This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/8990c1-1d0f-4541-846e-c9bdce9c1a49/1/101GWEnnLWkwzyk8ENv2dQzRn60.roa File: 101GWEnnLWkwzyk8ENv2dQzRn60.roa (raw, json) Hash identifier: yVzCyeYeZjVprVmnGPCuIHM8bf9Sf5G4yOYjEy+HoJA= Subject key identifier: D7:4D:46:58:49:E7:2D:69:30:CF:29:3C:10:DB:F6:75:0C:D1:9F:AD Certificate issuer: /CN=66dac8a8f314ee879a6aa843b67ea47ab1e75def Certificate serial: 019B76EB38DFFCD25B785164FF270170DAFF Authority key identifier: 66:DA:C8:A8:F3:14:EE:87:9A:6A:A8:43:B6:7E:A4:7A:B1:E7:5D:EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtrIqPMU7oeaaqhDtn6kerHnXe8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/8990c1-1d0f-4541-846e-c9bdce9c1a49/1/101GWEnnLWkwzyk8ENv2dQzRn60.roa Signing time: Thu 01 Jan 2026 00:18:05 +0000 ROA not before: Thu 01 Jan 2026 00:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 52016 IP address blocks: 2001:67c:29c8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/8990c1-1d0f-4541-846e-c9bdce9c1a49/1/ZtrIqPMU7oeaaqhDtn6kerHnXe8.crl rsync://rpki.ripe.net/repository/DEFAULT/14/8990c1-1d0f-4541-846e-c9bdce9c1a49/1/ZtrIqPMU7oeaaqhDtn6kerHnXe8.mft rsync://rpki.ripe.net/repository/DEFAULT/ZtrIqPMU7oeaaqhDtn6kerHnXe8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:38:df:fc:d2:5b:78:51:64:ff:27:01:70:da:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66dac8a8f314ee879a6aa843b67ea47ab1e75def Validity Not Before: Jan 1 00:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d74d465849e72d6930cf293c10dbf6750cd19fad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e9:fe:8d:2d:bb:91:23:12:66:d2:dd:72:0a: ea:be:79:c2:96:74:86:d1:7b:ff:d1:04:06:a0:bb: 22:a4:d2:07:44:a8:1a:fc:de:7c:4a:8f:ce:a2:e4: 32:8f:1d:8a:fc:ef:b6:4d:bd:11:96:44:ff:35:30: 54:f6:82:b2:53:10:d4:92:c4:a3:50:5e:f0:95:72: e8:cb:e1:6d:df:3b:bf:37:c4:6f:8f:07:b9:cd:15: 4e:b4:35:f0:cb:19:7c:b2:98:be:56:49:1c:9b:32: 99:b0:6c:ce:b3:26:f0:55:d1:30:a1:7e:ff:3d:16: ba:b1:13:e9:43:7c:ae:f7:fe:58:f6:28:1f:3d:6b: 81:e5:a8:8d:b3:72:71:99:de:a0:65:e4:7b:67:49: ce:c7:ed:25:27:39:46:02:c3:5d:06:c6:3b:e5:58: ea:34:09:48:0f:44:01:82:09:e5:c5:d0:95:f7:23: 6b:76:d3:ff:28:21:ac:90:02:10:20:b5:6a:63:cd: 89:76:2b:cb:ba:a7:21:ea:ff:60:60:c6:43:ca:d7: 65:9a:5c:69:04:47:67:9c:09:1d:1f:98:f5:32:10: ee:19:1f:ac:76:e9:e6:05:ba:e4:54:83:85:be:1d: 90:49:ce:a5:be:65:c7:d3:f8:a4:4e:7b:50:5d:1e: 67:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:4D:46:58:49:E7:2D:69:30:CF:29:3C:10:DB:F6:75:0C:D1:9F:AD X509v3 Authority Key Identifier: keyid:66:DA:C8:A8:F3:14:EE:87:9A:6A:A8:43:B6:7E:A4:7A:B1:E7:5D:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtrIqPMU7oeaaqhDtn6kerHnXe8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/8990c1-1d0f-4541-846e-c9bdce9c1a49/1/101GWEnnLWkwzyk8ENv2dQzRn60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/8990c1-1d0f-4541-846e-c9bdce9c1a49/1/ZtrIqPMU7oeaaqhDtn6kerHnXe8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:29c8::/48 Signature Algorithm: sha256WithRSAEncryption 3f:73:8f:91:f5:55:1a:a9:a1:34:b2:9e:d5:23:29:d2:55:31: bd:92:81:17:4c:b4:b3:67:9f:52:14:ce:3b:52:9f:a0:92:9b: 6b:58:25:9e:cc:25:c2:a3:ad:4b:0f:81:36:64:dd:88:e0:f2: ae:ac:74:b0:28:e3:6f:e9:65:b3:a7:21:64:a6:d6:19:7c:0b: d0:e8:36:8b:55:84:58:ee:0f:bd:1f:32:e8:94:8a:4c:9d:3f: 31:72:5c:18:ea:5c:92:dc:67:23:86:68:c9:fb:95:12:45:25: b8:ef:a6:d1:cc:59:49:fe:61:37:cc:fc:5d:e2:b7:e5:8b:4c: ce:e3:d3:6e:f4:d9:5b:a8:74:7a:12:1c:f6:57:2d:dd:fa:8c: 84:58:64:b0:a9:8a:f4:66:d1:6f:18:05:16:dd:26:90:90:ad: d8:eb:e6:5f:b2:86:d9:cb:c9:da:5f:77:e6:95:18:57:63:94: 91:8f:f9:22:42:17:e2:6d:d7:40:25:be:ea:ff:52:4a:f4:95: ea:d2:ea:8a:76:8d:59:ba:dd:b0:ef:22:72:50:eb:87:cf:58: 96:ac:c3:b5:0a:c6:fe:6c:e7:73:5d:3d:5c:17:27:bb:a7:73: 97:63:33:33:8b:da:94:84:4d:9f:67:3e:b2:7f:1f:b2:fb:1c: b4:cc:db:44 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt26zjf/NJbeFFk/ycBcNr/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2ZGFjOGE4ZjMxNGVlODc5YTZhYTg0M2I2N2VhNDdhYjFl NzVkZWYwHhcNMjYwMTAxMDAxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNzRkNDY1ODQ5ZTcyZDY5MzBjZjI5M2MxMGRiZjY3NTBjZDE5ZmFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwun+jS27kSMSZtLdcgrqvnnClnSG 0Xv/0QQGoLsipNIHRKga/N58So/OouQyjx2K/O+2Tb0RlkT/NTBU9oKyUxDUksSj UF7wlXLoy+Ft3zu/N8Rvjwe5zRVOtDXwyxl8spi+VkkcmzKZsGzOsybwVdEwoX7/ PRa6sRPpQ3yu9/5Y9igfPWuB5aiNs3Jxmd6gZeR7Z0nOx+0lJzlGAsNdBsY75Vjq NAlID0QBggnlxdCV9yNrdtP/KCGskAIQILVqY82JdivLuqch6v9gYMZDytdlmlxp BEdnnAkdH5j1MhDuGR+sdunmBbrkVIOFvh2QSc6lvmXH0/ikTntQXR5n4QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNdNRlhJ5y1pMM8pPBDb9nUM0Z+tMB8GA1UdIwQY MBaAFGbayKjzFO6HmmqoQ7Z+pHqx513vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnRySXFQTVU3b2VhYXFoRHRuNmtlckhuWGU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC84OTkwYzEtMWQwZi00NTQxLTg0NmUt YzliZGNlOWMxYTQ5LzEvMTAxR1dFbm5MV2t3enlrOEVOdjJkUXpSbjYwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC84OTkwYzEtMWQwZi00NTQxLTg0NmUtYzliZGNlOWMxYTQ5 LzEvWnRySXFQTVU3b2VhYXFoRHRuNmtlckhuWGU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCnI MA0GCSqGSIb3DQEBCwUAA4IBAQA/c4+R9VUaqaE0sp7VIynSVTG9koEXTLSzZ59S FM47Up+gkptrWCWezCXCo61LD4E2ZN2I4PKurHSwKONv6WWzpyFkptYZfAvQ6DaL VYRY7g+9HzLolIpMnT8xclwY6lyS3GcjhmjJ+5USRSW476bRzFlJ/mE3zPxd4rfl i0zO49Nu9NlbqHR6Ehz2Vy3d+oyEWGSwqYr0ZtFvGAUW3SaQkK3Y6+ZfsobZy8na X3fmlRhXY5SRj/kiQhfibddAJb7q/1JK9JXq0uqKdo1Zut2w7yJyUOuHz1iWrMO1 Csb+bOdzXT1cFye7p3OXYzMzi9qUhE2fZz6yfx+y+xy0zNtE -----END CERTIFICATE-----Generated at Mon Jan 26 04:20:06 2026 by rpki-client