This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/7e1057-3d1a-4f6a-bf87-cfa8f9d9f81c/1/DTDpNUgnOeJ9l5YOOdGNUwDVEvA.roa File: DTDpNUgnOeJ9l5YOOdGNUwDVEvA.roa (raw, json) Hash identifier: uICgvpXBQ+aCzp7MGjB6t2q89M73IWkNxCB/z30mwEo= Subject key identifier: 0D:30:E9:35:48:27:39:E2:7D:97:96:0E:39:D1:8D:53:00:D5:12:F0 Certificate issuer: /CN=4098174db451d9fefdeec15f9b9c7929daae9980 Certificate serial: 019B7FF2B24DF10F5B312D7EE8A04EBF5A9F Authority key identifier: 40:98:17:4D:B4:51:D9:FE:FD:EE:C1:5F:9B:9C:79:29:DA:AE:99:80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QJgXTbRR2f797sFfm5x5KdqumYA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/7e1057-3d1a-4f6a-bf87-cfa8f9d9f81c/1/DTDpNUgnOeJ9l5YOOdGNUwDVEvA.roa Signing time: Fri 02 Jan 2026 18:22:50 +0000 ROA not before: Fri 02 Jan 2026 18:22:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60019 IP address blocks: 2a02:7d60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/7e1057-3d1a-4f6a-bf87-cfa8f9d9f81c/1/QJgXTbRR2f797sFfm5x5KdqumYA.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/7e1057-3d1a-4f6a-bf87-cfa8f9d9f81c/1/QJgXTbRR2f797sFfm5x5KdqumYA.mft rsync://rpki.ripe.net/repository/DEFAULT/QJgXTbRR2f797sFfm5x5KdqumYA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 06:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:b2:4d:f1:0f:5b:31:2d:7e:e8:a0:4e:bf:5a:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4098174db451d9fefdeec15f9b9c7929daae9980 Validity Not Before: Jan 2 18:22:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0d30e935482739e27d97960e39d18d5300d512f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:45:12:96:ce:f4:c0:15:7b:22:d3:78:a3:29: e0:7f:2a:1f:44:54:50:03:62:74:90:e4:40:cd:59: 43:1c:99:09:23:5a:08:6b:c0:2c:5a:35:c9:3e:6e: 0d:13:a2:3c:76:97:42:cb:21:c2:42:79:72:f6:7e: d8:5f:b7:d5:3a:f9:d2:fe:e9:b9:44:59:da:0b:a8: 3c:6e:da:77:58:99:7c:a5:b2:7b:43:ef:e7:26:55: 35:31:00:a1:dc:e8:c2:8a:a2:9f:7a:e0:54:06:cc: 4a:69:3d:4e:02:84:27:40:03:b1:00:bb:ca:2b:83: db:c9:bb:09:de:b3:1f:94:25:97:25:89:0a:4c:f2: c6:ad:c4:7c:fc:d5:00:db:ef:e1:d9:41:23:1e:c4: ef:e5:7a:c9:11:c8:89:0b:71:aa:3b:27:8d:13:13: 95:3a:9f:9f:bc:77:ea:32:db:b8:36:ce:cf:8c:8e: d4:05:16:f4:60:d1:f8:61:fd:7e:20:23:6f:05:be: 78:a8:6c:0e:d2:b4:fa:e5:25:75:8e:da:de:26:4c: 83:b2:ed:ad:ed:a0:b0:f6:09:59:64:a1:93:ed:8d: 9f:0d:ca:20:84:25:f3:2a:8d:36:fe:bc:66:97:1e: bd:36:b7:60:e0:63:b1:f6:2c:e1:68:74:89:c7:be: 16:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:30:E9:35:48:27:39:E2:7D:97:96:0E:39:D1:8D:53:00:D5:12:F0 X509v3 Authority Key Identifier: keyid:40:98:17:4D:B4:51:D9:FE:FD:EE:C1:5F:9B:9C:79:29:DA:AE:99:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QJgXTbRR2f797sFfm5x5KdqumYA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/7e1057-3d1a-4f6a-bf87-cfa8f9d9f81c/1/DTDpNUgnOeJ9l5YOOdGNUwDVEvA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/7e1057-3d1a-4f6a-bf87-cfa8f9d9f81c/1/QJgXTbRR2f797sFfm5x5KdqumYA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:7d60::/32 Signature Algorithm: sha256WithRSAEncryption 30:9f:77:2d:c6:29:b2:76:33:05:42:e0:aa:1f:73:4c:b2:08: f9:98:bf:75:c7:0e:de:f5:b2:4e:96:a0:78:fd:51:aa:56:b4: 94:d7:e0:fc:de:c9:d2:83:03:85:77:d7:f3:49:4f:b5:49:73: 07:46:4e:43:f5:0f:b3:d2:97:e8:3b:2c:c7:aa:a0:61:40:67: ea:cf:33:cb:da:71:46:9f:b9:9a:c0:21:c5:41:db:0b:9a:67: 8c:5d:4e:59:c1:b2:ba:08:f4:8b:a4:64:f0:81:46:31:cb:09: 4c:3b:fd:0c:c2:35:ba:0c:39:f4:9c:62:5e:a1:b0:e4:83:86: 20:00:db:4f:43:85:48:2a:4a:d4:43:26:0f:0d:84:71:d5:97: e7:fa:2e:c7:91:68:90:fb:0f:76:81:ca:26:85:cb:58:46:7f: 0d:e5:63:79:8a:5f:2d:02:ff:bb:f9:81:78:21:fe:f2:fb:56: bd:6c:07:2b:26:3e:31:db:50:22:14:98:04:80:e7:4b:98:f9: 93:7b:5c:f6:f1:69:8b:76:b0:21:56:e1:d3:75:a0:99:f8:a9: 1f:2e:c7:91:fc:7f:dc:aa:65:44:c0:5f:d6:eb:dd:88:ba:ef: d6:34:18:e2:6f:63:58:f6:e7:8c:78:cc:6f:87:ef:8a:39:c4: 6b:ac:97:9f -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/8rJN8Q9bMS1+6KBOv1qfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwOTgxNzRkYjQ1MWQ5ZmVmZGVlYzE1ZjliOWM3OTI5ZGFh ZTk5ODAwHhcNMjYwMTAyMTgyMjUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZDMwZTkzNTQ4MjczOWUyN2Q5Nzk2MGUzOWQxOGQ1MzAwZDUxMmYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlEUSls70wBV7ItN4oyngfyofRFRQ A2J0kORAzVlDHJkJI1oIa8AsWjXJPm4NE6I8dpdCyyHCQnly9n7YX7fVOvnS/um5 RFnaC6g8btp3WJl8pbJ7Q+/nJlU1MQCh3OjCiqKfeuBUBsxKaT1OAoQnQAOxALvK K4PbybsJ3rMflCWXJYkKTPLGrcR8/NUA2+/h2UEjHsTv5XrJEciJC3GqOyeNExOV Op+fvHfqMtu4Ns7PjI7UBRb0YNH4Yf1+ICNvBb54qGwO0rT65SV1jtreJkyDsu2t 7aCw9glZZKGT7Y2fDcoghCXzKo02/rxmlx69Nrdg4GOx9izhaHSJx74WQQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFA0w6TVIJznifZeWDjnRjVMA1RLwMB8GA1UdIwQY MBaAFECYF020Udn+/e7BX5uceSnarpmAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUpnWFRiUlIyZjc5N3NGZm01eDVLZHF1bVlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC83ZTEwNTctM2QxYS00ZjZhLWJmODct Y2ZhOGY5ZDlmODFjLzEvRFREcE5VZ25PZUo5bDVZT09kR05Vd0RWRXZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC83ZTEwNTctM2QxYS00ZjZhLWJmODctY2ZhOGY5ZDlmODFj LzEvUUpnWFRiUlIyZjc5N3NGZm01eDVLZHF1bVlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgJ9YDAN BgkqhkiG9w0BAQsFAAOCAQEAMJ93LcYpsnYzBULgqh9zTLII+Zi/dccO3vWyTpag eP1Rqla0lNfg/N7J0oMDhXfX80lPtUlzB0ZOQ/UPs9KX6Dssx6qgYUBn6s8zy9px Rp+5msAhxUHbC5pnjF1OWcGyugj0i6Rk8IFGMcsJTDv9DMI1ugw59JxiXqGw5IOG IADbT0OFSCpK1EMmDw2EcdWX5/oux5FokPsPdoHKJoXLWEZ/DeVjeYpfLQL/u/mB eCH+8vtWvWwHKyY+MdtQIhSYBIDnS5j5k3tc9vFpi3awIVbh03WgmfipHy7Hkfx/ 3KplRMBf1uvdiLrv1jQY4m9jWPbnjHjMb4fvijnEa6yXnw== -----END CERTIFICATE-----Generated at Wed Jan 7 14:14:31 2026 by rpki-client