This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/gPytstS2H2DCx0G35K4nAVksneE.roa File: gPytstS2H2DCx0G35K4nAVksneE.roa (raw, json) Hash identifier: I34ZNFgqBn6ft829pIhUL9qJ7ZwAtJssKpKV0YYtJmI= Subject key identifier: 80:FC:AD:B2:D4:B6:1F:60:C2:C7:41:B7:E4:AE:27:01:59:2C:9D:E1 Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609 Certificate serial: 019B79100528BCBFE0F8618AE5EF8F562BB7 Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/gPytstS2H2DCx0G35K4nAVksneE.roa Signing time: Thu 01 Jan 2026 10:17:31 +0000 ROA not before: Thu 01 Jan 2026 10:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201096 IP address blocks: 2a0d:1580:40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:05:28:bc:bf:e0:f8:61:8a:e5:ef:8f:56:2b:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609 Validity Not Before: Jan 1 10:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=80fcadb2d4b61f60c2c741b7e4ae2701592c9de1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2d:8b:16:10:bb:8e:0d:72:67:e1:0a:9e:87: 7d:ad:27:06:6f:e8:db:f7:b4:1c:1d:e0:30:40:e3: 50:42:27:18:e0:01:3d:d8:a2:52:54:0d:1d:6a:e8: ff:78:f5:da:ae:f8:e2:56:68:1b:05:37:ad:59:16: ae:24:c1:02:b6:2b:13:86:83:6c:ef:9b:19:7c:00: f8:14:9d:ee:3d:a2:65:fb:b3:2a:d7:a9:74:db:2d: 51:d1:2c:6b:f6:6e:bd:40:74:0e:d9:c8:4d:22:cb: b6:88:10:87:96:3e:91:f2:eb:8c:a5:35:09:26:c6: f8:ed:5a:07:f5:56:d8:c4:53:62:fa:4a:09:3c:0e: 72:b4:fa:e1:88:1c:b7:49:73:93:6d:e3:40:6f:99: be:55:c8:51:b0:c5:7b:60:eb:5e:d4:a9:48:bd:40: 97:fa:46:c6:fd:2b:08:49:e8:2d:14:3c:c7:f3:83: 97:e5:50:48:7c:a9:db:75:a3:d7:aa:45:d1:2b:3e: ad:43:47:2e:63:99:1a:be:b3:e8:a1:3f:fd:ee:31: 27:e2:8b:5d:15:ec:19:4c:5e:26:e0:1b:69:03:f4: 4a:6e:71:87:6f:db:3b:30:ca:59:f6:b7:f8:44:5a: a6:5a:39:6f:4f:19:a7:52:0c:0d:c0:7a:7b:d9:f3: f5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:FC:AD:B2:D4:B6:1F:60:C2:C7:41:B7:E4:AE:27:01:59:2C:9D:E1 X509v3 Authority Key Identifier: keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/gPytstS2H2DCx0G35K4nAVksneE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0d:1580:40::/48 Signature Algorithm: sha256WithRSAEncryption a1:ed:80:1e:18:54:9b:e1:a4:54:54:c3:8f:f0:ac:58:d2:77: 16:79:ed:dc:58:58:67:18:95:16:fa:df:c8:d0:46:b3:e1:39: b3:0f:6d:d9:af:fe:ab:f8:3a:0e:8c:67:5e:46:65:8d:c2:dd: cc:c4:cf:c0:cb:a9:95:45:13:a7:95:a1:c4:0e:4c:ab:64:1b: 3d:72:04:c5:e7:c4:f8:e2:da:dc:3f:cb:c8:af:8c:13:5d:43: cf:35:10:92:4b:e1:84:ec:8c:62:73:ca:57:71:fc:fa:64:57: 3e:cd:03:c6:38:a0:3a:3f:58:da:71:97:f1:08:d4:58:a9:dd: 54:2f:4c:89:d9:89:33:cd:86:c2:ad:60:f4:ca:d9:75:c8:1a: d7:c4:93:48:88:70:6e:c8:07:8b:5c:d3:38:7a:fc:9d:7f:82: 31:dd:e2:81:50:c3:62:63:e4:e6:91:26:25:f0:fa:fc:b5:1f: 12:4d:4a:68:58:06:ca:bb:ac:bb:4a:a8:26:79:04:d9:ba:9d: b8:60:fd:0b:43:b3:e0:5d:45:bf:24:40:d7:77:f8:af:f3:d3: d1:51:2d:8f:61:01:1a:ac:b5:95:2b:fa:0e:78:09:e0:a5:33: db:48:13:83:cf:7c:70:34:c7:16:61:87:e4:db:b0:6a:95:5a: 4e:fa:e2:f7 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5EAUovL/g+GGK5e+PViu3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1ODZhODY0MzYzM2U5ODc0MTExYThiY2YzNTE4YTA5MDVm Mjg2MDkwHhcNMjYwMTAxMTAxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MGZjYWRiMmQ0YjYxZjYwYzJjNzQxYjdlNGFlMjcwMTU5MmM5ZGUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzC2LFhC7jg1yZ+EKnod9rScGb+jb 97QcHeAwQONQQicY4AE92KJSVA0dauj/ePXarvjiVmgbBTetWRauJMECtisThoNs 75sZfAD4FJ3uPaJl+7Mq16l02y1R0Sxr9m69QHQO2chNIsu2iBCHlj6R8uuMpTUJ Jsb47VoH9VbYxFNi+koJPA5ytPrhiBy3SXOTbeNAb5m+VchRsMV7YOte1KlIvUCX +kbG/SsISegtFDzH84OX5VBIfKnbdaPXqkXRKz6tQ0cuY5kavrPooT/97jEn4otd FewZTF4m4BtpA/RKbnGHb9s7MMpZ9rf4RFqmWjlvTxmnUgwNwHp72fP14QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFID8rbLUth9gwsdBt+SuJwFZLJ3hMB8GA1UdIwQY MBaAFLWGqGQ2M+mHQRGovPNRigkF8oYJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8yMGNjYWMtMzNlZS00NWRjLWJjOWMt NDQ5OWUzMjM5ZjFmLzEvZ1B5dHN0UzJIMkRDeDBHMzVLNG5BVmtzbmVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi8yMGNjYWMtMzNlZS00NWRjLWJjOWMtNDQ5OWUzMjM5ZjFm LzEvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg0VgABA MA0GCSqGSIb3DQEBCwUAA4IBAQCh7YAeGFSb4aRUVMOP8KxY0ncWee3cWFhnGJUW +t/I0Eaz4TmzD23Zr/6r+DoOjGdeRmWNwt3MxM/Ay6mVRROnlaHEDkyrZBs9cgTF 58T44trcP8vIr4wTXUPPNRCSS+GE7Ixic8pXcfz6ZFc+zQPGOKA6P1jacZfxCNRY qd1UL0yJ2YkzzYbCrWD0ytl1yBrXxJNIiHBuyAeLXNM4evydf4Ix3eKBUMNiY+Tm kSYl8Pr8tR8STUpoWAbKu6y7SqgmeQTZup24YP0LQ7PgXUW/JEDXd/iv89PRUS2P YQEarLWVK/oOeAngpTPbSBODz3xwNMcWYYfk27BqlVpO+uL3 -----END CERTIFICATE-----Generated at Sun Jan 25 23:55:00 2026 by rpki-client