This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/6zsEhVqdf5FgPm0wyzn6UpQ3WOc.roa File: 6zsEhVqdf5FgPm0wyzn6UpQ3WOc.roa (raw, json) Hash identifier: Oi2nte5axPeBue6CyMpfx9WDIkDnO3JBLbA8kdWEzpQ= Subject key identifier: EB:3B:04:85:5A:9D:7F:91:60:3E:6D:30:CB:39:FA:52:94:37:58:E7 Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704 Certificate serial: 019B76EACA54B852C50CF1681D833CEEAB58 Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/6zsEhVqdf5FgPm0wyzn6UpQ3WOc.roa Signing time: Thu 01 Jan 2026 00:17:37 +0000 ROA not before: Thu 01 Jan 2026 00:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198231 IP address blocks: 2a0f:5ec0::/29 maxlen: 32 2a0f:7fc0::/29 maxlen: 32 2a0f:edc0::/29 maxlen: 32 2a0f:fb40::/29 maxlen: 32 2a11:6600::/29 maxlen: 32 2a11:6c00::/29 maxlen: 32 2a11:d400::/29 maxlen: 32 2a12:3c80::/29 maxlen: 32 2a12:e4c0::/29 maxlen: 32 2a13:3a80::/29 maxlen: 32 2a13:3e80::/29 maxlen: 32 2a13:4680::/29 maxlen: 32 2a13:64c0::/29 maxlen: 32 2a13:6540::/29 maxlen: 32 2a13:6840::/29 maxlen: 32 2a13:68c0::/29 maxlen: 32 2a13:69c0::/29 maxlen: 32 2a13:6a40::/29 maxlen: 32 2a13:6ac0::/29 maxlen: 32 2a13:6bc0::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:ca:54:b8:52:c5:0c:f1:68:1d:83:3c:ee:ab:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704 Validity Not Before: Jan 1 00:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eb3b04855a9d7f91603e6d30cb39fa52943758e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a1:bb:51:dd:90:b9:f2:04:10:4e:ba:b2:98: b8:0e:f1:1e:cd:8b:34:d6:a0:34:5f:12:e1:a4:45: c3:33:e8:87:77:0e:7b:fc:ff:91:f9:73:60:02:ae: 15:e4:78:ea:d7:78:b5:60:a4:d6:35:a6:d5:2c:ed: 2f:79:f8:44:d3:88:d8:97:ce:7a:44:8e:89:0a:9c: 6a:13:3a:f2:0d:cb:e6:68:f8:dd:a0:ec:fc:80:30: f7:af:af:8b:c4:7f:f1:d9:2e:02:dc:71:7e:ba:3d: 1d:fa:fc:de:94:59:29:52:ef:66:d4:c2:03:73:e2: 2e:68:a6:13:cc:b4:67:36:39:da:cf:c8:a4:af:04: 88:9b:c3:be:49:fb:38:a9:da:c1:57:8b:f0:d7:cb: ed:e0:5d:85:f8:f1:09:97:26:f7:b4:ab:93:24:ef: 6c:3e:53:a8:8f:83:ec:88:51:c3:ba:08:e3:fc:cb: 66:bc:a8:2d:a3:b1:85:0e:68:4b:84:2d:28:24:13: 86:79:10:4e:a4:ea:9a:85:85:35:90:de:25:36:8b: c0:8f:bb:d4:90:05:59:d2:25:10:1d:eb:b5:fd:45: 4e:ab:11:a4:b9:3b:59:be:2f:f2:f1:39:52:b9:18: c1:c3:0c:87:a7:16:48:e5:04:34:30:24:86:b8:4a: ec:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:3B:04:85:5A:9D:7F:91:60:3E:6D:30:CB:39:FA:52:94:37:58:E7 X509v3 Authority Key Identifier: keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/6zsEhVqdf5FgPm0wyzn6UpQ3WOc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:5ec0::/29 2a0f:7fc0::/29 2a0f:edc0::/29 2a0f:fb40::/29 2a11:6600::/29 2a11:6c00::/29 2a11:d400::/29 2a12:3c80::/29 2a12:e4c0::/29 2a13:3a80::/29 2a13:3e80::/29 2a13:4680::/29 2a13:64c0::/29 2a13:6540::/29 2a13:6840::/29 2a13:68c0::/29 2a13:69c0::/29 2a13:6a40::/29 2a13:6ac0::/29 2a13:6bc0::/29 Signature Algorithm: sha256WithRSAEncryption 68:1c:7d:dd:01:db:ed:80:e0:92:67:ba:1c:1c:07:15:b6:23: e4:a4:47:b8:e9:2b:25:08:bf:ed:07:54:f7:da:f7:c7:4a:08: bd:ca:6e:d7:08:2f:17:1e:ec:f9:cc:cf:09:32:f6:90:c0:bb: f1:80:58:3e:6b:6e:0d:3a:2e:ef:b9:f2:dd:b8:40:a7:2d:8c: a2:4c:f3:94:82:d6:14:88:e6:1c:b4:cd:6e:dd:5b:79:25:56: 6d:04:0c:0f:47:af:62:0f:3e:99:40:71:b6:0e:f6:35:cc:e7: be:fa:e0:18:dc:22:e5:f6:56:bd:6a:90:6f:05:d1:ef:8e:d4: b9:af:cd:79:52:93:f9:03:8b:80:0c:bf:82:24:ed:b8:bf:86: 0d:d4:05:fd:04:c6:bc:04:ab:c8:36:7e:ec:fd:91:b4:fe:6e: 00:46:10:89:4f:d6:b3:35:f3:84:0b:2a:4b:ac:e7:b7:0e:e5: 9e:61:0b:4e:a5:22:e5:b3:e5:33:7a:68:e5:97:60:61:8b:48: 41:3a:b5:80:3e:cf:91:05:24:af:9f:07:c5:b7:b6:f6:a7:49: 27:33:04:4e:ef:70:53:e0:27:1c:68:d5:03:a9:33:15:2a:b8: 58:20:3e:11:2f:1a:88:95:32:fa:72:a2:19:d2:42:39:9b:2b: 63:8c:d4:ff -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgISAZt26spUuFLFDPFoHYM87qtYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj Zjk3MDQwHhcNMjYwMTAxMDAxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYjNiMDQ4NTVhOWQ3ZjkxNjAzZTZkMzBjYjM5ZmE1Mjk0Mzc1OGU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqaG7Ud2QufIEEE66spi4DvEezYs0 1qA0XxLhpEXDM+iHdw57/P+R+XNgAq4V5Hjq13i1YKTWNabVLO0vefhE04jYl856 RI6JCpxqEzryDcvmaPjdoOz8gDD3r6+LxH/x2S4C3HF+uj0d+vzelFkpUu9m1MID c+IuaKYTzLRnNjnaz8ikrwSIm8O+Sfs4qdrBV4vw18vt4F2F+PEJlyb3tKuTJO9s PlOoj4PsiFHDugjj/MtmvKgto7GFDmhLhC0oJBOGeRBOpOqahYU1kN4lNovAj7vU kAVZ0iUQHeu1/UVOqxGkuTtZvi/y8TlSuRjBwwyHpxZI5QQ0MCSGuErsXwIDAQAB o4IClDCCApAwHQYDVR0OBBYEFOs7BIVanX+RYD5tMMs5+lKUN1jnMB8GA1UdIwQY MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct ZTg2MTIxYzU5NGRmLzEvNnpzRWhWcWRmNUZnUG0wd3l6bjZVcFEzV09jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGpBggrBgEFBQcBBwEB/wSBmTCBljCBkwQCAAIwgYwDBQMq D17AAwUDKg9/wAMFAyoP7cADBQMqD/tAAwUDKhFmAAMFAyoRbAADBQMqEdQAAwUD KhI8gAMFAyoS5MADBQMqEzqAAwUDKhM+gAMFAyoTRoADBQMqE2TAAwUDKhNlQAMF AyoTaEADBQMqE2jAAwUDKhNpwAMFAyoTakADBQMqE2rAAwUDKhNrwDANBgkqhkiG 9w0BAQsFAAOCAQEAaBx93QHb7YDgkme6HBwHFbYj5KRHuOkrJQi/7QdU99r3x0oI vcpu1wgvFx7s+czPCTL2kMC78YBYPmtuDTou77ny3bhApy2MokzzlILWFIjmHLTN bt1beSVWbQQMD0evYg8+mUBxtg72NcznvvrgGNwi5fZWvWqQbwXR747Uua/NeVKT +QOLgAy/giTtuL+GDdQF/QTGvASryDZ+7P2RtP5uAEYQiU/WszXzhAsqS6zntw7l nmELTqUi5bPlM3po5ZdgYYtIQTq1gD7PkQUkr58Hxbe29qdJJzMETu9wU+AnHGjV A6kzFSq4WCA+ES8aiJUy+nKiGdJCOZsrY4zU/w== -----END CERTIFICATE-----Generated at Sun Jan 25 07:16:06 2026 by rpki-client