This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/1c1a49-4285-48be-a10e-ed1600f872bb/1/lGyQDQVBEMCDFsipbxjBTxxJg7Y.roa File: lGyQDQVBEMCDFsipbxjBTxxJg7Y.roa (raw, json) Hash identifier: /B4wk8kwo/lxwB8Izsd2oZk4yH80dIbNot8H0bXk6bo= Subject key identifier: 94:6C:90:0D:05:41:10:C0:83:16:C8:A9:6F:18:C1:4F:1C:49:83:B6 Certificate issuer: /CN=849e3adff03aab62d5db223ac3b35e2a9baa4ea3 Certificate serial: 019B7F84F83B85AC9335A29189DF212664C2 Authority key identifier: 84:9E:3A:DF:F0:3A:AB:62:D5:DB:22:3A:C3:B3:5E:2A:9B:AA:4E:A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJ463_A6q2LV2yI6w7NeKpuqTqM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/1c1a49-4285-48be-a10e-ed1600f872bb/1/lGyQDQVBEMCDFsipbxjBTxxJg7Y.roa Signing time: Fri 02 Jan 2026 16:22:59 +0000 ROA not before: Fri 02 Jan 2026 16:22:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20712 IP address blocks: 2001:67c:2058::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/1c1a49-4285-48be-a10e-ed1600f872bb/1/hJ463_A6q2LV2yI6w7NeKpuqTqM.crl rsync://rpki.ripe.net/repository/DEFAULT/93/1c1a49-4285-48be-a10e-ed1600f872bb/1/hJ463_A6q2LV2yI6w7NeKpuqTqM.mft rsync://rpki.ripe.net/repository/DEFAULT/hJ463_A6q2LV2yI6w7NeKpuqTqM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:f8:3b:85:ac:93:35:a2:91:89:df:21:26:64:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=849e3adff03aab62d5db223ac3b35e2a9baa4ea3 Validity Not Before: Jan 2 16:22:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=946c900d054110c08316c8a96f18c14f1c4983b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:dd:08:0a:17:0b:b8:a7:0b:d5:a5:32:39:8b: 8f:27:c9:be:e3:a4:96:a3:5d:56:6a:04:3b:29:84: 2a:f4:24:0b:ab:1c:e8:2a:61:49:fd:fa:d8:ed:a9: 13:ed:5f:84:a5:5b:12:2c:3f:5d:4a:f5:35:ca:e4: 33:34:eb:88:17:9a:69:43:ed:3b:a1:87:a8:ca:14: b0:ea:69:cf:34:4a:a8:8f:21:b2:73:54:9d:74:58: e3:ab:62:b6:28:45:4f:e8:ac:a4:cb:55:3b:90:6a: 61:04:ea:59:d4:7c:cd:2d:16:9a:a8:aa:73:27:7d: c6:43:08:7c:55:d5:60:9f:f7:00:a8:da:b4:0c:0a: ea:99:20:c3:52:bf:36:8e:f7:06:5a:c5:19:71:86: 65:5f:18:9b:98:08:bf:ef:30:8e:5b:11:c1:54:51: 40:58:ce:ef:05:da:94:c6:06:f1:93:3d:f9:53:0b: 46:bc:6a:34:e2:8a:b1:7c:5c:4d:2e:c5:59:b6:b7: 7a:26:c2:f5:48:27:5f:db:60:ca:30:fb:f6:af:78: 17:72:d7:95:ee:54:01:4b:29:cf:74:4a:7f:cf:b1: ba:d3:13:fb:d0:60:82:54:22:50:94:13:3c:a2:56: 9e:8c:34:a4:d8:38:07:42:62:ba:11:c3:d5:bd:69: 17:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:6C:90:0D:05:41:10:C0:83:16:C8:A9:6F:18:C1:4F:1C:49:83:B6 X509v3 Authority Key Identifier: keyid:84:9E:3A:DF:F0:3A:AB:62:D5:DB:22:3A:C3:B3:5E:2A:9B:AA:4E:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJ463_A6q2LV2yI6w7NeKpuqTqM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1c1a49-4285-48be-a10e-ed1600f872bb/1/lGyQDQVBEMCDFsipbxjBTxxJg7Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1c1a49-4285-48be-a10e-ed1600f872bb/1/hJ463_A6q2LV2yI6w7NeKpuqTqM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2058::/48 Signature Algorithm: sha256WithRSAEncryption 64:cd:24:f5:36:db:ae:55:62:62:a5:83:b4:39:83:2f:b1:26: 78:2a:79:b0:9d:ed:0d:95:6c:74:ad:79:50:b6:39:37:f0:8e: 8b:7c:b9:bd:45:af:0c:be:57:8f:42:f7:e8:64:ee:6b:27:fe: 9c:46:5c:b5:2c:01:c9:84:3c:c6:6c:a2:68:41:cc:58:ad:ff: d6:01:d0:60:bd:66:98:bf:0d:ac:b8:a7:f1:c2:da:12:03:cd: ae:a9:23:fa:90:25:cc:63:42:8b:0a:19:2b:aa:0c:03:f2:aa: 5f:93:1b:d0:e0:6d:5c:42:d2:8e:e2:90:d2:f3:41:5a:86:fb: 3d:42:ed:e4:cd:f1:53:6e:70:78:8d:4d:cc:3d:19:31:c8:57: e4:53:9b:70:3a:72:0e:79:97:33:ce:a0:ad:a1:6d:c5:51:90: 72:25:48:46:fa:a7:69:7a:b7:46:79:9a:c8:68:85:34:38:9b: e2:0f:8c:1f:78:a1:14:f1:40:af:bd:2c:e3:3d:e4:b9:55:e1: 0b:03:af:f6:75:e5:6a:29:f3:b8:fc:54:a2:b9:13:9e:37:dc: 55:84:4f:d9:0c:e2:8a:17:a1:f1:49:e3:1e:d2:6c:f0:9d:fa: 04:d9:64:ed:e2:23:d7:09:d5:1b:a5:2e:54:44:32:97:3d:b3: ec:22:41:98 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/hPg7hayTNaKRid8hJmTCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0OWUzYWRmZjAzYWFiNjJkNWRiMjIzYWMzYjM1ZTJhOWJh YTRlYTMwHhcNMjYwMTAyMTYyMjU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NDZjOTAwZDA1NDExMGMwODMxNmM4YTk2ZjE4YzE0ZjFjNDk4M2I2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxt0IChcLuKcL1aUyOYuPJ8m+46SW o11WagQ7KYQq9CQLqxzoKmFJ/frY7akT7V+EpVsSLD9dSvU1yuQzNOuIF5ppQ+07 oYeoyhSw6mnPNEqojyGyc1SddFjjq2K2KEVP6Kyky1U7kGphBOpZ1HzNLRaaqKpz J33GQwh8VdVgn/cAqNq0DArqmSDDUr82jvcGWsUZcYZlXxibmAi/7zCOWxHBVFFA WM7vBdqUxgbxkz35UwtGvGo04oqxfFxNLsVZtrd6JsL1SCdf22DKMPv2r3gXcteV 7lQBSynPdEp/z7G60xP70GCCVCJQlBM8olaejDSk2DgHQmK6EcPVvWkXUwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJRskA0FQRDAgxbIqW8YwU8cSYO2MB8GA1UdIwQY MBaAFISeOt/wOqti1dsiOsOzXiqbqk6jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEo0NjNfQTZxMkxWMnlJNnc3TmVLcHVxVHFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My8xYzFhNDktNDI4NS00OGJlLWExMGUt ZWQxNjAwZjg3MmJiLzEvbEd5UURRVkJFTUNERnNpcGJ4akJUeHhKZzdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My8xYzFhNDktNDI4NS00OGJlLWExMGUtZWQxNjAwZjg3MmJi LzEvaEo0NjNfQTZxMkxWMnlJNnc3TmVLcHVxVHFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCBY MA0GCSqGSIb3DQEBCwUAA4IBAQBkzST1NtuuVWJipYO0OYMvsSZ4Knmwne0NlWx0 rXlQtjk38I6LfLm9Ra8MvlePQvfoZO5rJ/6cRly1LAHJhDzGbKJoQcxYrf/WAdBg vWaYvw2suKfxwtoSA82uqSP6kCXMY0KLChkrqgwD8qpfkxvQ4G1cQtKO4pDS80Fa hvs9Qu3kzfFTbnB4jU3MPRkxyFfkU5twOnIOeZczzqCtoW3FUZByJUhG+qdperdG eZrIaIU0OJviD4wfeKEU8UCvvSzjPeS5VeELA6/2deVqKfO4/FSiuROeN9xVhE/Z DOKKF6HxSeMe0mzwnfoE2WTt4iPXCdUbpS5URDKXPbPsIkGY -----END CERTIFICATE-----Generated at Sun Jan 25 17:42:26 2026 by rpki-client