This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/ig_VBpviDFPO2k9TLvdj_dWYYIw.roa File: ig_VBpviDFPO2k9TLvdj_dWYYIw.roa (raw, json) Hash identifier: WqPhG6OmFgIAQlSVATvrRDw6cG27/lSxwjfUp8XUsZY= Subject key identifier: 8A:0F:D5:06:9B:E2:0C:53:CE:DA:4F:53:2E:F7:63:FD:D5:98:60:8C Certificate issuer: /CN=a7a4e23482268475c1b935637d0002c2fd2993b8 Certificate serial: 019B7CEE70DF8E8A4CF95F52C431BA8B2816 Authority key identifier: A7:A4:E2:34:82:26:84:75:C1:B9:35:63:7D:00:02:C2:FD:29:93:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/ig_VBpviDFPO2k9TLvdj_dWYYIw.roa Signing time: Fri 02 Jan 2026 04:19:19 +0000 ROA not before: Fri 02 Jan 2026 04:19:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213007 IP address blocks: 2a14:ae00:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.mft rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:70:df:8e:8a:4c:f9:5f:52:c4:31:ba:8b:28:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7a4e23482268475c1b935637d0002c2fd2993b8 Validity Not Before: Jan 2 04:19:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8a0fd5069be20c53ceda4f532ef763fdd598608c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2a:e3:9c:0d:2a:71:d4:ed:3c:31:92:90:09: 2a:8d:15:b5:a7:7c:fe:98:89:c3:cb:0a:91:f5:5c: 7d:31:8d:fb:47:11:bd:6b:96:a6:1d:6a:59:eb:d8: b6:3a:b5:e3:1a:85:db:c9:71:a2:87:fd:f0:0c:42: cb:bb:49:b6:72:1f:cf:61:6d:2d:02:a6:b5:d1:85: d9:a4:ea:52:36:cf:9b:46:97:e1:f6:53:e9:6a:63: 0f:3c:97:8f:6b:00:65:11:f4:5d:a1:81:a5:39:cf: 3c:ca:1e:31:e8:a2:67:de:f8:d1:7a:53:99:a5:7b: b1:5c:9c:d8:c3:5f:5e:1c:cb:cc:fc:7d:28:46:4e: 38:ff:ec:70:22:8e:47:5d:1b:6e:4f:41:16:d5:83: 02:6d:39:47:88:d3:f1:10:5c:51:2c:4a:da:84:f1: a4:8a:45:f5:43:93:1a:32:8a:22:bc:35:e0:92:dc: 5b:75:b8:d3:1c:2d:d5:8e:7f:6a:67:ca:b8:b2:aa: 9e:30:49:38:95:ae:75:3b:a6:c9:56:45:33:3f:97: 2d:78:65:09:b5:b6:d7:c9:51:fb:41:1d:07:2d:36: 5d:9a:18:aa:6c:00:6d:dc:22:94:1e:50:95:15:20: e5:f1:61:e0:5c:99:85:9b:c9:c0:bc:2b:f3:9c:97: a1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:0F:D5:06:9B:E2:0C:53:CE:DA:4F:53:2E:F7:63:FD:D5:98:60:8C X509v3 Authority Key Identifier: keyid:A7:A4:E2:34:82:26:84:75:C1:B9:35:63:7D:00:02:C2:FD:29:93:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/ig_VBpviDFPO2k9TLvdj_dWYYIw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:ae00:9::/48 Signature Algorithm: sha256WithRSAEncryption 00:05:f7:03:72:10:c3:61:b0:26:4b:5f:da:db:ef:10:90:d8: 9a:02:1d:c3:6f:53:40:03:45:fe:d4:ce:d4:b5:15:5b:f2:fa: 00:f0:43:b8:03:e3:e2:9a:94:56:aa:59:75:f3:8b:51:ea:75: 3d:98:b2:33:84:7b:2f:cf:5a:e2:8e:23:7f:f4:36:0c:32:cf: 08:d6:43:e5:e7:6b:5e:de:a4:e9:e5:44:f9:f0:1e:d8:09:81: ab:24:c2:c8:2f:c3:ac:3b:68:34:5f:2c:34:d0:3d:cc:c3:8e: 47:48:17:ab:28:cc:42:7c:11:25:a1:ec:1a:1f:a8:94:84:ed: 0b:36:c8:80:80:63:24:60:05:13:c8:30:02:b6:4d:c4:81:42: 15:8a:6a:5a:6b:46:81:f9:c1:5b:89:8c:65:4d:80:07:f7:d2: 34:ca:f6:2a:f0:d4:e3:e3:10:84:82:b9:fa:9a:95:bb:50:2d: 52:d4:77:f5:8c:65:8e:88:5a:33:e7:1c:02:35:17:24:3e:fe: 5c:b8:24:92:9e:df:c9:49:59:43:b4:88:c8:3c:7a:24:63:8c: ea:b7:88:4a:b0:d8:3c:0e:06:94:cc:f4:d8:28:70:3e:37:84: d4:bb:92:ea:d3:7e:72:5c:11:0f:42:ac:f2:06:dc:6c:14:a3: 2f:fb:20:c8 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt87nDfjopM+V9SxDG6iygWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3YTRlMjM0ODIyNjg0NzVjMWI5MzU2MzdkMDAwMmMyZmQy OTkzYjgwHhcNMjYwMTAyMDQxOTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YTBmZDUwNjliZTIwYzUzY2VkYTRmNTMyZWY3NjNmZGQ1OTg2MDhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5yrjnA0qcdTtPDGSkAkqjRW1p3z+ mInDywqR9Vx9MY37RxG9a5amHWpZ69i2OrXjGoXbyXGih/3wDELLu0m2ch/PYW0t Aqa10YXZpOpSNs+bRpfh9lPpamMPPJePawBlEfRdoYGlOc88yh4x6KJn3vjRelOZ pXuxXJzYw19eHMvM/H0oRk44/+xwIo5HXRtuT0EW1YMCbTlHiNPxEFxRLErahPGk ikX1Q5MaMooivDXgktxbdbjTHC3Vjn9qZ8q4sqqeMEk4la51O6bJVkUzP5cteGUJ tbbXyVH7QR0HLTZdmhiqbABt3CKUHlCVFSDl8WHgXJmFm8nAvCvznJehSQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFIoP1Qab4gxTztpPUy73Y/3VmGCMMB8GA1UdIwQY MBaAFKek4jSCJoR1wbk1Y30AAsL9KZO4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDZUaU5JSW1oSFhCdVRWamZRQUN3djBwazdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8wN2Y2MjMtMTRmYi00YTgwLTlmNDYt MjMzMzFiNjQ5MTZjLzEvaWdfVkJwdmlERlBPMms5VEx2ZGpfZFdZWUl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy8wN2Y2MjMtMTRmYi00YTgwLTlmNDYtMjMzMzFiNjQ5MTZj LzEvcDZUaU5JSW1oSFhCdVRWamZRQUN3djBwazdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhSuAAAJ MA0GCSqGSIb3DQEBCwUAA4IBAQAABfcDchDDYbAmS1/a2+8QkNiaAh3Db1NAA0X+ 1M7UtRVb8voA8EO4A+PimpRWqll184tR6nU9mLIzhHsvz1rijiN/9DYMMs8I1kPl 52te3qTp5UT58B7YCYGrJMLIL8OsO2g0Xyw00D3Mw45HSBerKMxCfBEloewaH6iU hO0LNsiAgGMkYAUTyDACtk3EgUIVimpaa0aB+cFbiYxlTYAH99I0yvYq8NTj4xCE grn6mpW7UC1S1Hf1jGWOiFoz5xwCNRckPv5cuCSSnt/JSVlDtIjIPHokY4zqt4hK sNg8DgaUzPTYKHA+N4TUu5Lq035yXBEPQqzyBtxsFKMv+yDI -----END CERTIFICATE-----Generated at Mon Jan 26 03:57:18 2026 by rpki-client