This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/iB1yqzobHZgkeYyjgD24fdDMrSI.roa File: iB1yqzobHZgkeYyjgD24fdDMrSI.roa (raw, json) Hash identifier: zZkMxbemW0AGoPi/lyDYstjw3mF8p7nYB8fNtwbbBHY= Subject key identifier: 88:1D:72:AB:3A:1B:1D:98:24:79:8C:A3:80:3D:B8:7D:D0:CC:AD:22 Certificate issuer: /CN=b0b56d10ccad9d69c01856be0afaa17ec682acbf Certificate serial: 019B7834F0822AFB8CB703BEB4EACF2F11DF Authority key identifier: B0:B5:6D:10:CC:AD:9D:69:C0:18:56:BE:0A:FA:A1:7E:C6:82:AC:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLVtEMytnWnAGFa-CvqhfsaCrL8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/iB1yqzobHZgkeYyjgD24fdDMrSI.roa Signing time: Thu 01 Jan 2026 06:18:13 +0000 ROA not before: Thu 01 Jan 2026 06:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214304 IP address blocks: 2a01:f900:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/sLVtEMytnWnAGFa-CvqhfsaCrL8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/sLVtEMytnWnAGFa-CvqhfsaCrL8.mft rsync://rpki.ripe.net/repository/DEFAULT/sLVtEMytnWnAGFa-CvqhfsaCrL8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:f0:82:2a:fb:8c:b7:03:be:b4:ea:cf:2f:11:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0b56d10ccad9d69c01856be0afaa17ec682acbf Validity Not Before: Jan 1 06:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=881d72ab3a1b1d9824798ca3803db87dd0ccad22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:0a:65:e2:4b:7e:b8:17:74:2a:2a:34:fb:f7: c0:ff:a2:b1:70:82:ab:70:57:ec:f3:38:9a:77:b8: 38:55:30:e9:ec:23:33:fe:ca:8a:28:da:a8:43:4d: 96:65:c1:9c:42:5c:06:fb:d6:7b:b7:5e:5a:d9:03: a2:bd:9d:96:7b:4f:52:98:01:58:2d:ae:4c:15:1e: bb:81:b2:eb:71:2b:fc:bb:13:d9:b0:32:fd:0b:9f: f2:16:0e:bd:d7:c5:8a:f9:d1:3a:11:fb:2a:a1:96: ab:2a:33:81:dc:8f:b0:20:9a:b8:ea:9d:a6:2a:25: fe:06:13:10:24:c5:3e:9c:3c:dc:54:bf:8d:e8:39: 9f:e3:8f:cc:20:ce:91:37:0c:af:62:21:41:f1:d3: 8b:f4:ef:8e:3e:02:ba:01:6f:2c:26:b5:49:7b:b3: 00:6e:cc:f5:cf:35:5a:09:34:aa:ab:ad:63:87:f7: 26:77:61:42:28:65:c4:83:b9:ad:f1:02:9a:15:94: a4:61:11:bb:5f:d3:c6:1c:c7:8d:76:f9:fe:ee:79: 26:0e:6e:f5:cf:69:1f:cf:c5:0f:c2:a6:8c:81:e9: ad:24:c8:10:2b:00:4b:3d:2b:4d:38:61:bb:9c:8e: c1:15:6e:9c:4d:9f:e4:a9:99:c0:6e:66:3d:79:cc: 82:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:1D:72:AB:3A:1B:1D:98:24:79:8C:A3:80:3D:B8:7D:D0:CC:AD:22 X509v3 Authority Key Identifier: keyid:B0:B5:6D:10:CC:AD:9D:69:C0:18:56:BE:0A:FA:A1:7E:C6:82:AC:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLVtEMytnWnAGFa-CvqhfsaCrL8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/iB1yqzobHZgkeYyjgD24fdDMrSI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/sLVtEMytnWnAGFa-CvqhfsaCrL8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:f900:100::/48 Signature Algorithm: sha256WithRSAEncryption 67:37:cf:28:dc:d5:49:eb:54:f2:c7:e0:fa:96:d0:21:41:95: 0d:d4:24:d3:2c:0b:f5:be:36:dc:58:05:da:48:4f:00:df:20: 38:63:21:0f:bb:ed:21:71:66:b1:da:68:ee:9c:8a:42:b5:d2: ea:57:db:37:1f:34:cf:ab:27:da:7c:07:03:6b:22:a2:7f:2d: ee:82:51:b7:49:e4:d4:b6:6c:bf:39:2c:60:a5:fb:09:14:7a: 0c:96:68:27:f0:5a:24:17:d6:fa:06:1a:f9:d9:91:3a:20:70: 05:29:68:15:a4:b7:e4:e2:e7:a5:49:0b:24:53:a1:39:be:28: af:bb:0f:6c:0e:f6:cd:18:54:7a:2a:d0:b5:7c:41:93:63:bc: 1e:80:95:27:d0:b7:ad:b8:4a:d8:67:07:0f:5c:fa:01:4a:2a: b0:56:35:67:81:d8:ee:dd:a7:4f:78:60:a0:25:a7:2d:35:ce: ec:d5:ee:51:ab:64:a0:f5:30:ad:48:b4:e7:32:05:ed:68:b1: 56:fd:85:e6:dd:a3:07:e7:4a:f2:04:a5:1b:a1:a0:0a:92:13: 58:d1:97:30:81:43:ad:fc:bc:55:70:58:7e:36:c9:29:14:3d: 91:c9:b6:62:35:41:24:8b:3b:6f:04:5f:60:57:1f:4b:59:8c: 85:b2:78:0b -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt4NPCCKvuMtwO+tOrPLxHfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwYjU2ZDEwY2NhZDlkNjljMDE4NTZiZTBhZmFhMTdlYzY4 MmFjYmYwHhcNMjYwMTAxMDYxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODFkNzJhYjNhMWIxZDk4MjQ3OThjYTM4MDNkYjg3ZGQwY2NhZDIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlgpl4kt+uBd0Kio0+/fA/6KxcIKr cFfs8ziad7g4VTDp7CMz/sqKKNqoQ02WZcGcQlwG+9Z7t15a2QOivZ2We09SmAFY La5MFR67gbLrcSv8uxPZsDL9C5/yFg6918WK+dE6EfsqoZarKjOB3I+wIJq46p2m KiX+BhMQJMU+nDzcVL+N6Dmf44/MIM6RNwyvYiFB8dOL9O+OPgK6AW8sJrVJe7MA bsz1zzVaCTSqq61jh/cmd2FCKGXEg7mt8QKaFZSkYRG7X9PGHMeNdvn+7nkmDm71 z2kfz8UPwqaMgemtJMgQKwBLPStNOGG7nI7BFW6cTZ/kqZnAbmY9ecyCawIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFIgdcqs6Gx2YJHmMo4A9uH3QzK0iMB8GA1UdIwQY MBaAFLC1bRDMrZ1pwBhWvgr6oX7Ggqy/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0xWdEVNeXRuV25BR0ZhLUN2cWhmc2FDckw4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC82OTQwOWUtMWVjNC00ODlkLWI2MWYt YTE5Y2M4YTc2ZDA0LzEvaUIxeXF6b2JIWmdrZVl5amdEMjRmZERNclNJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC82OTQwOWUtMWVjNC00ODlkLWI2MWYtYTE5Y2M4YTc2ZDA0 LzEvc0xWdEVNeXRuV25BR0ZhLUN2cWhmc2FDckw4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgH5AAEA MA0GCSqGSIb3DQEBCwUAA4IBAQBnN88o3NVJ61Tyx+D6ltAhQZUN1CTTLAv1vjbc WAXaSE8A3yA4YyEPu+0hcWax2mjunIpCtdLqV9s3HzTPqyfafAcDayKify3uglG3 SeTUtmy/OSxgpfsJFHoMlmgn8FokF9b6Bhr52ZE6IHAFKWgVpLfk4uelSQskU6E5 viivuw9sDvbNGFR6KtC1fEGTY7wegJUn0LetuErYZwcPXPoBSiqwVjVngdju3adP eGCgJactNc7s1e5Rq2Sg9TCtSLTnMgXtaLFW/YXm3aMH50ryBKUboaAKkhNY0Zcw gUOt/LxVcFh+NskpFD2RybZiNUEkiztvBF9gVx9LWYyFsngL -----END CERTIFICATE-----Generated at Sun Jan 25 22:16:41 2026 by rpki-client