This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/bnpZWoK19n1XzIl8GBiTgjFaI8E.roa File: bnpZWoK19n1XzIl8GBiTgjFaI8E.roa (raw, json) Hash identifier: +AVNEsf0hyxywK+MPw4MlTXuOoeM9Lhba5oG66zfeHw= Subject key identifier: 6E:7A:59:5A:82:B5:F6:7D:57:CC:89:7C:18:18:93:82:31:5A:23:C1 Certificate issuer: /CN=207799027329f22682764573af2115da95a9f6bf Certificate serial: 019B7AC7F3F6D36384E7EA4581E5C007A1EF Authority key identifier: 20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/bnpZWoK19n1XzIl8GBiTgjFaI8E.roa Signing time: Thu 01 Jan 2026 18:18:02 +0000 ROA not before: Thu 01 Jan 2026 18:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210945 IP address blocks: 2001:67c:808::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:f3:f6:d3:63:84:e7:ea:45:81:e5:c0:07:a1:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=207799027329f22682764573af2115da95a9f6bf Validity Not Before: Jan 1 18:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6e7a595a82b5f67d57cc897c18189382315a23c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b0:91:d7:1a:20:a4:ae:f7:a5:03:a0:b4:31: d2:97:d3:81:bd:b8:06:17:9a:20:38:58:16:fd:19: 69:44:00:15:37:bd:6d:77:f4:b2:5d:d0:b1:51:16: 89:e6:2a:ff:45:98:d6:7b:b5:57:40:46:d9:e7:25: ff:88:76:6f:60:31:84:7d:8e:64:21:0f:07:8c:83: 70:6e:6d:2b:13:d0:b2:ff:f9:72:79:4d:c9:26:ba: 1b:45:99:fe:34:56:d2:d2:67:8c:3f:53:3b:b3:1a: 17:01:88:94:cb:3e:6b:af:0c:6a:ae:cf:e6:95:b4: ba:b2:69:59:52:98:b9:9b:af:a0:f3:dc:bc:4c:43: 20:be:2a:fb:07:73:77:6b:59:a8:65:ec:fe:33:24: f7:53:90:1a:6d:f7:7c:59:39:6e:02:8a:af:03:41: 25:45:34:68:16:36:cf:0f:96:7c:b4:2a:b7:d5:f1: c6:b0:a6:c5:ea:d8:8d:37:41:6f:47:a7:96:66:ac: 67:e0:a2:63:7e:1c:da:69:3e:d7:b0:7d:7f:e9:1c: ef:99:f3:3e:8e:8c:22:ed:0c:7e:58:f8:34:1a:07: f9:f8:d2:09:84:cc:31:88:e7:41:87:43:94:95:40: c8:95:a6:77:22:72:2d:a6:10:e0:03:04:e1:b7:54: df:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:7A:59:5A:82:B5:F6:7D:57:CC:89:7C:18:18:93:82:31:5A:23:C1 X509v3 Authority Key Identifier: keyid:20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/bnpZWoK19n1XzIl8GBiTgjFaI8E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:808::/48 Signature Algorithm: sha256WithRSAEncryption 40:26:82:1f:cf:9c:97:3a:dd:e1:67:99:ba:83:0a:ea:f7:b0: 89:49:e5:73:90:1d:4c:c7:2f:72:95:bc:5b:d6:9d:16:54:73: 5c:41:8b:dd:9c:9e:53:88:44:c0:14:96:4d:54:a7:1b:72:26: 86:f3:b2:17:a1:11:cb:59:ae:ca:d9:77:bc:ee:74:76:a5:62: 58:1d:99:87:5b:bc:ab:e8:da:ad:75:b9:16:03:fd:23:3e:6d: bc:de:2a:7f:2d:40:33:30:5b:49:2a:12:ae:5c:4f:a7:c7:91: 0e:e3:fc:21:35:51:66:a8:19:aa:6a:1a:43:1f:20:7f:92:62: 94:e5:c2:a8:17:0b:2f:f1:11:0f:38:ca:a9:ca:48:44:65:e5: fb:79:2b:19:32:86:f4:59:f3:b3:8e:ae:3c:ab:2d:61:bf:a5: 1e:fe:5b:89:0d:d5:87:94:fc:bd:57:e4:6d:81:e7:44:7e:ac: 10:8b:06:7b:e2:dd:85:5f:3c:3f:bd:7f:73:e4:c5:8b:e4:6d: ef:c3:22:2e:f6:3e:44:a2:2e:cb:f0:42:0f:64:1a:b8:31:21: 73:0a:f2:ca:cd:38:01:3f:9b:d5:36:fa:9c:a6:6a:6b:27:f2: 65:d1:be:cd:2c:ee:23:f7:ed:90:bb:94:ba:27:cc:52:88:76: 7f:32:21:c6 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt6x/P202OE5+pFgeXAB6HvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwNzc5OTAyNzMyOWYyMjY4Mjc2NDU3M2FmMjExNWRhOTVh OWY2YmYwHhcNMjYwMTAxMTgxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZTdhNTk1YTgyYjVmNjdkNTdjYzg5N2MxODE4OTM4MjMxNWEyM2MxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7CR1xogpK73pQOgtDHSl9OBvbgG F5ogOFgW/RlpRAAVN71td/SyXdCxURaJ5ir/RZjWe7VXQEbZ5yX/iHZvYDGEfY5k IQ8HjINwbm0rE9Cy//lyeU3JJrobRZn+NFbS0meMP1M7sxoXAYiUyz5rrwxqrs/m lbS6smlZUpi5m6+g89y8TEMgvir7B3N3a1moZez+MyT3U5Aabfd8WTluAoqvA0El RTRoFjbPD5Z8tCq31fHGsKbF6tiNN0FvR6eWZqxn4KJjfhzaaT7XsH1/6RzvmfM+ jowi7Qx+WPg0Ggf5+NIJhMwxiOdBh0OUlUDIlaZ3InItphDgAwTht1TfYwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFG56WVqCtfZ9V8yJfBgYk4IxWiPBMB8GA1UdIwQY MBaAFCB3mQJzKfImgnZFc68hFdqVqfa/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUhlWkFuTXA4aWFDZGtWenJ5RVYycFdwOXI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9mYzlmMmItN2YyZi00MjM4LWFhMTkt OThjYmE4ZmYyY2EzLzEvYm5wWldvSzE5bjFYeklsOEdCaVRnakZhSThFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9mYzlmMmItN2YyZi00MjM4LWFhMTktOThjYmE4ZmYyY2Ez LzEvSUhlWkFuTXA4aWFDZGtWenJ5RVYycFdwOXI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAgI MA0GCSqGSIb3DQEBCwUAA4IBAQBAJoIfz5yXOt3hZ5m6gwrq97CJSeVzkB1Mxy9y lbxb1p0WVHNcQYvdnJ5TiETAFJZNVKcbciaG87IXoRHLWa7K2Xe87nR2pWJYHZmH W7yr6NqtdbkWA/0jPm283ip/LUAzMFtJKhKuXE+nx5EO4/whNVFmqBmqahpDHyB/ kmKU5cKoFwsv8REPOMqpykhEZeX7eSsZMob0WfOzjq48qy1hv6Ue/luJDdWHlPy9 V+RtgedEfqwQiwZ74t2FXzw/vX9z5MWL5G3vwyIu9j5Eoi7L8EIPZBq4MSFzCvLK zTgBP5vVNvqcpmprJ/Jl0b7NLO4j9+2Qu5S6J8xSiHZ/MiHG -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:46 2026 by rpki-client