This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/96be7b-7322-4f39-833d-f933b95988c1/1/cT6SuWNZtVuKzcAvYCI7FSFaYQE.roa File: cT6SuWNZtVuKzcAvYCI7FSFaYQE.roa (raw, json) Hash identifier: SjRBTtGgC/H2KCUfLueFpAeHEx9PBCWk0x1hBQie0OQ= Subject key identifier: 71:3E:92:B9:63:59:B5:5B:8A:CD:C0:2F:60:22:3B:15:21:5A:61:01 Certificate issuer: /CN=fefc834442e130f4de7815bf169b7a04c3039ddd Certificate serial: 019B77C7219D2F4FA3C1FF4D811027F01CEB Authority key identifier: FE:FC:83:44:42:E1:30:F4:DE:78:15:BF:16:9B:7A:04:C3:03:9D:DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_vyDRELhMPTeeBW_Fpt6BMMDnd0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/96be7b-7322-4f39-833d-f933b95988c1/1/cT6SuWNZtVuKzcAvYCI7FSFaYQE.roa Signing time: Thu 01 Jan 2026 04:18:17 +0000 ROA not before: Thu 01 Jan 2026 04:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205031 IP address blocks: 2001:67c:490::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/96be7b-7322-4f39-833d-f933b95988c1/1/_vyDRELhMPTeeBW_Fpt6BMMDnd0.crl rsync://rpki.ripe.net/repository/DEFAULT/20/96be7b-7322-4f39-833d-f933b95988c1/1/_vyDRELhMPTeeBW_Fpt6BMMDnd0.mft rsync://rpki.ripe.net/repository/DEFAULT/_vyDRELhMPTeeBW_Fpt6BMMDnd0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:21:9d:2f:4f:a3:c1:ff:4d:81:10:27:f0:1c:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fefc834442e130f4de7815bf169b7a04c3039ddd Validity Not Before: Jan 1 04:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=713e92b96359b55b8acdc02f60223b15215a6101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:81:15:7f:cd:be:b0:68:bb:7c:f7:fa:d2:b4: 87:ac:2d:37:79:11:72:57:21:14:dd:f1:46:78:3f: 9d:98:af:3f:ea:6d:5e:79:d9:99:ed:be:01:ec:a6: c9:50:39:b5:8e:0b:7e:91:4a:30:ab:9b:4a:46:aa: 59:67:e2:de:fd:9d:c2:b0:9e:72:42:bd:2f:d8:e9: 12:ab:8b:7b:b0:cc:a9:20:5c:f8:9d:5d:af:1d:96: c6:ca:4c:47:c8:e3:44:b2:1d:3a:4f:e4:04:a9:ba: 76:75:a6:38:a4:32:94:64:58:26:64:ef:5e:0d:7d: 94:be:6c:64:bd:f7:33:09:35:e1:7d:ae:1b:39:6c: b6:90:02:7f:f4:3b:67:f4:f3:52:b4:04:62:c1:99: 1b:3b:d5:87:49:b2:fa:1f:3c:b9:3f:10:f4:27:de: 76:92:d4:51:3e:dd:84:a0:80:ae:30:f9:0a:02:17: ae:42:63:fc:fc:39:2f:ab:89:de:da:08:08:88:a0: 74:7a:83:46:d6:ce:fc:17:8e:1f:5f:27:bc:5a:d9: 06:97:f8:ef:ca:d1:5c:9d:df:67:16:53:30:c1:fc: 9c:ca:d7:b3:73:b7:8c:69:bf:e8:99:20:d8:ff:bb: 31:44:0e:c4:3e:7c:fb:65:bf:80:a1:27:27:82:4b: 83:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3E:92:B9:63:59:B5:5B:8A:CD:C0:2F:60:22:3B:15:21:5A:61:01 X509v3 Authority Key Identifier: keyid:FE:FC:83:44:42:E1:30:F4:DE:78:15:BF:16:9B:7A:04:C3:03:9D:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_vyDRELhMPTeeBW_Fpt6BMMDnd0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/96be7b-7322-4f39-833d-f933b95988c1/1/cT6SuWNZtVuKzcAvYCI7FSFaYQE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/96be7b-7322-4f39-833d-f933b95988c1/1/_vyDRELhMPTeeBW_Fpt6BMMDnd0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:490::/48 Signature Algorithm: sha256WithRSAEncryption 5c:02:79:07:a0:90:1b:1b:62:9d:be:87:91:8c:71:1a:95:0f: 81:b6:5d:5f:eb:08:3e:5d:fb:8e:8e:cc:a8:33:9b:01:f0:df: 95:dd:e1:39:ca:d0:2a:91:94:bc:e7:3e:58:eb:3c:6b:2c:57: a9:fa:30:9c:a7:7c:1f:ac:7c:e3:f5:4e:e7:6f:b1:ff:8e:75: 71:70:b3:93:8a:ef:29:84:e9:bc:e3:64:91:a2:41:7b:6d:d3: 2e:96:19:cb:86:b9:94:0d:ee:95:92:4d:8a:d4:7c:21:e7:07: d7:42:7e:00:34:49:03:54:1e:93:59:14:3c:48:3d:98:4b:84: 1d:01:ed:0c:e1:91:0b:94:12:5a:c3:8f:58:6f:22:a1:e0:76: 9a:b2:75:0b:1c:ce:78:b1:4a:e1:bd:b9:a4:5d:41:8f:ba:cd: 25:c0:1b:3a:12:10:bd:4f:32:20:7e:30:07:8b:65:7c:23:2c: 4a:32:c7:49:37:1f:a3:32:78:c6:86:ae:19:08:da:fe:c6:da: 4c:cc:0e:7c:d3:87:df:80:01:10:ce:f9:d2:d1:d4:69:45:53: 39:04:48:53:c8:a5:eb:a9:24:96:73:eb:d9:17:f6:37:06:4e: 93:97:35:63:b8:ae:ad:03:9e:d6:eb:0b:e3:25:ed:d7:20:46: 0e:e4:a7:20 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3xyGdL0+jwf9NgRAn8BzrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlZmM4MzQ0NDJlMTMwZjRkZTc4MTViZjE2OWI3YTA0YzMw MzlkZGQwHhcNMjYwMTAxMDQxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MTNlOTJiOTYzNTliNTViOGFjZGMwMmY2MDIyM2IxNTIxNWE2MTAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYEVf82+sGi7fPf60rSHrC03eRFy VyEU3fFGeD+dmK8/6m1eedmZ7b4B7KbJUDm1jgt+kUowq5tKRqpZZ+Le/Z3CsJ5y Qr0v2OkSq4t7sMypIFz4nV2vHZbGykxHyONEsh06T+QEqbp2daY4pDKUZFgmZO9e DX2UvmxkvfczCTXhfa4bOWy2kAJ/9Dtn9PNStARiwZkbO9WHSbL6Hzy5PxD0J952 ktRRPt2EoICuMPkKAheuQmP8/Dkvq4ne2ggIiKB0eoNG1s78F44fXye8WtkGl/jv ytFcnd9nFlMwwfycytezc7eMab/omSDY/7sxRA7EPnz7Zb+AoScngkuDGQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFHE+krljWbVbis3AL2AiOxUhWmEBMB8GA1UdIwQY MBaAFP78g0RC4TD03ngVvxabegTDA53dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3Z5RFJFTGhNUFRlZUJXX0ZwdDZCTU1EbmQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85NmJlN2ItNzMyMi00ZjM5LTgzM2Qt ZjkzM2I5NTk4OGMxLzEvY1Q2U3VXTlp0VnVLemNBdllDSTdGU0ZhWVFFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC85NmJlN2ItNzMyMi00ZjM5LTgzM2QtZjkzM2I5NTk4OGMx LzEvX3Z5RFJFTGhNUFRlZUJXX0ZwdDZCTU1EbmQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfASQ MA0GCSqGSIb3DQEBCwUAA4IBAQBcAnkHoJAbG2KdvoeRjHEalQ+Btl1f6wg+XfuO jsyoM5sB8N+V3eE5ytAqkZS85z5Y6zxrLFep+jCcp3wfrHzj9U7nb7H/jnVxcLOT iu8phOm842SRokF7bdMulhnLhrmUDe6Vkk2K1Hwh5wfXQn4ANEkDVB6TWRQ8SD2Y S4QdAe0M4ZELlBJaw49YbyKh4HaasnULHM54sUrhvbmkXUGPus0lwBs6EhC9TzIg fjAHi2V8IyxKMsdJNx+jMnjGhq4ZCNr+xtpMzA5804ffgAEQzvnS0dRpRVM5BEhT yKXrqSSWc+vZF/Y3Bk6TlzVjuK6tA57W6wvjJe3XIEYO5Kcg -----END CERTIFICATE-----Generated at Sun Jan 25 21:15:50 2026 by rpki-client