This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/89688c-e094-4316-8130-aa2f8a2b0e88/1/cfgUMJjPHo2HMTWogKTOZFoNb44.roa File: cfgUMJjPHo2HMTWogKTOZFoNb44.roa (raw, json) Hash identifier: 6T+E0hhZ0PL+MJOi66ClH6FGS34xdrKxtztKFTXuFcs= Subject key identifier: 71:F8:14:30:98:CF:1E:8D:87:31:35:A8:80:A4:CE:64:5A:0D:6F:8E Certificate issuer: /CN=f7ff3e7d8659e8ae9f6f4f31d3f24fdb3c6df527 Certificate serial: 019B7A5B41F16FD4C657BF26F084D54D46A2 Authority key identifier: F7:FF:3E:7D:86:59:E8:AE:9F:6F:4F:31:D3:F2:4F:DB:3C:6D:F5:27 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9_8-fYZZ6K6fb08x0_JP2zxt9Sc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/89688c-e094-4316-8130-aa2f8a2b0e88/1/cfgUMJjPHo2HMTWogKTOZFoNb44.roa Signing time: Thu 01 Jan 2026 16:19:19 +0000 ROA not before: Thu 01 Jan 2026 16:19:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213467 IP address blocks: 2001:678:102c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/89688c-e094-4316-8130-aa2f8a2b0e88/1/9_8-fYZZ6K6fb08x0_JP2zxt9Sc.crl rsync://rpki.ripe.net/repository/DEFAULT/48/89688c-e094-4316-8130-aa2f8a2b0e88/1/9_8-fYZZ6K6fb08x0_JP2zxt9Sc.mft rsync://rpki.ripe.net/repository/DEFAULT/9_8-fYZZ6K6fb08x0_JP2zxt9Sc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:41:f1:6f:d4:c6:57:bf:26:f0:84:d5:4d:46:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7ff3e7d8659e8ae9f6f4f31d3f24fdb3c6df527 Validity Not Before: Jan 1 16:19:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=71f8143098cf1e8d873135a880a4ce645a0d6f8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a0:e4:f6:c8:ee:51:eb:4e:15:60:17:6c:ec: d0:ad:3d:32:fb:96:b9:a6:6a:29:aa:37:64:27:ac: 3b:ee:91:8f:31:be:d2:0d:2d:65:62:61:a8:a5:7e: f6:cd:a4:3b:af:1d:35:95:c1:8d:d4:3d:a8:9d:5f: c5:da:2b:2d:68:d4:d2:26:f4:7a:fb:9a:4c:8c:53: 3f:b5:77:e1:ba:cf:6f:1c:6c:b9:ad:20:23:d1:dd: 10:92:a2:3e:08:41:c2:f0:db:77:15:99:66:ce:5e: 57:83:ca:85:a3:29:2d:70:4c:60:7e:67:6d:04:0b: 69:b1:6b:93:fb:0d:e0:0d:e1:0a:04:3e:e1:bd:6b: 1e:8d:83:ff:61:da:ad:2f:d0:c8:d7:69:49:a7:e6: dc:a2:15:b1:dc:a4:5c:fa:c1:40:4a:ec:9f:d9:c9: 0c:ee:00:c4:62:23:e4:55:03:4f:96:f2:df:34:85: d2:1b:95:ab:fc:0e:2d:c9:3a:ad:b5:73:a5:1c:88: 8f:0d:59:e5:94:46:55:eb:83:63:50:64:8e:a9:e5: 1b:16:45:d6:0a:f6:ad:1a:91:21:99:9e:df:9d:d6: 5a:18:06:9c:97:17:0f:f8:d1:bb:1c:37:26:96:e1: e6:ec:aa:33:44:43:bd:19:5d:7d:88:14:56:48:6b: d0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F8:14:30:98:CF:1E:8D:87:31:35:A8:80:A4:CE:64:5A:0D:6F:8E X509v3 Authority Key Identifier: keyid:F7:FF:3E:7D:86:59:E8:AE:9F:6F:4F:31:D3:F2:4F:DB:3C:6D:F5:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9_8-fYZZ6K6fb08x0_JP2zxt9Sc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/89688c-e094-4316-8130-aa2f8a2b0e88/1/cfgUMJjPHo2HMTWogKTOZFoNb44.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/89688c-e094-4316-8130-aa2f8a2b0e88/1/9_8-fYZZ6K6fb08x0_JP2zxt9Sc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:102c::/48 Signature Algorithm: sha256WithRSAEncryption 8b:0c:66:08:04:36:f0:32:84:83:a9:d4:17:18:6c:41:74:75: f0:8f:40:d6:9b:e2:0b:53:b8:d3:02:ed:26:92:63:ed:c3:03: c8:06:9c:54:fd:50:09:f6:45:d9:61:32:a4:c1:9e:be:0b:b3: 71:d8:a3:40:c9:99:d4:50:2b:74:b7:a5:38:44:8f:df:31:36: b3:cf:45:36:59:9e:31:a1:1c:da:ac:4a:e7:d4:1e:25:af:e1: f4:4c:c0:f7:c9:9c:c0:fe:3f:d1:2a:e6:e9:59:63:10:cc:42: 17:a4:17:35:ee:f3:22:c8:00:74:a1:28:f7:ce:d5:13:fc:e5: 04:18:a0:81:c4:52:b8:0b:04:57:6f:22:c4:67:18:47:ea:20: 4c:86:52:aa:d1:cf:8b:5d:42:7d:1c:9a:d8:4d:98:82:d4:15: e1:73:c1:5c:a0:d2:17:45:29:dc:d7:a6:54:31:f4:6c:96:2d: c9:fa:72:ed:27:9d:0d:29:04:ed:18:34:13:c9:69:63:e5:61: 7f:79:00:0e:34:ed:bd:7d:b8:28:64:5e:e9:01:b1:e3:86:89: 7d:84:4c:8c:d9:03:47:56:88:47:1b:73:4f:73:16:e7:f0:ad: 1a:d5:f8:08:c3:9e:a7:09:08:60:4b:ac:1d:d3:bb:e9:c5:97: 3b:6f:a1:77 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt6W0Hxb9TGV78m8ITVTUaiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3ZmYzZTdkODY1OWU4YWU5ZjZmNGYzMWQzZjI0ZmRiM2M2 ZGY1MjcwHhcNMjYwMTAxMTYxOTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MWY4MTQzMDk4Y2YxZThkODczMTM1YTg4MGE0Y2U2NDVhMGQ2ZjhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqDk9sjuUetOFWAXbOzQrT0y+5a5 pmopqjdkJ6w77pGPMb7SDS1lYmGopX72zaQ7rx01lcGN1D2onV/F2istaNTSJvR6 +5pMjFM/tXfhus9vHGy5rSAj0d0QkqI+CEHC8Nt3FZlmzl5Xg8qFoyktcExgfmdt BAtpsWuT+w3gDeEKBD7hvWsejYP/YdqtL9DI12lJp+bcohWx3KRc+sFASuyf2ckM 7gDEYiPkVQNPlvLfNIXSG5Wr/A4tyTqttXOlHIiPDVnllEZV64NjUGSOqeUbFkXW CvatGpEhmZ7fndZaGAaclxcP+NG7HDcmluHm7KozREO9GV19iBRWSGvQRwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFHH4FDCYzx6NhzE1qICkzmRaDW+OMB8GA1UdIwQY MBaAFPf/Pn2GWeiun29PMdPyT9s8bfUnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOV84LWZZWlo2SzZmYjA4eDBfSlAyenh0OVNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC84OTY4OGMtZTA5NC00MzE2LTgxMzAt YWEyZjhhMmIwZTg4LzEvY2ZnVU1KalBIbzJITVRXb2dLVE9aRm9OYjQ0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC84OTY4OGMtZTA5NC00MzE2LTgxMzAtYWEyZjhhMmIwZTg4 LzEvOV84LWZZWlo2SzZmYjA4eDBfSlAyenh0OVNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeBAs MA0GCSqGSIb3DQEBCwUAA4IBAQCLDGYIBDbwMoSDqdQXGGxBdHXwj0DWm+ILU7jT Au0mkmPtwwPIBpxU/VAJ9kXZYTKkwZ6+C7Nx2KNAyZnUUCt0t6U4RI/fMTazz0U2 WZ4xoRzarErn1B4lr+H0TMD3yZzA/j/RKubpWWMQzEIXpBc17vMiyAB0oSj3ztUT /OUEGKCBxFK4CwRXbyLEZxhH6iBMhlKq0c+LXUJ9HJrYTZiC1BXhc8FcoNIXRSnc 16ZUMfRsli3J+nLtJ50NKQTtGDQTyWlj5WF/eQAONO29fbgoZF7pAbHjhol9hEyM 2QNHVohHG3NPcxbn8K0a1fgIw56nCQhgS6wd07vpxZc7b6F3 -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:10 2026 by rpki-client