This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/06XUCJMT07KfXMH10GGCj5wEbAw.roa File: 06XUCJMT07KfXMH10GGCj5wEbAw.roa (raw, json) Hash identifier: EgHdwMOgNylzVaIS1PHOHRnXwiOAytji7pJB66LjXYc= Subject key identifier: D3:A5:D4:08:93:13:D3:B2:9F:5C:C1:F5:D0:61:82:8F:9C:04:6C:0C Certificate issuer: /CN=f3b90781dbbebdb8ec42baf66488059ea5866aac Certificate serial: 019B7AC78FBEC8464E29DC736407E4BF043D Authority key identifier: F3:B9:07:81:DB:BE:BD:B8:EC:42:BA:F6:64:88:05:9E:A5:86:6A:AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/87kHgdu-vbjsQrr2ZIgFnqWGaqw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/06XUCJMT07KfXMH10GGCj5wEbAw.roa Signing time: Thu 01 Jan 2026 18:17:37 +0000 ROA not before: Thu 01 Jan 2026 18:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12400 IP address blocks: 2a03:6947:c00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/87kHgdu-vbjsQrr2ZIgFnqWGaqw.crl rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/87kHgdu-vbjsQrr2ZIgFnqWGaqw.mft rsync://rpki.ripe.net/repository/DEFAULT/87kHgdu-vbjsQrr2ZIgFnqWGaqw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:8f:be:c8:46:4e:29:dc:73:64:07:e4:bf:04:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f3b90781dbbebdb8ec42baf66488059ea5866aac Validity Not Before: Jan 1 18:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d3a5d4089313d3b29f5cc1f5d061828f9c046c0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:16:65:47:43:c5:2d:f4:e0:99:b6:ff:1d:00: cc:0d:4a:fa:75:6b:6a:f1:74:51:db:e7:4f:55:95: 79:c5:42:3c:a6:f3:57:ed:d8:d8:42:1a:e6:ec:e2: 83:9e:3f:0a:3e:87:61:2a:d8:77:7b:ba:c7:c1:91: 48:d6:e6:9a:e9:29:7c:1e:49:8d:f0:4d:ca:fe:fa: 66:a0:0a:37:a0:9e:06:a0:ee:f2:8a:b9:3a:cf:92: d7:d2:d9:32:a7:90:5b:72:06:5a:1c:a5:f3:c7:1e: e8:2d:30:34:4e:05:19:6a:bf:92:b6:d3:af:41:71: 27:2b:7d:46:e8:9e:52:21:a3:61:65:83:44:c5:8f: 86:9d:a0:b6:f7:8c:67:6e:cc:2c:33:78:16:22:72: 8e:82:18:21:1e:a7:bd:e0:15:16:af:de:b7:fb:28: 1d:0e:8b:e5:8f:a8:66:aa:5e:81:05:9d:81:1e:e0: e7:63:85:f4:b4:5b:ee:84:fa:81:a5:e9:0a:02:59: 67:e7:6e:72:87:93:bb:08:e2:19:3f:ff:e0:15:49: c3:d5:dd:dd:e6:25:15:a8:94:58:78:d6:49:24:da: 4e:12:9e:79:bb:a6:45:3e:42:56:47:14:63:b1:e5: 1b:7a:c5:91:63:dd:e0:c8:b6:34:5b:63:67:1e:15: f8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:A5:D4:08:93:13:D3:B2:9F:5C:C1:F5:D0:61:82:8F:9C:04:6C:0C X509v3 Authority Key Identifier: keyid:F3:B9:07:81:DB:BE:BD:B8:EC:42:BA:F6:64:88:05:9E:A5:86:6A:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/87kHgdu-vbjsQrr2ZIgFnqWGaqw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/06XUCJMT07KfXMH10GGCj5wEbAw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/87kHgdu-vbjsQrr2ZIgFnqWGaqw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:6947:c00::/40 Signature Algorithm: sha256WithRSAEncryption 7b:2d:9a:32:1e:08:e1:55:0b:90:37:f8:52:5a:16:ff:64:e3: 86:8e:4f:ec:c1:90:11:31:c7:32:15:10:92:fe:e7:87:06:d8: 2d:96:51:40:7a:af:14:83:43:a3:7a:0a:d3:87:86:13:9a:33: 80:85:8e:e6:1c:00:1f:a3:f9:da:8d:28:c1:ac:84:76:7e:63: 52:d2:5d:ae:37:56:9a:9f:88:58:f9:ad:94:2a:7c:24:58:45: e6:82:b4:b4:e1:6f:7f:93:ab:10:91:5b:86:6b:a7:6e:8c:25: 65:39:22:cc:5f:fc:bd:5d:e8:e8:1a:f2:a1:7f:2b:84:d2:e0: 9f:3b:db:32:f4:21:09:43:36:e8:48:89:ea:19:14:b0:92:c2: ec:2f:40:7a:83:34:b1:d7:f5:cf:4a:53:52:6b:4e:c9:2b:52: 4d:a6:34:a3:2f:ae:52:f5:8a:26:eb:5b:41:53:ea:e6:c1:19: 04:d4:88:a4:4c:eb:0e:2b:bd:10:4d:5e:98:56:bb:e5:e9:de: 06:cf:0b:58:95:2a:be:78:1a:fb:87:fd:73:87:57:5f:89:5b: f8:30:f1:ec:84:60:32:0f:7a:a9:6a:16:f3:00:c9:8a:af:2f: 7d:c8:71:2d:7a:5b:48:7b:24:c0:f8:65:12:59:71:f8:73:bf: f3:2b:59:6b -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt6x4++yEZOKdxzZAfkvwQ9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzYjkwNzgxZGJiZWJkYjhlYzQyYmFmNjY0ODgwNTllYTU4 NjZhYWMwHhcNMjYwMTAxMTgxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkM2E1ZDQwODkzMTNkM2IyOWY1Y2MxZjVkMDYxODI4ZjljMDQ2YzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRZlR0PFLfTgmbb/HQDMDUr6dWtq 8XRR2+dPVZV5xUI8pvNX7djYQhrm7OKDnj8KPodhKth3e7rHwZFI1uaa6Sl8HkmN 8E3K/vpmoAo3oJ4GoO7yirk6z5LX0tkyp5BbcgZaHKXzxx7oLTA0TgUZar+SttOv QXEnK31G6J5SIaNhZYNExY+GnaC294xnbswsM3gWInKOghghHqe94BUWr963+ygd Dovlj6hmql6BBZ2BHuDnY4X0tFvuhPqBpekKAlln525yh5O7COIZP//gFUnD1d3d 5iUVqJRYeNZJJNpOEp55u6ZFPkJWRxRjseUbesWRY93gyLY0W2NnHhX4jQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFNOl1AiTE9Oyn1zB9dBhgo+cBGwMMB8GA1UdIwQY MBaAFPO5B4Hbvr247EK69mSIBZ6lhmqsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvODdrSGdkdS12YmpzUXJyMlpJZ0ZucVdHYXF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi84YzU4MDgtMzE2NS00MWRjLTkwYTAt M2VmNWViN2M4NTk4LzEvMDZYVUNKTVQwN0tmWE1IMTBHR0NqNXdFYkF3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi84YzU4MDgtMzE2NS00MWRjLTkwYTAtM2VmNWViN2M4NTk4 LzEvODdrSGdkdS12YmpzUXJyMlpJZ0ZucVdHYXF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgNpRwww DQYJKoZIhvcNAQELBQADggEBAHstmjIeCOFVC5A3+FJaFv9k44aOT+zBkBExxzIV EJL+54cG2C2WUUB6rxSDQ6N6CtOHhhOaM4CFjuYcAB+j+dqNKMGshHZ+Y1LSXa43 VpqfiFj5rZQqfCRYReaCtLThb3+TqxCRW4Zrp26MJWU5Isxf/L1d6Oga8qF/K4TS 4J872zL0IQlDNuhIieoZFLCSwuwvQHqDNLHX9c9KU1JrTskrUk2mNKMvrlL1iibr W0FT6ubBGQTUiKRM6w4rvRBNXphWu+Xp3gbPC1iVKr54GvuH/XOHV1+JW/gw8eyE YDIPeqlqFvMAyYqvL33IcS16W0h7JMD4ZRJZcfhzv/MrWWs= -----END CERTIFICATE-----Generated at Mon Jan 26 15:16:43 2026 by rpki-client