This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/bSrLWTYwlUXSgoWh2AaTKv-yqmA.roa File: bSrLWTYwlUXSgoWh2AaTKv-yqmA.roa (raw, json) Hash identifier: Xoy4Bu7OUAX9sEbib55m/isLQimqg72dL3LXY0l3BGU= Subject key identifier: 6D:2A:CB:59:36:30:95:45:D2:82:85:A1:D8:06:93:2A:FF:B2:AA:60 Certificate issuer: /CN=206f1c32bc0a9006081d552fede67d6842921ec3 Certificate serial: 019B7B3650B78E33FB7E03B4B721B8E1230F Authority key identifier: 20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/bSrLWTYwlUXSgoWh2AaTKv-yqmA.roa Signing time: Thu 01 Jan 2026 20:18:35 +0000 ROA not before: Thu 01 Jan 2026 20:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204125 IP address blocks: 2a10:4741:29::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.mft rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:50:b7:8e:33:fb:7e:03:b4:b7:21:b8:e1:23:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=206f1c32bc0a9006081d552fede67d6842921ec3 Validity Not Before: Jan 1 20:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d2acb5936309545d28285a1d806932affb2aa60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:86:67:f4:04:87:76:09:42:2b:2f:f9:6f:bb: cb:d5:9f:fc:b3:08:19:14:4a:7e:74:63:70:0e:40: 19:ec:31:76:bf:92:e0:5f:d2:71:f1:c1:b2:df:90: f3:15:08:d0:1c:ee:40:e5:00:d2:56:2e:6a:69:40: a5:80:90:d4:0b:94:e4:7d:1c:66:89:85:38:7d:35: 1d:a2:92:7d:67:7a:d8:70:48:6d:1c:57:8c:c2:28: e6:91:8d:1a:34:b9:9a:ea:7a:a3:32:49:77:1b:72: 5b:ed:17:05:4b:70:88:f4:4a:76:66:b3:71:c1:b1: f2:bd:19:c9:17:10:1f:96:49:05:4b:5d:61:cb:2a: 6a:2f:16:fa:d4:80:05:9a:36:33:a5:c0:6e:a2:5e: 83:87:7c:6b:a8:e9:51:82:ac:20:e3:36:f7:08:c5: 66:8f:9b:9f:21:e4:64:98:03:90:0c:74:43:ba:ab: 41:eb:98:4e:eb:ba:9c:1c:ff:f6:ad:1f:17:31:8b: ad:ca:28:15:5e:00:b2:2e:66:fe:5c:7e:df:d1:f9: 41:e8:2c:d6:da:55:23:9a:98:b0:92:aa:60:8b:78: 37:32:37:eb:2e:8f:61:2c:20:3d:04:50:88:f6:53: 07:ad:66:f0:27:ff:58:72:37:a1:ea:99:aa:80:64: 70:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:2A:CB:59:36:30:95:45:D2:82:85:A1:D8:06:93:2A:FF:B2:AA:60 X509v3 Authority Key Identifier: keyid:20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/bSrLWTYwlUXSgoWh2AaTKv-yqmA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:4741:29::/48 Signature Algorithm: sha256WithRSAEncryption 76:02:95:3a:03:8d:56:cb:6e:31:a9:be:bb:af:80:3f:ee:3b: c5:28:1d:d3:8b:f1:bb:e8:6e:24:ec:d5:1c:a0:7c:ca:35:d6: 81:43:14:80:29:73:d0:67:11:42:d8:b2:44:34:c8:4d:c9:46: 9b:b9:11:6e:27:94:ac:89:21:c1:5d:d4:4d:2c:27:f1:9f:87: f7:24:6d:85:1c:9b:5d:3a:b7:36:b5:e0:26:2d:f7:4e:81:55: 35:d4:d1:ab:33:7a:e5:6c:77:ae:72:29:77:7b:da:71:52:a6: 98:bc:b1:8a:d6:2a:ea:7e:76:01:14:2a:9c:3a:c1:30:11:aa: cf:56:da:1b:88:4c:87:ad:49:77:d8:76:4d:56:cb:9c:db:a4: c6:cb:e9:d3:ae:a7:1d:71:1d:0b:17:ea:d8:2b:5f:81:45:b3: 76:90:0a:1a:6d:8a:bc:ea:bc:de:53:4d:59:6f:92:22:9e:4d: 32:21:59:3f:cb:4e:e8:6e:68:ce:f5:24:89:99:af:a2:e2:49: 0d:65:af:be:ff:2c:0a:4f:a0:ee:eb:8e:05:34:ec:57:08:78: d3:61:d7:73:76:fc:26:2d:c4:59:54:ce:af:cf:c7:99:fd:57: d4:c3:12:6f:9d:46:e3:1b:40:e8:af:73:71:8e:a7:7a:97:f2: 39:c9:30:9f -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7NlC3jjP7fgO0tyG44SMPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwNmYxYzMyYmMwYTkwMDYwODFkNTUyZmVkZTY3ZDY4NDI5 MjFlYzMwHhcNMjYwMTAxMjAxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDJhY2I1OTM2MzA5NTQ1ZDI4Mjg1YTFkODA2OTMyYWZmYjJhYTYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAooZn9ASHdglCKy/5b7vL1Z/8swgZ FEp+dGNwDkAZ7DF2v5LgX9Jx8cGy35DzFQjQHO5A5QDSVi5qaUClgJDUC5TkfRxm iYU4fTUdopJ9Z3rYcEhtHFeMwijmkY0aNLma6nqjMkl3G3Jb7RcFS3CI9Ep2ZrNx wbHyvRnJFxAflkkFS11hyypqLxb61IAFmjYzpcBuol6Dh3xrqOlRgqwg4zb3CMVm j5ufIeRkmAOQDHRDuqtB65hO67qcHP/2rR8XMYutyigVXgCyLmb+XH7f0flB6CzW 2lUjmpiwkqpgi3g3MjfrLo9hLCA9BFCI9lMHrWbwJ/9Ycjeh6pmqgGRw5wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFG0qy1k2MJVF0oKFodgGkyr/sqpgMB8GA1UdIwQY MBaAFCBvHDK8CpAGCB1VL+3mfWhCkh7DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUc4Y01yd0trQVlJSFZVdjdlWjlhRUtTSHNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9hOTE4ODQtNmY1OC00ZGRkLTg5MzIt YmJhODYwYjI2YzAyLzEvYlNyTFdUWXdsVVhTZ29XaDJBYVRLdi15cW1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9hOTE4ODQtNmY1OC00ZGRkLTg5MzItYmJhODYwYjI2YzAy LzEvSUc4Y01yd0trQVlJSFZVdjdlWjlhRUtTSHNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhBHQQAp MA0GCSqGSIb3DQEBCwUAA4IBAQB2ApU6A41Wy24xqb67r4A/7jvFKB3Ti/G76G4k 7NUcoHzKNdaBQxSAKXPQZxFC2LJENMhNyUabuRFuJ5SsiSHBXdRNLCfxn4f3JG2F HJtdOrc2teAmLfdOgVU11NGrM3rlbHeucil3e9pxUqaYvLGK1irqfnYBFCqcOsEw EarPVtobiEyHrUl32HZNVsuc26TGy+nTrqcdcR0LF+rYK1+BRbN2kAoabYq86rze U01Zb5Iink0yIVk/y07obmjO9SSJma+i4kkNZa++/ywKT6Du644FNOxXCHjTYddz dvwmLcRZVM6vz8eZ/VfUwxJvnUbjG0Dor3Nxjqd6l/I5yTCf -----END CERTIFICATE-----Generated at Sun Jan 25 20:58:33 2026 by rpki-client