This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/364ab5-de95-4259-8927-9d2e42f7f9ac/1/bWCw9QvZ0n-9vSDkgSO_NuyUw34.roa File: bWCw9QvZ0n-9vSDkgSO_NuyUw34.roa (raw, json) Hash identifier: Nv8e19B6F0Z+GsL3XuEotkyjFs4rEednWhdiNCJb51g= Subject key identifier: 6D:60:B0:F5:0B:D9:D2:7F:BD:BD:20:E4:81:23:BF:36:EC:94:C3:7E Certificate issuer: /CN=ccffe64f42a9f04b9fd6cd758372a1db5cd8b191 Certificate serial: 019B7CEE29351D92A57213BD9AF8E3CAE24C Authority key identifier: CC:FF:E6:4F:42:A9:F0:4B:9F:D6:CD:75:83:72:A1:DB:5C:D8:B1:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zP_mT0Kp8Euf1s11g3Kh21zYsZE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/364ab5-de95-4259-8927-9d2e42f7f9ac/1/bWCw9QvZ0n-9vSDkgSO_NuyUw34.roa Signing time: Fri 02 Jan 2026 04:19:01 +0000 ROA not before: Fri 02 Jan 2026 04:19:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8220 IP address blocks: 2001:67c:2b34::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/364ab5-de95-4259-8927-9d2e42f7f9ac/1/zP_mT0Kp8Euf1s11g3Kh21zYsZE.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/364ab5-de95-4259-8927-9d2e42f7f9ac/1/zP_mT0Kp8Euf1s11g3Kh21zYsZE.mft rsync://rpki.ripe.net/repository/DEFAULT/zP_mT0Kp8Euf1s11g3Kh21zYsZE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 07:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:29:35:1d:92:a5:72:13:bd:9a:f8:e3:ca:e2:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ccffe64f42a9f04b9fd6cd758372a1db5cd8b191 Validity Not Before: Jan 2 04:19:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d60b0f50bd9d27fbdbd20e48123bf36ec94c37e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:87:06:cd:5c:f8:af:b9:0a:a1:f5:9e:57:90: f2:2f:17:6d:0e:de:b4:16:44:4d:67:bf:f0:70:36: 0e:98:32:4e:a3:95:9c:6e:db:4d:08:82:f5:80:30: 2c:db:c3:d8:ff:d6:e9:49:59:5b:32:9d:76:35:37: c8:cb:ad:4c:11:03:b1:ca:e0:e2:e3:7c:1a:5c:34: d9:71:e6:9f:bb:71:99:2e:2c:da:a2:a3:ec:5c:d9: e1:00:72:df:28:11:c6:3e:55:69:8d:ac:50:fd:5d: be:cd:a4:54:63:e4:6c:ae:25:d6:46:9c:5d:c4:34: da:ed:ef:f3:7b:42:8a:a6:e6:a3:03:ac:4d:0e:c0: 67:99:7e:0f:21:60:8c:79:e3:22:09:ca:90:46:f9: b0:3a:c6:60:00:e9:ea:9c:35:33:58:f4:cb:75:47: 2a:6e:9e:f3:59:ae:42:1b:05:f3:0e:2e:9e:5b:94: e4:d9:9f:e2:e4:e2:dc:f4:05:4f:61:f2:3f:5e:c6: 97:d5:98:30:58:40:09:eb:f3:49:0a:03:c8:5c:9b: 49:17:b0:6c:34:0a:98:ee:03:c4:a7:93:82:ad:aa: 98:01:de:4e:d2:a3:5a:26:9f:3d:ae:41:fe:ab:b7: bb:7a:a3:51:a7:5a:e8:8b:0f:6a:06:53:35:65:e3: fd:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:60:B0:F5:0B:D9:D2:7F:BD:BD:20:E4:81:23:BF:36:EC:94:C3:7E X509v3 Authority Key Identifier: keyid:CC:FF:E6:4F:42:A9:F0:4B:9F:D6:CD:75:83:72:A1:DB:5C:D8:B1:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zP_mT0Kp8Euf1s11g3Kh21zYsZE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/364ab5-de95-4259-8927-9d2e42f7f9ac/1/bWCw9QvZ0n-9vSDkgSO_NuyUw34.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/364ab5-de95-4259-8927-9d2e42f7f9ac/1/zP_mT0Kp8Euf1s11g3Kh21zYsZE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2b34::/48 Signature Algorithm: sha256WithRSAEncryption 0c:38:6a:94:84:0f:fe:b1:94:c3:72:37:5f:cf:3f:e4:af:d1: 3c:00:87:82:8e:28:98:68:71:ff:8b:20:7e:b1:6d:0e:c8:8b: 89:9c:5e:10:71:ad:03:73:4d:2c:f9:dd:72:b8:ce:8d:9e:98: 40:6f:41:57:0d:72:0c:91:21:29:09:59:a3:7e:d3:a7:52:6c: 59:ff:02:e1:90:3e:b7:a1:32:bc:c8:a8:c7:61:f2:2f:83:24: a7:e3:57:b5:54:12:8e:37:a3:30:fc:90:01:33:14:6a:f4:4a: 43:bb:8f:d1:91:c4:65:8d:4a:16:7c:6d:53:60:77:df:6b:2f: 2b:82:05:76:3e:05:7b:20:65:c8:54:2c:d9:09:a6:8d:39:0c: 98:ed:12:10:cb:e7:1b:e6:50:09:57:18:46:ff:d9:8a:1d:28: 40:20:cb:a9:00:66:d0:0d:0a:55:f6:77:ab:3f:67:e7:2d:12: 32:95:ab:84:88:04:1f:ae:56:6c:ed:55:bd:a0:c4:23:ee:34: fa:d3:ed:1c:2f:0a:cd:53:44:02:87:8e:28:f0:5e:57:08:dc: 4a:55:34:2c:bb:f6:1e:d4:ac:30:a3:59:7e:5d:c2:de:eb:c6: 6f:91:1c:d4:77:02:d6:9b:be:91:3e:6b:a5:44:e8:6c:8d:86: cc:a1:e1:a8 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt87ik1HZKlchO9mvjjyuJMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNjZmZlNjRmNDJhOWYwNGI5ZmQ2Y2Q3NTgzNzJhMWRiNWNk OGIxOTEwHhcNMjYwMTAyMDQxOTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDYwYjBmNTBiZDlkMjdmYmRiZDIwZTQ4MTIzYmYzNmVjOTRjMzdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkIcGzVz4r7kKofWeV5DyLxdtDt60 FkRNZ7/wcDYOmDJOo5WcbttNCIL1gDAs28PY/9bpSVlbMp12NTfIy61MEQOxyuDi 43waXDTZceafu3GZLizaoqPsXNnhAHLfKBHGPlVpjaxQ/V2+zaRUY+RsriXWRpxd xDTa7e/ze0KKpuajA6xNDsBnmX4PIWCMeeMiCcqQRvmwOsZgAOnqnDUzWPTLdUcq bp7zWa5CGwXzDi6eW5Tk2Z/i5OLc9AVPYfI/XsaX1ZgwWEAJ6/NJCgPIXJtJF7Bs NAqY7gPEp5OCraqYAd5O0qNaJp89rkH+q7e7eqNRp1roiw9qBlM1ZeP9xwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFG1gsPUL2dJ/vb0g5IEjvzbslMN+MB8GA1UdIwQY MBaAFMz/5k9CqfBLn9bNdYNyodtc2LGRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelBfbVQwS3A4RXVmMXMxMWczS2gyMXpZc1pFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8zNjRhYjUtZGU5NS00MjU5LTg5Mjct OWQyZTQyZjdmOWFjLzEvYldDdzlRdlowbi05dlNEa2dTT19OdXlVdzM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS8zNjRhYjUtZGU5NS00MjU5LTg5MjctOWQyZTQyZjdmOWFj LzEvelBfbVQwS3A4RXVmMXMxMWczS2gyMXpZc1pFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCs0 MA0GCSqGSIb3DQEBCwUAA4IBAQAMOGqUhA/+sZTDcjdfzz/kr9E8AIeCjiiYaHH/ iyB+sW0OyIuJnF4Qca0Dc00s+d1yuM6NnphAb0FXDXIMkSEpCVmjftOnUmxZ/wLh kD63oTK8yKjHYfIvgySn41e1VBKON6Mw/JABMxRq9EpDu4/RkcRljUoWfG1TYHff ay8rggV2PgV7IGXIVCzZCaaNOQyY7RIQy+cb5lAJVxhG/9mKHShAIMupAGbQDQpV 9nerP2fnLRIylauEiAQfrlZs7VW9oMQj7jT60+0cLwrNU0QCh44o8F5XCNxKVTQs u/Ye1Kwwo1l+XcLe68ZvkRzUdwLWm76RPmulROhsjYbMoeGo -----END CERTIFICATE-----Generated at Wed Jan 21 12:20:25 2026 by rpki-client