This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/kj6zZvcwcrS_lYMeMKyNi6GEtbM.roa File: kj6zZvcwcrS_lYMeMKyNi6GEtbM.roa (raw, json) Hash identifier: fTlx0tL1YO2P64Ivch8XrsKKqIRA6lZ1xzOQtaRLa8k= Subject key identifier: 92:3E:B3:66:F7:30:72:B4:BF:95:83:1E:30:AC:8D:8B:A1:84:B5:B3 Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Certificate serial: 019B7EA6E462552397EA97A1339BCA7C240C Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/kj6zZvcwcrS_lYMeMKyNi6GEtbM.roa Signing time: Fri 02 Jan 2026 12:20:25 +0000 ROA not before: Fri 02 Jan 2026 12:20:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203314 IP address blocks: 2a0c:9a40:8c90::/48 maxlen: 48 2a0c:9a40:9500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 02:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:e4:62:55:23:97:ea:97:a1:33:9b:ca:7c:24:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Validity Not Before: Jan 2 12:20:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=923eb366f73072b4bf95831e30ac8d8ba184b5b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f5:57:e2:78:44:97:ff:70:f9:2a:1b:43:0b: f3:9d:ed:b1:55:79:99:f7:47:ed:2d:9c:cb:05:34: dd:f2:dd:be:c6:b3:54:2c:da:e6:97:e9:7c:87:25: 31:1d:a0:e5:08:90:fa:5f:1b:db:00:85:e9:50:df: 5c:01:d6:66:59:43:82:45:cd:ec:ea:70:d8:f9:62: 79:c9:0b:29:73:ff:25:9f:a7:ee:09:bd:fa:0c:fe: 7e:ab:83:53:05:71:2d:13:b3:41:de:c3:86:9c:de: 04:e6:ef:28:74:1f:62:f9:ef:ce:a1:05:ce:10:32: 8c:6c:21:7d:ec:30:8f:e9:40:52:47:f0:f6:96:06: c6:a7:d9:3c:52:62:34:f6:e9:9c:a9:83:39:be:db: 0b:d6:e8:61:c9:f0:a0:7e:b5:13:21:22:57:8a:38: 23:12:50:57:c5:eb:ba:b9:de:78:59:7a:52:0c:f9: 71:49:7b:75:b0:31:51:b9:90:90:bf:eb:1c:47:fa: f9:71:1b:41:bb:21:94:b1:7b:43:4f:91:76:13:c2: 63:0a:84:06:c3:0b:1b:03:42:13:bf:ba:1b:4e:84: 3d:ed:17:16:d4:7f:c8:61:4c:b2:af:af:c8:63:0c: 5a:b7:6b:dc:a8:d0:c1:37:41:6f:92:ec:a4:92:9c: e4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:3E:B3:66:F7:30:72:B4:BF:95:83:1E:30:AC:8D:8B:A1:84:B5:B3 X509v3 Authority Key Identifier: keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/kj6zZvcwcrS_lYMeMKyNi6GEtbM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:9a40:8c90::/48 2a0c:9a40:9500::/40 Signature Algorithm: sha256WithRSAEncryption 71:5f:ae:93:e8:e1:0b:7c:6f:dd:ab:93:3f:94:79:5b:90:47: 46:2a:71:e2:75:19:b0:5c:70:f8:d6:65:65:02:08:33:b4:7b: c2:4f:38:a8:c4:28:90:84:bf:47:82:9f:28:bf:41:1f:85:9b: d0:63:37:c0:79:5d:00:0e:d2:05:82:30:c9:65:ad:d2:aa:4f: 51:e3:cb:a6:2c:e0:e0:60:e9:aa:66:e0:52:15:bd:ad:a5:72: 41:78:25:a8:7b:0f:91:20:80:60:ec:97:63:bd:95:c0:77:a2: 7f:78:9a:b7:b3:8a:6f:e1:c6:d9:0d:91:8f:cc:62:52:93:5c: b0:e1:ec:f3:13:2a:eb:68:1f:81:a7:0b:3d:bf:fe:36:2d:e9: 9a:2e:d2:fa:17:5c:4b:6d:a5:71:0a:c8:f1:de:f0:25:41:51: 85:0c:50:7a:63:4c:02:98:05:b9:ea:18:a8:88:bb:3d:c5:79: 56:97:ca:e6:3a:2f:08:b7:39:d0:2e:09:2c:63:13:d8:35:f9: 98:cb:71:d3:e0:56:70:20:95:31:71:ed:4f:8e:7c:f5:27:2d: 60:9f:01:f8:a8:9d:ae:a3:5b:a0:eb:3d:7e:66:4f:76:0b:58: ff:b3:ba:4b:78:35:69:89:b5:98:2d:d2:d6:6d:47:1b:47:5b: 19:47:df:41 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgISAZt+puRiVSOX6pehM5vKfCQMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl NDgwMDgwHhcNMjYwMTAyMTIyMDI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MjNlYjM2NmY3MzA3MmI0YmY5NTgzMWUzMGFjOGQ4YmExODRiNWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvVX4nhEl/9w+SobQwvzne2xVXmZ 90ftLZzLBTTd8t2+xrNULNrml+l8hyUxHaDlCJD6XxvbAIXpUN9cAdZmWUOCRc3s 6nDY+WJ5yQspc/8ln6fuCb36DP5+q4NTBXEtE7NB3sOGnN4E5u8odB9i+e/OoQXO EDKMbCF97DCP6UBSR/D2lgbGp9k8UmI09umcqYM5vtsL1uhhyfCgfrUTISJXijgj ElBXxeu6ud54WXpSDPlxSXt1sDFRuZCQv+scR/r5cRtBuyGUsXtDT5F2E8JjCoQG wwsbA0ITv7obToQ97RcW1H/IYUyyr6/IYwxat2vcqNDBN0FvkuykkpzkBQIDAQAB o4ICFDCCAhAwHQYDVR0OBBYEFJI+s2b3MHK0v5WDHjCsjYuhhLWzMB8GA1UdIwQY MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt YmY0ZTUyN2I5ZmE4LzEva2o2elp2Y3djclNfbFlNZU1LeU5pNkdFdGJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4 LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwcAKgyaQIyQ AwYAKgyaQJUwDQYJKoZIhvcNAQELBQADggEBAHFfrpPo4Qt8b92rkz+UeVuQR0Yq ceJ1GbBccPjWZWUCCDO0e8JPOKjEKJCEv0eCnyi/QR+Fm9BjN8B5XQAO0gWCMMll rdKqT1Hjy6Ys4OBg6apm4FIVva2lckF4Jah7D5EggGDsl2O9lcB3on94mrezim/h xtkNkY/MYlKTXLDh7PMTKutoH4GnCz2//jYt6Zou0voXXEttpXEKyPHe8CVBUYUM UHpjTAKYBbnqGKiIuz3FeVaXyuY6Lwi3OdAuCSxjE9g1+ZjLcdPgVnAglTFx7U+O fPUnLWCfAfiona6jW6DrPX5mT3YLWP+zukt4NWmJtZgt0tZtRxtHWxlH30E= -----END CERTIFICATE-----Generated at Tue Jan 20 09:06:13 2026 by rpki-client