This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/1-GhRhgsSmBC7gWKhOHnpR776bf4.roa File: 1-GhRhgsSmBC7gWKhOHnpR776bf4.roa (raw, json) Hash identifier: qnv9CLKULc4l872r6nllGPstkP0XkRt6PU8gP+XhJSI= Subject key identifier: F8:68:51:86:0B:12:98:10:BB:81:62:A1:38:79:E9:47:BE:FA:6D:FE Certificate issuer: /CN=206f1c32bc0a9006081d552fede67d6842921ec3 Certificate serial: 019B7B3651CAD86209A1D2F4AA669D9B45FE Authority key identifier: 20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/1-GhRhgsSmBC7gWKhOHnpR776bf4.roa Signing time: Thu 01 Jan 2026 20:18:35 +0000 ROA not before: Thu 01 Jan 2026 20:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208806 IP address blocks: 2a10:4741:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.mft rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:51:ca:d8:62:09:a1:d2:f4:aa:66:9d:9b:45:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=206f1c32bc0a9006081d552fede67d6842921ec3 Validity Not Before: Jan 1 20:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f86851860b129810bb8162a13879e947befa6dfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:de:8f:83:e2:a5:4e:13:16:f5:27:71:71:2b: cc:e8:5a:63:6d:11:39:b0:48:25:2c:7f:f6:7f:1b: 43:32:7e:ac:91:6d:c1:01:3d:fb:52:8b:48:72:9a: b2:be:a4:b9:1e:36:5d:a5:81:07:1e:88:f5:ef:7f: 5d:f8:29:f1:f1:6d:c1:89:80:2b:e1:e7:d9:be:72: 5d:7a:20:75:19:7e:11:19:cb:16:fd:03:f5:85:1c: 47:1d:c9:f9:ce:37:06:6a:a5:ab:e3:8f:68:7c:09: 09:0a:e5:e0:75:22:34:c8:31:8d:02:06:08:5e:a0: a8:97:bb:c4:e9:11:05:7c:42:50:fb:e8:70:87:75: 88:1c:fb:ee:df:34:fd:21:6c:e3:95:c8:76:7a:37: 2e:e8:06:0d:d3:d0:e6:c3:a5:41:aa:f1:76:3b:b1: 49:d5:43:ba:75:6d:49:43:12:a7:f1:2e:8c:9a:e9: 49:33:66:af:92:3d:85:da:11:29:37:14:7d:20:80: 5e:68:db:53:26:6b:50:40:3a:fc:36:cf:5b:40:fb: 59:9e:3c:92:a1:12:8d:36:8b:41:6b:a6:96:e3:0f: 19:46:94:67:d2:c9:c2:fa:89:d4:c9:1f:ea:18:52: 61:4d:b2:49:20:f1:93:4a:8b:9b:bd:94:a9:c4:d0: aa:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:68:51:86:0B:12:98:10:BB:81:62:A1:38:79:E9:47:BE:FA:6D:FE X509v3 Authority Key Identifier: keyid:20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/1-GhRhgsSmBC7gWKhOHnpR776bf4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:4741:20::/48 Signature Algorithm: sha256WithRSAEncryption 52:3d:a9:3a:42:7a:7e:52:42:76:c3:f1:ae:50:be:91:c5:8c: a3:e5:29:73:a3:c0:7f:e2:65:4f:c6:59:4b:e7:07:a6:02:76: 8f:62:7c:a5:a7:43:44:66:3c:d6:dd:15:78:44:ec:1a:57:23: 10:23:1f:2c:af:7c:b6:a7:3e:99:d7:25:04:f8:0b:bd:a0:37: ac:d1:14:ab:57:21:7c:4e:ec:33:b0:68:91:5a:a0:ce:c5:10: 6f:0d:d2:02:97:a5:e7:d9:69:d9:e0:9c:b8:9d:a9:ca:3c:26: 2d:79:25:0a:5c:b4:24:41:e6:5b:0d:d4:e7:0a:f1:f0:af:15: 62:f9:a7:60:97:79:08:f8:d3:a0:a2:75:73:95:19:b2:4d:24: 43:f1:07:fd:47:b2:75:60:a7:9d:45:d5:37:b5:41:25:77:d6: 0e:ff:97:ad:9b:9f:76:ab:75:0f:c6:03:b7:ae:6d:c4:23:04: fc:84:80:a9:ec:1c:ec:e7:ec:ef:9d:fb:ed:8a:8e:5e:16:c4: f8:be:09:11:ba:42:3d:1c:63:49:4a:89:b1:ae:c6:e6:07:51: e0:a2:a5:10:a0:c4:53:f0:62:83:98:7f:80:e4:d8:02:bc:93: 24:9b:d4:e0:95:e4:a5:16:7e:3e:91:08:a1:7c:61:cc:a5:36: de:db:bb:fa -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgISAZt7NlHK2GIJodL0qmadm0X+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwNmYxYzMyYmMwYTkwMDYwODFkNTUyZmVkZTY3ZDY4NDI5 MjFlYzMwHhcNMjYwMTAxMjAxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmODY4NTE4NjBiMTI5ODEwYmI4MTYyYTEzODc5ZTk0N2JlZmE2ZGZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu96Pg+KlThMW9SdxcSvM6FpjbRE5 sEglLH/2fxtDMn6skW3BAT37UotIcpqyvqS5HjZdpYEHHoj1739d+Cnx8W3BiYAr 4efZvnJdeiB1GX4RGcsW/QP1hRxHHcn5zjcGaqWr449ofAkJCuXgdSI0yDGNAgYI XqCol7vE6REFfEJQ++hwh3WIHPvu3zT9IWzjlch2ejcu6AYN09Dmw6VBqvF2O7FJ 1UO6dW1JQxKn8S6MmulJM2avkj2F2hEpNxR9IIBeaNtTJmtQQDr8Ns9bQPtZnjyS oRKNNotBa6aW4w8ZRpRn0snC+onUyR/qGFJhTbJJIPGTSoubvZSpxNCqmQIDAQAB o4ICDTCCAgkwHQYDVR0OBBYEFPhoUYYLEpgQu4FioTh56Ue++m3+MB8GA1UdIwQY MBaAFCBvHDK8CpAGCB1VL+3mfWhCkh7DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUc4Y01yd0trQVlJSFZVdjdlWjlhRUtTSHNNLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9hOTE4ODQtNmY1OC00ZGRkLTg5MzIt YmJhODYwYjI2YzAyLzEvMS1HaFJoZ3NTbUJDN2dXS2hPSG5wUjc3NmJmNC5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvZDMvYTkxODg0LTZmNTgtNGRkZC04OTMyLWJiYTg2MGIyNmMw Mi8xL0lHOGNNcndLa0FZSUhWVXY3ZVo5YUVLU0hzTS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoQR0EA IDANBgkqhkiG9w0BAQsFAAOCAQEAUj2pOkJ6flJCdsPxrlC+kcWMo+Upc6PAf+Jl T8ZZS+cHpgJ2j2J8padDRGY81t0VeETsGlcjECMfLK98tqc+mdclBPgLvaA3rNEU q1chfE7sM7BokVqgzsUQbw3SApel59lp2eCcuJ2pyjwmLXklCly0JEHmWw3U5wrx 8K8VYvmnYJd5CPjToKJ1c5UZsk0kQ/EH/UeydWCnnUXVN7VBJXfWDv+XrZufdqt1 D8YDt65txCME/ISAqewc7Ofs75377YqOXhbE+L4JEbpCPRxjSUqJsa7G5gdR4KKl EKDEU/Big5h/gOTYAryTJJvU4JXkpRZ+PpEIoXxhzKU23tu7+g== -----END CERTIFICATE-----Generated at Mon Jan 26 09:24:19 2026 by rpki-client