This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/sSVvxcSYRTp0FGIeli2mtsdVTX0.roa File: sSVvxcSYRTp0FGIeli2mtsdVTX0.roa (raw, json) Hash identifier: rlUYz6t+YHt8+3g0Ynm420BLuLNg1028VCSBJ1t+Ro4= Subject key identifier: B1:25:6F:C5:C4:98:45:3A:74:14:62:1E:96:2D:A6:B6:C7:55:4D:7D Certificate issuer: /CN=7e3150f8c67063121027328954968d08d4cf329a Certificate serial: 019B7C12809480DF27522A3ED16FA035A2FE Authority key identifier: 7E:31:50:F8:C6:70:63:12:10:27:32:89:54:96:8D:08:D4:CF:32:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/sSVvxcSYRTp0FGIeli2mtsdVTX0.roa Signing time: Fri 02 Jan 2026 00:19:05 +0000 ROA not before: Fri 02 Jan 2026 00:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203062 IP address blocks: 2a06:2c80::/36 maxlen: 48 2a06:2c80:b::/48 maxlen: 48 2a06:2c80:1000::/36 maxlen: 48 2a06:2c80:4000::/36 maxlen: 48 2a06:2c81:8000::/33 maxlen: 33 2a06:2c82:8000::/33 maxlen: 33 2a06:2c87:e000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.mft rsync://rpki.ripe.net/repository/DEFAULT/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:80:94:80:df:27:52:2a:3e:d1:6f:a0:35:a2:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e3150f8c67063121027328954968d08d4cf329a Validity Not Before: Jan 2 00:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b1256fc5c498453a7414621e962da6b6c7554d7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:d5:ef:24:b3:3c:75:d1:d3:4c:3a:09:86:72: b5:c9:ea:26:1a:5a:31:04:16:28:64:65:f0:24:84: 0e:79:fe:8a:9c:79:9b:97:f8:c6:0e:f3:a5:1a:4e: 8a:c4:44:27:39:75:db:5f:67:ec:87:2a:6a:bd:03: 76:dd:56:bb:08:88:37:b6:43:a5:f3:d7:e2:c1:0a: e7:f2:55:a7:d4:7f:41:d6:ac:5b:66:69:cd:2b:ee: da:82:79:cb:2a:3a:78:14:15:6b:e5:7d:98:a4:0c: 24:70:b9:ec:63:3b:34:1d:96:93:b7:f1:84:a5:bc: 58:ba:88:3a:2d:ff:70:cb:4f:3e:c3:c3:3b:79:65: 49:1e:b4:65:16:b4:4b:97:39:45:60:6e:fb:07:40: c8:03:6c:20:a3:89:ae:3f:bf:b8:b9:60:12:22:83: 8b:98:7b:e0:d1:4d:34:ec:fd:07:ad:c3:03:4e:8a: a8:aa:6f:99:03:7b:47:7f:11:9c:36:35:30:7f:7c: 43:42:94:d1:96:b1:25:d8:52:3e:4b:37:9f:bb:8c: e2:fe:a8:ff:4d:83:d0:f8:c2:c0:b8:c2:bd:45:0c: 76:94:6f:32:ff:79:c1:37:f9:72:4a:e1:07:95:47: 0f:62:dc:ee:16:d2:18:ce:23:97:14:e4:65:ec:87: f7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:25:6F:C5:C4:98:45:3A:74:14:62:1E:96:2D:A6:B6:C7:55:4D:7D X509v3 Authority Key Identifier: keyid:7E:31:50:F8:C6:70:63:12:10:27:32:89:54:96:8D:08:D4:CF:32:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/sSVvxcSYRTp0FGIeli2mtsdVTX0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:2c80::/35 2a06:2c80:4000::/36 2a06:2c81:8000::/33 2a06:2c82:8000::/33 2a06:2c87:e000::/36 Signature Algorithm: sha256WithRSAEncryption 92:62:5b:18:f6:f5:ba:56:67:5e:56:04:13:e4:d5:8d:14:cc: d5:e2:44:ab:d0:ca:bf:8e:d8:d9:87:55:a9:7d:f5:8b:73:f2: b5:89:2d:bc:60:39:1f:92:7a:d7:34:23:e0:08:e1:8b:73:8e: d6:3c:29:09:21:86:a8:5d:c7:54:c8:00:1b:a7:07:d7:87:c9: 22:ab:0b:9b:15:65:01:2c:f6:e5:7d:00:51:98:0b:c5:4f:2b: d6:9b:11:a1:a7:1d:58:17:f7:de:24:99:0c:9a:da:37:fa:f4: 6d:ef:89:b1:c5:b9:9e:b4:f0:85:4a:ab:98:19:7d:64:d8:9c: b3:b8:a4:01:de:ab:46:26:3b:be:dd:e1:ed:6d:6a:2b:27:4e: f2:2b:5e:63:e1:3a:67:ef:77:41:7e:26:a8:18:47:3d:68:0c: 8e:4a:c1:2a:cd:34:08:63:4e:e0:7a:ab:f5:5e:ef:09:bb:d6: 46:ab:16:08:5f:2b:51:f0:b7:09:49:3d:ab:27:2f:01:37:16: 5a:2c:fa:38:d7:21:c8:ee:38:42:86:3d:98:7a:0e:0f:54:ac: f4:32:66:f3:81:b7:23:9f:a9:68:33:c4:fa:fc:3d:a8:23:06: cc:ab:0e:4c:56:11:d8:12:66:13:87:a4:5f:ea:f8:e2:8a:f0: 82:73:f6:37 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt8EoCUgN8nUio+0W+gNaL+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlMzE1MGY4YzY3MDYzMTIxMDI3MzI4OTU0OTY4ZDA4ZDRj ZjMyOWEwHhcNMjYwMTAyMDAxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTI1NmZjNWM0OTg0NTNhNzQxNDYyMWU5NjJkYTZiNmM3NTU0ZDdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj9XvJLM8ddHTTDoJhnK1yeomGlox BBYoZGXwJIQOef6KnHmbl/jGDvOlGk6KxEQnOXXbX2fshypqvQN23Va7CIg3tkOl 89fiwQrn8lWn1H9B1qxbZmnNK+7agnnLKjp4FBVr5X2YpAwkcLnsYzs0HZaTt/GE pbxYuog6Lf9wy08+w8M7eWVJHrRlFrRLlzlFYG77B0DIA2wgo4muP7+4uWASIoOL mHvg0U007P0HrcMDToqoqm+ZA3tHfxGcNjUwf3xDQpTRlrEl2FI+Szefu4zi/qj/ TYPQ+MLAuMK9RQx2lG8y/3nBN/lySuEHlUcPYtzuFtIYziOXFORl7If31QIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFLElb8XEmEU6dBRiHpYtprbHVU19MB8GA1UdIwQY MBaAFH4xUPjGcGMSECcyiVSWjQjUzzKaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmpGUS1NWndZeElRSnpLSlZKYU5DTlRQTXBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi84YmNmZDctZjZkMy00MzJhLWI1ZjAt OTM1ZTQxOGJkYmU3LzEvc1NWdnhjU1lSVHAwRkdJZWxpMm10c2RWVFgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi84YmNmZDctZjZkMy00MzJhLWI1ZjAtOTM1ZTQxOGJkYmU3 LzEvZmpGUS1NWndZeElRSnpLSlZKYU5DTlRQTXBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAAjAoAwYFKgYsgAAD BgQqBiyAQAMGByoGLIGAAwYHKgYsgoADBgQqBiyH4DANBgkqhkiG9w0BAQsFAAOC AQEAkmJbGPb1ulZnXlYEE+TVjRTM1eJEq9DKv47Y2YdVqX31i3PytYktvGA5H5J6 1zQj4Ajhi3OO1jwpCSGGqF3HVMgAG6cH14fJIqsLmxVlASz25X0AUZgLxU8r1psR oacdWBf33iSZDJraN/r0be+JscW5nrTwhUqrmBl9ZNics7ikAd6rRiY7vt3h7W1q KydO8iteY+E6Z+93QX4mqBhHPWgMjkrBKs00CGNO4Hqr9V7vCbvWRqsWCF8rUfC3 CUk9qycvATcWWiz6ONchyO44QoY9mHoOD1Ss9DJm84G3I5+paDPE+vw9qCMGzKsO TFYR2BJmE4ekX+r44orwgnP2Nw== -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:19 2026 by rpki-client