This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/k6jLYVH6C0z0KMYaezVQiNE4EPU.roa File: k6jLYVH6C0z0KMYaezVQiNE4EPU.roa (raw, json) Hash identifier: 7jskiw03SWhNj59VRgx4kkxZFbjnSw3URxMXrNwyUt0= Subject key identifier: 93:A8:CB:61:51:FA:0B:4C:F4:28:C6:1A:7B:35:50:88:D1:38:10:F5 Certificate issuer: /CN=ee31367df6d1861071c92bae726523326f45ba2a Certificate serial: 019B78A26270E58A62DB2AD19E61D91C509C Authority key identifier: EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/k6jLYVH6C0z0KMYaezVQiNE4EPU.roa Signing time: Thu 01 Jan 2026 08:17:46 +0000 ROA not before: Thu 01 Jan 2026 08:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207846 IP address blocks: 2a0e:1cc0:9::/48 maxlen: 48 2a0e:1cc1:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.mft rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:62:70:e5:8a:62:db:2a:d1:9e:61:d9:1c:50:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ee31367df6d1861071c92bae726523326f45ba2a Validity Not Before: Jan 1 08:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=93a8cb6151fa0b4cf428c61a7b355088d13810f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c0:28:8f:0e:a6:10:9b:75:d5:56:9f:09:77: 84:d9:43:b6:88:9f:8d:ac:68:0c:3e:1f:e2:98:fa: fe:99:7d:b6:7a:8e:b4:c5:b1:89:dd:39:ba:c5:46: 78:d0:df:c7:4d:29:24:a9:10:7e:16:83:f7:19:2c: f6:21:b5:32:1b:c1:e4:43:97:5e:04:35:06:f1:2c: 0b:d7:68:fb:68:d7:71:92:c0:d6:8d:ae:3f:ae:d1: fd:6c:86:2f:c2:5d:03:1c:d0:a9:b6:ff:38:70:30: ba:91:b6:65:16:5f:42:9d:87:88:fb:3a:12:36:89: 3b:52:8f:47:49:1a:53:5e:a9:b4:fb:2b:79:78:ac: b8:c9:38:65:ab:cd:58:f8:95:27:cf:89:cb:6b:c5: bb:43:a2:cf:87:28:7d:24:a3:7a:58:67:6c:99:05: 56:33:4b:b7:cb:9b:d9:01:62:f2:77:27:4d:e8:ad: 27:fa:34:d4:dd:fd:df:21:dc:31:55:82:b6:22:27: a8:c9:80:f2:70:fe:02:f4:70:c8:aa:b3:6e:1e:38: b7:64:04:9b:ac:ff:5d:73:ca:26:c9:c0:4c:93:da: ca:3c:d8:01:e4:96:21:f0:c3:9c:6c:06:c0:e2:7e: a0:93:d8:dd:45:4e:94:9e:d9:f8:ff:f4:54:4b:66: 06:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:A8:CB:61:51:FA:0B:4C:F4:28:C6:1A:7B:35:50:88:D1:38:10:F5 X509v3 Authority Key Identifier: keyid:EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/k6jLYVH6C0z0KMYaezVQiNE4EPU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:1cc0:9::/48 2a0e:1cc1:100::/40 Signature Algorithm: sha256WithRSAEncryption 72:cc:c2:51:ad:f6:f5:e4:8e:dc:04:aa:3a:b6:86:c4:5a:b2: 51:bf:ab:2a:76:72:88:9b:7c:7e:76:30:d8:43:69:ee:c5:b9: d9:4f:18:2f:3c:f5:b1:82:60:af:2a:f4:d6:28:68:5f:d8:a2: 76:ed:96:80:a1:10:61:76:75:d2:97:8c:d8:b7:b4:f7:37:9f: 0c:77:eb:10:2d:e2:d7:5d:76:d6:15:f0:f5:1d:59:cf:a3:73: 24:fc:47:90:cf:ef:d0:89:14:0f:cb:84:e3:29:72:67:4c:58: da:a9:0b:47:02:f9:fa:18:43:f9:7e:72:26:eb:28:ca:d9:c4: b9:4c:3b:99:57:64:a7:5b:ba:94:80:61:0b:cc:c9:be:cb:25: 93:47:c5:ba:90:4b:27:35:5e:b6:e2:a1:30:14:26:7d:22:d2: 73:e2:a0:94:d5:33:1c:89:1b:d2:f6:cf:39:84:07:7d:b0:7d: 58:79:f3:3a:e2:65:7a:2e:b7:bd:62:86:78:fb:00:d9:c3:6f: 2e:89:42:05:12:23:de:de:ca:6e:b4:a7:32:b3:c7:86:ef:e6: ac:a6:12:46:0e:ae:ec:54:43:3b:d0:2f:9c:26:8d:55:4a:53: ad:f7:f4:09:12:86:90:1d:23:8f:12:fb:52:2a:f5:6f:56:1a: 1c:ae:0e:dd -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgISAZt4omJw5Ypi2yrRnmHZHFCcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlMzEzNjdkZjZkMTg2MTA3MWM5MmJhZTcyNjUyMzMyNmY0 NWJhMmEwHhcNMjYwMTAxMDgxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5M2E4Y2I2MTUxZmEwYjRjZjQyOGM2MWE3YjM1NTA4OGQxMzgxMGY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsAojw6mEJt11VafCXeE2UO2iJ+N rGgMPh/imPr+mX22eo60xbGJ3Tm6xUZ40N/HTSkkqRB+FoP3GSz2IbUyG8HkQ5de BDUG8SwL12j7aNdxksDWja4/rtH9bIYvwl0DHNCptv84cDC6kbZlFl9CnYeI+zoS Nok7Uo9HSRpTXqm0+yt5eKy4yThlq81Y+JUnz4nLa8W7Q6LPhyh9JKN6WGdsmQVW M0u3y5vZAWLydydN6K0n+jTU3f3fIdwxVYK2IieoyYDycP4C9HDIqrNuHji3ZASb rP9dc8omycBMk9rKPNgB5JYh8MOcbAbA4n6gk9jdRU6Untn4//RUS2YGzwIDAQAB o4ICFDCCAhAwHQYDVR0OBBYEFJOoy2FR+gtM9CjGGns1UIjROBD1MB8GA1UdIwQY MBaAFO4xNn320YYQcckrrnJlIzJvRboqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN2pFMmZmYlJoaEJ4eVN1dWNtVWpNbTlGdWlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8xYmI0ZGQtZTljNC00ZDNkLTlhM2It MTE1OWRiZmJlZDU0LzEvazZqTFlWSDZDMHowS01ZYWV6VlFpTkU0RVBVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS8xYmI0ZGQtZTljNC00ZDNkLTlhM2ItMTE1OWRiZmJlZDU0 LzEvN2pFMmZmYlJoaEJ4eVN1dWNtVWpNbTlGdWlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwcAKg4cwAAJ AwYAKg4cwQEwDQYJKoZIhvcNAQELBQADggEBAHLMwlGt9vXkjtwEqjq2hsRaslG/ qyp2coibfH52MNhDae7FudlPGC889bGCYK8q9NYoaF/YonbtloChEGF2ddKXjNi3 tPc3nwx36xAt4tdddtYV8PUdWc+jcyT8R5DP79CJFA/LhOMpcmdMWNqpC0cC+foY Q/l+cibrKMrZxLlMO5lXZKdbupSAYQvMyb7LJZNHxbqQSyc1XrbioTAUJn0i0nPi oJTVMxyJG9L2zzmEB32wfVh58zriZXout71ihnj7ANnDby6JQgUSI97eym60pzKz x4bv5qymEkYOruxUQzvQL5wmjVVKU6339AkShpAdI48S+1Iq9W9WGhyuDt0= -----END CERTIFICATE-----Generated at Sun Jan 25 15:07:33 2026 by rpki-client