This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/65cc20-0dfb-4180-9ac1-c8302e82ea22/1/56Kmc-Cz64ulFDN7LZkLpLy2Uyk.roa File: 56Kmc-Cz64ulFDN7LZkLpLy2Uyk.roa (raw, json) Hash identifier: M1LxSBYIiPUs1C9HbHfgJfFfNoWmm4ypO8QoHN7KG7k= Subject key identifier: E7:A2:A6:73:E0:B3:EB:8B:A5:14:33:7B:2D:99:0B:A4:BC:B6:53:29 Certificate issuer: /CN=5fc90518df70b13d706bfe237aa5a76926a576d1 Certificate serial: 019B7EA6DB9BD26925D0A7B601DED89CC56E Authority key identifier: 5F:C9:05:18:DF:70:B1:3D:70:6B:FE:23:7A:A5:A7:69:26:A5:76:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X8kFGN9wsT1wa_4jeqWnaSaldtE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/65cc20-0dfb-4180-9ac1-c8302e82ea22/1/56Kmc-Cz64ulFDN7LZkLpLy2Uyk.roa Signing time: Fri 02 Jan 2026 12:20:22 +0000 ROA not before: Fri 02 Jan 2026 12:20:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215707 IP address blocks: 2a12:4046::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/65cc20-0dfb-4180-9ac1-c8302e82ea22/1/X8kFGN9wsT1wa_4jeqWnaSaldtE.crl rsync://rpki.ripe.net/repository/DEFAULT/be/65cc20-0dfb-4180-9ac1-c8302e82ea22/1/X8kFGN9wsT1wa_4jeqWnaSaldtE.mft rsync://rpki.ripe.net/repository/DEFAULT/X8kFGN9wsT1wa_4jeqWnaSaldtE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:db:9b:d2:69:25:d0:a7:b6:01:de:d8:9c:c5:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5fc90518df70b13d706bfe237aa5a76926a576d1 Validity Not Before: Jan 2 12:20:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e7a2a673e0b3eb8ba514337b2d990ba4bcb65329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9c:58:09:c2:33:e2:04:b7:f1:1a:61:32:2f: d8:b8:55:d0:7c:31:bf:d5:f3:4c:51:23:4b:09:7c: b0:98:cd:47:3d:31:3d:3e:d0:1f:c2:f6:6c:be:f3: e1:47:6e:24:5d:be:92:e5:27:09:7a:3d:b7:03:b6: 8f:a8:20:9e:62:d4:d0:3a:5b:69:84:96:80:b7:0d: bd:3c:54:f7:c4:0e:84:d8:9a:5d:31:0b:f5:c3:cf: c8:8a:8a:fd:64:7d:e1:21:3e:20:16:c9:6c:d4:70: 0e:03:ee:37:5b:f5:49:c2:00:30:d0:8b:75:75:a1: 2a:0a:e0:69:78:aa:bd:66:dd:6a:4e:2c:f0:45:3c: c6:33:6d:5f:9a:12:02:4f:47:b5:0f:61:3a:95:5f: 60:9d:79:a0:b8:b3:8a:4e:05:1f:e1:e8:ee:ab:55: 35:81:39:4a:68:11:1e:48:be:44:c3:da:1a:8d:dd: 9f:a0:68:ff:71:63:ff:06:25:b7:d7:1d:33:f0:74: 06:f4:b9:3d:72:38:9f:ce:2e:88:4a:48:cd:22:5a: 4c:d2:cc:43:f1:a5:6d:e7:9b:f2:cf:9f:b8:0d:7c: 20:92:70:40:64:04:76:88:c5:db:41:31:32:dc:0c: a8:90:ba:81:91:c5:2a:86:ef:ca:e1:1d:af:20:e7: d8:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:A2:A6:73:E0:B3:EB:8B:A5:14:33:7B:2D:99:0B:A4:BC:B6:53:29 X509v3 Authority Key Identifier: keyid:5F:C9:05:18:DF:70:B1:3D:70:6B:FE:23:7A:A5:A7:69:26:A5:76:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X8kFGN9wsT1wa_4jeqWnaSaldtE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/65cc20-0dfb-4180-9ac1-c8302e82ea22/1/56Kmc-Cz64ulFDN7LZkLpLy2Uyk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/65cc20-0dfb-4180-9ac1-c8302e82ea22/1/X8kFGN9wsT1wa_4jeqWnaSaldtE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:4046::/32 Signature Algorithm: sha256WithRSAEncryption 5b:c5:2e:bf:df:ef:7d:78:7e:1f:cd:2f:cc:7f:6a:b3:a8:ac: bd:78:31:82:c5:aa:79:43:1b:7f:3a:7a:62:4d:1e:52:a2:e1: 01:d2:d2:b3:6c:57:92:b0:e2:f7:9f:33:9e:02:37:ef:d2:21: 20:2f:8d:09:18:60:5a:31:99:24:7d:57:3a:f1:26:a3:9c:43: 69:00:ad:3b:dc:cb:b8:ea:0d:e9:fb:df:ea:c8:0c:ca:73:33: 7e:02:e5:ac:cc:a7:da:ba:34:93:bb:13:f1:c2:63:6c:06:4a: 37:44:a4:47:38:75:3e:ae:8a:20:a6:48:58:14:6f:5b:9a:9c: cd:c1:c3:a4:98:7e:be:3b:5e:6a:ff:90:14:e0:fa:c8:9c:a9: 53:27:4d:52:7b:17:a9:ef:f6:eb:bf:57:55:3d:cf:40:2c:0d: 1a:0f:0a:6a:25:82:2d:5b:be:b7:7d:e2:61:8c:2a:af:eb:e3: da:81:4f:5b:7f:0a:52:a1:9c:89:6d:a5:ec:d5:d6:2a:9d:f6: 1d:74:ad:81:d4:5f:e1:41:e2:af:75:25:df:1f:77:d5:75:df: 99:4b:0f:de:c9:aa:ed:da:71:4f:30:cd:1d:07:93:17:13:f9: a4:4c:f5:b4:94:1c:0f:94:84:ee:c7:17:5e:18:b5:82:eb:8e: b5:65:69:b2 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt+ptub0mkl0Ke2Ad7YnMVuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmYzkwNTE4ZGY3MGIxM2Q3MDZiZmUyMzdhYTVhNzY5MjZh NTc2ZDEwHhcNMjYwMTAyMTIyMDIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlN2EyYTY3M2UwYjNlYjhiYTUxNDMzN2IyZDk5MGJhNGJjYjY1MzI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypxYCcIz4gS38RphMi/YuFXQfDG/ 1fNMUSNLCXywmM1HPTE9PtAfwvZsvvPhR24kXb6S5ScJej23A7aPqCCeYtTQOltp hJaAtw29PFT3xA6E2JpdMQv1w8/Iior9ZH3hIT4gFsls1HAOA+43W/VJwgAw0It1 daEqCuBpeKq9Zt1qTizwRTzGM21fmhICT0e1D2E6lV9gnXmguLOKTgUf4ejuq1U1 gTlKaBEeSL5Ew9oajd2foGj/cWP/BiW31x0z8HQG9Lk9cjifzi6ISkjNIlpM0sxD 8aVt55vyz5+4DXwgknBAZAR2iMXbQTEy3AyokLqBkcUqhu/K4R2vIOfYmQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFOeipnPgs+uLpRQzey2ZC6S8tlMpMB8GA1UdIwQY MBaAFF/JBRjfcLE9cGv+I3qlp2kmpXbRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDhrRkdOOXdzVDF3YV80amVxV25hU2FsZHRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS82NWNjMjAtMGRmYi00MTgwLTlhYzEt YzgzMDJlODJlYTIyLzEvNTZLbWMtQ3o2NHVsRkRON0xaa0xwTHkyVXlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS82NWNjMjAtMGRmYi00MTgwLTlhYzEtYzgzMDJlODJlYTIy LzEvWDhrRkdOOXdzVDF3YV80amVxV25hU2FsZHRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhJARjAN BgkqhkiG9w0BAQsFAAOCAQEAW8Uuv9/vfXh+H80vzH9qs6isvXgxgsWqeUMbfzp6 Yk0eUqLhAdLSs2xXkrDi958zngI379IhIC+NCRhgWjGZJH1XOvEmo5xDaQCtO9zL uOoN6fvf6sgMynMzfgLlrMyn2ro0k7sT8cJjbAZKN0SkRzh1Pq6KIKZIWBRvW5qc zcHDpJh+vjteav+QFOD6yJypUydNUnsXqe/2679XVT3PQCwNGg8KaiWCLVu+t33i YYwqr+vj2oFPW38KUqGciW2l7NXWKp32HXStgdRf4UHir3Ul3x931XXfmUsP3smq 7dpxTzDNHQeTFxP5pEz1tJQcD5SE7scXXhi1guuOtWVpsg== -----END CERTIFICATE-----Generated at Sun Jan 25 17:39:25 2026 by rpki-client