This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/k7j6q1-pw3Iaxb9nrG2BMp2wduU.roa File: k7j6q1-pw3Iaxb9nrG2BMp2wduU.roa (raw, json) Hash identifier: xqHAe/RA0XRCRSuPeTv3PfTrsCgVTADjTCxtxlrYH9c= Subject key identifier: 93:B8:FA:AB:5F:A9:C3:72:1A:C5:BF:67:AC:6D:81:32:9D:B0:76:E5 Certificate issuer: /CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606 Certificate serial: 019B7C80149973B3D9FB9ADB922E2B2A806F Authority key identifier: EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/k7j6q1-pw3Iaxb9nrG2BMp2wduU.roa Signing time: Fri 02 Jan 2026 02:18:47 +0000 ROA not before: Fri 02 Jan 2026 02:18:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215165 IP address blocks: 2a13:2200:a::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/6i0QK2ESsNmouO66xLl8gZ-XxgY.crl rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/6i0QK2ESsNmouO66xLl8gZ-XxgY.mft rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:14:99:73:b3:d9:fb:9a:db:92:2e:2b:2a:80:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606 Validity Not Before: Jan 2 02:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=93b8faab5fa9c3721ac5bf67ac6d81329db076e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ef:4d:7e:cc:b1:ff:a1:7d:3f:48:95:39:d5: 7b:10:fd:59:06:ef:61:0e:23:e9:0b:0c:3a:4a:9f: 0f:f0:7b:1a:01:8e:f1:a6:97:eb:c9:e0:e5:16:82: 07:69:18:84:7d:0d:cc:a2:6a:f4:ea:a2:3c:a6:a4: 49:b3:2d:10:62:2e:d2:97:52:85:a2:ba:08:a1:06: 73:69:61:21:ab:c1:3d:12:14:77:7a:b8:f9:fd:95: 14:c9:55:7f:46:07:25:80:30:a2:1c:ff:df:f0:a6: d4:bf:c6:d4:03:d5:5c:05:3c:e5:77:9a:0d:2b:3b: 9c:12:db:38:db:1a:fb:cc:e6:8a:4e:e8:cb:c3:8c: 70:92:0b:fd:86:bc:42:00:0a:56:43:f6:20:40:76: b2:52:ea:32:b1:ac:d4:63:d2:7b:24:c9:21:cb:85: 1e:5b:f6:72:9d:7e:11:9b:59:be:36:b8:4b:3b:e7: 92:54:40:cf:6c:bd:9d:3b:2f:da:2f:b7:b7:33:df: 84:77:e2:31:df:8c:63:7f:c4:88:e5:22:a5:cd:59: 36:9d:6b:bc:de:9e:40:e0:32:40:cb:0a:a4:27:be: bc:1d:1e:01:4e:f6:6f:b1:b0:38:92:d2:58:fd:89: 0c:8d:ad:a7:dd:63:ea:df:94:eb:ae:5f:95:5d:3a: 03:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B8:FA:AB:5F:A9:C3:72:1A:C5:BF:67:AC:6D:81:32:9D:B0:76:E5 X509v3 Authority Key Identifier: keyid:EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/k7j6q1-pw3Iaxb9nrG2BMp2wduU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/6i0QK2ESsNmouO66xLl8gZ-XxgY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:2200:a::/47 Signature Algorithm: sha256WithRSAEncryption 76:b4:81:72:e2:9d:33:d5:49:eb:6f:71:5a:82:b5:a0:96:7d: 63:de:3e:01:82:32:1e:89:98:e9:e5:99:6a:24:bf:01:ff:16: eb:92:29:b9:b4:47:61:5c:e5:b3:04:de:fe:a6:34:23:f5:85: 33:53:a5:14:90:be:ac:63:13:90:27:69:71:37:cd:ad:b9:60: 57:b9:e9:7d:01:74:2a:4c:3d:6e:83:34:b9:9d:08:85:35:f9: e6:12:35:66:58:8a:35:71:e1:af:42:7f:6c:74:10:4b:28:46: 2d:44:73:af:0e:f6:bd:e2:4a:ec:49:37:3d:7b:58:9e:bd:3d: 88:23:ca:90:11:c6:e9:bd:13:76:1d:a6:9b:b4:bf:cf:cf:8b: 58:88:29:5a:6a:a2:c6:57:5a:e1:f9:da:05:65:e7:3d:c3:ba: 5d:53:c4:f4:da:c6:81:2c:cf:88:e5:59:c2:70:db:64:f2:74: e3:23:95:58:ea:23:7c:41:09:2f:ac:a3:3d:87:f3:96:eb:13: 83:e4:1f:ac:fa:46:9b:bb:52:61:ea:c8:24:0d:8a:cf:1c:3c: 01:1a:06:30:96:bb:9d:d6:41:58:dc:5a:68:54:59:e1:59:ab: c7:74:d1:0c:ac:1e:5b:e1:9f:f2:56:8e:14:3e:7f:7c:7b:f1: 61:72:41:62 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt8gBSZc7PZ+5rbki4rKoBvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhMmQxMDJiNjExMmIwZDlhOGI4ZWViYWM0Yjk3YzgxOWY5 N2M2MDYwHhcNMjYwMTAyMDIxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5M2I4ZmFhYjVmYTljMzcyMWFjNWJmNjdhYzZkODEzMjlkYjA3NmU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqO9Nfsyx/6F9P0iVOdV7EP1ZBu9h DiPpCww6Sp8P8HsaAY7xppfryeDlFoIHaRiEfQ3Momr06qI8pqRJsy0QYi7Sl1KF oroIoQZzaWEhq8E9EhR3erj5/ZUUyVV/RgclgDCiHP/f8KbUv8bUA9VcBTzld5oN KzucEts42xr7zOaKTujLw4xwkgv9hrxCAApWQ/YgQHayUuoysazUY9J7JMkhy4Ue W/ZynX4Rm1m+NrhLO+eSVEDPbL2dOy/aL7e3M9+Ed+Ix34xjf8SI5SKlzVk2nWu8 3p5A4DJAywqkJ768HR4BTvZvsbA4ktJY/YkMja2n3WPq35Trrl+VXToDWQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJO4+qtfqcNyGsW/Z6xtgTKdsHblMB8GA1UdIwQY MBaAFOotECthErDZqLjuusS5fIGfl8YGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmkwUUsyRVNzTm1vdU82NnhMbDhnWi1YeGdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80Y2RlZmEtNWVlMi00NzE5LWE3ZTEt YjgyOWNjNDAxMDMxLzEvazdqNnExLXB3M0lheGI5bnJHMkJNcDJ3ZHVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC80Y2RlZmEtNWVlMi00NzE5LWE3ZTEtYjgyOWNjNDAxMDMx LzEvNmkwUUsyRVNzTm1vdU82NnhMbDhnWi1YeGdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBKhMiAAAK MA0GCSqGSIb3DQEBCwUAA4IBAQB2tIFy4p0z1Unrb3FagrWgln1j3j4BgjIeiZjp 5ZlqJL8B/xbrkim5tEdhXOWzBN7+pjQj9YUzU6UUkL6sYxOQJ2lxN82tuWBXuel9 AXQqTD1ugzS5nQiFNfnmEjVmWIo1ceGvQn9sdBBLKEYtRHOvDva94krsSTc9e1ie vT2II8qQEcbpvRN2HaabtL/Pz4tYiClaaqLGV1rh+doFZec9w7pdU8T02saBLM+I 5VnCcNtk8nTjI5VY6iN8QQkvrKM9h/OW6xOD5B+s+kabu1Jh6sgkDYrPHDwBGgYw lrud1kFY3FpoVFnhWavHdNEMrB5b4Z/yVo4UPn98e/FhckFi -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:12 2026 by rpki-client