6:3d:44:18:3c:c3:81:3f:9c:9c:7a:a7:7d:65: 84:37:b6:0d:1a:bd:71:28:fc:53:39:14:fa:e5:c3:10:0f:5a: 12:24:0b:ba:a6:5a:32:19:dc:77:f4:0c:b2:d2:b0:96:b1:c4: 32:3e:0b:4b:57:83:e0:05:08:66:06:b9:13:61:f6:de:10:d0: f4:46:0a:65:c2:72:56:f4:a2:75:1c:de:19:76:f6:4d:e8:bf: 0e:de:a5:8a:3f:49:a4:7b:1f:10:6c:26:29:f3:2e:ed:7b:3d: 78:cb:3f:ec:68:d1:75:c0:f5:2d:2c:5f:ad:d4:1f:4c:a4:61: cb:9d:1f:af:09:50:a5:d4:83:0b:39:9d:93:f3:73:3a:74:4a: 8b:29:af:61:74:52:df:42:a9:ee:87:eb:ba:1a:68:44:8d:c7: 30:7f:d8:ea:b4:60:96:c5:b4:1f:bf:86:bd:5c:b4:76:18:5d: 82:04:0f:6f:1e:e3:22:b1:41:90:6e:50:ff:b3:2c:e1:58:2f: 92:6f:60:e0:66:3f:c8:ef:1c:24:1f:3f:15:1f:a9:2d:a2:d4: 8e:43:2b:f8 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/E6g7ApOhtHVjEFcNGOQFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmOGY5NjFjNmVmYmI3ZjljZTc0MjE3YjFkNWRiYjU0ZTk4 MWM2ZjIwHhcNMjYwMTAyMTQxOTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDVjNjMwYjA1ZjIzMWExMmRmZDA5Y2M3ODJlZDcyMTg1ZjEwYjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmvcgSdlaz2uDyP/dD+ePsFZ6DjtZ 5IU1nm4ujAXRS6bEMF6yVAFZ8jNRgFYESZPVVMRAaLB99RF26Z7PmXpuKtJ+g+Nw n7ccnDu70d160QAHJoScUByYWicUCLAa1lPVO9A1/mAy+stTlbj0k5Ioa1oM8de6 J3jxFYcizjsgm/rPYqliMBgw3WRs/54+kzSkQOPIcaGK+6jTxCe7Imxhzwud2Dla 6sVDhSJq8+18WuZpeNFUM5GdtEqFh90F+LEPDQsJaljE9wIQIIiLvnUmjFk/T79Q t2sfzueUGpAg18uB6tCFkiTCpZ7Czhgsrh7mKJtNQx86VgOJNBSrqq41jwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFLRcYwsF8jGhLf0JzHgu1yGF8QtsMB8GA1UdIwQY MBaAFN+Plhxu+7f5znQhex1du1TpgcbyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzQtV0hHNzd0X25PZENGN0hWMjdWT21CeHZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi85MGU3MGYtODVkYy00NGE5LWJiMjMt MjdmMmJjMTYyYTA3LzEvdEZ4akN3WHlNYUV0X1FuTWVDN1hJWVh4QzJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi85MGU3MGYtODVkYy00NGE5LWJiMjMtMjdmMmJjMTYyYTA3 LzEvMzQtV0hHNzd0X25PZENGN0hWMjdWT21CeHZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUCKgl3xDAN BgkqhkiG9w0BAQsFAAOCAQEAnRgLgYzZUCx5pzy3lizKt3tUskH6GOft07Saxafi x58JPOGlNxTOp6Y9RBg8w4E/nJx6p31lhDe2DRq9cSj8UzkU+uXDEA9aEiQLuqZa Mhncd/QMstKwlrHEMj4LS1eD4AUIZga5E2H23hDQ9EYKZcJyVvSidRzeGXb2Tei/ Dt6lij9JpHsfEGwmKfMu7Xs9eMs/7GjRdcD1LSxfrdQfTKRhy50frwlQpdSDCzmd k/NzOnRKiymvYXRS30Kp7ofruhpoRI3HMH/Y6rRglsW0H7+GvVy0dhhdggQPbx7j IrFBkG5Q/7Ms4Vgvkm9g4GY/yO8cJB8/FR+pLaLUjkMr+A== -----END CERTIFICATE-----Generated at Sun Jan 25 15:36:35 2026 by rpki-client