This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/kiTvl7qRwBbY6cobkK0xpr1YwKU.roa File: kiTvl7qRwBbY6cobkK0xpr1YwKU.roa (raw, json) Hash identifier: ej/OHpg3lUXGkRe1UvCRILNoIypuMG3kknoqujS4cxQ= Subject key identifier: 92:24:EF:97:BA:91:C0:16:D8:E9:CA:1B:90:AD:31:A6:BD:58:C0:A5 Certificate issuer: /CN=0fcd64eaf2594822f3f9a2ebcd19db9b7fa70d9a Certificate serial: 019B7D5BA6FC5D7CB259D51AF17CD606AB7E Authority key identifier: 0F:CD:64:EA:F2:59:48:22:F3:F9:A2:EB:CD:19:DB:9B:7F:A7:0D:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D81k6vJZSCLz-aLrzRnbm3-nDZo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/kiTvl7qRwBbY6cobkK0xpr1YwKU.roa Signing time: Fri 02 Jan 2026 06:18:37 +0000 ROA not before: Fri 02 Jan 2026 06:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202798 IP address blocks: 2001:67c:db8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.mft rsync://rpki.ripe.net/repository/DEFAULT/D81k6vJZSCLz-aLrzRnbm3-nDZo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:a6:fc:5d:7c:b2:59:d5:1a:f1:7c:d6:06:ab:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0fcd64eaf2594822f3f9a2ebcd19db9b7fa70d9a Validity Not Before: Jan 2 06:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9224ef97ba91c016d8e9ca1b90ad31a6bd58c0a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3c:2a:bc:ad:53:63:6c:66:43:50:23:03:9d: fb:80:87:97:c1:2b:13:05:6d:ec:d8:51:a8:d3:2b: 8f:81:bb:10:4b:1c:4e:58:98:3d:ca:3e:09:c7:b3: db:30:e7:55:cd:94:13:af:97:11:42:2e:35:00:66: d8:08:20:70:4b:7f:8d:bb:6a:a8:08:f8:7e:43:11: f5:94:41:7f:a8:7c:f8:b1:1a:31:74:5d:dc:07:bc: 84:8e:42:98:10:e8:b1:49:dc:d1:7e:d7:b1:75:fe: 00:eb:b1:2f:1b:e0:f1:a9:77:5a:b5:f3:b9:2f:b3: 44:68:14:2c:f7:19:c1:89:4f:f6:fc:a0:4f:c4:be: 61:7a:c2:83:5c:b1:58:9d:dd:03:30:6a:78:6c:34: 58:83:d8:60:d9:42:94:fd:fe:df:d5:85:75:38:20: 58:18:74:cc:57:ce:d1:95:8f:5f:50:f4:f3:0b:01: e0:41:98:30:d6:80:43:34:61:99:7e:e9:80:f8:ee: 8f:81:b5:f4:bb:50:12:a2:92:21:1e:04:69:a3:ea: 6d:f6:80:53:ef:42:88:73:5e:85:c8:42:f7:e9:f0: 6f:4d:10:99:9b:56:db:11:85:2d:bb:3c:c2:68:96: f3:e0:38:ea:41:4d:17:01:a2:74:2b:5d:1d:87:67: 2b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:24:EF:97:BA:91:C0:16:D8:E9:CA:1B:90:AD:31:A6:BD:58:C0:A5 X509v3 Authority Key Identifier: keyid:0F:CD:64:EA:F2:59:48:22:F3:F9:A2:EB:CD:19:DB:9B:7F:A7:0D:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D81k6vJZSCLz-aLrzRnbm3-nDZo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/kiTvl7qRwBbY6cobkK0xpr1YwKU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:db8::/48 Signature Algorithm: sha256WithRSAEncryption 05:0a:df:04:2d:82:13:8b:d0:21:fb:03:3c:6c:70:97:74:ba: 9a:d9:79:51:b4:32:6a:1e:28:62:dc:02:2c:c9:b7:ac:6b:e7: 36:6c:f7:83:b5:36:eb:2f:13:60:8e:91:c9:cc:2b:b1:01:aa: b3:66:9b:06:82:02:f6:83:0d:f9:5c:d4:36:88:0f:45:53:50: a8:b5:f4:b0:ad:38:8e:66:0d:1f:b2:15:8d:da:e5:85:ee:f2: f3:d9:cd:4c:89:d3:93:96:9d:b8:bb:c5:f2:2a:46:37:4a:94: d1:dc:c6:37:7c:dd:65:bd:71:2f:11:60:9e:f8:3e:26:03:01: f8:2d:63:8f:e8:8d:fc:9d:af:87:2d:b7:4b:07:85:7b:04:c3: 58:52:9f:dc:cf:24:05:d8:1f:e6:69:3e:42:b9:33:79:28:01: 19:ea:22:64:54:82:6d:a8:45:1c:87:ea:7e:85:70:0a:0f:a1: b1:64:ed:81:d4:3d:7b:67:51:45:67:ee:b8:b9:43:22:b4:48: fd:62:e4:99:ad:ab:38:38:21:1b:7d:88:72:98:92:b9:d0:c8: 72:9c:83:36:8b:08:b5:b3:e6:6f:ad:50:94:aa:ba:42:f5:eb: 26:b1:d5:03:f7:d8:51:d1:bf:49:c5:56:3e:0f:92:5b:f3:ec: d3:29:96:2c -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9W6b8XXyyWdUa8XzWBqt+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmY2Q2NGVhZjI1OTQ4MjJmM2Y5YTJlYmNkMTlkYjliN2Zh NzBkOWEwHhcNMjYwMTAyMDYxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MjI0ZWY5N2JhOTFjMDE2ZDhlOWNhMWI5MGFkMzFhNmJkNThjMGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzwqvK1TY2xmQ1AjA537gIeXwSsT BW3s2FGo0yuPgbsQSxxOWJg9yj4Jx7PbMOdVzZQTr5cRQi41AGbYCCBwS3+Nu2qo CPh+QxH1lEF/qHz4sRoxdF3cB7yEjkKYEOixSdzRftexdf4A67EvG+DxqXdatfO5 L7NEaBQs9xnBiU/2/KBPxL5hesKDXLFYnd0DMGp4bDRYg9hg2UKU/f7f1YV1OCBY GHTMV87RlY9fUPTzCwHgQZgw1oBDNGGZfumA+O6PgbX0u1ASopIhHgRpo+pt9oBT 70KIc16FyEL36fBvTRCZm1bbEYUtuzzCaJbz4DjqQU0XAaJ0K10dh2crQwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJIk75e6kcAW2OnKG5CtMaa9WMClMB8GA1UdIwQY MBaAFA/NZOryWUgi8/mi680Z25t/pw2aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDgxazZ2SlpTQ0x6LWFMcnpSbmJtMy1uRFpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8wZTY1NDItM2FiZS00NWExLWE4Mzgt MWEzN2YxMDc2NTU3LzEva2lUdmw3cVJ3QmJZNmNvYmtLMHhwcjFZd0tVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi8wZTY1NDItM2FiZS00NWExLWE4MzgtMWEzN2YxMDc2NTU3 LzEvRDgxazZ2SlpTQ0x6LWFMcnpSbmJtMy1uRFpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA24 MA0GCSqGSIb3DQEBCwUAA4IBAQAFCt8ELYITi9Ah+wM8bHCXdLqa2XlRtDJqHihi 3AIsybesa+c2bPeDtTbrLxNgjpHJzCuxAaqzZpsGggL2gw35XNQ2iA9FU1CotfSw rTiOZg0fshWN2uWF7vLz2c1MidOTlp24u8XyKkY3SpTR3MY3fN1lvXEvEWCe+D4m AwH4LWOP6I38na+HLbdLB4V7BMNYUp/czyQF2B/maT5CuTN5KAEZ6iJkVIJtqEUc h+p+hXAKD6GxZO2B1D17Z1FFZ+64uUMitEj9YuSZras4OCEbfYhymJK50MhynIM2 iwi1s+ZvrVCUqrpC9esmsdUD99hR0b9JxVY+D5Jb8+zTKZYs -----END CERTIFICATE-----Generated at Mon Jan 26 07:09:54 2026 by rpki-client