This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/3b33e7-30b4-4149-9045-a0564c9d6fde/1/P6M-72-M_-Fh0sMTBYVf1Rshk-U.roa File: P6M-72-M_-Fh0sMTBYVf1Rshk-U.roa (raw, json) Hash identifier: YdZxjvUHxNyePgVOq7kiUc6TY9YPFuLkHb/SI6OEgJo= Subject key identifier: 3F:A3:3E:EF:6F:8C:FF:E1:61:D2:C3:13:05:85:5F:D5:1B:21:93:E5 Certificate issuer: /CN=c11909548695f18c04cb895e2aceeb1103e03e12 Certificate serial: 019B797DF889F98DDBAF3EE072B86D92BF76 Authority key identifier: C1:19:09:54:86:95:F1:8C:04:CB:89:5E:2A:CE:EB:11:03:E0:3E:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wRkJVIaV8YwEy4leKs7rEQPgPhI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/3b33e7-30b4-4149-9045-a0564c9d6fde/1/P6M-72-M_-Fh0sMTBYVf1Rshk-U.roa Signing time: Thu 01 Jan 2026 12:17:37 +0000 ROA not before: Thu 01 Jan 2026 12:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207515 IP address blocks: 84.252.106.0/24 maxlen: 24 2a10:1100::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/3b33e7-30b4-4149-9045-a0564c9d6fde/1/wRkJVIaV8YwEy4leKs7rEQPgPhI.crl rsync://rpki.ripe.net/repository/DEFAULT/58/3b33e7-30b4-4149-9045-a0564c9d6fde/1/wRkJVIaV8YwEy4leKs7rEQPgPhI.mft rsync://rpki.ripe.net/repository/DEFAULT/wRkJVIaV8YwEy4leKs7rEQPgPhI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7d:f8:89:f9:8d:db:af:3e:e0:72:b8:6d:92:bf:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c11909548695f18c04cb895e2aceeb1103e03e12 Validity Not Before: Jan 1 12:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3fa33eef6f8cffe161d2c31305855fd51b2193e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:0f:0e:cb:60:71:15:a0:e2:1f:3e:8a:78:95: 27:d6:f6:92:76:41:45:b3:a5:d2:4b:0e:1b:47:61: c4:e3:f2:b9:63:92:07:e1:1e:27:c4:d7:37:e3:db: 82:a9:ef:70:d4:24:09:97:38:17:22:a1:62:4c:e9: d8:8d:bd:58:9d:ad:75:68:e8:a5:93:a1:cf:58:13: f4:16:8d:69:53:ea:45:a8:d2:92:5d:83:3d:44:d4: 46:d3:b5:67:87:a3:9c:9f:1f:1b:40:53:2d:45:02: 43:ce:fd:ac:c4:dc:8b:01:93:c1:6b:10:e6:3a:0a: a1:d8:e3:31:31:52:3d:9d:54:0a:29:7e:1d:1b:ad: 9e:41:54:e1:74:4d:ad:e6:0a:05:5f:99:cd:31:ba: cc:62:5f:4c:29:f4:95:e9:45:f1:c3:9c:bc:60:9d: 7c:1e:d0:9b:2b:38:e1:83:dd:e1:7d:8d:ac:1c:ba: 27:0e:e1:35:82:7f:32:07:6e:45:ad:64:65:34:e7: 4e:f5:1f:29:03:1a:25:db:c0:54:3f:fe:c7:66:f2: e3:a9:49:e5:fa:5b:a8:3c:92:5a:e9:76:3f:4e:2d: 9a:e3:70:ab:18:59:25:82:aa:5c:dd:45:76:48:2a: a8:93:10:17:a0:d8:94:84:4e:1d:3d:e9:1f:2d:54: 7e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A3:3E:EF:6F:8C:FF:E1:61:D2:C3:13:05:85:5F:D5:1B:21:93:E5 X509v3 Authority Key Identifier: keyid:C1:19:09:54:86:95:F1:8C:04:CB:89:5E:2A:CE:EB:11:03:E0:3E:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wRkJVIaV8YwEy4leKs7rEQPgPhI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/3b33e7-30b4-4149-9045-a0564c9d6fde/1/P6M-72-M_-Fh0sMTBYVf1Rshk-U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/3b33e7-30b4-4149-9045-a0564c9d6fde/1/wRkJVIaV8YwEy4leKs7rEQPgPhI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.252.106.0/24 IPv6: 2a10:1100::/29 Signature Algorithm: sha256WithRSAEncryption 13:94:ed:6c:cb:e7:70:da:04:57:10:da:6b:97:46:7b:c7:bc: 14:38:55:32:34:61:89:5b:3d:be:8e:8b:3f:c7:c1:ac:e4:8b: b5:4b:4c:52:d3:c6:08:1c:ee:17:6f:2e:d6:c8:d7:21:ae:5e: 19:a6:10:5b:1f:a5:d3:fc:8e:e6:ef:45:ef:36:b6:6b:9c:2c: 5d:eb:9a:e8:9a:17:80:ec:51:f0:9d:8a:da:76:c2:ca:1e:01: e1:c5:c6:1d:c4:9e:9f:46:6c:b6:5f:28:73:55:36:30:17:1a: 7b:0c:4f:e9:72:7d:cb:4b:8e:7f:05:cc:ba:47:aa:43:75:16: 5b:73:cf:40:fd:7f:d4:7d:da:32:4a:47:93:8e:b1:25:1e:57: 90:fb:fe:f1:0a:78:c2:29:02:94:e3:82:fa:e2:8a:f9:0b:f9: fa:e5:8c:c5:11:25:ec:35:fd:5a:fe:89:9c:3e:e9:b8:a3:4a: 9a:1a:24:e3:5c:42:dd:8c:73:dc:22:a9:74:2a:21:74:03:96: 76:25:c8:dc:08:5b:79:98:ec:2f:2e:81:0a:a1:ba:0c:a0:d3: ef:b2:6a:99:09:1e:c0:bd:14:fa:92:b9:af:7b:5f:f1:d1:d3: 2a:52:7e:62:c4:39:e4:41:74:b7:ed:3a:99:cb:bc:48:2f:fc: cc:a7:88:f4 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5ffiJ+Y3brz7gcrhtkr92MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMxMTkwOTU0ODY5NWYxOGMwNGNiODk1ZTJhY2VlYjExMDNl MDNlMTIwHhcNMjYwMTAxMTIxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZmEzM2VlZjZmOGNmZmUxNjFkMmMzMTMwNTg1NWZkNTFiMjE5M2U1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlQ8Oy2BxFaDiHz6KeJUn1vaSdkFF s6XSSw4bR2HE4/K5Y5IH4R4nxNc349uCqe9w1CQJlzgXIqFiTOnYjb1Yna11aOil k6HPWBP0Fo1pU+pFqNKSXYM9RNRG07Vnh6Ocnx8bQFMtRQJDzv2sxNyLAZPBaxDm Ogqh2OMxMVI9nVQKKX4dG62eQVThdE2t5goFX5nNMbrMYl9MKfSV6UXxw5y8YJ18 HtCbKzjhg93hfY2sHLonDuE1gn8yB25FrWRlNOdO9R8pAxol28BUP/7HZvLjqUnl +luoPJJa6XY/Ti2a43CrGFklgqpc3UV2SCqokxAXoNiUhE4dPekfLVR+DwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFD+jPu9vjP/hYdLDEwWFX9UbIZPlMB8GA1UdIwQY MBaAFMEZCVSGlfGMBMuJXirO6xED4D4SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd1JrSlZJYVY4WXdFeTRsZUtzN3JFUVBnUGhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8zYjMzZTctMzBiNC00MTQ5LTkwNDUt YTA1NjRjOWQ2ZmRlLzEvUDZNLTcyLU1fLUZoMHNNVEJZVmYxUnNoay1VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8zYjMzZTctMzBiNC00MTQ5LTkwNDUtYTA1NjRjOWQ2ZmRl LzEvd1JrSlZJYVY4WXdFeTRsZUtzN3JFUVBnUGhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAVPxqMA0E AgACMAcDBQMqEBEAMA0GCSqGSIb3DQEBCwUAA4IBAQATlO1sy+dw2gRXENprl0Z7 x7wUOFUyNGGJWz2+jos/x8Gs5Iu1S0xS08YIHO4Xby7WyNchrl4ZphBbH6XT/I7m 70XvNrZrnCxd65romheA7FHwnYradsLKHgHhxcYdxJ6fRmy2XyhzVTYwFxp7DE/p cn3LS45/Bcy6R6pDdRZbc89A/X/UfdoySkeTjrElHleQ+/7xCnjCKQKU44L64or5 C/n65YzFESXsNf1a/omcPum4o0qaGiTjXELdjHPcIql0KiF0A5Z2JcjcCFt5mOwv LoEKoboMoNPvsmqZCR7AvRT6krmve1/x0dMqUn5ixDnkQXS37TqZy7xIL/zMp4j0 -----END CERTIFICATE-----Generated at Fri Jan 2 20:47:54 2026 by rpki-client