This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/74881d-ea9f-453f-bb51-88b238e5bb80/1/c0i8991UJCOly_bGDSBQG4Aot8k.roa File: c0i8991UJCOly_bGDSBQG4Aot8k.roa (raw, json) Hash identifier: fe/DfYOp9gMMpbSc+SphBLp4DkHzqjeSNzT9WK5FYRQ= Subject key identifier: 73:48:BC:F7:DD:54:24:23:A5:CB:F6:C6:0D:20:50:1B:80:28:B7:C9 Certificate issuer: /CN=5e989daf64fadbdd5348f7dd226ecc9fefc04515 Certificate serial: 019B7C7F4B4110AAA58E01B3EF72D95126CC Authority key identifier: 5E:98:9D:AF:64:FA:DB:DD:53:48:F7:DD:22:6E:CC:9F:EF:C0:45:15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xpidr2T6291TSPfdIm7Mn-_ARRU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/74881d-ea9f-453f-bb51-88b238e5bb80/1/c0i8991UJCOly_bGDSBQG4Aot8k.roa Signing time: Fri 02 Jan 2026 02:17:55 +0000 ROA not before: Fri 02 Jan 2026 02:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205602 IP address blocks: 2001:67c:fd4::/48 maxlen: 48 2001:67c:fd8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/74881d-ea9f-453f-bb51-88b238e5bb80/1/Xpidr2T6291TSPfdIm7Mn-_ARRU.crl rsync://rpki.ripe.net/repository/DEFAULT/14/74881d-ea9f-453f-bb51-88b238e5bb80/1/Xpidr2T6291TSPfdIm7Mn-_ARRU.mft rsync://rpki.ripe.net/repository/DEFAULT/Xpidr2T6291TSPfdIm7Mn-_ARRU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:4b:41:10:aa:a5:8e:01:b3:ef:72:d9:51:26:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e989daf64fadbdd5348f7dd226ecc9fefc04515 Validity Not Before: Jan 2 02:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7348bcf7dd542423a5cbf6c60d20501b8028b7c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:34:8d:97:13:e4:cc:55:70:87:ec:8b:4a:57: ca:6d:2c:4b:94:68:3b:9b:5e:66:41:1c:9e:f1:c7: 0b:b1:13:3d:06:8d:94:9d:29:87:26:02:d3:2e:0b: 79:6f:57:b2:c9:d4:46:12:0e:21:b4:19:2f:2e:22: 52:a3:09:fc:f6:11:8d:21:14:35:06:34:00:6a:85: db:cc:57:1b:b7:69:41:45:b6:b6:25:b6:79:d6:70: f7:6b:cf:ad:1b:57:1b:c2:6e:cc:c0:a8:6c:ac:33: e8:c3:6f:ce:91:3d:92:14:66:2a:0f:ba:64:d9:6e: f7:38:d2:7d:b9:66:f1:6e:29:8b:6f:95:76:4f:69: be:1f:ae:b7:da:e5:46:54:4d:fd:cd:7d:d6:c0:b0: 5a:63:61:fe:cc:5c:60:8e:9e:0c:a6:6b:ac:b6:04: f3:42:05:d4:7e:eb:6c:e3:92:1d:b4:08:3e:0b:72: a3:37:4a:50:84:cd:7f:e3:3b:38:6f:b5:98:78:0d: df:45:c4:45:0e:bd:38:4d:e3:59:26:73:1f:ab:82: 1f:18:c7:2e:b4:79:37:3c:b6:63:e3:9d:2b:d9:39: 6c:8e:16:48:1c:7d:ca:1e:57:d3:36:8f:a3:db:d0: 57:3d:3b:3e:83:7d:6f:fd:86:03:6f:69:ad:8c:e4: fd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:48:BC:F7:DD:54:24:23:A5:CB:F6:C6:0D:20:50:1B:80:28:B7:C9 X509v3 Authority Key Identifier: keyid:5E:98:9D:AF:64:FA:DB:DD:53:48:F7:DD:22:6E:CC:9F:EF:C0:45:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xpidr2T6291TSPfdIm7Mn-_ARRU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/74881d-ea9f-453f-bb51-88b238e5bb80/1/c0i8991UJCOly_bGDSBQG4Aot8k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/74881d-ea9f-453f-bb51-88b238e5bb80/1/Xpidr2T6291TSPfdIm7Mn-_ARRU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:fd4::/48 2001:67c:fd8::/48 Signature Algorithm: sha256WithRSAEncryption 78:42:48:71:4b:b8:e6:d6:92:87:6d:7f:3c:5b:1d:2d:6f:86: b5:02:6c:26:d8:c2:29:37:ea:8f:d3:d0:50:27:28:bd:a2:2b: 19:5d:0c:25:93:4d:41:e8:ab:d8:58:46:4b:b6:04:70:ae:b7: cc:bd:76:02:40:57:69:e3:9c:0b:63:e5:ef:02:58:01:83:53: 88:7e:55:4a:c3:e9:0d:76:af:ce:cd:a6:89:30:50:94:28:1c: 58:8c:0e:b7:96:07:48:df:d8:23:90:45:2c:6d:c8:d0:6c:b5: d6:18:73:2d:c7:1c:c8:d9:1e:16:ae:9c:da:16:52:6b:e5:fc: e3:93:25:26:77:be:c4:bf:69:f1:46:4c:fd:02:17:c2:45:41: e2:6a:ab:43:81:e8:36:6d:22:28:94:99:c8:d1:03:5c:9f:f4: e4:da:38:32:1d:c5:a5:44:29:03:61:60:4f:7e:3b:78:e6:0b: 92:36:7e:ad:f1:b6:66:32:67:41:57:48:05:84:51:42:3e:d4: c0:d4:37:0b:2a:d7:3f:16:b2:33:cc:ae:f1:44:d8:cc:30:de: 4e:c4:7c:1f:2b:80:bf:00:e1:6f:67:ab:7d:f4:93:f6:93:42: c7:9d:6f:d5:0b:16:97:13:49:3c:97:55:cb:9f:72:27:d7:ed: 73:3a:3a:38 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt8f0tBEKqljgGz73LZUSbMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlOTg5ZGFmNjRmYWRiZGQ1MzQ4ZjdkZDIyNmVjYzlmZWZj MDQ1MTUwHhcNMjYwMTAyMDIxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MzQ4YmNmN2RkNTQyNDIzYTVjYmY2YzYwZDIwNTAxYjgwMjhiN2M5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDSNlxPkzFVwh+yLSlfKbSxLlGg7 m15mQRye8ccLsRM9Bo2UnSmHJgLTLgt5b1eyydRGEg4htBkvLiJSown89hGNIRQ1 BjQAaoXbzFcbt2lBRba2JbZ51nD3a8+tG1cbwm7MwKhsrDPow2/OkT2SFGYqD7pk 2W73ONJ9uWbxbimLb5V2T2m+H6632uVGVE39zX3WwLBaY2H+zFxgjp4MpmustgTz QgXUfuts45IdtAg+C3KjN0pQhM1/4zs4b7WYeA3fRcRFDr04TeNZJnMfq4IfGMcu tHk3PLZj450r2TlsjhZIHH3KHlfTNo+j29BXPTs+g31v/YYDb2mtjOT9hQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFHNIvPfdVCQjpcv2xg0gUBuAKLfJMB8GA1UdIwQY MBaAFF6Yna9k+tvdU0j33SJuzJ/vwEUVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHBpZHIyVDYyOTFUU1BmZEltN01uLV9BUlJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC83NDg4MWQtZWE5Zi00NTNmLWJiNTEt ODhiMjM4ZTViYjgwLzEvYzBpODk5MVVKQ09seV9iR0RTQlFHNEFvdDhrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC83NDg4MWQtZWE5Zi00NTNmLWJiNTEtODhiMjM4ZTViYjgw LzEvWHBpZHIyVDYyOTFUU1BmZEltN01uLV9BUlJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAIAEGfA/U AwcAIAEGfA/YMA0GCSqGSIb3DQEBCwUAA4IBAQB4QkhxS7jm1pKHbX88Wx0tb4a1 Amwm2MIpN+qP09BQJyi9oisZXQwlk01B6KvYWEZLtgRwrrfMvXYCQFdp45wLY+Xv AlgBg1OIflVKw+kNdq/OzaaJMFCUKBxYjA63lgdI39gjkEUsbcjQbLXWGHMtxxzI 2R4WrpzaFlJr5fzjkyUmd77Ev2nxRkz9AhfCRUHiaqtDgeg2bSIolJnI0QNcn/Tk 2jgyHcWlRCkDYWBPfjt45guSNn6t8bZmMmdBV0gFhFFCPtTA1DcLKtc/FrIzzK7x RNjMMN5OxHwfK4C/AOFvZ6t99JP2k0LHnW/VCxaXE0k8l1XLn3In1+1zOjo4 -----END CERTIFICATE-----Generated at Tue Feb 10 00:14:28 2026 by rpki-client