This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/kGQeneiJZNT_BjB_XoReSyXguQ8.roa File: kGQeneiJZNT_BjB_XoReSyXguQ8.roa (raw, json) Hash identifier: yt9dzzQfHrZsnLkuZ9r3U4v8elv0IkIyoER8sIW2HPM= Subject key identifier: 90:64:1E:9D:E8:89:64:D4:FF:06:30:7F:5E:84:5E:4B:25:E0:B9:0F Certificate issuer: /CN=87de085975de6588e07fed135513aa38acedb763 Certificate serial: 019B7759356552316A9AC7BAFDE44E520CE8 Authority key identifier: 87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/kGQeneiJZNT_BjB_XoReSyXguQ8.roa Signing time: Thu 01 Jan 2026 02:18:13 +0000 ROA not before: Thu 01 Jan 2026 02:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6730 IP address blocks: 2001:67c:2350::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:35:65:52:31:6a:9a:c7:ba:fd:e4:4e:52:0c:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87de085975de6588e07fed135513aa38acedb763 Validity Not Before: Jan 1 02:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=90641e9de88964d4ff06307f5e845e4b25e0b90f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:27:a1:58:3f:d6:42:b1:9f:cb:4d:6f:87:00: be:59:3a:60:18:9a:33:55:33:43:96:1b:76:22:8e: 4f:4c:de:0f:ac:7d:27:97:b1:2b:02:ec:cb:91:5b: 32:9d:06:fe:8e:66:44:cd:5c:16:0c:9f:0b:ee:43: 16:95:fc:5a:52:80:64:31:b7:91:af:5a:72:4a:67: 8e:19:08:ed:d7:87:7e:4f:d3:4c:35:a3:f4:ed:43: 52:e8:9f:a1:91:06:a7:a1:ac:6e:a5:83:de:51:f3: 07:f3:60:53:36:62:9c:2d:22:40:c8:4e:91:c5:8b: 1e:8d:0a:52:09:6e:15:89:9b:6b:29:be:d1:e9:3d: 9c:2f:e8:0c:e0:0c:73:79:75:c2:3d:4e:5f:52:81: 69:92:46:26:c8:ed:b4:d6:0c:16:cc:42:b5:35:7b: 21:84:43:99:5c:2f:10:ea:52:b7:a3:70:80:88:d1: 8e:86:82:15:49:87:4b:6f:6a:19:03:a5:ee:b3:41: 00:79:62:4b:4d:4f:4d:3a:4e:f6:48:ca:ce:dc:9e: b1:23:1a:f2:a0:b1:14:98:5d:7f:27:6a:0d:79:77: bc:b3:d5:96:37:61:eb:90:0f:81:16:2f:77:9d:5d: e8:15:ee:d5:ac:58:6e:5a:31:d4:19:a6:29:9f:5d: 00:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:64:1E:9D:E8:89:64:D4:FF:06:30:7F:5E:84:5E:4B:25:E0:B9:0F X509v3 Authority Key Identifier: keyid:87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/kGQeneiJZNT_BjB_XoReSyXguQ8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2350::/48 Signature Algorithm: sha256WithRSAEncryption 20:e4:fa:b1:a8:ce:aa:39:b4:0e:6f:e0:c1:b3:de:55:44:77: 34:1e:d6:ec:96:0c:69:12:a3:59:d9:a6:ff:45:f4:9d:58:e1: c5:b0:af:df:09:ea:81:7c:b5:7f:07:21:05:f9:41:04:51:42: 63:fa:1c:15:3d:c3:de:42:04:d1:7f:15:a5:bf:96:91:25:95: ac:6f:ed:90:79:5c:1d:4a:61:c4:7f:81:d0:7d:10:b9:e8:8a: 71:3c:28:c7:18:f2:da:08:c9:44:54:de:bf:33:81:07:dc:a2: 93:74:62:b2:b3:e2:9f:28:15:07:66:36:86:58:66:18:97:42: 29:ea:1f:13:24:01:3e:20:15:40:fe:09:ef:44:f1:32:db:81: d8:f5:87:b1:3e:1f:99:90:f2:a2:a5:0a:a3:4c:91:e1:1a:14: 92:1f:5e:17:67:25:e1:bc:4c:8e:a9:17:7f:a7:1c:ca:28:be: f7:2d:6a:7f:5c:97:e7:33:0b:da:d0:46:ef:14:35:ff:2c:71: c0:8d:d4:31:d4:f2:e2:48:e6:35:20:10:27:a3:a6:da:90:ac: 0b:a5:d7:aa:07:34:36:e2:11:a0:e8:9e:6a:d1:dd:df:07:50: 76:56:93:19:f1:ae:0f:61:96:8f:98:25:4b:5e:45:54:70:8b: 30:03:a5:23 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3WTVlUjFqmse6/eROUgzoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3ZGUwODU5NzVkZTY1ODhlMDdmZWQxMzU1MTNhYTM4YWNl ZGI3NjMwHhcNMjYwMTAxMDIxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDY0MWU5ZGU4ODk2NGQ0ZmYwNjMwN2Y1ZTg0NWU0YjI1ZTBiOTBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmiehWD/WQrGfy01vhwC+WTpgGJoz VTNDlht2Io5PTN4PrH0nl7ErAuzLkVsynQb+jmZEzVwWDJ8L7kMWlfxaUoBkMbeR r1pySmeOGQjt14d+T9NMNaP07UNS6J+hkQanoaxupYPeUfMH82BTNmKcLSJAyE6R xYsejQpSCW4ViZtrKb7R6T2cL+gM4AxzeXXCPU5fUoFpkkYmyO201gwWzEK1NXsh hEOZXC8Q6lK3o3CAiNGOhoIVSYdLb2oZA6Xus0EAeWJLTU9NOk72SMrO3J6xIxry oLEUmF1/J2oNeXe8s9WWN2HrkA+BFi93nV3oFe7VrFhuWjHUGaYpn10AQwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJBkHp3oiWTU/wYwf16EXksl4LkPMB8GA1UdIwQY MBaAFIfeCFl13mWI4H/tE1UTqjis7bdjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDk0SVdYWGVaWWpnZi0wVFZST3FPS3p0dDJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wNGVmNzEtZjEyMi00N2NlLThhNDAt Y2MwZjk3MDcxNDBlLzEva0dRZW5laUpaTlRfQmpCX1hvUmVTeVhndVE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8wNGVmNzEtZjEyMi00N2NlLThhNDAtY2MwZjk3MDcxNDBl LzEvaDk0SVdYWGVaWWpnZi0wVFZST3FPS3p0dDJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCNQ MA0GCSqGSIb3DQEBCwUAA4IBAQAg5PqxqM6qObQOb+DBs95VRHc0HtbslgxpEqNZ 2ab/RfSdWOHFsK/fCeqBfLV/ByEF+UEEUUJj+hwVPcPeQgTRfxWlv5aRJZWsb+2Q eVwdSmHEf4HQfRC56IpxPCjHGPLaCMlEVN6/M4EH3KKTdGKys+KfKBUHZjaGWGYY l0Ip6h8TJAE+IBVA/gnvRPEy24HY9YexPh+ZkPKipQqjTJHhGhSSH14XZyXhvEyO qRd/pxzKKL73LWp/XJfnMwva0EbvFDX/LHHAjdQx1PLiSOY1IBAno6bakKwLpdeq BzQ24hGg6J5q0d3fB1B2VpMZ8a4PYZaPmCVLXkVUcIswA6Uj -----END CERTIFICATE-----Generated at Sun Jan 25 21:39:35 2026 by rpki-client