This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/3176ea-2f54-4472-9eb2-93a35694f685/1/COcv6oq5sDbpsP-8FRPQHVDfLWk.roa File: COcv6oq5sDbpsP-8FRPQHVDfLWk.roa (raw, json) Hash identifier: K+pmGXQPSyOf6hHKQS1u54A+Zj+KnwyEdp4hK5MQqRM= Subject key identifier: 08:E7:2F:EA:8A:B9:B0:36:E9:B0:FF:BC:15:13:D0:1D:50:DF:2D:69 Certificate issuer: /CN=a45cec1660ad2dfe771a9a1234b1d12a9c5b8211 Certificate serial: 019B7E38F43AE9F3FD0687412A14F67B1318 Authority key identifier: A4:5C:EC:16:60:AD:2D:FE:77:1A:9A:12:34:B1:D1:2A:9C:5B:82:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pFzsFmCtLf53GpoSNLHRKpxbghE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/3176ea-2f54-4472-9eb2-93a35694f685/1/COcv6oq5sDbpsP-8FRPQHVDfLWk.roa Signing time: Fri 02 Jan 2026 10:20:20 +0000 ROA not before: Fri 02 Jan 2026 10:20:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201173 IP address blocks: 2001:67c:2d50::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/3176ea-2f54-4472-9eb2-93a35694f685/1/pFzsFmCtLf53GpoSNLHRKpxbghE.crl rsync://rpki.ripe.net/repository/DEFAULT/23/3176ea-2f54-4472-9eb2-93a35694f685/1/pFzsFmCtLf53GpoSNLHRKpxbghE.mft rsync://rpki.ripe.net/repository/DEFAULT/pFzsFmCtLf53GpoSNLHRKpxbghE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:f4:3a:e9:f3:fd:06:87:41:2a:14:f6:7b:13:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a45cec1660ad2dfe771a9a1234b1d12a9c5b8211 Validity Not Before: Jan 2 10:20:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=08e72fea8ab9b036e9b0ffbc1513d01d50df2d69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:a5:47:00:35:88:26:66:59:74:72:39:2e:89: 4e:c2:9a:33:fb:ff:e8:a1:d0:ce:4c:c3:04:8e:52: b7:70:7c:92:f8:a8:de:f7:2f:2c:75:9b:ce:a7:4a: 77:0f:96:38:e7:43:4d:b4:c5:74:57:76:9f:0f:67: 84:ab:90:ef:48:a2:07:7d:e9:10:0f:73:d8:46:66: 15:96:f7:b5:4e:49:17:42:16:8a:0e:66:08:4a:ef: 71:4f:a4:80:33:1f:f5:09:56:a8:bd:6e:15:98:fb: 25:01:f7:43:64:81:39:30:f2:83:f5:86:65:4b:1c: db:c4:93:ee:23:f5:fc:62:ac:e0:e0:e7:8f:84:21: 77:54:22:89:64:9c:f0:4b:14:75:5a:db:6c:fa:25: 62:2f:4d:81:17:66:e2:2e:36:1e:72:79:be:f7:7b: 6a:e7:2c:39:eb:32:cf:b9:3a:3c:44:67:eb:7f:2f: b0:d2:3e:6c:65:dd:f3:cc:93:12:45:4d:b8:af:64: 1c:a6:51:b2:db:d4:43:1b:3f:4a:0d:09:87:35:1e: 8c:c7:b7:6c:98:be:34:b3:a1:e1:3d:66:b9:93:f9: 47:b4:d1:06:ed:c2:78:df:09:36:2a:4d:18:35:11: 64:87:c7:bc:d3:e8:60:37:9b:7d:68:07:00:3f:a8: e6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:E7:2F:EA:8A:B9:B0:36:E9:B0:FF:BC:15:13:D0:1D:50:DF:2D:69 X509v3 Authority Key Identifier: keyid:A4:5C:EC:16:60:AD:2D:FE:77:1A:9A:12:34:B1:D1:2A:9C:5B:82:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pFzsFmCtLf53GpoSNLHRKpxbghE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/3176ea-2f54-4472-9eb2-93a35694f685/1/COcv6oq5sDbpsP-8FRPQHVDfLWk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/3176ea-2f54-4472-9eb2-93a35694f685/1/pFzsFmCtLf53GpoSNLHRKpxbghE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2d50::/48 Signature Algorithm: sha256WithRSAEncryption 15:ed:fa:ff:2c:1d:7e:10:45:bc:1d:fd:78:a3:ec:13:73:04: c4:4d:3b:d7:bf:b8:ea:52:fd:43:57:66:12:61:7f:49:eb:87: b5:52:c1:f0:60:36:dd:8b:c2:75:46:64:11:45:1c:03:83:b3: 2a:d7:ed:1f:4c:c9:ce:fb:66:f4:6c:18:b9:9a:2f:60:8c:04: 2c:b9:f0:8c:a2:51:e5:3d:e5:19:b2:7a:96:91:24:63:05:48: 18:0e:77:d9:7f:ff:aa:bb:20:c7:d5:82:78:7d:48:66:73:a9: e5:5c:9e:50:66:1b:0a:18:f5:7e:ed:d4:34:d8:70:d6:91:33: 7b:e9:b4:99:73:47:e1:2b:6e:29:69:28:58:2c:60:85:e6:e8: b8:62:e5:b0:7e:00:4d:36:6a:39:a1:e1:6d:71:03:34:7e:48: c9:86:96:0c:9e:e2:ed:b4:a8:72:39:a5:29:79:55:d8:54:8f: ed:fe:fc:a8:23:c1:b5:8d:99:81:a0:2a:89:cf:63:6a:50:1f: 34:06:24:5a:fb:74:e9:46:97:2d:8d:9d:3b:78:de:db:cc:3d: 6d:11:d7:b3:13:8b:df:e4:21:f7:93:7f:79:a5:41:21:4a:02: 6a:4e:1e:5c:df:35:f0:d7:52:4f:22:7e:c1:76:76:5a:37:4c: 28:f7:03:d5 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OPQ66fP9BodBKhT2exMYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0NWNlYzE2NjBhZDJkZmU3NzFhOWExMjM0YjFkMTJhOWM1 YjgyMTEwHhcNMjYwMTAyMTAyMDIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOGU3MmZlYThhYjliMDM2ZTliMGZmYmMxNTEzZDAxZDUwZGYyZDY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9KVHADWIJmZZdHI5LolOwpoz+//o odDOTMMEjlK3cHyS+Kje9y8sdZvOp0p3D5Y450NNtMV0V3afD2eEq5DvSKIHfekQ D3PYRmYVlve1TkkXQhaKDmYISu9xT6SAMx/1CVaovW4VmPslAfdDZIE5MPKD9YZl SxzbxJPuI/X8Yqzg4OePhCF3VCKJZJzwSxR1Wtts+iViL02BF2biLjYecnm+93tq 5yw56zLPuTo8RGfrfy+w0j5sZd3zzJMSRU24r2QcplGy29RDGz9KDQmHNR6Mx7ds mL40s6HhPWa5k/lHtNEG7cJ43wk2Kk0YNRFkh8e80+hgN5t9aAcAP6jmSwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFAjnL+qKubA26bD/vBUT0B1Q3y1pMB8GA1UdIwQY MBaAFKRc7BZgrS3+dxqaEjSx0SqcW4IRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcEZ6c0ZtQ3RMZjUzR3BvU05MSFJLcHhiZ2hFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8zMTc2ZWEtMmY1NC00NDcyLTllYjIt OTNhMzU2OTRmNjg1LzEvQ09jdjZvcTVzRGJwc1AtOEZSUFFIVkRmTFdrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy8zMTc2ZWEtMmY1NC00NDcyLTllYjItOTNhMzU2OTRmNjg1 LzEvcEZ6c0ZtQ3RMZjUzR3BvU05MSFJLcHhiZ2hFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfC1Q MA0GCSqGSIb3DQEBCwUAA4IBAQAV7fr/LB1+EEW8Hf14o+wTcwTETTvXv7jqUv1D V2YSYX9J64e1UsHwYDbdi8J1RmQRRRwDg7Mq1+0fTMnO+2b0bBi5mi9gjAQsufCM olHlPeUZsnqWkSRjBUgYDnfZf/+quyDH1YJ4fUhmc6nlXJ5QZhsKGPV+7dQ02HDW kTN76bSZc0fhK24paShYLGCF5ui4YuWwfgBNNmo5oeFtcQM0fkjJhpYMnuLttKhy OaUpeVXYVI/t/vyoI8G1jZmBoCqJz2NqUB80BiRa+3TpRpctjZ07eN7bzD1tEdez E4vf5CH3k395pUEhSgJqTh5c3zXw11JPIn7BdnZaN0wo9wPV -----END CERTIFICATE-----Generated at Mon Feb 9 22:37:10 2026 by rpki-client