This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/4mcjlfKQeAXTF7xGEKQ2QAqMI50.roa File: 4mcjlfKQeAXTF7xGEKQ2QAqMI50.roa (raw, json) Hash identifier: JOKnaNGFem+HWwH7PdEKl79mLEfLJaQb9H34d4OS4AM= Subject key identifier: E2:67:23:95:F2:90:78:05:D3:17:BC:46:10:A4:36:40:0A:8C:23:9D Certificate issuer: /CN=9f1168b85717a14666001b5b2f6c90801997de06 Certificate serial: 019B7E38C9B7FC6831BC70C3C91A551BF8B0 Authority key identifier: 9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/4mcjlfKQeAXTF7xGEKQ2QAqMI50.roa Signing time: Fri 02 Jan 2026 10:20:09 +0000 ROA not before: Fri 02 Jan 2026 10:20:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204619 IP address blocks: 2001:67c:360::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.mft rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:c9:b7:fc:68:31:bc:70:c3:c9:1a:55:1b:f8:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f1168b85717a14666001b5b2f6c90801997de06 Validity Not Before: Jan 2 10:20:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e2672395f2907805d317bc4610a436400a8c239d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:23:9e:8e:40:16:74:83:33:0f:b4:04:f2:e8: 59:2e:08:ac:a6:6b:90:a9:11:97:46:af:e3:8d:ff: 36:33:a7:5e:cf:a3:c2:83:8b:e9:15:09:5b:fb:6c: d5:1e:19:f9:61:75:c6:2e:28:88:47:9d:e2:95:53: 7e:11:48:c7:02:00:db:11:3d:cc:0c:3d:8f:8f:15: 82:b3:19:50:60:b1:3e:0f:1a:f8:25:68:03:c9:e5: fa:e0:59:c8:ba:51:ab:90:29:5c:58:33:a2:5a:eb: 19:00:77:20:49:46:d0:50:b8:e5:4b:d1:87:77:e0: 51:49:bb:92:d0:1d:e7:5a:18:c6:2a:9c:0c:a7:03: 9a:68:ff:13:87:ca:27:73:e9:d8:6c:51:5e:a2:13: 0a:6e:6b:18:b5:2e:ff:e4:84:3e:98:db:f5:b4:93: 0e:ae:ce:ed:4b:a6:9a:00:4e:16:90:e5:75:f0:89: 17:76:48:40:05:96:e7:56:26:c8:84:03:b5:a3:f7: 72:b9:6f:82:8c:50:f7:7a:11:07:3a:5e:1d:08:b0: b6:98:31:93:75:ff:9c:d0:63:31:fb:95:0b:a1:5e: 66:df:b0:5a:3f:51:4c:02:5b:fe:6d:01:4c:c1:52: f4:9c:ae:38:ba:94:ac:2a:f8:e0:65:ff:05:d6:2f: 7e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:67:23:95:F2:90:78:05:D3:17:BC:46:10:A4:36:40:0A:8C:23:9D X509v3 Authority Key Identifier: keyid:9F:11:68:B8:57:17:A1:46:66:00:1B:5B:2F:6C:90:80:19:97:DE:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nxFouFcXoUZmABtbL2yQgBmX3gY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/4mcjlfKQeAXTF7xGEKQ2QAqMI50.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8f658c-3fac-498d-b95e-f4219beddb37/1/nxFouFcXoUZmABtbL2yQgBmX3gY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:360::/48 Signature Algorithm: sha256WithRSAEncryption 53:dc:ed:59:f9:52:9d:61:03:e0:68:dc:8e:08:bb:5d:7b:66: 08:f3:eb:df:5c:71:85:cd:f7:ff:f1:4a:1d:83:10:57:41:0a: 65:b0:c0:fa:14:3a:92:7c:20:04:b4:a4:1d:78:29:64:4c:1c: 66:e8:15:e9:e9:40:13:54:34:0e:08:2a:f8:a0:d2:0a:10:b1: 09:23:4b:a0:e5:55:00:cf:6d:5e:c1:30:ec:63:e0:a9:e5:ca: c1:65:d7:98:b6:0c:3c:08:3b:06:7d:74:70:5a:ea:9c:94:a6: 0b:81:f5:a1:ff:63:7c:e5:f6:f3:4f:62:8a:72:53:34:de:8b: 93:5d:44:cd:5d:f3:5c:e5:09:a1:42:26:1b:44:55:00:3a:67: 28:3d:b3:d8:7f:76:19:54:10:4c:70:51:6e:da:2b:4f:01:07: 6b:9f:2e:c6:84:11:fe:6f:78:69:23:f7:41:2b:0a:9d:cf:60: 14:cd:58:59:19:f4:41:29:c7:2c:30:2a:b7:46:22:ce:58:2f: 89:b2:2e:7e:c1:58:4f:71:be:a5:21:67:62:ae:56:45:f0:17: 86:7a:64:9a:8e:57:64:8e:51:c8:78:f4:ca:1c:b9:23:86:84: ab:e3:cd:06:15:f1:9f:8b:38:83:12:53:09:45:86:8a:26:ff: db:9e:fe:58 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OMm3/GgxvHDDyRpVG/iwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMTE2OGI4NTcxN2ExNDY2NjAwMWI1YjJmNmM5MDgwMTk5 N2RlMDYwHhcNMjYwMTAyMTAyMDA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMjY3MjM5NWYyOTA3ODA1ZDMxN2JjNDYxMGE0MzY0MDBhOGMyMzlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApiOejkAWdIMzD7QE8uhZLgispmuQ qRGXRq/jjf82M6dez6PCg4vpFQlb+2zVHhn5YXXGLiiIR53ilVN+EUjHAgDbET3M DD2PjxWCsxlQYLE+Dxr4JWgDyeX64FnIulGrkClcWDOiWusZAHcgSUbQULjlS9GH d+BRSbuS0B3nWhjGKpwMpwOaaP8Th8onc+nYbFFeohMKbmsYtS7/5IQ+mNv1tJMO rs7tS6aaAE4WkOV18IkXdkhABZbnVibIhAO1o/dyuW+CjFD3ehEHOl4dCLC2mDGT df+c0GMx+5ULoV5m37BaP1FMAlv+bQFMwVL0nK44upSsKvjgZf8F1i9+PQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFOJnI5XykHgF0xe8RhCkNkAKjCOdMB8GA1UdIwQY MBaAFJ8RaLhXF6FGZgAbWy9skIAZl94GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnhGb3VGY1hvVVptQUJ0YkwyeVFnQm1YM2dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC84ZjY1OGMtM2ZhYy00OThkLWI5NWUt ZjQyMTliZWRkYjM3LzEvNG1jamxmS1FlQVhURjd4R0VLUTJRQXFNSTUwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC84ZjY1OGMtM2ZhYy00OThkLWI5NWUtZjQyMTliZWRkYjM3 LzEvbnhGb3VGY1hvVVptQUJ0YkwyeVFnQm1YM2dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfANg MA0GCSqGSIb3DQEBCwUAA4IBAQBT3O1Z+VKdYQPgaNyOCLtde2YI8+vfXHGFzff/ 8UodgxBXQQplsMD6FDqSfCAEtKQdeClkTBxm6BXp6UATVDQOCCr4oNIKELEJI0ug 5VUAz21ewTDsY+Cp5crBZdeYtgw8CDsGfXRwWuqclKYLgfWh/2N85fbzT2KKclM0 3ouTXUTNXfNc5QmhQiYbRFUAOmcoPbPYf3YZVBBMcFFu2itPAQdrny7GhBH+b3hp I/dBKwqdz2AUzVhZGfRBKccsMCq3RiLOWC+Jsi5+wVhPcb6lIWdirlZF8BeGemSa jldkjlHIePTKHLkjhoSr480GFfGfiziDElMJRYaKJv/bnv5Y -----END CERTIFICATE-----Generated at Sun Jan 25 22:14:45 2026 by rpki-client