This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/8e88a7-0232-4055-a5cf-dd9443579ed5/1/99ukKo0G5E-X61ucxhUYzuXviMg.roa File: 99ukKo0G5E-X61ucxhUYzuXviMg.roa (raw, json) Hash identifier: klMpZV7tFP7vNV7veN/nv8e/MQyS41qIS69khsoXMUw= Subject key identifier: F7:DB:A4:2A:8D:06:E4:4F:97:EB:5B:9C:C6:15:18:CE:E5:EF:88:C8 Certificate issuer: /CN=69d5d452a8ed535287feb36514bc87c022355a43 Certificate serial: 019B7B35DEF2A8B43AADEAA656F6653FB25F Authority key identifier: 69:D5:D4:52:A8:ED:53:52:87:FE:B3:65:14:BC:87:C0:22:35:5A:43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/adXUUqjtU1KH_rNlFLyHwCI1WkM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/8e88a7-0232-4055-a5cf-dd9443579ed5/1/99ukKo0G5E-X61ucxhUYzuXviMg.roa Signing time: Thu 01 Jan 2026 20:18:06 +0000 ROA not before: Thu 01 Jan 2026 20:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35332 IP address blocks: 2001:678:880::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/8e88a7-0232-4055-a5cf-dd9443579ed5/1/adXUUqjtU1KH_rNlFLyHwCI1WkM.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/8e88a7-0232-4055-a5cf-dd9443579ed5/1/adXUUqjtU1KH_rNlFLyHwCI1WkM.mft rsync://rpki.ripe.net/repository/DEFAULT/adXUUqjtU1KH_rNlFLyHwCI1WkM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:de:f2:a8:b4:3a:ad:ea:a6:56:f6:65:3f:b2:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69d5d452a8ed535287feb36514bc87c022355a43 Validity Not Before: Jan 1 20:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f7dba42a8d06e44f97eb5b9cc61518cee5ef88c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:97:49:d7:af:cd:46:16:bc:6e:df:84:6e:bf: 4d:98:b4:07:e1:c8:df:3f:7f:92:20:20:2c:50:7d: 38:17:ab:48:8a:8b:76:6e:c6:b8:12:5b:21:fc:0b: ba:61:9a:1e:6f:21:86:6d:d0:67:85:b7:f8:c3:e8: bf:09:f7:62:68:71:86:f9:9c:86:53:47:62:08:9e: ca:a7:b2:32:30:c8:a0:09:90:c0:64:fd:51:66:4d: 2c:4c:75:19:da:df:15:35:dd:89:18:a7:fd:e3:4e: 09:6d:98:c0:56:26:ab:ba:b7:33:b8:78:b9:2f:7b: a3:9c:4e:1e:65:70:1f:df:9c:61:f8:b0:fe:b1:c4: 75:27:ef:e0:55:9e:9b:d3:73:74:e7:0f:e9:d7:e2: 18:55:05:e8:9f:19:19:2d:45:3e:45:85:fc:b7:cc: f3:1c:a0:09:c7:91:f6:46:1c:a6:c2:21:d4:2b:2e: fb:b7:29:ad:d4:2b:f8:e2:c1:a4:45:31:10:5c:bc: 14:57:c0:93:2f:89:41:7d:a9:e9:e1:48:20:c3:f0: b0:2a:eb:31:07:8f:b0:37:a9:02:6a:e0:9d:3c:5f: ce:e0:ad:49:f7:5f:ec:55:f1:a7:54:e8:ac:2d:e5: 7c:05:3f:a5:b0:5e:2b:89:48:78:4e:a3:e1:79:a4: e1:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:DB:A4:2A:8D:06:E4:4F:97:EB:5B:9C:C6:15:18:CE:E5:EF:88:C8 X509v3 Authority Key Identifier: keyid:69:D5:D4:52:A8:ED:53:52:87:FE:B3:65:14:BC:87:C0:22:35:5A:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/adXUUqjtU1KH_rNlFLyHwCI1WkM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/8e88a7-0232-4055-a5cf-dd9443579ed5/1/99ukKo0G5E-X61ucxhUYzuXviMg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/8e88a7-0232-4055-a5cf-dd9443579ed5/1/adXUUqjtU1KH_rNlFLyHwCI1WkM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:880::/48 Signature Algorithm: sha256WithRSAEncryption ab:77:28:46:00:07:58:a2:72:1a:92:b6:60:2e:07:17:f7:70: 6d:5f:99:f9:71:22:c8:19:15:c8:75:a9:29:24:bf:5c:b0:f7: 5c:d5:63:d0:a3:39:da:3c:1e:8d:f6:ed:58:04:69:25:a9:3d: 03:b7:d5:61:85:26:c7:d4:f9:1e:b7:c3:31:9c:b5:5c:fc:34: e7:aa:f3:98:35:e6:c4:95:b7:6c:fd:b1:03:df:97:5d:0c:2f: 69:76:e9:3a:c9:a1:23:f4:6d:b5:7d:1d:59:6f:a4:95:79:dd: c2:67:00:7d:dd:25:a9:c1:1b:57:76:32:2b:b3:e2:2a:e6:28: 46:a3:71:6d:71:50:0e:70:f1:7a:8a:4e:bb:75:d9:24:e0:d9: 6e:25:dd:10:fe:1e:80:5e:9f:92:0d:2d:d5:ed:4b:e9:ac:86: 88:a6:5f:44:07:a2:66:00:84:6e:da:7b:8e:8f:28:21:a8:60: c9:eb:79:a1:87:f9:00:08:4c:29:2f:5d:d1:9a:c0:9d:6b:3d: 2d:ad:08:e8:24:5f:99:de:7d:c6:ab:32:67:03:71:19:dd:de: 71:df:20:20:9d:02:da:d4:81:0f:13:6f:75:59:61:c7:69:89: e3:c9:d1:12:9f:d5:bc:2c:b8:cf:f8:af:2f:74:be:57:ab:f8: 1b:7f:d8:8b -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7Nd7yqLQ6reqmVvZlP7JfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZDVkNDUyYThlZDUzNTI4N2ZlYjM2NTE0YmM4N2MwMjIz NTVhNDMwHhcNMjYwMTAxMjAxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmN2RiYTQyYThkMDZlNDRmOTdlYjViOWNjNjE1MThjZWU1ZWY4OGM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhJdJ16/NRha8bt+Ebr9NmLQH4cjf P3+SICAsUH04F6tIiot2bsa4Elsh/Au6YZoebyGGbdBnhbf4w+i/CfdiaHGG+ZyG U0diCJ7Kp7IyMMigCZDAZP1RZk0sTHUZ2t8VNd2JGKf9404JbZjAViarurczuHi5 L3ujnE4eZXAf35xh+LD+scR1J+/gVZ6b03N05w/p1+IYVQXonxkZLUU+RYX8t8zz HKAJx5H2RhymwiHUKy77tymt1Cv44sGkRTEQXLwUV8CTL4lBfanp4Uggw/CwKusx B4+wN6kCauCdPF/O4K1J91/sVfGnVOisLeV8BT+lsF4riUh4TqPheaThZwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFPfbpCqNBuRPl+tbnMYVGM7l74jIMB8GA1UdIwQY MBaAFGnV1FKo7VNSh/6zZRS8h8AiNVpDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWRYVVVxanRVMUtIX3JObEZMeUh3Q0kxV2tNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS84ZTg4YTctMDIzMi00MDU1LWE1Y2Yt ZGQ5NDQzNTc5ZWQ1LzEvOTl1a0tvMEc1RS1YNjF1Y3hoVVl6dVh2aU1nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS84ZTg4YTctMDIzMi00MDU1LWE1Y2YtZGQ5NDQzNTc5ZWQ1 LzEvYWRYVVVxanRVMUtIX3JObEZMeUh3Q0kxV2tNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAiA MA0GCSqGSIb3DQEBCwUAA4IBAQCrdyhGAAdYonIakrZgLgcX93BtX5n5cSLIGRXI dakpJL9csPdc1WPQoznaPB6N9u1YBGklqT0Dt9VhhSbH1Pket8MxnLVc/DTnqvOY NebElbds/bED35ddDC9pduk6yaEj9G21fR1Zb6SVed3CZwB93SWpwRtXdjIrs+Iq 5ihGo3FtcVAOcPF6ik67ddkk4NluJd0Q/h6AXp+SDS3V7UvprIaIpl9EB6JmAIRu 2nuOjyghqGDJ63mhh/kACEwpL13RmsCdaz0trQjoJF+Z3n3GqzJnA3EZ3d5x3yAg nQLa1IEPE291WWHHaYnjydESn9W8LLjP+K8vdL5Xq/gbf9iL -----END CERTIFICATE-----Generated at Sun Jan 25 22:31:48 2026 by rpki-client