This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/dcf976-007d-4542-b0e2-5f8fc707836a/1/_Dc_bdIAZYdrEnNJICuszN__3rw.roa File: _Dc_bdIAZYdrEnNJICuszN__3rw.roa (raw, json) Hash identifier: AzuIghqugc9hzzBm4Id+ZUX9fazI5NRXP0v6O6ZJMDc= Subject key identifier: FC:37:3F:6D:D2:00:65:87:6B:12:73:49:20:2B:AC:CC:DF:FF:DE:BC Certificate issuer: /CN=593897174f967490dbf6189d479df2c9371bf404 Certificate serial: 019B77C74A55B0944BE3B745467891ECD305 Authority key identifier: 59:38:97:17:4F:96:74:90:DB:F6:18:9D:47:9D:F2:C9:37:1B:F4:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WTiXF0-WdJDb9hidR53yyTcb9AQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/dcf976-007d-4542-b0e2-5f8fc707836a/1/_Dc_bdIAZYdrEnNJICuszN__3rw.roa Signing time: Thu 01 Jan 2026 04:18:27 +0000 ROA not before: Thu 01 Jan 2026 04:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6825 IP address blocks: 2a05:bc1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/dcf976-007d-4542-b0e2-5f8fc707836a/1/WTiXF0-WdJDb9hidR53yyTcb9AQ.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/dcf976-007d-4542-b0e2-5f8fc707836a/1/WTiXF0-WdJDb9hidR53yyTcb9AQ.mft rsync://rpki.ripe.net/repository/DEFAULT/WTiXF0-WdJDb9hidR53yyTcb9AQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:4a:55:b0:94:4b:e3:b7:45:46:78:91:ec:d3:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=593897174f967490dbf6189d479df2c9371bf404 Validity Not Before: Jan 1 04:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fc373f6dd20065876b127349202bacccdfffdebc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e7:98:26:c5:bb:86:1c:bf:03:1e:ac:3b:95: cc:ba:9d:e5:5b:d2:a1:74:85:69:3b:2f:67:58:8f: 7a:a3:dc:90:40:0a:40:cf:92:e5:db:3c:f1:86:3c: ac:11:e8:4d:fe:16:84:56:45:99:e5:e3:e2:e2:16: b2:39:0a:71:05:65:e5:00:05:2e:c2:b5:d3:a4:4c: d9:37:b1:d0:55:03:78:4e:62:de:af:a9:6b:0f:db: 5a:3a:5b:86:3a:83:d5:44:35:9b:36:17:20:cd:2e: eb:41:bd:eb:86:8e:a0:c0:60:66:2d:54:47:f8:75: dc:11:b9:14:40:3f:b9:0c:11:c2:c4:1c:19:46:99: a6:a1:79:7e:e6:8f:c6:c7:8f:8e:b0:fe:88:bc:68: 9a:ef:db:cf:76:53:4b:b9:e6:1d:cf:e1:ca:62:75: 77:21:37:03:af:3d:14:79:a2:43:78:f0:e4:fa:09: b7:40:36:c8:02:de:42:0d:77:77:67:3e:4b:e1:0a: d0:4f:9e:f7:e4:91:cd:de:c0:a4:b6:fc:64:99:8f: 55:49:85:d7:11:04:0c:1c:1e:da:0d:3f:3b:7b:02: bc:9c:19:59:f5:9a:79:6c:53:52:a5:54:71:14:96: dd:1d:5d:09:97:ef:9c:0c:72:af:42:cc:0f:78:f7: 6a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:37:3F:6D:D2:00:65:87:6B:12:73:49:20:2B:AC:CC:DF:FF:DE:BC X509v3 Authority Key Identifier: keyid:59:38:97:17:4F:96:74:90:DB:F6:18:9D:47:9D:F2:C9:37:1B:F4:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WTiXF0-WdJDb9hidR53yyTcb9AQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dcf976-007d-4542-b0e2-5f8fc707836a/1/_Dc_bdIAZYdrEnNJICuszN__3rw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dcf976-007d-4542-b0e2-5f8fc707836a/1/WTiXF0-WdJDb9hidR53yyTcb9AQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:bc1::/48 Signature Algorithm: sha256WithRSAEncryption 45:f9:7c:57:3b:98:a3:f5:d9:c5:b2:43:e9:ae:32:11:d0:28: 35:60:1f:c9:da:7f:2f:bc:9e:a8:b8:19:ff:bd:74:7a:64:50: ec:3b:97:a2:b3:96:17:a2:9f:be:f0:a9:30:08:65:97:9b:27: b9:46:2e:01:2b:09:e8:1b:1d:d9:e8:84:ef:4d:8f:80:34:0f: 44:32:a8:73:29:f3:e9:8e:89:7d:17:af:bb:92:4c:21:36:45: 64:e1:9b:65:bf:3f:38:ba:14:bb:42:9a:b6:dc:8f:36:a6:91: b5:5b:1e:a6:7d:9e:ae:5d:7e:39:23:28:6d:a9:c0:04:b0:33: da:68:16:35:49:bc:de:a8:fb:a8:09:97:59:cb:15:89:96:d1: 93:d6:35:81:ab:c3:89:b5:20:67:b0:94:88:39:a8:be:4e:96: 95:a2:62:f9:86:8e:92:9e:b7:20:54:be:90:f3:0d:b9:13:19: 83:03:71:ce:6f:bf:06:f3:21:e7:89:57:b9:fd:ac:b9:ee:16: 1d:28:5d:70:09:5f:05:60:df:d9:09:c4:58:ed:b4:67:ed:4e: 35:02:b2:2a:6d:e3:cb:a1:87:53:41:74:a6:a7:a6:4b:98:57: 71:76:0d:19:f4:04:5c:ef:6c:08:19:a2:7c:ea:23:73:7f:d5: 81:14:be:24 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3x0pVsJRL47dFRniR7NMFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5Mzg5NzE3NGY5Njc0OTBkYmY2MTg5ZDQ3OWRmMmM5Mzcx YmY0MDQwHhcNMjYwMTAxMDQxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYzM3M2Y2ZGQyMDA2NTg3NmIxMjczNDkyMDJiYWNjY2RmZmZkZWJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsOeYJsW7hhy/Ax6sO5XMup3lW9Kh dIVpOy9nWI96o9yQQApAz5Ll2zzxhjysEehN/haEVkWZ5ePi4hayOQpxBWXlAAUu wrXTpEzZN7HQVQN4TmLer6lrD9taOluGOoPVRDWbNhcgzS7rQb3rho6gwGBmLVRH +HXcEbkUQD+5DBHCxBwZRpmmoXl+5o/Gx4+OsP6IvGia79vPdlNLueYdz+HKYnV3 ITcDrz0UeaJDePDk+gm3QDbIAt5CDXd3Zz5L4QrQT5735JHN3sCktvxkmY9VSYXX EQQMHB7aDT87ewK8nBlZ9Zp5bFNSpVRxFJbdHV0Jl++cDHKvQswPePdqFQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFPw3P23SAGWHaxJzSSArrMzf/968MB8GA1UdIwQY MBaAFFk4lxdPlnSQ2/YYnUed8sk3G/QEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV1RpWEYwLVdkSkRiOWhpZFI1M3l5VGNiOUFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9kY2Y5NzYtMDA3ZC00NTQyLWIwZTIt NWY4ZmM3MDc4MzZhLzEvX0RjX2JkSUFaWWRyRW5OSklDdXN6Tl9fM3J3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi9kY2Y5NzYtMDA3ZC00NTQyLWIwZTItNWY4ZmM3MDc4MzZh LzEvV1RpWEYwLVdkSkRiOWhpZFI1M3l5VGNiOUFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgULwQAA MA0GCSqGSIb3DQEBCwUAA4IBAQBF+XxXO5ij9dnFskPprjIR0Cg1YB/J2n8vvJ6o uBn/vXR6ZFDsO5eis5YXop++8KkwCGWXmye5Ri4BKwnoGx3Z6ITvTY+ANA9EMqhz KfPpjol9F6+7kkwhNkVk4Ztlvz84uhS7Qpq23I82ppG1Wx6mfZ6uXX45IyhtqcAE sDPaaBY1SbzeqPuoCZdZyxWJltGT1jWBq8OJtSBnsJSIOai+TpaVomL5ho6Snrcg VL6Q8w25ExmDA3HOb78G8yHniVe5/ay57hYdKF1wCV8FYN/ZCcRY7bRn7U41ArIq bePLoYdTQXSmp6ZLmFdxdg0Z9ARc72wIGaJ86iNzf9WBFL4k -----END CERTIFICATE-----Generated at Mon Jan 26 13:45:06 2026 by rpki-client