This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d1664b-a315-4e2e-80bf-311c2e6eeb46/1/SaVujfTiEW7eIhJiwtzGISk3J7c.roa File: SaVujfTiEW7eIhJiwtzGISk3J7c.roa (raw, json) Hash identifier: ojyOqfyhqMrakPrBeTa1q21z4BPjR20mz69yF35BNRM= Subject key identifier: 49:A5:6E:8D:F4:E2:11:6E:DE:22:12:62:C2:DC:C6:21:29:37:27:B7 Certificate issuer: /CN=6ad9641ca447eb2e30c5db5191c16bcd477289db Certificate serial: 019B7759282CB78FF0CF0061108EBEEC39EB Authority key identifier: 6A:D9:64:1C:A4:47:EB:2E:30:C5:DB:51:91:C1:6B:CD:47:72:89:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/atlkHKRH6y4wxdtRkcFrzUdyids.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d1664b-a315-4e2e-80bf-311c2e6eeb46/1/SaVujfTiEW7eIhJiwtzGISk3J7c.roa Signing time: Thu 01 Jan 2026 02:18:10 +0000 ROA not before: Thu 01 Jan 2026 02:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9063 IP address blocks: 185.53.156.0/22 maxlen: 22 2a02:2c60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d1664b-a315-4e2e-80bf-311c2e6eeb46/1/atlkHKRH6y4wxdtRkcFrzUdyids.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/d1664b-a315-4e2e-80bf-311c2e6eeb46/1/atlkHKRH6y4wxdtRkcFrzUdyids.mft rsync://rpki.ripe.net/repository/DEFAULT/atlkHKRH6y4wxdtRkcFrzUdyids.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:28:2c:b7:8f:f0:cf:00:61:10:8e:be:ec:39:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ad9641ca447eb2e30c5db5191c16bcd477289db Validity Not Before: Jan 1 02:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=49a56e8df4e2116ede221262c2dcc621293727b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:66:49:36:cb:9f:09:7b:a6:bc:05:b6:9e:e2: 0a:d9:48:f0:b1:f3:70:ff:bb:43:88:e3:3b:2c:a0: 19:12:b2:c8:61:96:b1:65:59:c2:cd:f9:5a:ca:ea: cd:50:32:90:d3:7b:a9:a8:ea:25:6a:e8:af:87:ed: 12:af:5b:4a:af:e3:0d:ac:25:ae:50:5d:06:cc:1c: b1:25:a2:c4:1a:8d:4c:7f:bb:3f:d0:50:af:38:63: 1d:1f:6f:4f:45:26:17:58:7e:b9:70:f2:ed:fa:b1: bc:32:80:28:39:42:78:7d:34:72:14:70:f3:fd:1f: a5:fa:5b:2e:e9:43:7b:d0:43:20:a2:0c:46:c3:a4: 4a:8b:59:90:99:a7:a7:26:34:36:5e:5f:6f:4d:ee: 58:5a:55:bb:90:b3:e7:27:5b:2a:1a:c6:13:af:bb: 5e:f9:c3:36:24:cc:64:d4:d9:d9:68:55:e0:bb:60: 7f:63:33:15:ca:fa:48:f7:c2:0c:95:74:2a:c2:89: 68:55:c6:48:48:c0:d7:fa:f8:24:31:d9:05:3e:d0: 5a:a5:55:2f:a8:30:a6:f1:23:8c:21:59:49:58:de: 29:74:0a:c4:ca:d2:89:57:a8:61:e2:78:db:fc:00: 5f:95:f7:ed:7a:17:76:5c:d3:7b:e6:85:9d:98:b6: 57:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A5:6E:8D:F4:E2:11:6E:DE:22:12:62:C2:DC:C6:21:29:37:27:B7 X509v3 Authority Key Identifier: keyid:6A:D9:64:1C:A4:47:EB:2E:30:C5:DB:51:91:C1:6B:CD:47:72:89:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/atlkHKRH6y4wxdtRkcFrzUdyids.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d1664b-a315-4e2e-80bf-311c2e6eeb46/1/SaVujfTiEW7eIhJiwtzGISk3J7c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d1664b-a315-4e2e-80bf-311c2e6eeb46/1/atlkHKRH6y4wxdtRkcFrzUdyids.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.53.156.0/22 IPv6: 2a02:2c60::/32 Signature Algorithm: sha256WithRSAEncryption 6f:6c:e7:9d:c6:c0:2b:ad:b6:ee:43:48:63:fb:1c:06:fe:54: c5:96:b9:e3:fa:24:1b:7e:41:ba:ee:f4:40:9f:fd:4d:4b:e9: 4a:75:55:f7:e7:59:bb:01:27:ce:19:8e:00:7d:4e:3b:1f:f8: 63:07:e1:c6:d5:83:d4:9b:a5:d3:bd:b4:06:d3:a8:28:33:95: 9e:dd:9c:8c:6e:c3:d9:89:54:86:7b:36:99:a8:db:74:be:1b: 8e:41:13:16:fc:98:05:3e:22:18:7d:72:fc:b9:83:fa:03:46: a8:13:6c:d4:74:6f:21:26:f2:5d:e7:b2:27:79:d4:72:9a:4e: 25:22:61:1a:c8:54:86:72:77:31:c6:39:74:2d:d8:91:a8:de: 32:75:cc:1b:81:e6:c5:4a:6c:d8:78:0a:0f:7e:4d:49:87:9a: 7b:8b:25:3f:e6:74:70:53:13:dd:ec:2c:04:1b:f1:e9:9f:6b: 6c:d3:8a:a1:29:58:4c:93:47:d2:ab:3d:24:1b:96:5e:24:e4: 95:0c:35:a2:f2:55:7f:d7:8d:5b:71:1e:eb:c2:c3:8e:04:4e: b8:3a:df:f7:b1:97:b2:f6:fc:b7:00:59:de:59:24:0d:94:10: ae:e4:b2:84:7d:0b:61:ad:6f:6e:53:a3:f8:72:9e:41:4c:00: a7:29:6d:5d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3WSgst4/wzwBhEI6+7DnrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhZDk2NDFjYTQ0N2ViMmUzMGM1ZGI1MTkxYzE2YmNkNDc3 Mjg5ZGIwHhcNMjYwMTAxMDIxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OWE1NmU4ZGY0ZTIxMTZlZGUyMjEyNjJjMmRjYzYyMTI5MzcyN2I3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA02ZJNsufCXumvAW2nuIK2UjwsfNw /7tDiOM7LKAZErLIYZaxZVnCzflayurNUDKQ03upqOolauivh+0Sr1tKr+MNrCWu UF0GzByxJaLEGo1Mf7s/0FCvOGMdH29PRSYXWH65cPLt+rG8MoAoOUJ4fTRyFHDz /R+l+lsu6UN70EMgogxGw6RKi1mQmaenJjQ2Xl9vTe5YWlW7kLPnJ1sqGsYTr7te +cM2JMxk1NnZaFXgu2B/YzMVyvpI98IMlXQqwoloVcZISMDX+vgkMdkFPtBapVUv qDCm8SOMIVlJWN4pdArEytKJV6hh4njb/ABflfftehd2XNN75oWdmLZXvQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFEmlbo304hFu3iISYsLcxiEpNye3MB8GA1UdIwQY MBaAFGrZZBykR+suMMXbUZHBa81HconbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXRsa0hLUkg2eTR3eGR0UmtjRnJ6VWR5aWRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9kMTY2NGItYTMxNS00ZTJlLTgwYmYt MzExYzJlNmVlYjQ2LzEvU2FWdWpmVGlFVzdlSWhKaXd0ekdJU2szSjdjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi9kMTY2NGItYTMxNS00ZTJlLTgwYmYtMzExYzJlNmVlYjQ2 LzEvYXRsa0hLUkg2eTR3eGR0UmtjRnJ6VWR5aWRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTWcMA0E AgACMAcDBQAqAixgMA0GCSqGSIb3DQEBCwUAA4IBAQBvbOedxsArrbbuQ0hj+xwG /lTFlrnj+iQbfkG67vRAn/1NS+lKdVX351m7ASfOGY4AfU47H/hjB+HG1YPUm6XT vbQG06goM5We3ZyMbsPZiVSGezaZqNt0vhuOQRMW/JgFPiIYfXL8uYP6A0aoE2zU dG8hJvJd57InedRymk4lImEayFSGcncxxjl0LdiRqN4ydcwbgebFSmzYeAoPfk1J h5p7iyU/5nRwUxPd7CwEG/Hpn2ts04qhKVhMk0fSqz0kG5ZeJOSVDDWi8lV/141b cR7rwsOOBE64Ot/3sZey9vy3AFneWSQNlBCu5LKEfQthrW9uU6P4cp5BTACnKW1d -----END CERTIFICATE-----Generated at Sun Jan 25 21:26:01 2026 by rpki-client