This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/6rSLyo-Yx0l7a6a5zPlB1ZN9rnE.roa File: 6rSLyo-Yx0l7a6a5zPlB1ZN9rnE.roa (raw, json) Hash identifier: zpc8LUDJlLZtd+b87lBPPtArtCBV13J0qSxfK4BT774= Subject key identifier: EA:B4:8B:CA:8F:98:C7:49:7B:6B:A6:B9:CC:F9:41:D5:93:7D:AE:71 Certificate issuer: /CN=e8a851ddae5a64cc38825395be9a507da95ab7cf Certificate serial: 019B7C127A7A575FCE312AFC6E53EACF702D Authority key identifier: E8:A8:51:DD:AE:5A:64:CC:38:82:53:95:BE:9A:50:7D:A9:5A:B7:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/6rSLyo-Yx0l7a6a5zPlB1ZN9rnE.roa Signing time: Fri 02 Jan 2026 00:19:04 +0000 ROA not before: Fri 02 Jan 2026 00:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200343 IP address blocks: 217.175.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/6KhR3a5aZMw4glOVvppQfalat88.crl rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/6KhR3a5aZMw4glOVvppQfalat88.mft rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:7a:7a:57:5f:ce:31:2a:fc:6e:53:ea:cf:70:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8a851ddae5a64cc38825395be9a507da95ab7cf Validity Not Before: Jan 2 00:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eab48bca8f98c7497b6ba6b9ccf941d5937dae71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b0:99:e4:e7:cd:31:78:1a:df:8a:05:12:a1: a5:a7:fd:53:63:70:55:f7:91:b4:29:6e:f9:4f:45: b7:88:5c:4d:0f:c6:33:6c:07:cb:e5:35:c9:d5:04: 83:94:3c:6b:ab:a3:fd:72:30:52:11:21:3d:b1:8e: 68:15:e1:c3:0c:24:0a:50:e7:05:5e:27:96:2b:df: a7:02:12:21:8b:43:d7:aa:bc:4e:26:d3:13:3c:8b: 4f:53:68:1a:6e:c4:80:b6:db:34:65:8d:08:df:16: 9a:b3:c0:02:96:82:29:08:05:df:00:f8:fc:61:c5: a3:1e:66:d0:6d:25:4c:37:fe:e8:8e:11:81:a7:1a: 3b:11:14:b4:6e:7c:20:83:dd:c3:aa:57:5b:01:21: e0:45:36:fc:f5:25:70:ba:e4:64:c5:6e:c5:58:07: 8c:25:34:72:02:59:2f:dc:81:30:48:5d:4e:ed:5c: a9:39:ab:60:cd:cd:cb:ea:24:00:96:d5:6b:7e:bf: 16:bd:5d:74:41:1c:37:c3:17:12:a1:0a:1e:58:7f: 71:f5:3f:17:02:20:e0:07:be:f0:81:13:50:fd:03: a2:f1:36:90:12:41:04:ce:d4:6f:ca:aa:51:99:4f: 16:5b:0f:ed:65:25:8f:13:ee:c3:33:ef:b3:dd:93: d9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B4:8B:CA:8F:98:C7:49:7B:6B:A6:B9:CC:F9:41:D5:93:7D:AE:71 X509v3 Authority Key Identifier: keyid:E8:A8:51:DD:AE:5A:64:CC:38:82:53:95:BE:9A:50:7D:A9:5A:B7:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/6rSLyo-Yx0l7a6a5zPlB1ZN9rnE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/6KhR3a5aZMw4glOVvppQfalat88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.175.95.0/24 Signature Algorithm: sha256WithRSAEncryption 36:46:35:95:20:c9:b5:81:80:32:8a:01:b9:e8:b5:36:07:43: a4:25:04:61:dc:c6:18:e8:e7:84:11:07:ee:02:97:92:3f:89: e5:1d:4f:86:7d:75:c4:64:c4:c9:18:72:a3:88:23:ac:2a:66: e7:35:af:03:7e:b6:dd:45:a7:9b:ae:92:3c:7d:05:db:7d:f5: 32:97:4c:48:6a:50:41:c8:34:eb:0b:84:7f:c8:8b:eb:57:1b: ce:69:8a:fb:e6:73:6f:d0:34:98:0b:84:3a:6c:9c:68:c6:66: a5:3f:b2:1e:af:37:f9:00:a0:07:2f:db:dd:73:ad:39:bf:c6: 2c:2a:64:35:34:6d:52:6c:5c:db:c1:e3:cb:63:44:cb:e7:21: 71:2a:6e:fc:54:b5:29:f4:91:80:87:d5:53:d2:75:77:3a:d0: f7:6d:97:a9:4d:46:3e:5d:6b:c3:c2:e1:21:6b:e3:89:2b:ab: d3:5d:29:d7:7b:a4:c8:2e:e0:88:61:ad:be:71:58:93:34:95: 9b:0a:e4:a9:5e:ab:2b:f9:a6:98:e8:38:26:f0:a9:ed:5d:f0: ea:bd:0e:60:49:f3:20:a0:9a:63:77:3d:20:14:2c:15:c0:22: 35:7b:5e:16:26:17:83:af:65:b1:ae:a5:11:31:53:02:14:e8: 10:e0:7a:fa -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8Enp6V1/OMSr8blPqz3AtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU4YTg1MWRkYWU1YTY0Y2MzODgyNTM5NWJlOWE1MDdkYTk1 YWI3Y2YwHhcNMjYwMTAyMDAxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYWI0OGJjYThmOThjNzQ5N2I2YmE2YjljY2Y5NDFkNTkzN2RhZTcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6LCZ5OfNMXga34oFEqGlp/1TY3BV 95G0KW75T0W3iFxND8YzbAfL5TXJ1QSDlDxrq6P9cjBSESE9sY5oFeHDDCQKUOcF XieWK9+nAhIhi0PXqrxOJtMTPItPU2gabsSAtts0ZY0I3xaas8ACloIpCAXfAPj8 YcWjHmbQbSVMN/7ojhGBpxo7ERS0bnwgg93DqldbASHgRTb89SVwuuRkxW7FWAeM JTRyAlkv3IEwSF1O7VypOatgzc3L6iQAltVrfr8WvV10QRw3wxcSoQoeWH9x9T8X AiDgB77wgRNQ/QOi8TaQEkEEztRvyqpRmU8WWw/tZSWPE+7DM++z3ZPZYwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOq0i8qPmMdJe2umucz5QdWTfa5xMB8GA1UdIwQY MBaAFOioUd2uWmTMOIJTlb6aUH2pWrfPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNktoUjNhNWFaTXc0Z2xPVnZwcFFmYWxhdDg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC8zNjM4ZDctM2VjMy00NTk1LWE2MzEt MTEwYzg3OGRjZDI5LzEvNnJTTHlvLVl4MGw3YTZhNXpQbEIxWk45cm5FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC8zNjM4ZDctM2VjMy00NTk1LWE2MzEtMTEwYzg3OGRjZDI5 LzEvNktoUjNhNWFaTXc0Z2xPVnZwcFFmYWxhdDg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2a9fMA0G CSqGSIb3DQEBCwUAA4IBAQA2RjWVIMm1gYAyigG56LU2B0OkJQRh3MYY6OeEEQfu ApeSP4nlHU+GfXXEZMTJGHKjiCOsKmbnNa8DfrbdRaebrpI8fQXbffUyl0xIalBB yDTrC4R/yIvrVxvOaYr75nNv0DSYC4Q6bJxoxmalP7Ierzf5AKAHL9vdc605v8Ys KmQ1NG1SbFzbwePLY0TL5yFxKm78VLUp9JGAh9VT0nV3OtD3bZepTUY+XWvDwuEh a+OJK6vTXSnXe6TILuCIYa2+cViTNJWbCuSpXqsr+aaY6Dgm8KntXfDqvQ5gSfMg oJpjdz0gFCwVwCI1e14WJheDr2WxrqURMVMCFOgQ4Hr6 -----END CERTIFICATE-----Generated at Mon Jan 26 04:38:47 2026 by rpki-client