This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/LNkI4m5Q6DkR7A1HiJYQftYyohM.roa File: LNkI4m5Q6DkR7A1HiJYQftYyohM.roa (raw, json) Hash identifier: cpYgRe8eut0U8jQJ6MFVl+er//uQSbxsiZcNyxgf3go= Subject key identifier: 2C:D9:08:E2:6E:50:E8:39:11:EC:0D:47:88:96:10:7E:D6:32:A2:13 Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3 Certificate serial: 019B7F84C8A8003BE307BF18815AC08F7111 Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/LNkI4m5Q6DkR7A1HiJYQftYyohM.roa Signing time: Fri 02 Jan 2026 16:22:46 +0000 ROA not before: Fri 02 Jan 2026 16:22:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 40403 IP address blocks: 2a11:dcc7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.mft rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 13:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:c8:a8:00:3b:e3:07:bf:18:81:5a:c0:8f:71:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3 Validity Not Before: Jan 2 16:22:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2cd908e26e50e83911ec0d478896107ed632a213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:27:cb:15:52:7f:4f:76:7a:e0:b1:91:91:fd: ef:9e:a9:fe:e2:d0:51:2a:83:4f:e6:8f:e4:ea:81: bd:bd:cb:5e:0b:66:43:e1:c9:f0:90:66:d4:f1:b3: 61:df:d8:e3:9c:63:96:bb:ff:c6:a6:12:23:89:ab: c3:f9:88:e6:2e:a2:47:3d:4e:e7:bb:08:7a:95:b9: b9:41:79:95:8d:e9:66:09:dc:cb:32:24:38:68:e8: 51:64:f7:0d:56:10:e2:db:b6:50:55:9c:95:48:ad: 00:a6:cc:40:d1:63:c8:9b:3a:56:da:f5:5f:dc:71: e4:fb:e9:9e:2a:45:68:ee:91:df:45:a5:d5:3e:27: da:cf:f6:f8:15:11:e6:e8:c6:27:b4:88:b2:ec:c0: f6:41:6f:53:c5:77:61:c3:3f:eb:d9:a2:b3:a6:7c: e2:9c:a5:b9:b4:f0:e4:cc:8e:14:4d:46:24:4a:b5: 50:e6:0f:93:27:c7:86:1f:2a:2e:71:24:31:b4:c1: 1c:84:ff:56:cd:55:72:56:61:6d:cc:77:7e:68:6c: 66:4d:ef:f9:f2:8a:46:78:5b:a0:45:9a:85:98:95: f9:20:8c:a8:a2:48:33:ff:e8:df:42:9c:38:37:c1: 82:63:83:1d:b0:79:ee:b1:7e:ac:ec:0c:f5:b5:ec: 9d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D9:08:E2:6E:50:E8:39:11:EC:0D:47:88:96:10:7E:D6:32:A2:13 X509v3 Authority Key Identifier: keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/LNkI4m5Q6DkR7A1HiJYQftYyohM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:dcc7::/32 Signature Algorithm: sha256WithRSAEncryption ac:d4:b7:07:e4:e8:fa:d9:8c:ec:d7:61:d3:74:fd:d0:c1:af: c5:e2:54:dc:d4:17:31:6c:1a:d2:7f:d8:2b:bc:60:4c:9b:93: 6d:e2:ef:bc:14:e1:ec:4b:cc:66:22:57:4b:a8:fc:b1:df:6f: d6:73:be:79:6a:ad:d8:d8:09:6c:e3:2d:e3:f6:35:72:0a:79: 5e:a8:97:2c:57:64:f9:10:8a:5c:a7:19:c8:3a:63:27:0c:57: 95:6d:bc:1c:ed:69:af:b6:cc:06:54:62:da:18:80:48:11:9d: b3:dd:03:bc:78:0e:8f:c0:0b:0d:d0:25:ad:7a:16:8c:dd:cc: df:09:7b:b4:01:7f:3f:7e:70:8a:90:14:e6:9a:32:f0:1d:33: 03:c7:aa:a6:b5:12:c7:c1:22:9c:75:eb:92:bf:7e:38:1c:97: cc:e0:a2:52:f4:d8:c1:fc:30:35:2e:37:38:f4:36:f8:02:ce: 18:c5:bc:42:6e:f6:57:1b:0c:70:b5:ef:37:f6:ae:cc:a2:8f: 4f:38:43:66:40:7b:91:51:f7:75:4e:cd:1c:8a:a0:ae:76:35: 0d:52:b3:f7:e9:00:ec:3e:a0:98:86:42:b5:9c:cf:0b:e7:16: 2f:22:69:de:d4:3b:6c:1e:83:00:3b:07:7e:38:92:42:dd:a8: 9c:ad:b1:86 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/hMioADvjB78YgVrAj3ERMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz Mjc2ZTMwHhcNMjYwMTAyMTYyMjQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyY2Q5MDhlMjZlNTBlODM5MTFlYzBkNDc4ODk2MTA3ZWQ2MzJhMjEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxifLFVJ/T3Z64LGRkf3vnqn+4tBR KoNP5o/k6oG9vcteC2ZD4cnwkGbU8bNh39jjnGOWu//GphIjiavD+YjmLqJHPU7n uwh6lbm5QXmVjelmCdzLMiQ4aOhRZPcNVhDi27ZQVZyVSK0ApsxA0WPImzpW2vVf 3HHk++meKkVo7pHfRaXVPifaz/b4FRHm6MYntIiy7MD2QW9TxXdhwz/r2aKzpnzi nKW5tPDkzI4UTUYkSrVQ5g+TJ8eGHyoucSQxtMEchP9WzVVyVmFtzHd+aGxmTe/5 8opGeFugRZqFmJX5IIyookgz/+jfQpw4N8GCY4MdsHnusX6s7Az1teydQQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFCzZCOJuUOg5EewNR4iWEH7WMqITMB8GA1UdIwQY MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt YTJhNGM2YTYyMWNkLzEvTE5rSTRtNVE2RGtSN0ExSGlKWVFmdFl5b2hNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhHcxzAN BgkqhkiG9w0BAQsFAAOCAQEArNS3B+To+tmM7Ndh03T90MGvxeJU3NQXMWwa0n/Y K7xgTJuTbeLvvBTh7EvMZiJXS6j8sd9v1nO+eWqt2NgJbOMt4/Y1cgp5XqiXLFdk +RCKXKcZyDpjJwxXlW28HO1pr7bMBlRi2hiASBGds90DvHgOj8ALDdAlrXoWjN3M 3wl7tAF/P35wipAU5poy8B0zA8eqprUSx8EinHXrkr9+OByXzOCiUvTYwfwwNS43 OPQ2+ALOGMW8Qm72VxsMcLXvN/auzKKPTzhDZkB7kVH3dU7NHIqgrnY1DVKz9+kA 7D6gmIZCtZzPC+cWLyJp3tQ7bB6DADsHfjiSQt2onK2xhg== -----END CERTIFICATE-----Generated at Sat Jan 10 21:32:50 2026 by rpki-client