This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/66ca64-6fce-4b84-8c15-cb868127a9b1/1/P6M6hIv3ncju_oAyACKAsIZE6yk.roa File: P6M6hIv3ncju_oAyACKAsIZE6yk.roa (raw, json) Hash identifier: oBuEgjnErP2My5jsSftgYI4iR6dqS74HFR1/k9AVZ+E= Subject key identifier: 3F:A3:3A:84:8B:F7:9D:C8:EE:FE:80:32:00:22:80:B0:86:44:EB:29 Certificate issuer: /CN=6eb61057b826541d216cd595cf86c6a06fb2ae11 Certificate serial: 019B7EA6945F5AF2F019034FC81CE1ECC740 Authority key identifier: 6E:B6:10:57:B8:26:54:1D:21:6C:D5:95:CF:86:C6:A0:6F:B2:AE:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/brYQV7gmVB0hbNWVz4bGoG-yrhE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/66ca64-6fce-4b84-8c15-cb868127a9b1/1/P6M6hIv3ncju_oAyACKAsIZE6yk.roa Signing time: Fri 02 Jan 2026 12:20:04 +0000 ROA not before: Fri 02 Jan 2026 12:20:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 137 IP address blocks: 192.146.242.0/24 maxlen: 24 192.160.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/66ca64-6fce-4b84-8c15-cb868127a9b1/1/brYQV7gmVB0hbNWVz4bGoG-yrhE.crl rsync://rpki.ripe.net/repository/DEFAULT/43/66ca64-6fce-4b84-8c15-cb868127a9b1/1/brYQV7gmVB0hbNWVz4bGoG-yrhE.mft rsync://rpki.ripe.net/repository/DEFAULT/brYQV7gmVB0hbNWVz4bGoG-yrhE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:94:5f:5a:f2:f0:19:03:4f:c8:1c:e1:ec:c7:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6eb61057b826541d216cd595cf86c6a06fb2ae11 Validity Not Before: Jan 2 12:20:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3fa33a848bf79dc8eefe8032002280b08644eb29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b7:1b:63:00:15:48:a6:71:9f:67:81:4d:58: ca:3b:cd:ba:87:c4:ee:08:7c:6e:4a:e9:4f:89:86: e5:57:e1:ba:0f:31:5c:3e:d1:22:c9:13:06:c3:cb: db:5d:2b:98:5e:c4:92:f6:47:e5:aa:0f:2b:ae:8b: 8b:01:23:e4:ee:01:ed:9c:28:34:35:33:32:06:8c: 1d:6f:01:6d:99:c8:ad:0b:51:be:73:21:20:c0:12: 96:31:69:1f:f3:b1:58:4a:bc:3e:83:8f:40:11:d8: 76:92:b3:e4:25:11:ba:9b:30:20:c9:9d:51:bb:87: bf:f6:42:69:b6:f9:2f:6b:08:d1:d1:b3:19:b8:1d: 58:a5:56:a4:d1:4f:c1:b5:d8:19:f6:51:f0:54:84: 30:1c:6c:d6:3e:11:d2:c0:e2:fb:62:a7:b0:a0:b2: bf:70:85:da:56:d2:1c:51:3f:cd:4e:8a:a2:60:db: 7f:97:76:7b:e1:31:b0:78:eb:72:40:da:da:fd:5e: 66:32:c8:a8:64:f6:94:c6:cb:4d:ef:17:6b:34:7c: a9:4b:e1:eb:30:f0:b8:c5:a4:fd:a8:8c:c2:b7:b8: 77:8c:1b:1d:33:fa:76:3e:e4:9f:c6:48:8b:ee:78: a7:3f:cf:77:a3:82:e6:29:6a:34:4a:76:4a:92:f6: 0f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A3:3A:84:8B:F7:9D:C8:EE:FE:80:32:00:22:80:B0:86:44:EB:29 X509v3 Authority Key Identifier: keyid:6E:B6:10:57:B8:26:54:1D:21:6C:D5:95:CF:86:C6:A0:6F:B2:AE:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/brYQV7gmVB0hbNWVz4bGoG-yrhE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/66ca64-6fce-4b84-8c15-cb868127a9b1/1/P6M6hIv3ncju_oAyACKAsIZE6yk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/66ca64-6fce-4b84-8c15-cb868127a9b1/1/brYQV7gmVB0hbNWVz4bGoG-yrhE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.146.242.0/24 192.160.156.0/24 Signature Algorithm: sha256WithRSAEncryption 93:a3:27:4e:e2:d9:ab:a7:c8:c6:99:fc:af:3e:9b:8f:31:cd: 39:64:9c:84:13:ca:71:31:3a:3f:4c:d9:5d:f4:e8:b7:c4:b4: bc:d8:78:da:e9:d7:3a:46:18:2b:d0:bc:51:dd:59:a5:99:8f: 82:5f:c5:04:9d:22:d3:4a:7b:df:a6:e5:40:0d:9e:b6:94:c8: ac:52:86:b3:44:d6:a1:55:66:b4:b4:72:85:c6:2e:0f:51:53: e6:8e:84:97:a5:2d:49:bd:a3:22:62:f6:d0:1d:4c:4c:50:c2: 45:f6:02:8d:24:95:49:1c:5d:a4:ec:92:7a:7d:77:f5:ce:be: 4a:74:96:a2:6a:c9:66:e5:dc:2a:b3:94:14:98:5d:d3:ca:b8: b6:6e:de:a8:b4:70:68:1d:4a:da:03:77:a4:4b:ca:27:a3:f0: 9c:e3:bc:85:7c:d2:84:52:64:88:27:53:d3:a2:36:7d:28:20: a0:d3:ae:c3:04:68:79:37:90:8a:78:19:b2:87:18:6c:e1:a3: 27:46:15:00:75:35:03:2c:af:84:41:38:ef:39:ce:3d:de:ba: 77:c9:c9:dd:c3:9f:2f:6e:ec:52:e6:a9:e3:b6:d1:37:71:da: ef:de:0c:f8:19:ac:59:4c:da:92:c8:12:23:bd:c0:07:12:6b: 26:f5:4e:9d -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+ppRfWvLwGQNPyBzh7MdAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlYjYxMDU3YjgyNjU0MWQyMTZjZDU5NWNmODZjNmEwNmZi MmFlMTEwHhcNMjYwMTAyMTIyMDA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZmEzM2E4NDhiZjc5ZGM4ZWVmZTgwMzIwMDIyODBiMDg2NDRlYjI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6LcbYwAVSKZxn2eBTVjKO826h8Tu CHxuSulPiYblV+G6DzFcPtEiyRMGw8vbXSuYXsSS9kflqg8rrouLASPk7gHtnCg0 NTMyBowdbwFtmcitC1G+cyEgwBKWMWkf87FYSrw+g49AEdh2krPkJRG6mzAgyZ1R u4e/9kJptvkvawjR0bMZuB1YpVak0U/BtdgZ9lHwVIQwHGzWPhHSwOL7YqewoLK/ cIXaVtIcUT/NToqiYNt/l3Z74TGweOtyQNra/V5mMsioZPaUxstN7xdrNHypS+Hr MPC4xaT9qIzCt7h3jBsdM/p2PuSfxkiL7ninP893o4LmKWo0SnZKkvYP3wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFD+jOoSL953I7v6AMgAigLCGROspMB8GA1UdIwQY MBaAFG62EFe4JlQdIWzVlc+GxqBvsq4RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnJZUVY3Z21WQjBoYk5XVno0YkdvRy15cmhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My82NmNhNjQtNmZjZS00Yjg0LThjMTUt Y2I4NjgxMjdhOWIxLzEvUDZNNmhJdjNuY2p1X29BeUFDS0FzSVpFNnlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My82NmNhNjQtNmZjZS00Yjg0LThjMTUtY2I4NjgxMjdhOWIx LzEvYnJZUVY3Z21WQjBoYk5XVno0YkdvRy15cmhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwJLyAwQA wKCcMA0GCSqGSIb3DQEBCwUAA4IBAQCToydO4tmrp8jGmfyvPpuPMc05ZJyEE8px MTo/TNld9Oi3xLS82Hja6dc6Rhgr0LxR3VmlmY+CX8UEnSLTSnvfpuVADZ62lMis UoazRNahVWa0tHKFxi4PUVPmjoSXpS1JvaMiYvbQHUxMUMJF9gKNJJVJHF2k7JJ6 fXf1zr5KdJaiaslm5dwqs5QUmF3Tyri2bt6otHBoHUraA3ekS8ono/Cc47yFfNKE UmSIJ1PTojZ9KCCg067DBGh5N5CKeBmyhxhs4aMnRhUAdTUDLK+EQTjvOc493rp3 ycndw58vbuxS5qnjttE3cdrv3gz4GaxZTNqSyBIjvcAHEmsm9U6d -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:26 2026 by rpki-client