This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/PGvLDQOEl1eDAyZzLgaLVXSVE_M.roa File: PGvLDQOEl1eDAyZzLgaLVXSVE_M.roa (raw, json) Hash identifier: 84nzVcTSlRfWBNj/SgSbr5SPyeZcNdC5TuBdV+hRaRc= Subject key identifier: 3C:6B:CB:0D:03:84:97:57:83:03:26:73:2E:06:8B:55:74:95:13:F3 Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e Certificate serial: 019B76EB94048B957DAD3A9C9E640B218B1C Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/PGvLDQOEl1eDAyZzLgaLVXSVE_M.roa Signing time: Thu 01 Jan 2026 00:18:28 +0000 ROA not before: Thu 01 Jan 2026 00:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215561 IP address blocks: 2001:678:1f0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:94:04:8b:95:7d:ad:3a:9c:9e:64:0b:21:8b:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e Validity Not Before: Jan 1 00:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3c6bcb0d03849757830326732e068b55749513f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1e:f9:a5:7f:a4:f4:6d:a2:ca:85:54:1e:d5: 0b:1f:dc:b2:06:90:2b:af:53:31:a8:60:cc:67:4e: 3f:99:f4:c5:cf:0e:df:2c:4b:1a:1a:09:a4:0d:99: 39:97:21:b4:f2:86:b7:f0:02:73:24:eb:41:5c:56: 94:51:59:cd:29:ff:9f:97:ad:a8:39:3f:83:34:47: 27:04:58:75:d8:cd:3d:2a:03:98:cf:12:ae:ae:f0: 8b:b0:dd:cf:e7:b0:3b:e7:19:c1:64:d5:f7:ba:63: 8c:0a:dd:32:d4:a5:0c:64:7f:fa:52:d0:d1:13:2c: aa:b3:b0:c3:cc:03:8e:88:a6:ad:c8:eb:bf:b0:7e: 8f:75:84:94:1f:0e:a5:34:b1:9f:8f:6d:74:82:9c: 3d:ec:41:5f:df:3e:93:0d:c6:9d:b2:77:95:31:b0: db:37:b5:a9:87:5e:6e:06:3c:f5:42:66:41:2f:8f: b8:f2:76:b9:d4:ce:78:78:21:57:ba:bf:70:42:2b: 80:0f:52:a9:47:91:09:88:7b:6a:b8:b5:70:de:9f: 48:e3:d3:92:ff:e1:2f:d2:21:9c:1c:a9:34:2a:d6: d1:16:84:61:8b:47:68:05:9c:b8:8d:dd:e4:cd:ce: a7:82:39:91:bd:0f:9a:78:ce:cc:f2:93:fb:eb:9d: 30:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:6B:CB:0D:03:84:97:57:83:03:26:73:2E:06:8B:55:74:95:13:F3 X509v3 Authority Key Identifier: keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/PGvLDQOEl1eDAyZzLgaLVXSVE_M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1f0::/48 Signature Algorithm: sha256WithRSAEncryption 17:25:75:64:ec:d1:da:aa:09:b9:af:29:d9:be:99:30:f4:b5: 41:19:0f:c0:26:72:66:43:60:14:8c:a7:36:fa:d0:58:65:3e: 38:b5:2b:8e:a8:c8:c3:c8:36:ba:5c:ab:32:7a:94:f1:0a:20: 2e:f3:db:d9:1e:f8:3d:b5:26:9c:16:55:04:9a:bc:6e:a8:f3: 46:7e:bf:29:36:c0:69:e4:18:5a:7d:57:67:30:5e:2b:3b:b3: 63:e0:9b:d6:c5:3a:bf:ff:84:d0:50:a6:94:5b:04:96:4f:e3: 94:5a:c8:66:65:5f:95:4c:02:c5:d5:e7:ac:4f:00:46:00:fa: d4:2a:c0:1c:88:c8:96:e6:f6:5f:e2:29:9c:a0:55:a2:b6:68: c4:ce:e5:2b:1e:3d:10:5f:6f:8c:b1:88:18:7d:d7:a4:e1:40: c5:79:95:09:4d:4e:06:22:ec:4d:ba:1d:54:8e:77:f0:13:3e: 6b:7d:28:e6:ce:a5:00:d9:a7:47:1e:b9:7a:fd:af:29:14:93: db:cd:a8:d5:da:3b:cb:b2:a7:15:3e:49:ec:f1:38:1b:64:b6: 68:0c:ae:69:b7:06:eb:bd:8e:ae:e5:f0:bd:41:71:5b:09:47: c0:f3:ae:a4:76:50:a4:fe:20:03:41:24:2b:f3:ee:50:cf:f7: 23:10:62:b7 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt265QEi5V9rTqcnmQLIYscMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZDJjZWQzNTJmMDFmN2ViNWRjNzYxOWVkNzE0YzZiNmE1 Yzc5MWUwHhcNMjYwMTAxMDAxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYzZiY2IwZDAzODQ5NzU3ODMwMzI2NzMyZTA2OGI1NTc0OTUxM2YzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzx75pX+k9G2iyoVUHtULH9yyBpAr r1MxqGDMZ04/mfTFzw7fLEsaGgmkDZk5lyG08oa38AJzJOtBXFaUUVnNKf+fl62o OT+DNEcnBFh12M09KgOYzxKurvCLsN3P57A75xnBZNX3umOMCt0y1KUMZH/6UtDR Eyyqs7DDzAOOiKatyOu/sH6PdYSUHw6lNLGfj210gpw97EFf3z6TDcadsneVMbDb N7Wph15uBjz1QmZBL4+48na51M54eCFXur9wQiuAD1KpR5EJiHtquLVw3p9I49OS /+Ev0iGcHKk0KtbRFoRhi0doBZy4jd3kzc6ngjmRvQ+aeM7M8pP7650wZwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDxryw0DhJdXgwMmcy4Gi1V0lRPzMB8GA1UdIwQY MBaAFG3SztNS8B9+tdx2Ge1xTGtqXHkeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8yNDVlMWEtMDYxMi00NTk2LWE5NWEt OWRmNzI1MzBiNjY5LzEvUEd2TERRT0VsMWVEQXlaekxnYUxWWFNWRV9NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi8yNDVlMWEtMDYxMi00NTk2LWE5NWEtOWRmNzI1MzBiNjY5 LzEvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAHw MA0GCSqGSIb3DQEBCwUAA4IBAQAXJXVk7NHaqgm5rynZvpkw9LVBGQ/AJnJmQ2AU jKc2+tBYZT44tSuOqMjDyDa6XKsyepTxCiAu89vZHvg9tSacFlUEmrxuqPNGfr8p NsBp5BhafVdnMF4rO7Nj4JvWxTq//4TQUKaUWwSWT+OUWshmZV+VTALF1eesTwBG APrUKsAciMiW5vZf4imcoFWitmjEzuUrHj0QX2+MsYgYfdek4UDFeZUJTU4GIuxN uh1UjnfwEz5rfSjmzqUA2adHHrl6/a8pFJPbzajV2jvLsqcVPkns8TgbZLZoDK5p twbrvY6u5fC9QXFbCUfA866kdlCk/iADQSQr8+5Qz/cjEGK3 -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:30 2026 by rpki-client