This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/k8XfY430NoQpAosr3mtWeia-mMA.roa File: k8XfY430NoQpAosr3mtWeia-mMA.roa (raw, json) Hash identifier: xxeeTQMry7AnbOpqH9f2rb6CqR3xMuTRJElNhpSmvd4= Subject key identifier: 93:C5:DF:63:8D:F4:36:84:29:02:8B:2B:DE:6B:56:7A:26:BE:98:C0 Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019B93FEF7DE3664C11996DA661E5A5F0AD4 Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/k8XfY430NoQpAosr3mtWeia-mMA.roa Signing time: Tue 06 Jan 2026 15:48:38 +0000 ROA not before: Tue 06 Jan 2026 15:48:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214931 IP address blocks: 2a14:67c1:c700::/40 maxlen: 48 2a14:67c1:c702::/48 maxlen: 48 2a14:67c1:c703::/48 maxlen: 48 2a14:67c1:c704::/48 maxlen: 48 2a14:67c1:c705::/48 maxlen: 48 2a14:67c1:c706::/48 maxlen: 48 2a14:67c3:a0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:93:fe:f7:de:36:64:c1:19:96:da:66:1e:5a:5f:0a:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Jan 6 15:48:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=93c5df638df4368429028b2bde6b567a26be98c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6a:4c:6c:dc:b8:0b:17:d5:b4:71:47:98:a9: 02:f8:d6:5a:6d:b9:6a:7e:4b:36:ee:67:e8:91:e3: b4:63:c7:40:e3:a1:bb:cb:72:d2:51:b5:d6:92:32: 33:3f:81:42:b5:59:93:99:87:52:a9:2e:0e:e1:0e: 1a:47:13:68:35:e8:20:a0:f8:36:7b:2b:6c:18:22: 1d:ca:f8:9f:11:a8:47:55:c6:6a:e4:50:70:07:d4: 2d:27:c5:9e:a8:ba:b5:ba:63:e4:59:65:41:83:67: 89:3e:d9:8a:3a:ad:01:c6:91:68:ba:c8:8c:e0:4c: 4d:d9:dd:3b:fb:d4:7d:03:d0:0f:d4:7e:38:ed:97: 0e:09:46:01:ce:28:84:ed:50:ca:c7:ff:37:01:79: dd:48:11:24:fd:e3:09:ca:6b:f4:7e:45:8c:35:c8: b0:fb:9f:89:cb:eb:46:c9:e6:0c:63:3b:09:80:34: 1f:f9:8f:7b:b9:a6:88:23:c1:c2:66:c1:50:87:26: c1:db:76:8c:65:3c:df:ae:31:39:c4:0c:c9:46:28: bd:60:6b:99:42:9f:d0:03:7f:0b:6b:f5:61:7c:60: 5f:78:9b:31:87:e6:19:e9:f8:c9:3c:7d:3d:e1:0c: ed:ba:da:e0:4f:96:25:36:4d:07:fe:58:ed:ab:b9: 31:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:C5:DF:63:8D:F4:36:84:29:02:8B:2B:DE:6B:56:7A:26:BE:98:C0 X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/k8XfY430NoQpAosr3mtWeia-mMA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:67c1:c700::/40 2a14:67c3:a0::/44 Signature Algorithm: sha256WithRSAEncryption 7a:c7:45:0c:39:0f:dd:4f:82:79:c5:3f:e7:49:2b:85:ec:09: 14:75:34:e9:98:21:09:1d:80:16:ad:66:28:c9:39:d3:91:82: 20:7c:25:fd:bb:c6:4f:a1:ff:e2:62:ee:a6:13:74:2b:c2:64: 4d:ee:bc:79:19:37:1b:30:38:35:84:87:5e:d8:1d:8f:0a:08: f2:9d:46:84:30:e1:2a:0c:aa:99:fb:74:3b:a1:ff:28:8a:42: 84:84:e4:c7:68:79:69:a6:1a:3b:c0:93:c6:b4:c9:80:c9:60: 51:83:ff:b4:29:10:c8:46:a3:5c:39:3e:22:be:5e:eb:19:38: 8a:6f:f6:fb:22:bd:46:49:44:02:44:e8:9a:de:bc:62:09:bf: 0f:aa:81:17:1b:cd:6c:f2:cb:ba:ee:f3:fd:d9:79:ef:62:25: 10:b6:50:e8:19:ec:f8:c7:1d:e3:96:2e:fe:cb:96:2d:db:1f: 98:f1:23:57:26:54:ec:5f:16:8c:de:06:7f:ca:42:13:bf:18: 2f:f2:10:d7:88:76:c2:93:5d:e5:25:18:9c:4b:11:61:ea:bc: c9:3a:2d:42:d5:31:c0:8f:e3:ac:2d:38:b7:bf:20:75:64:35: c7:bc:aa:31:ee:e6:03:bb:b3:5f:fb:85:a4:bc:ca:ed:6a:04: 25:10:68:ce -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgISAZuT/vfeNmTBGZbaZh5aXwrUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjYwMTA2MTU0ODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5M2M1ZGY2MzhkZjQzNjg0MjkwMjhiMmJkZTZiNTY3YTI2YmU5OGMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxWpMbNy4CxfVtHFHmKkC+NZabblq fks27mfokeO0Y8dA46G7y3LSUbXWkjIzP4FCtVmTmYdSqS4O4Q4aRxNoNeggoPg2 eytsGCIdyvifEahHVcZq5FBwB9QtJ8WeqLq1umPkWWVBg2eJPtmKOq0BxpFousiM 4ExN2d07+9R9A9AP1H447ZcOCUYBziiE7VDKx/83AXndSBEk/eMJymv0fkWMNciw +5+Jy+tGyeYMYzsJgDQf+Y97uaaII8HCZsFQhybB23aMZTzfrjE5xAzJRii9YGuZ Qp/QA38La/VhfGBfeJsxh+YZ6fjJPH094QztutrgT5YlNk0H/ljtq7kxDQIDAQAB o4ICFDCCAhAwHQYDVR0OBBYEFJPF32ON9DaEKQKLK95rVnomvpjAMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEvazhYZlk0MzBOb1FwQW9zcjNtdFdlaWEtbU1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwYAKhRnwccD BwQqFGfDAKAwDQYJKoZIhvcNAQELBQADggEBAHrHRQw5D91PgnnFP+dJK4XsCRR1 NOmYIQkdgBatZijJOdORgiB8Jf27xk+h/+Ji7qYTdCvCZE3uvHkZNxswODWEh17Y HY8KCPKdRoQw4SoMqpn7dDuh/yiKQoSE5MdoeWmmGjvAk8a0yYDJYFGD/7QpEMhG o1w5PiK+XusZOIpv9vsivUZJRAJE6JrevGIJvw+qgRcbzWzyy7ru8/3Zee9iJRC2 UOgZ7PjHHeOWLv7Lli3bH5jxI1cmVOxfFozeBn/KQhO/GC/yENeIdsKTXeUlGJxL EWHqvMk6LULVMcCP46wtOLe/IHVkNce8qjHu5gO7s1/7haS8yu1qBCUQaM4= -----END CERTIFICATE-----Generated at Tue Jan 20 00:28:42 2026 by rpki-client