This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/kX6HBv8bKss7E55RJ8Xb_Z-T8vM.roa File: kX6HBv8bKss7E55RJ8Xb_Z-T8vM.roa (raw, json) Hash identifier: VAHe2vNiQZyVVFn+EahLrIyER1ZRuiA94NXfpN51Ums= Subject key identifier: 91:7E:87:06:FF:1B:2A:CB:3B:13:9E:51:27:C5:DB:FD:9F:93:F2:F3 Certificate issuer: /CN=5a939b0ced38d75cc63ed50d6e5ce72bbb5b4b10 Certificate serial: 019B7BA3C72646A4254698C8D098560C9C21 Authority key identifier: 5A:93:9B:0C:ED:38:D7:5C:C6:3E:D5:0D:6E:5C:E7:2B:BB:5B:4B:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/kX6HBv8bKss7E55RJ8Xb_Z-T8vM.roa Signing time: Thu 01 Jan 2026 22:18:09 +0000 ROA not before: Thu 01 Jan 2026 22:18:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43833 IP address blocks: 2a00:4b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/WpObDO0411zGPtUNblznK7tbSxA.crl rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/WpObDO0411zGPtUNblznK7tbSxA.mft rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:c7:26:46:a4:25:46:98:c8:d0:98:56:0c:9c:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5a939b0ced38d75cc63ed50d6e5ce72bbb5b4b10 Validity Not Before: Jan 1 22:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=917e8706ff1b2acb3b139e5127c5dbfd9f93f2f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:80:d5:93:13:c5:4a:e4:9b:7c:7f:f7:45:c2: 0e:79:1e:4c:58:7b:a4:f5:61:2d:a0:89:64:ab:7a: b4:a5:15:96:50:e3:93:7a:c4:04:ea:b1:c0:88:e4: f7:79:84:db:b6:86:37:66:89:a1:29:bf:08:de:03: 19:4c:fa:d2:dd:38:0c:7e:28:09:19:99:41:b7:92: 0a:57:d6:b8:01:c4:f7:60:06:0c:26:85:e3:a1:26: 75:a8:4a:90:19:09:9f:f9:0c:e6:16:66:43:d6:43: 09:10:54:e0:8c:e8:27:c0:0c:47:5e:8f:9d:f9:09: 96:5a:20:06:a4:59:9b:b8:19:da:17:8a:5b:45:8a: a7:6e:ff:fe:0d:26:71:8d:cd:dc:2e:da:ed:0a:13: 3d:d8:6e:e1:30:dc:b5:73:8e:c0:cb:a9:8a:59:31: 53:b2:63:ee:c1:88:b7:fc:d0:c4:2b:b4:e1:5e:7b: 22:0b:26:6f:5d:14:17:be:c5:7b:60:1c:46:f0:ff: 03:5c:40:0c:64:67:90:46:1e:cd:e3:c2:d8:e5:92: 29:b7:d3:d8:49:3f:59:b9:09:65:c3:ce:8c:2d:30: 53:12:f3:51:8a:3e:9f:07:d7:02:9b:46:b3:b8:76: 33:34:7d:d3:ce:c6:14:dc:dd:62:b6:7c:1a:36:60: 90:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:7E:87:06:FF:1B:2A:CB:3B:13:9E:51:27:C5:DB:FD:9F:93:F2:F3 X509v3 Authority Key Identifier: keyid:5A:93:9B:0C:ED:38:D7:5C:C6:3E:D5:0D:6E:5C:E7:2B:BB:5B:4B:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/kX6HBv8bKss7E55RJ8Xb_Z-T8vM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/WpObDO0411zGPtUNblznK7tbSxA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:4b80::/48 Signature Algorithm: sha256WithRSAEncryption 70:72:4c:29:90:c2:48:55:23:d7:24:b1:ab:ca:6c:b0:6e:bb: 26:c0:3d:1a:e8:2e:a2:af:be:87:6d:72:1c:10:a1:21:81:00: 2c:7e:da:6d:6c:a0:35:f4:07:78:43:19:e2:86:65:d5:a5:f9: 36:db:ff:f3:8b:83:3c:8a:21:42:3f:72:65:b1:08:6f:ac:8d: ff:76:d5:8a:82:d9:85:98:cb:5d:80:e0:ff:97:08:ae:07:72: 69:ea:26:67:3a:35:6d:81:db:4d:67:35:24:db:a4:1e:e9:25: 17:3f:36:f8:c6:28:1a:88:4e:be:06:6a:08:5c:40:4d:30:22: 92:7d:a1:99:3e:9a:df:57:d5:a6:23:65:7b:5d:fc:f8:41:e3: 1c:21:7f:95:6b:76:48:2a:53:6f:58:44:dc:61:a4:8f:bd:12: 99:17:cd:6b:6f:57:94:95:1c:51:93:c1:5b:ba:b4:eb:d1:d6: 87:84:8c:6a:2a:5f:77:16:38:35:fe:5a:2c:97:cc:a4:ba:bd: 8d:c0:23:52:70:cc:c2:fa:46:03:3e:08:ab:b6:1a:64:79:b5: 63:ec:7f:7a:7f:c8:ba:54:f9:4f:b7:c4:ae:46:64:3d:00:64: 6d:77:2d:47:6d:f3:7a:21:90:08:ce:c7:61:34:49:e3:e7:66: fa:2c:99:8e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7o8cmRqQlRpjI0JhWDJwhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVhOTM5YjBjZWQzOGQ3NWNjNjNlZDUwZDZlNWNlNzJiYmI1 YjRiMTAwHhcNMjYwMTAxMjIxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTdlODcwNmZmMWIyYWNiM2IxMzllNTEyN2M1ZGJmZDlmOTNmMmYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvIDVkxPFSuSbfH/3RcIOeR5MWHuk 9WEtoIlkq3q0pRWWUOOTesQE6rHAiOT3eYTbtoY3ZomhKb8I3gMZTPrS3TgMfigJ GZlBt5IKV9a4AcT3YAYMJoXjoSZ1qEqQGQmf+QzmFmZD1kMJEFTgjOgnwAxHXo+d +QmWWiAGpFmbuBnaF4pbRYqnbv/+DSZxjc3cLtrtChM92G7hMNy1c47Ay6mKWTFT smPuwYi3/NDEK7ThXnsiCyZvXRQXvsV7YBxG8P8DXEAMZGeQRh7N48LY5ZIpt9PY ST9ZuQllw86MLTBTEvNRij6fB9cCm0azuHYzNH3TzsYU3N1itnwaNmCQ+QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJF+hwb/GyrLOxOeUSfF2/2fk/LzMB8GA1UdIwQY MBaAFFqTmwztONdcxj7VDW5c5yu7W0sQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV3BPYkRPMDQxMXpHUHRVTmJsem5LN3RiU3hBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9iZWExNGEtMGQzMi00YWE3LWI4OTgt ZDYwYjNiNmNjYTZlLzEva1g2SEJ2OGJLc3M3RTU1Uko4WGJfWi1UOHZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC9iZWExNGEtMGQzMi00YWE3LWI4OTgtZDYwYjNiNmNjYTZl LzEvV3BPYkRPMDQxMXpHUHRVTmJsem5LN3RiU3hBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgBLgAAA MA0GCSqGSIb3DQEBCwUAA4IBAQBwckwpkMJIVSPXJLGrymywbrsmwD0a6C6ir76H bXIcEKEhgQAsftptbKA19Ad4QxnihmXVpfk22//zi4M8iiFCP3JlsQhvrI3/dtWK gtmFmMtdgOD/lwiuB3Jp6iZnOjVtgdtNZzUk26Qe6SUXPzb4xigaiE6+BmoIXEBN MCKSfaGZPprfV9WmI2V7Xfz4QeMcIX+Va3ZIKlNvWETcYaSPvRKZF81rb1eUlRxR k8FburTr0daHhIxqKl93Fjg1/losl8ykur2NwCNScMzC+kYDPgirthpkebVj7H96 f8i6VPlPt8SuRmQ9AGRtdy1HbfN6IZAIzsdhNEnj52b6LJmO -----END CERTIFICATE-----Generated at Sun Jan 25 23:31:35 2026 by rpki-client