This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/jWxX2tMKxMJdIFHBL77hb_xE7Lk.roa File: jWxX2tMKxMJdIFHBL77hb_xE7Lk.roa (raw, json) Hash identifier: ZabLLdJJR9GqGbqwCz27PSZyCvB4TLOCdk9dPP8Hc2Q= Subject key identifier: 8D:6C:57:DA:D3:0A:C4:C2:5D:20:51:C1:2F:BE:E1:6F:FC:44:EC:B9 Certificate issuer: /CN=b691d00bdb626ae57307d5cd4e8addd9475680b3 Certificate serial: 019B76EB750B72125924384EFB271507EB1B Authority key identifier: B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/jWxX2tMKxMJdIFHBL77hb_xE7Lk.roa Signing time: Thu 01 Jan 2026 00:18:20 +0000 ROA not before: Thu 01 Jan 2026 00:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207583 IP address blocks: 2001:67c:2d34::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:75:0b:72:12:59:24:38:4e:fb:27:15:07:eb:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b691d00bdb626ae57307d5cd4e8addd9475680b3 Validity Not Before: Jan 1 00:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8d6c57dad30ac4c25d2051c12fbee16ffc44ecb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ed:ba:58:30:dc:69:cf:37:a9:bc:f0:cf:c3: 91:4d:f0:60:ad:e4:fa:c0:59:d2:f0:3e:11:a6:53: 3b:57:f8:f1:9a:d0:ac:c7:92:52:3e:4a:52:2b:6b: 45:85:7f:94:c3:bb:7c:de:66:ea:8a:f7:bb:77:ca: 34:58:ee:f5:a4:1f:44:f1:be:d1:e0:33:c0:78:ec: b1:b4:eb:2a:ad:43:c8:f0:4d:85:d5:04:3e:f7:46: 40:bc:1c:68:e5:aa:c0:d9:82:6d:44:66:ae:d8:98: 25:15:2a:d4:b4:78:7b:eb:06:bd:3b:0d:4e:ea:cd: 1d:39:97:de:00:9b:00:eb:3e:61:5a:38:8b:70:75: f8:3e:a9:25:cd:f5:3a:c3:86:f7:c0:bd:bd:61:3d: fe:04:42:70:c7:1c:4f:e6:ef:50:c8:e9:d0:17:b9: b1:e7:ec:18:cc:0c:3c:ad:32:3d:38:b3:25:42:63: a2:1d:91:1c:27:c6:72:0d:68:85:11:e4:b3:b3:3e: e0:b7:8c:e1:4d:14:12:cf:96:dd:b7:26:40:03:f1: 92:b1:9d:2b:00:d8:8d:6f:7a:92:df:f2:09:0c:c5: 77:a6:5e:99:24:27:2d:fd:63:cf:26:1b:43:e7:93: e5:4d:c8:d2:31:b8:52:66:6a:b6:03:54:41:0c:a6: 01:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:6C:57:DA:D3:0A:C4:C2:5D:20:51:C1:2F:BE:E1:6F:FC:44:EC:B9 X509v3 Authority Key Identifier: keyid:B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/jWxX2tMKxMJdIFHBL77hb_xE7Lk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2d34::/48 Signature Algorithm: sha256WithRSAEncryption 90:46:ce:7e:c7:50:a2:1d:fc:0f:06:a2:b6:5f:14:08:f8:69: 5a:dc:26:23:7c:4f:b6:c6:57:de:cb:c6:48:5d:7f:b8:6a:63: 3c:2a:0b:50:a9:5a:46:68:e1:5c:85:75:8d:c6:63:31:4e:95: ac:b0:97:db:1d:6f:a2:7a:7e:40:e9:a9:f2:b3:cb:0c:8d:c9: d8:bb:3e:da:18:9c:87:e8:cd:96:fb:d1:1f:fc:07:b2:ea:3d: 1c:16:5c:0e:59:7f:01:ed:3d:d6:03:54:e4:78:0b:67:e5:2e: 68:28:bc:57:2b:24:49:dd:3e:23:6a:c0:b2:4c:fd:6c:1f:af: 8e:3d:87:38:89:74:bd:16:e5:75:51:f9:1c:7e:a4:f6:e5:a8: 41:d4:87:79:dc:c7:2d:b8:cb:a9:e5:99:3b:83:fd:24:ce:b9: 2d:40:81:f7:b3:be:61:11:b0:f2:be:92:46:3b:9a:fb:d1:72: 74:05:1f:c8:bb:d3:9c:e3:46:3d:c6:6d:84:40:23:7e:23:9d: 11:1d:c6:bc:09:2b:99:d1:f0:23:67:fb:d1:9e:ed:71:13:fd: 59:9a:24:43:4a:11:68:c2:de:08:80:b4:a7:e8:eb:5c:2c:1d: f3:7f:62:5c:d5:e5:25:f3:c1:31:73:c0:2a:f5:b5:6e:2a:c3: 5b:a3:26:d8 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt263ULchJZJDhO+ycVB+sbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2OTFkMDBiZGI2MjZhZTU3MzA3ZDVjZDRlOGFkZGQ5NDc1 NjgwYjMwHhcNMjYwMTAxMDAxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZDZjNTdkYWQzMGFjNGMyNWQyMDUxYzEyZmJlZTE2ZmZjNDRlY2I5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxe26WDDcac83qbzwz8ORTfBgreT6 wFnS8D4RplM7V/jxmtCsx5JSPkpSK2tFhX+Uw7t83mbqive7d8o0WO71pB9E8b7R 4DPAeOyxtOsqrUPI8E2F1QQ+90ZAvBxo5arA2YJtRGau2JglFSrUtHh76wa9Ow1O 6s0dOZfeAJsA6z5hWjiLcHX4PqklzfU6w4b3wL29YT3+BEJwxxxP5u9QyOnQF7mx 5+wYzAw8rTI9OLMlQmOiHZEcJ8ZyDWiFEeSzsz7gt4zhTRQSz5bdtyZAA/GSsZ0r ANiNb3qS3/IJDMV3pl6ZJCct/WPPJhtD55PlTcjSMbhSZmq2A1RBDKYBxwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFI1sV9rTCsTCXSBRwS++4W/8ROy5MB8GA1UdIwQY MBaAFLaR0AvbYmrlcwfVzU6K3dlHVoCzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHBIUUM5dGlhdVZ6QjlYTlRvcmQyVWRXZ0xNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8zZTNkMDgtZTRjNS00ZjNkLWJlMDEt NDUwYWQ1NWQzMjVhLzEvald4WDJ0TUt4TUpkSUZIQkw3N2hiX3hFN0xrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC8zZTNkMDgtZTRjNS00ZjNkLWJlMDEtNDUwYWQ1NWQzMjVh LzEvdHBIUUM5dGlhdVZ6QjlYTlRvcmQyVWRXZ0xNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfC00 MA0GCSqGSIb3DQEBCwUAA4IBAQCQRs5+x1CiHfwPBqK2XxQI+Gla3CYjfE+2xlfe y8ZIXX+4amM8KgtQqVpGaOFchXWNxmMxTpWssJfbHW+ien5A6anys8sMjcnYuz7a GJyH6M2W+9Ef/Aey6j0cFlwOWX8B7T3WA1TkeAtn5S5oKLxXKyRJ3T4jasCyTP1s H6+OPYc4iXS9FuV1UfkcfqT25ahB1Id53MctuMup5Zk7g/0kzrktQIH3s75hEbDy vpJGO5r70XJ0BR/Iu9Oc40Y9xm2EQCN+I50RHca8CSuZ0fAjZ/vRnu1xE/1ZmiRD ShFowt4IgLSn6OtcLB3zf2Jc1eUl88Exc8Aq9bVuKsNboybY -----END CERTIFICATE-----Generated at Mon Feb 9 20:05:16 2026 by rpki-client