This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/0EYCl_u7AU56YlSvHpYQis-MWnk.roa File: 0EYCl_u7AU56YlSvHpYQis-MWnk.roa (raw, json) Hash identifier: lcxZZ3W8GXhqGxMNgdkpvNjJpkamu9CsXtsLtPwfuzQ= Subject key identifier: D0:46:02:97:FB:BB:01:4E:7A:62:54:AF:1E:96:10:8A:CF:8C:5A:79 Certificate issuer: /CN=77b8cf454b0962d16a4855808fd3abc15852bbd8 Certificate serial: 019B7C125D7C3DCE22CAADBB62C5495C2F79 Authority key identifier: 77:B8:CF:45:4B:09:62:D1:6A:48:55:80:8F:D3:AB:C1:58:52:BB:D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7jPRUsJYtFqSFWAj9OrwVhSu9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/0EYCl_u7AU56YlSvHpYQis-MWnk.roa Signing time: Fri 02 Jan 2026 00:18:56 +0000 ROA not before: Fri 02 Jan 2026 00:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201980 IP address blocks: 2a02:4f20::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/d7jPRUsJYtFqSFWAj9OrwVhSu9g.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/d7jPRUsJYtFqSFWAj9OrwVhSu9g.mft rsync://rpki.ripe.net/repository/DEFAULT/d7jPRUsJYtFqSFWAj9OrwVhSu9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:5d:7c:3d:ce:22:ca:ad:bb:62:c5:49:5c:2f:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77b8cf454b0962d16a4855808fd3abc15852bbd8 Validity Not Before: Jan 2 00:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0460297fbbb014e7a6254af1e96108acf8c5a79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:16:e8:62:40:aa:f9:17:a0:bb:71:59:ae:aa: b0:65:35:31:b3:8d:0f:09:27:0c:ac:27:37:c8:e4: 92:b2:65:e0:85:b0:98:77:ed:6a:9f:5e:f3:c3:23: a6:2e:83:1f:38:a5:2b:d4:8b:1d:7a:7a:a7:4c:2e: e8:7e:2f:a8:14:77:1c:bc:16:cc:84:64:09:3e:69: 45:69:6e:7c:87:e5:64:ee:ba:99:2a:a1:d1:5a:c1: 95:a1:3a:23:d2:f0:7a:6a:75:cf:9b:03:0d:65:24: f4:41:7b:39:7e:ee:a5:77:9d:f9:6a:fd:c5:73:fc: 79:dc:8b:6e:dd:6b:0d:c8:03:64:76:f5:bd:ce:a4: 19:14:d9:2d:48:4d:bf:3e:9c:a7:69:be:e5:c7:03: 5e:bc:cd:40:c2:2d:35:40:74:34:b5:65:f7:a1:30: d8:a2:e6:ba:c5:11:d9:9d:88:13:0a:2c:b7:93:02: aa:fb:a2:6e:fb:80:03:f4:07:a0:93:07:70:48:94: 82:d0:6e:22:74:69:93:6f:ac:d7:b0:1e:0f:45:ea: 40:4e:f3:87:d1:74:59:8e:80:16:bd:d4:e7:a0:b4: 1c:78:28:b5:50:29:32:73:3e:e1:d8:28:3b:1a:8a: 99:a6:20:3c:65:61:a1:67:74:1d:44:45:7a:45:8c: 8d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:46:02:97:FB:BB:01:4E:7A:62:54:AF:1E:96:10:8A:CF:8C:5A:79 X509v3 Authority Key Identifier: keyid:77:B8:CF:45:4B:09:62:D1:6A:48:55:80:8F:D3:AB:C1:58:52:BB:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7jPRUsJYtFqSFWAj9OrwVhSu9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/0EYCl_u7AU56YlSvHpYQis-MWnk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/d7jPRUsJYtFqSFWAj9OrwVhSu9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:4f20::/32 Signature Algorithm: sha256WithRSAEncryption 18:8f:16:17:36:4d:57:1c:1a:ad:9b:79:eb:ff:73:ca:99:e7: 2c:e4:7c:e5:12:ba:e0:8e:c5:d1:80:a9:e5:b8:d2:bb:f5:31: 45:c3:6a:4c:46:a0:6f:69:70:75:ea:92:f9:e5:d4:17:fd:b5: 4d:dd:97:96:5f:23:a3:63:e5:79:8e:64:52:cb:57:84:25:69: 00:3a:af:b6:bc:45:13:12:5f:81:c4:7b:2a:45:cd:47:64:5d: 08:aa:1e:d5:c4:6f:14:e9:75:d2:fc:cb:2c:23:b2:d5:80:a9: 50:45:f5:eb:61:42:3b:ed:f9:96:71:db:d2:55:3e:b4:62:1b: ac:de:09:05:a6:d5:67:3f:98:1f:62:48:16:a3:b4:50:63:5d: 25:6f:2b:f6:cf:d5:db:45:e8:1c:30:72:be:1f:0c:40:0d:c0: e9:5c:b0:af:38:6d:70:a0:e7:dc:c9:18:b0:4b:42:36:f9:67: de:28:0d:6d:d2:33:99:9f:4f:48:fc:70:98:ce:e7:84:cc:91: 18:3f:17:dc:c8:b7:8a:18:01:c5:57:82:68:98:c6:9b:92:b6: 43:33:dd:2f:5d:b3:79:9a:1a:7f:30:f7:61:f4:8a:0f:c9:9c: 00:24:d3:eb:c7:14:01:03:a7:48:18:e1:07:4f:b9:d5:e3:b7: 1d:91:e1:11 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt8El18Pc4iyq27YsVJXC95MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3YjhjZjQ1NGIwOTYyZDE2YTQ4NTU4MDhmZDNhYmMxNTg1 MmJiZDgwHhcNMjYwMTAyMDAxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMDQ2MDI5N2ZiYmIwMTRlN2E2MjU0YWYxZTk2MTA4YWNmOGM1YTc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwBboYkCq+Regu3FZrqqwZTUxs40P CScMrCc3yOSSsmXghbCYd+1qn17zwyOmLoMfOKUr1IsdenqnTC7ofi+oFHccvBbM hGQJPmlFaW58h+Vk7rqZKqHRWsGVoToj0vB6anXPmwMNZST0QXs5fu6ld535av3F c/x53Itu3WsNyANkdvW9zqQZFNktSE2/Ppynab7lxwNevM1Awi01QHQ0tWX3oTDY oua6xRHZnYgTCiy3kwKq+6Ju+4AD9AegkwdwSJSC0G4idGmTb6zXsB4PRepATvOH 0XRZjoAWvdTnoLQceCi1UCkycz7h2Cg7GoqZpiA8ZWGhZ3QdREV6RYyNvQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFNBGApf7uwFOemJUrx6WEIrPjFp5MB8GA1UdIwQY MBaAFHe4z0VLCWLRakhVgI/Tq8FYUrvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDdqUFJVc0pZdEZxU0ZXQWo5T3J3VmhTdTlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi9jMTcxY2EtNGIxYi00MTg3LWJhNDYt YTRmYzllMjQ1OGVjLzEvMEVZQ2xfdTdBVTU2WWxTdkhwWVFpcy1NV25rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi9jMTcxY2EtNGIxYi00MTg3LWJhNDYtYTRmYzllMjQ1OGVj LzEvZDdqUFJVc0pZdEZxU0ZXQWo5T3J3VmhTdTlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgJPIDAN BgkqhkiG9w0BAQsFAAOCAQEAGI8WFzZNVxwarZt56/9zypnnLOR85RK64I7F0YCp 5bjSu/UxRcNqTEagb2lwdeqS+eXUF/21Td2Xll8jo2PleY5kUstXhCVpADqvtrxF ExJfgcR7KkXNR2RdCKoe1cRvFOl10vzLLCOy1YCpUEX162FCO+35lnHb0lU+tGIb rN4JBabVZz+YH2JIFqO0UGNdJW8r9s/V20XoHDByvh8MQA3A6VywrzhtcKDn3MkY sEtCNvln3igNbdIzmZ9PSPxwmM7nhMyRGD8X3Mi3ihgBxVeCaJjGm5K2QzPdL12z eZoafzD3YfSKD8mcACTT68cUAQOnSBjhB0+51eO3HZHhEQ== -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:10 2026 by rpki-client