This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/xWum-KLrRVQhNLBj5VpvpgfW-9c.roa File: xWum-KLrRVQhNLBj5VpvpgfW-9c.roa (raw, json) Hash identifier: giL9TuTR+57ni6RC2aGGYak3uU3PQ0pna54xfcKf7BA= Subject key identifier: C5:6B:A6:F8:A2:EB:45:54:21:34:B0:63:E5:5A:6F:A6:07:D6:FB:D7 Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019B7B358E4EE6473B043CD32D42B658CE0C Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/xWum-KLrRVQhNLBj5VpvpgfW-9c.roa Signing time: Thu 01 Jan 2026 20:17:46 +0000 ROA not before: Thu 01 Jan 2026 20:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213800 IP address blocks: 2a14:67c1:40::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:8e:4e:e6:47:3b:04:3c:d3:2d:42:b6:58:ce:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Jan 1 20:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c56ba6f8a2eb45542134b063e55a6fa607d6fbd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:92:0c:cc:f9:67:f5:2c:74:c9:b2:8c:69:cb: c4:47:59:68:0b:58:d7:f5:f8:2f:e2:17:59:3f:29: ab:18:72:65:6a:c4:16:63:fa:66:09:52:c1:82:73: 50:c1:fe:03:b3:8f:c9:ca:99:59:94:81:bf:f0:51: b3:52:14:7b:ac:19:2d:d3:89:ae:bc:a9:04:5f:85: be:c3:b4:7d:ca:b8:f2:8a:e7:53:b7:8e:9e:3d:5a: 0e:71:21:9c:ec:30:3f:37:b7:86:f4:3a:22:1b:83: cf:de:18:de:09:93:61:74:61:a2:02:4b:2f:88:9e: 1b:ba:ea:bf:17:ac:87:c2:04:0a:da:7f:c1:22:b6: 3c:f0:23:49:93:25:1c:fd:d5:15:c0:66:a5:a1:0b: 32:46:44:3b:10:e7:b6:48:6c:64:a1:ee:07:75:e1: 3b:d8:62:63:60:15:70:ab:71:c5:b1:67:a0:ee:7b: 40:c5:4f:3f:f1:f3:e9:0a:0e:e7:8f:16:3e:12:8a: f5:54:3c:23:64:4b:4e:79:17:00:2a:bd:49:f1:ab: 0f:44:00:ed:69:d7:54:37:3e:69:b7:e2:30:d0:c7: 20:20:2f:bb:59:34:0f:13:a8:5d:0d:1f:5b:e9:5b: a1:6f:88:f2:fb:92:df:1b:24:e0:cc:b9:1d:17:04: a7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:6B:A6:F8:A2:EB:45:54:21:34:B0:63:E5:5A:6F:A6:07:D6:FB:D7 X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/xWum-KLrRVQhNLBj5VpvpgfW-9c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:67c1:40::/44 Signature Algorithm: sha256WithRSAEncryption 9c:91:01:0a:d9:eb:f1:85:cb:5b:1f:02:ff:82:1b:89:e9:aa: ad:67:e0:ac:63:87:96:49:9b:2f:f9:a2:a0:a4:94:7c:b8:88: e9:4e:36:1f:99:6c:12:f6:cc:af:1a:9b:ed:db:18:88:1b:ec: 7a:5d:70:27:2f:6c:8b:12:70:cb:a5:b6:af:2d:2a:1f:c6:33: 32:90:65:c4:67:bc:a7:e2:6a:2c:48:7b:2b:26:03:be:ba:20: 2b:04:06:ec:10:9b:e7:83:b6:78:43:ae:b4:0b:56:13:0c:b0: 87:31:48:29:b6:c9:5d:58:24:f1:06:91:22:12:78:56:cc:e0: eb:fc:f1:02:b0:61:e4:83:d6:f8:35:4a:aa:d8:fb:74:00:f3: 85:e7:66:cb:29:ec:83:16:f1:ae:42:6b:7a:9f:03:b0:0b:5d: fe:79:f3:8a:44:a2:31:49:53:3a:78:70:e9:9e:b0:5a:8d:cb: 2b:90:9c:96:b4:b5:4d:dd:fb:99:82:96:2b:53:00:22:38:17: 95:6a:5f:63:5e:0f:36:51:b3:4a:8f:14:26:e0:22:5b:c3:08: c2:82:d8:35:77:f8:31:0f:e6:f8:cb:c5:75:ce:c3:9e:2c:bb: c1:bd:ba:7f:4f:5a:5a:2a:0f:7b:01:9e:4a:e5:c4:fe:23:c5: ac:9b:da:85 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7NY5O5kc7BDzTLUK2WM4MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjYwMTAxMjAxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNTZiYTZmOGEyZWI0NTU0MjEzNGIwNjNlNTVhNmZhNjA3ZDZmYmQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZIMzPln9Sx0ybKMacvER1loC1jX 9fgv4hdZPymrGHJlasQWY/pmCVLBgnNQwf4Ds4/JyplZlIG/8FGzUhR7rBkt04mu vKkEX4W+w7R9yrjyiudTt46ePVoOcSGc7DA/N7eG9DoiG4PP3hjeCZNhdGGiAksv iJ4buuq/F6yHwgQK2n/BIrY88CNJkyUc/dUVwGaloQsyRkQ7EOe2SGxkoe4HdeE7 2GJjYBVwq3HFsWeg7ntAxU8/8fPpCg7njxY+Eor1VDwjZEtOeRcAKr1J8asPRADt addUNz5pt+Iw0McgIC+7WTQPE6hdDR9b6Vuhb4jy+5LfGyTgzLkdFwSn2wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFMVrpvii60VUITSwY+Vab6YH1vvXMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEveFd1bS1LTHJSVlFoTkxCajVWcHZwZ2ZXLTljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhRnwQBA MA0GCSqGSIb3DQEBCwUAA4IBAQCckQEK2evxhctbHwL/ghuJ6aqtZ+CsY4eWSZsv +aKgpJR8uIjpTjYfmWwS9syvGpvt2xiIG+x6XXAnL2yLEnDLpbavLSofxjMykGXE Z7yn4mosSHsrJgO+uiArBAbsEJvng7Z4Q660C1YTDLCHMUgptsldWCTxBpEiEnhW zODr/PECsGHkg9b4NUqq2Pt0APOF52bLKeyDFvGuQmt6nwOwC13+efOKRKIxSVM6 eHDpnrBajcsrkJyWtLVN3fuZgpYrUwAiOBeVal9jXg82UbNKjxQm4CJbwwjCgtg1 d/gxD+b4y8V1zsOeLLvBvbp/T1paKg97AZ5K5cT+I8Wsm9qF -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:49 2026 by rpki-client