This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/005a47-b13c-42d7-8332-d099617beb56/1/_I0ELtqqH9_1AnQxXz6nDa_MLb0.roa File: _I0ELtqqH9_1AnQxXz6nDa_MLb0.roa (raw, json) Hash identifier: 1LUJQ/J1lHS6C7fhnj/l9wTpaJ2jMriIIAsUqH5einU= Subject key identifier: FC:8D:04:2E:DA:AA:1F:DF:F5:02:74:31:5F:3E:A7:0D:AF:CC:2D:BD Certificate issuer: /CN=be3f74f2b6e4e28e9ff6ca3cca3a5d78ca2cad6a Certificate serial: 019B7B36EE062A002246718C875D55056F68 Authority key identifier: BE:3F:74:F2:B6:E4:E2:8E:9F:F6:CA:3C:CA:3A:5D:78:CA:2C:AD:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vj908rbk4o6f9so8yjpdeMosrWo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/005a47-b13c-42d7-8332-d099617beb56/1/_I0ELtqqH9_1AnQxXz6nDa_MLb0.roa Signing time: Thu 01 Jan 2026 20:19:15 +0000 ROA not before: Thu 01 Jan 2026 20:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 2001:678:934::/48 maxlen: 48 2001:67c:bf0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/005a47-b13c-42d7-8332-d099617beb56/1/vj908rbk4o6f9so8yjpdeMosrWo.crl rsync://rpki.ripe.net/repository/DEFAULT/54/005a47-b13c-42d7-8332-d099617beb56/1/vj908rbk4o6f9so8yjpdeMosrWo.mft rsync://rpki.ripe.net/repository/DEFAULT/vj908rbk4o6f9so8yjpdeMosrWo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:ee:06:2a:00:22:46:71:8c:87:5d:55:05:6f:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be3f74f2b6e4e28e9ff6ca3cca3a5d78ca2cad6a Validity Not Before: Jan 1 20:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fc8d042edaaa1fdff50274315f3ea70dafcc2dbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d4:22:c9:11:27:85:ca:10:9d:34:f0:4b:8b: 08:9d:98:20:6a:f4:73:7e:58:eb:06:55:1a:59:59: a1:4f:67:e8:a3:dd:09:eb:e1:8e:ae:72:b9:c1:53: 05:7a:a2:48:7b:66:5a:ee:cd:9b:ee:8c:b4:6a:85: aa:24:52:ec:07:6c:ff:8b:11:cb:a1:7e:1f:a3:34: b7:07:57:3d:50:a7:6b:f3:19:f2:44:c2:5c:59:4a: 16:13:37:bf:7f:76:09:fb:85:e6:6a:e9:b3:76:9e: e2:23:52:66:03:29:bf:1c:20:d2:46:3f:29:32:7d: ed:c9:20:02:70:00:f5:6f:80:d1:80:4b:c8:cf:3c: d6:e6:03:aa:5a:9e:18:ff:04:5c:d0:ad:f4:95:a5: 48:f4:e9:94:73:46:a3:6b:48:27:49:c5:b2:9f:bf: d8:1c:04:1c:a6:1f:7b:0f:e7:d5:f6:5b:3f:f0:52: 87:31:85:7b:79:b4:93:ac:65:3b:de:f4:b2:df:d0: 16:e5:84:14:75:83:2b:d5:76:fa:88:62:cc:35:df: 11:ee:27:3d:89:86:a6:29:3e:09:ef:7e:33:a4:0a: 18:e3:0c:d5:7d:3c:f8:1b:96:6b:dc:e0:d9:d8:08: 6b:b4:93:81:1c:b2:ef:31:f5:58:c2:aa:ac:ff:41: d4:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:8D:04:2E:DA:AA:1F:DF:F5:02:74:31:5F:3E:A7:0D:AF:CC:2D:BD X509v3 Authority Key Identifier: keyid:BE:3F:74:F2:B6:E4:E2:8E:9F:F6:CA:3C:CA:3A:5D:78:CA:2C:AD:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vj908rbk4o6f9so8yjpdeMosrWo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/005a47-b13c-42d7-8332-d099617beb56/1/_I0ELtqqH9_1AnQxXz6nDa_MLb0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/005a47-b13c-42d7-8332-d099617beb56/1/vj908rbk4o6f9so8yjpdeMosrWo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:934::/48 2001:67c:bf0::/48 Signature Algorithm: sha256WithRSAEncryption 0f:a5:40:18:56:da:10:14:59:25:0c:46:03:59:3d:d7:89:ee: c3:6d:b6:58:5e:5d:35:2f:6b:21:a2:07:d3:ff:be:15:42:53: a9:dd:b4:e0:a5:d6:89:d8:f4:ca:51:4c:a9:de:09:9f:43:20: 80:d9:1d:5f:aa:39:4a:be:67:64:6a:36:ed:78:01:e2:a9:cc: 22:68:c7:fc:8b:98:10:50:11:21:71:41:61:15:9c:d4:9e:a9: 25:7d:16:f3:26:7a:76:71:fd:d0:33:1e:29:cb:d9:bc:9e:c4: 26:04:19:b1:9f:25:de:a6:11:81:a6:19:26:b8:2a:c8:de:16: 51:a7:06:71:b9:84:81:e8:1f:3f:47:a8:f6:b5:cb:f2:a9:31: 63:ee:db:bb:c4:ff:b4:ff:48:39:f3:e2:7d:a3:4b:01:f1:d5: fa:4f:ba:9c:2f:83:16:ac:bf:eb:b0:eb:a3:9d:5c:89:a9:a8: 66:cd:2a:ce:4d:cb:4f:23:89:29:84:49:d7:8a:a6:fc:1c:48: 01:64:b2:f7:42:6b:c1:8e:7e:d9:04:83:3a:d8:d5:be:7b:cb: 28:50:cf:c3:39:53:ef:19:9c:1e:be:23:86:99:70:20:db:cf: 3b:99:5a:8e:35:33:73:22:ce:00:ff:ab:3f:fd:e6:4a:10:44: 25:c2:b0:20 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt7Nu4GKgAiRnGMh11VBW9oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlM2Y3NGYyYjZlNGUyOGU5ZmY2Y2EzY2NhM2E1ZDc4Y2Ey Y2FkNmEwHhcNMjYwMTAxMjAxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYzhkMDQyZWRhYWExZmRmZjUwMjc0MzE1ZjNlYTcwZGFmY2MyZGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNQiyREnhcoQnTTwS4sInZggavRz fljrBlUaWVmhT2foo90J6+GOrnK5wVMFeqJIe2Za7s2b7oy0aoWqJFLsB2z/ixHL oX4fozS3B1c9UKdr8xnyRMJcWUoWEze/f3YJ+4Xmaumzdp7iI1JmAym/HCDSRj8p Mn3tySACcAD1b4DRgEvIzzzW5gOqWp4Y/wRc0K30laVI9OmUc0aja0gnScWyn7/Y HAQcph97D+fV9ls/8FKHMYV7ebSTrGU73vSy39AW5YQUdYMr1Xb6iGLMNd8R7ic9 iYamKT4J734zpAoY4wzVfTz4G5Zr3ODZ2AhrtJOBHLLvMfVYwqqs/0HUHwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFPyNBC7aqh/f9QJ0MV8+pw2vzC29MB8GA1UdIwQY MBaAFL4/dPK25OKOn/bKPMo6XXjKLK1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmo5MDhyYms0bzZmOXNvOHlqcGRlTW9zcldvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8wMDVhNDctYjEzYy00MmQ3LTgzMzIt ZDA5OTYxN2JlYjU2LzEvX0kwRUx0cXFIOV8xQW5ReFh6Nm5EYV9NTGIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC8wMDVhNDctYjEzYy00MmQ3LTgzMzItZDA5OTYxN2JlYjU2 LzEvdmo5MDhyYms0bzZmOXNvOHlqcGRlTW9zcldvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAIAEGeAk0 AwcAIAEGfAvwMA0GCSqGSIb3DQEBCwUAA4IBAQAPpUAYVtoQFFklDEYDWT3Xie7D bbZYXl01L2shogfT/74VQlOp3bTgpdaJ2PTKUUyp3gmfQyCA2R1fqjlKvmdkajbt eAHiqcwiaMf8i5gQUBEhcUFhFZzUnqklfRbzJnp2cf3QMx4py9m8nsQmBBmxnyXe phGBphkmuCrI3hZRpwZxuYSB6B8/R6j2tcvyqTFj7tu7xP+0/0g58+J9o0sB8dX6 T7qcL4MWrL/rsOujnVyJqahmzSrOTctPI4kphEnXiqb8HEgBZLL3QmvBjn7ZBIM6 2NW+e8soUM/DOVPvGZweviOGmXAg2887mVqONTNzIs4A/6s//eZKEEQlwrAg -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:40 2026 by rpki-client