This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/c3e6df-0815-4d33-b08c-caeb1c2809a8/1/6MfKKf2IUxjzK9rGH3KF2G1QL9M.roa File: 6MfKKf2IUxjzK9rGH3KF2G1QL9M.roa (raw, json) Hash identifier: AZP6WDTbAtRSZjdJJBnQi95805CtU4wIt7uYQkYZy2M= Subject key identifier: E8:C7:CA:29:FD:88:53:18:F3:2B:DA:C6:1F:72:85:D8:6D:50:2F:D3 Certificate issuer: /CN=342529a609005834dc10b5b800fe5310c58cc47e Certificate serial: 019B79ECCC3CCCAC090B58EF8E1B552EE419 Authority key identifier: 34:25:29:A6:09:00:58:34:DC:10:B5:B8:00:FE:53:10:C5:8C:C4:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NCUppgkAWDTcELW4AP5TEMWMxH4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/c3e6df-0815-4d33-b08c-caeb1c2809a8/1/6MfKKf2IUxjzK9rGH3KF2G1QL9M.roa Signing time: Thu 01 Jan 2026 14:18:40 +0000 ROA not before: Thu 01 Jan 2026 14:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60781 IP address blocks: 109.70.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/c3e6df-0815-4d33-b08c-caeb1c2809a8/1/NCUppgkAWDTcELW4AP5TEMWMxH4.crl rsync://rpki.ripe.net/repository/DEFAULT/58/c3e6df-0815-4d33-b08c-caeb1c2809a8/1/NCUppgkAWDTcELW4AP5TEMWMxH4.mft rsync://rpki.ripe.net/repository/DEFAULT/NCUppgkAWDTcELW4AP5TEMWMxH4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:cc:3c:cc:ac:09:0b:58:ef:8e:1b:55:2e:e4:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342529a609005834dc10b5b800fe5310c58cc47e Validity Not Before: Jan 1 14:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e8c7ca29fd885318f32bdac61f7285d86d502fd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:48:28:26:c0:e3:db:1a:8f:56:e3:57:66:8a: ae:0c:49:47:04:9d:34:dd:fa:a6:b4:14:c8:20:20: c3:87:ba:1d:0e:e7:7e:62:72:a2:b9:f9:da:31:0e: e4:15:ad:86:3f:99:92:52:22:e2:db:c2:1d:ce:2f: 11:ca:8a:a4:09:41:5a:a4:dc:b0:14:02:98:50:e6: 37:7f:62:66:cf:9a:d3:f7:01:af:1d:cf:29:51:fa: b2:f8:1b:72:50:3f:cc:82:ca:38:0e:9f:61:28:2e: ee:a9:2c:2e:58:a5:33:5b:78:81:0a:72:72:49:71: 42:59:ba:6b:91:5e:33:a4:45:9d:d0:0d:a9:34:03: e2:c2:ed:52:d4:f5:3f:68:a5:a4:fd:b6:e2:89:43: 4e:b6:1e:16:8e:ad:11:78:d8:9e:07:77:01:90:b0: 82:d9:57:03:b5:a9:b9:cd:3d:fe:f8:ce:7c:cd:b2: 50:ca:aa:fd:7f:dd:aa:5d:56:aa:f6:8c:e3:83:55: fe:73:34:3b:60:51:fa:5f:5b:ef:42:3e:c4:9c:4a: 2f:0d:57:58:6f:a6:57:a5:fb:df:73:38:3f:f5:93: 7a:0f:d0:be:fa:86:98:95:eb:13:ed:5d:39:36:d1: 02:df:36:14:2a:d7:09:eb:54:3f:df:f5:1f:63:e2: ee:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C7:CA:29:FD:88:53:18:F3:2B:DA:C6:1F:72:85:D8:6D:50:2F:D3 X509v3 Authority Key Identifier: keyid:34:25:29:A6:09:00:58:34:DC:10:B5:B8:00:FE:53:10:C5:8C:C4:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NCUppgkAWDTcELW4AP5TEMWMxH4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/c3e6df-0815-4d33-b08c-caeb1c2809a8/1/6MfKKf2IUxjzK9rGH3KF2G1QL9M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/c3e6df-0815-4d33-b08c-caeb1c2809a8/1/NCUppgkAWDTcELW4AP5TEMWMxH4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.70.73.0/24 Signature Algorithm: sha256WithRSAEncryption 23:c6:fb:64:e3:f9:83:da:b8:55:1f:b2:73:c5:04:65:ea:55: bd:96:90:21:0a:f8:be:09:f1:8b:d0:ac:c9:23:2e:94:93:24: 9b:ba:d9:d3:26:69:51:6c:5c:b0:25:f7:e0:04:55:a3:67:f1: 21:33:62:8d:5a:be:82:09:a9:0c:b0:87:0c:2a:99:21:48:01: 9c:27:e5:82:d7:b2:a1:78:67:f3:a1:4b:ae:25:d4:53:4d:9a: ed:5e:72:90:1b:04:46:3b:42:74:9d:79:ef:44:c2:ee:be:75: 61:c1:16:03:a8:96:84:77:78:2e:db:5e:96:40:30:62:a1:4f: 1b:4b:b4:a5:28:40:c4:43:7e:9d:62:f9:35:4d:00:f5:c9:83: 53:1e:65:e2:e3:1b:39:84:08:e6:7c:99:f2:cc:73:94:5a:0e: 04:31:e4:82:9c:56:da:f0:11:95:05:25:41:91:f9:16:4f:36: 31:8c:bb:80:bc:0b:83:8d:66:0d:ba:46:70:66:53:4f:3d:27: 9f:e1:5b:15:e4:9f:36:98:4a:69:55:69:7a:18:70:06:f2:e9: 67:66:f5:da:bd:a9:31:8a:94:54:45:28:85:8e:35:3c:9b:1c: ba:db:c8:5d:5b:8a:01:db:c9:cd:6c:3b:5a:2b:e4:dc:0a:84: 3e:52:fc:fa -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57Mw8zKwJC1jvjhtVLuQZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0MjUyOWE2MDkwMDU4MzRkYzEwYjViODAwZmU1MzEwYzU4 Y2M0N2UwHhcNMjYwMTAxMTQxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlOGM3Y2EyOWZkODg1MzE4ZjMyYmRhYzYxZjcyODVkODZkNTAyZmQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0goJsDj2xqPVuNXZoquDElHBJ00 3fqmtBTIICDDh7odDud+YnKiufnaMQ7kFa2GP5mSUiLi28Idzi8RyoqkCUFapNyw FAKYUOY3f2Jmz5rT9wGvHc8pUfqy+BtyUD/Mgso4Dp9hKC7uqSwuWKUzW3iBCnJy SXFCWbprkV4zpEWd0A2pNAPiwu1S1PU/aKWk/bbiiUNOth4Wjq0ReNieB3cBkLCC 2VcDtam5zT3++M58zbJQyqr9f92qXVaq9ozjg1X+czQ7YFH6X1vvQj7EnEovDVdY b6ZXpfvfczg/9ZN6D9C++oaYlesT7V05NtEC3zYUKtcJ61Q/3/UfY+LuzwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOjHyin9iFMY8yvaxh9yhdhtUC/TMB8GA1UdIwQY MBaAFDQlKaYJAFg03BC1uAD+UxDFjMR+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkNVcHBna0FXRFRjRUxXNEFQNVRFTVdNeEg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9jM2U2ZGYtMDgxNS00ZDMzLWIwOGMt Y2FlYjFjMjgwOWE4LzEvNk1mS0tmMklVeGp6SzlyR0gzS0YyRzFRTDlNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC9jM2U2ZGYtMDgxNS00ZDMzLWIwOGMtY2FlYjFjMjgwOWE4 LzEvTkNVcHBna0FXRFRjRUxXNEFQNVRFTVdNeEg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbUZJMA0G CSqGSIb3DQEBCwUAA4IBAQAjxvtk4/mD2rhVH7JzxQRl6lW9lpAhCvi+CfGL0KzJ Iy6UkySbutnTJmlRbFywJffgBFWjZ/EhM2KNWr6CCakMsIcMKpkhSAGcJ+WC17Kh eGfzoUuuJdRTTZrtXnKQGwRGO0J0nXnvRMLuvnVhwRYDqJaEd3gu216WQDBioU8b S7SlKEDEQ36dYvk1TQD1yYNTHmXi4xs5hAjmfJnyzHOUWg4EMeSCnFba8BGVBSVB kfkWTzYxjLuAvAuDjWYNukZwZlNPPSef4VsV5J82mEppVWl6GHAG8ulnZvXavakx ipRURSiFjjU8mxy628hdW4oB28nNbDtaK+TcCoQ+Uvz6 -----END CERTIFICATE-----Generated at Mon Jan 19 16:52:02 2026 by rpki-client