This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/8e38d7-e7d5-4dd8-a360-584a140b8b71/1/rt1jmEWcts8v82w_w-CIFAF6XNA.roa File: rt1jmEWcts8v82w_w-CIFAF6XNA.roa (raw, json) Hash identifier: 2a8J88cRjXc2S0NbaaMIdvXvo0cjbAPhTxZH/dueltY= Subject key identifier: AE:DD:63:98:45:9C:B6:CF:2F:F3:6C:3F:C3:E0:88:14:01:7A:5C:D0 Certificate issuer: /CN=62ef977550fa7c813dee5c1b90e9511b9c68dd0a Certificate serial: 019B7DCA85D3DC87CDD3BD17C209F4BDB49F Authority key identifier: 62:EF:97:75:50:FA:7C:81:3D:EE:5C:1B:90:E9:51:1B:9C:68:DD:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yu-XdVD6fIE97lwbkOlRG5xo3Qo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/8e38d7-e7d5-4dd8-a360-584a140b8b71/1/rt1jmEWcts8v82w_w-CIFAF6XNA.roa Signing time: Fri 02 Jan 2026 08:19:43 +0000 ROA not before: Fri 02 Jan 2026 08:19:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49704 IP address blocks: 2001:678:924::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/8e38d7-e7d5-4dd8-a360-584a140b8b71/1/Yu-XdVD6fIE97lwbkOlRG5xo3Qo.crl rsync://rpki.ripe.net/repository/DEFAULT/63/8e38d7-e7d5-4dd8-a360-584a140b8b71/1/Yu-XdVD6fIE97lwbkOlRG5xo3Qo.mft rsync://rpki.ripe.net/repository/DEFAULT/Yu-XdVD6fIE97lwbkOlRG5xo3Qo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:85:d3:dc:87:cd:d3:bd:17:c2:09:f4:bd:b4:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62ef977550fa7c813dee5c1b90e9511b9c68dd0a Validity Not Before: Jan 2 08:19:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aedd6398459cb6cf2ff36c3fc3e08814017a5cd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:17:bd:d0:e7:45:16:21:dd:25:a8:35:5b:86: d4:4d:e2:24:18:cc:6f:81:9a:59:d6:d9:5f:a8:ef: e5:fb:3d:57:18:6e:1a:8f:08:3d:ad:df:d6:c2:f3: 17:f7:91:42:bb:9f:3c:ec:93:48:38:97:37:0f:18: 94:a4:a1:b0:e4:e1:51:48:59:da:cb:2d:1e:66:ad: 36:ac:7e:b3:fa:9b:2b:d6:ee:c3:9b:ca:6a:81:11: 3d:03:6f:a0:8b:67:e6:fc:d1:71:30:b0:e6:1c:8a: 36:d0:8a:1e:a9:bf:41:e4:88:5f:2b:20:98:c0:ba: e5:a0:7a:e3:d3:5c:9b:2a:c4:73:ef:fd:f7:90:ff: 83:92:e1:8e:97:8c:7a:1c:cd:eb:c1:34:19:87:07: 8a:e8:2d:8d:4a:d8:9f:fd:b9:2d:de:5c:68:0f:4f: 3e:97:c8:83:99:9d:c3:38:d6:d0:df:87:2f:9e:ac: cd:c9:3c:f3:da:7e:05:e4:84:21:7a:50:76:4f:46: 1f:3f:e9:e4:a3:5d:a2:3f:72:3e:5f:e9:6b:b5:d5: 42:42:f3:6f:c3:8d:19:67:b3:46:13:da:98:f2:0f: 95:41:69:d1:fb:73:e6:07:66:f3:05:2b:31:ee:f8: 1d:80:f4:91:25:6a:f2:99:b1:69:28:9b:b3:c5:c9: c1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DD:63:98:45:9C:B6:CF:2F:F3:6C:3F:C3:E0:88:14:01:7A:5C:D0 X509v3 Authority Key Identifier: keyid:62:EF:97:75:50:FA:7C:81:3D:EE:5C:1B:90:E9:51:1B:9C:68:DD:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yu-XdVD6fIE97lwbkOlRG5xo3Qo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/8e38d7-e7d5-4dd8-a360-584a140b8b71/1/rt1jmEWcts8v82w_w-CIFAF6XNA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/8e38d7-e7d5-4dd8-a360-584a140b8b71/1/Yu-XdVD6fIE97lwbkOlRG5xo3Qo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:924::/48 Signature Algorithm: sha256WithRSAEncryption 40:43:9e:4c:0f:26:cc:1b:02:31:73:1f:b8:67:11:3c:06:65: a8:52:a6:d2:25:59:b6:16:92:99:66:51:1a:fb:f6:f1:9f:9b: f5:3c:a4:a7:e1:6b:89:73:db:07:68:d6:76:35:e2:09:bb:bb: e8:1c:ab:82:b3:ef:44:f6:5d:1a:df:16:3a:5b:30:6e:82:0e: e6:64:67:c0:4c:f1:f4:48:a1:21:6d:23:0d:17:63:58:ee:2f: f9:ec:32:51:7b:e4:db:1f:90:87:c5:24:22:58:66:1c:83:75: 29:b9:a9:cb:ff:50:61:6d:d2:2d:07:54:53:3d:a7:8b:66:85: 07:e2:6f:b8:cc:90:bd:13:a8:06:66:86:6e:cc:e0:60:da:aa: f5:61:2a:50:db:00:5d:00:1a:10:69:55:16:92:da:27:b2:b9: e5:90:97:a2:aa:1d:c8:b2:bb:d4:01:81:46:31:ed:17:5f:4a: 6a:d6:82:2b:5b:d5:89:96:4b:80:2d:fe:a8:a8:86:9d:55:49: 57:97:37:7a:10:de:41:5d:0f:2f:d7:bc:bd:d3:04:f3:7e:9b: 8d:70:90:c4:4a:12:1e:86:aa:55:7a:06:74:37:e1:83:3e:22: c3:9e:8e:49:59:b9:46:aa:75:a2:2b:0c:be:fd:4d:eb:3b:00: 90:de:26:ab -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9yoXT3IfN070Xwgn0vbSfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyZWY5Nzc1NTBmYTdjODEzZGVlNWMxYjkwZTk1MTFiOWM2 OGRkMGEwHhcNMjYwMTAyMDgxOTQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZWRkNjM5ODQ1OWNiNmNmMmZmMzZjM2ZjM2UwODgxNDAxN2E1Y2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Re90OdFFiHdJag1W4bUTeIkGMxv gZpZ1tlfqO/l+z1XGG4ajwg9rd/WwvMX95FCu5887JNIOJc3DxiUpKGw5OFRSFna yy0eZq02rH6z+psr1u7Dm8pqgRE9A2+gi2fm/NFxMLDmHIo20Ioeqb9B5IhfKyCY wLrloHrj01ybKsRz7/33kP+DkuGOl4x6HM3rwTQZhweK6C2NStif/bkt3lxoD08+ l8iDmZ3DONbQ34cvnqzNyTzz2n4F5IQhelB2T0YfP+nko12iP3I+X+lrtdVCQvNv w40ZZ7NGE9qY8g+VQWnR+3PmB2bzBSsx7vgdgPSRJWrymbFpKJuzxcnBtwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFK7dY5hFnLbPL/NsP8PgiBQBelzQMB8GA1UdIwQY MBaAFGLvl3VQ+nyBPe5cG5DpURucaN0KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXUtWGRWRDZmSUU5N2x3YmtPbFJHNXhvM1FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My84ZTM4ZDctZTdkNS00ZGQ4LWEzNjAt NTg0YTE0MGI4YjcxLzEvcnQxam1FV2N0czh2ODJ3X3ctQ0lGQUY2WE5BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My84ZTM4ZDctZTdkNS00ZGQ4LWEzNjAtNTg0YTE0MGI4Yjcx LzEvWXUtWGRWRDZmSUU5N2x3YmtPbFJHNXhvM1FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAkk MA0GCSqGSIb3DQEBCwUAA4IBAQBAQ55MDybMGwIxcx+4ZxE8BmWoUqbSJVm2FpKZ ZlEa+/bxn5v1PKSn4WuJc9sHaNZ2NeIJu7voHKuCs+9E9l0a3xY6WzBugg7mZGfA TPH0SKEhbSMNF2NY7i/57DJRe+TbH5CHxSQiWGYcg3UpuanL/1BhbdItB1RTPaeL ZoUH4m+4zJC9E6gGZoZuzOBg2qr1YSpQ2wBdABoQaVUWktonsrnlkJeiqh3IsrvU AYFGMe0XX0pq1oIrW9WJlkuALf6oqIadVUlXlzd6EN5BXQ8v17y90wTzfpuNcJDE ShIehqpVegZ0N+GDPiLDno5JWblGqnWiKwy+/U3rOwCQ3iar -----END CERTIFICATE-----Generated at Mon Jan 26 03:56:47 2026 by rpki-client