This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/6E4qYsUMxwmtQnOWwvIHMjJRa1g.roa File: 6E4qYsUMxwmtQnOWwvIHMjJRa1g.roa (raw, json) Hash identifier: MGYDAonMBmODXrBLW59dclviCWFHtYhxAosk9RsF+AY= Subject key identifier: E8:4E:2A:62:C5:0C:C7:09:AD:42:73:96:C2:F2:07:32:32:51:6B:58 Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b Certificate serial: 019B791131F4FD6DF72508345ED56A32D302 Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/6E4qYsUMxwmtQnOWwvIHMjJRa1g.roa Signing time: Thu 01 Jan 2026 10:18:48 +0000 ROA not before: Thu 01 Jan 2026 10:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212437 IP address blocks: 2a07:22c1:9::/48 maxlen: 48 2a07:22c1:30::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.mft rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:31:f4:fd:6d:f7:25:08:34:5e:d5:6a:32:d3:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b Validity Not Before: Jan 1 10:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e84e2a62c50cc709ad427396c2f2073232516b58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:17:92:2f:f5:81:b3:cf:de:f0:60:f8:24:7e: bd:d2:20:96:ce:37:4f:09:19:1c:86:9f:f3:b8:2b: 0b:b1:7e:81:2b:e9:8f:7e:86:04:87:a7:e8:13:c1: 9b:2f:f3:aa:b0:06:e9:33:78:18:2e:84:af:db:cf: 7b:7d:ab:99:3f:6f:31:8d:36:cb:64:86:f5:d5:6f: 49:16:b4:ff:f4:25:7e:e7:cf:5b:df:15:aa:7f:73: 71:a4:67:c0:e8:bf:e4:8f:63:1a:48:e7:46:88:26: d8:0b:73:5f:42:a4:79:86:d9:df:03:ad:23:1f:3f: c7:43:ab:c5:80:25:f7:be:c1:71:db:76:fb:6b:20: d4:0b:7c:14:4b:4d:c7:23:0d:cc:da:9e:dc:23:32: b0:f8:68:2f:c7:cb:af:11:6b:2f:28:a7:72:9f:7c: 7d:14:54:1f:62:ad:3b:74:a0:df:33:c3:10:83:e6: 51:62:f2:f0:e3:f2:17:f8:e0:a4:a4:77:f1:a4:ea: e6:fe:3b:b6:dd:cb:13:d5:dd:42:53:c5:24:23:06: 10:19:f7:d1:9b:fd:9c:83:e9:37:57:d7:ec:03:96: 00:21:75:11:1b:84:0e:06:ad:e4:d9:bb:2e:e1:f3: 88:29:a1:8f:93:d7:8e:c8:3b:ca:4d:6e:bd:3a:5a: 08:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:4E:2A:62:C5:0C:C7:09:AD:42:73:96:C2:F2:07:32:32:51:6B:58 X509v3 Authority Key Identifier: keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/6E4qYsUMxwmtQnOWwvIHMjJRa1g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:22c1:9::/48 2a07:22c1:30::/48 Signature Algorithm: sha256WithRSAEncryption ae:b3:b0:9f:5b:43:a7:e3:a8:50:89:f0:eb:e1:53:73:ec:c3: 97:09:37:2e:ad:51:5f:70:3b:6c:44:49:f0:2f:3d:e9:1a:cb: df:90:00:e2:d7:5f:1e:21:56:49:ff:f2:19:dd:f6:48:66:6c: 20:6a:d7:c4:f2:87:76:a8:ff:07:80:e3:0b:83:15:5c:08:7f: 5b:10:34:84:33:9e:5d:b6:1c:99:6f:cd:70:85:8c:99:95:f3: d4:a9:38:f1:c5:24:dc:22:df:fa:cc:2c:3b:01:4e:59:ce:a6: 3b:dc:db:3c:46:7d:4e:5f:91:01:7e:d7:e5:52:e1:8b:cb:64: cb:60:f3:2e:35:af:d0:f0:b0:9d:23:5d:02:80:e1:4d:fb:3c: 36:94:10:2f:72:b3:6f:58:28:13:87:6f:40:8d:07:3e:69:e0: ad:90:21:0c:a1:a3:3f:5e:93:c5:71:97:e6:e7:59:75:92:4f: e8:19:12:9a:bd:ae:10:a0:cf:ef:cf:3a:bb:d7:15:69:e0:0a: aa:bc:ea:5c:d0:29:fe:18:39:4b:8c:74:20:e1:41:6a:c6:c8: 70:ba:a3:d7:a1:96:e0:30:d0:8a:63:f1:c0:bb:c7:56:13:b5: f5:d1:76:b2:3c:7c:b8:1e:cc:4d:e4:8e:e2:45:32:58:43:18: 47:63:7c:58 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt5ETH0/W33JQg0XtVqMtMCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiYWI2YzExZDQxMTYyZGIwMzA2ODU4ZjgzZTVlNjUxMjEx MzJhNmIwHhcNMjYwMTAxMTAxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlODRlMmE2MmM1MGNjNzA5YWQ0MjczOTZjMmYyMDczMjMyNTE2YjU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoReSL/WBs8/e8GD4JH690iCWzjdP CRkchp/zuCsLsX6BK+mPfoYEh6foE8GbL/OqsAbpM3gYLoSv2897fauZP28xjTbL ZIb11W9JFrT/9CV+589b3xWqf3NxpGfA6L/kj2MaSOdGiCbYC3NfQqR5htnfA60j Hz/HQ6vFgCX3vsFx23b7ayDUC3wUS03HIw3M2p7cIzKw+Ggvx8uvEWsvKKdyn3x9 FFQfYq07dKDfM8MQg+ZRYvLw4/IX+OCkpHfxpOrm/ju23csT1d1CU8UkIwYQGffR m/2cg+k3V9fsA5YAIXURG4QOBq3k2bsu4fOIKaGPk9eOyDvKTW69OloIcQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFOhOKmLFDMcJrUJzlsLyBzIyUWtYMB8GA1UdIwQY MBaAFHurbBHUEWLbAwaFj4Pl5lEhEyprMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZTZ0c0VkUVJZdHNEQm9XUGctWG1VU0VUS21zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9kMzM0YWQtNTI0MC00ZGFhLWEwNTAt OWY1YmY3MzY3MjBlLzEvNkU0cVlzVU14d210UW5PV3d2SUhNakpSYTFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS9kMzM0YWQtNTI0MC00ZGFhLWEwNTAtOWY1YmY3MzY3MjBl LzEvZTZ0c0VkUVJZdHNEQm9XUGctWG1VU0VUS21zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgciwQAJ AwcAKgciwQAwMA0GCSqGSIb3DQEBCwUAA4IBAQCus7CfW0On46hQifDr4VNz7MOX CTcurVFfcDtsREnwLz3pGsvfkADi118eIVZJ//IZ3fZIZmwgatfE8od2qP8HgOML gxVcCH9bEDSEM55dthyZb81whYyZlfPUqTjxxSTcIt/6zCw7AU5ZzqY73Ns8Rn1O X5EBftflUuGLy2TLYPMuNa/Q8LCdI10CgOFN+zw2lBAvcrNvWCgTh29AjQc+aeCt kCEMoaM/XpPFcZfm51l1kk/oGRKava4QoM/vzzq71xVp4AqqvOpc0Cn+GDlLjHQg 4UFqxshwuqPXoZbgMNCKY/HAu8dWE7X10XayPHy4HsxN5I7iRTJYQxhHY3xY -----END CERTIFICATE-----Generated at Mon Jan 26 07:42:08 2026 by rpki-client