This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/9fb7ab-f3cb-47fc-9a14-06cdeb38f7b6/1/bILTlSPGWMGMY_1Qfmo1vE-bgOc.roa File: bILTlSPGWMGMY_1Qfmo1vE-bgOc.roa (raw, json) Hash identifier: t48mqB2NaYieA0CKr3J9wx4iPJRQZqgCszx9KbMiWRM= Subject key identifier: 6C:82:D3:95:23:C6:58:C1:8C:63:FD:50:7E:6A:35:BC:4F:9B:80:E7 Certificate issuer: /CN=8cfdefeced5cee8f1a6c93798e5a34b621f6dc0b Certificate serial: 019B7DC8A27E440C235D25AD17CE64B2CD2C Authority key identifier: 8C:FD:EF:EC:ED:5C:EE:8F:1A:6C:93:79:8E:5A:34:B6:21:F6:DC:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jP3v7O1c7o8abJN5jlo0tiH23As.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/9fb7ab-f3cb-47fc-9a14-06cdeb38f7b6/1/bILTlSPGWMGMY_1Qfmo1vE-bgOc.roa Signing time: Fri 02 Jan 2026 08:17:39 +0000 ROA not before: Fri 02 Jan 2026 08:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204003 IP address blocks: 2001:67c:20ec::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/9fb7ab-f3cb-47fc-9a14-06cdeb38f7b6/1/jP3v7O1c7o8abJN5jlo0tiH23As.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/9fb7ab-f3cb-47fc-9a14-06cdeb38f7b6/1/jP3v7O1c7o8abJN5jlo0tiH23As.mft rsync://rpki.ripe.net/repository/DEFAULT/jP3v7O1c7o8abJN5jlo0tiH23As.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c8:a2:7e:44:0c:23:5d:25:ad:17:ce:64:b2:cd:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8cfdefeced5cee8f1a6c93798e5a34b621f6dc0b Validity Not Before: Jan 2 08:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6c82d39523c658c18c63fd507e6a35bc4f9b80e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:08:e5:50:9a:78:3c:e6:bc:3b:8b:fa:15:e8: b6:85:00:11:57:1f:9b:b2:31:3f:a9:88:3a:8c:6c: 15:ee:b4:e5:c0:36:72:f4:8e:cd:f7:c5:07:21:6a: 26:cc:82:89:4b:8a:30:9c:1f:7d:52:40:c0:d4:b6: 84:2f:63:e8:ef:a2:71:6e:9e:7c:c1:20:3a:5e:84: 44:1e:88:73:b8:50:f8:34:a1:41:56:76:f8:8c:cc: 66:14:2d:89:a2:ad:e5:a2:0e:49:40:e8:28:ee:46: f5:5b:40:87:3d:78:6c:d9:18:92:93:b5:93:b9:ce: c1:ad:f7:ab:1f:f9:66:0b:e9:e7:34:b2:ac:5f:89: a8:74:0d:fa:02:36:75:c8:dc:78:8f:45:54:2b:da: c6:22:c1:9b:55:7d:86:49:a0:c7:62:58:05:6d:e3: 95:6e:39:34:eb:4a:a1:2c:ce:c5:aa:b1:f3:95:f5: 5f:a5:0c:db:43:46:de:3e:26:86:a5:f6:0e:43:53: 4f:92:a2:a7:d8:12:d7:7d:e6:14:a3:01:dc:f8:28: 95:9d:cc:9d:0a:a7:57:f2:a0:9a:7c:54:23:14:ce: 72:29:13:9c:14:88:30:d4:cb:be:0d:63:05:56:bc: 6b:94:f5:68:2b:13:de:f4:f8:78:e3:80:2b:c2:2f: ff:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:82:D3:95:23:C6:58:C1:8C:63:FD:50:7E:6A:35:BC:4F:9B:80:E7 X509v3 Authority Key Identifier: keyid:8C:FD:EF:EC:ED:5C:EE:8F:1A:6C:93:79:8E:5A:34:B6:21:F6:DC:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jP3v7O1c7o8abJN5jlo0tiH23As.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9fb7ab-f3cb-47fc-9a14-06cdeb38f7b6/1/bILTlSPGWMGMY_1Qfmo1vE-bgOc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9fb7ab-f3cb-47fc-9a14-06cdeb38f7b6/1/jP3v7O1c7o8abJN5jlo0tiH23As.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:20ec::/48 Signature Algorithm: sha256WithRSAEncryption 3a:aa:3b:0c:b8:a1:d6:1b:e1:5a:e1:e9:ea:67:da:a1:0a:24: bd:99:89:42:53:d4:90:30:79:db:66:0c:6f:9b:b1:29:62:aa: e9:ce:4b:b3:98:12:69:90:06:8b:ff:20:52:59:75:a7:82:ab: f2:33:a7:e6:7a:d3:2b:c8:55:0a:dd:1f:d2:54:cc:ef:d5:01: 9c:d0:d1:de:54:3b:e9:31:6b:a3:48:27:e1:aa:2a:cd:03:43: 01:30:1d:14:57:af:74:45:14:60:9c:7d:37:7f:99:4e:82:c2: 5d:8c:a4:51:67:1e:47:91:8a:83:2e:ab:b7:1f:a7:31:b7:1f: 2f:25:1b:58:09:54:8e:db:76:73:9a:8a:d7:54:b4:87:bc:a5: 5b:3b:bc:4a:8f:15:80:0b:96:f1:01:9b:46:ef:d3:cd:16:8d: de:a1:a1:b8:7a:8b:b2:83:d5:23:44:79:a3:e7:18:ab:32:64: 5c:23:f8:31:09:13:fa:14:96:2e:48:1f:e0:03:13:43:b5:95: 13:54:8b:48:cf:c4:b0:01:a5:4c:4c:cc:56:f5:eb:30:b6:cd: 09:2b:ae:9d:1c:22:81:74:79:4e:b7:b2:81:bb:2d:48:af:08: 8b:ae:89:bd:be:62:37:ed:cb:fc:51:a5:6b:db:ed:05:1e:87: a4:71:68:5c -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9yKJ+RAwjXSWtF85kss0sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhjZmRlZmVjZWQ1Y2VlOGYxYTZjOTM3OThlNWEzNGI2MjFm NmRjMGIwHhcNMjYwMTAyMDgxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YzgyZDM5NTIzYzY1OGMxOGM2M2ZkNTA3ZTZhMzViYzRmOWI4MGU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1wjlUJp4POa8O4v6Fei2hQARVx+b sjE/qYg6jGwV7rTlwDZy9I7N98UHIWomzIKJS4ownB99UkDA1LaEL2Po76Jxbp58 wSA6XoREHohzuFD4NKFBVnb4jMxmFC2Joq3log5JQOgo7kb1W0CHPXhs2RiSk7WT uc7BrferH/lmC+nnNLKsX4modA36AjZ1yNx4j0VUK9rGIsGbVX2GSaDHYlgFbeOV bjk060qhLM7FqrHzlfVfpQzbQ0bePiaGpfYOQ1NPkqKn2BLXfeYUowHc+CiVncyd CqdX8qCafFQjFM5yKROcFIgw1Mu+DWMFVrxrlPVoKxPe9Ph444Arwi//+wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFGyC05UjxljBjGP9UH5qNbxPm4DnMB8GA1UdIwQY MBaAFIz97+ztXO6PGmyTeY5aNLYh9twLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvalAzdjdPMWM3bzhhYkpONWpsbzB0aUgyM0FzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS85ZmI3YWItZjNjYi00N2ZjLTlhMTQt MDZjZGViMzhmN2I2LzEvYklMVGxTUEdXTUdNWV8xUWZtbzF2RS1iZ09jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS85ZmI3YWItZjNjYi00N2ZjLTlhMTQtMDZjZGViMzhmN2I2 LzEvalAzdjdPMWM3bzhhYkpONWpsbzB0aUgyM0FzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCDs MA0GCSqGSIb3DQEBCwUAA4IBAQA6qjsMuKHWG+Fa4enqZ9qhCiS9mYlCU9SQMHnb Zgxvm7EpYqrpzkuzmBJpkAaL/yBSWXWngqvyM6fmetMryFUK3R/SVMzv1QGc0NHe VDvpMWujSCfhqirNA0MBMB0UV690RRRgnH03f5lOgsJdjKRRZx5HkYqDLqu3H6cx tx8vJRtYCVSO23ZzmorXVLSHvKVbO7xKjxWAC5bxAZtG79PNFo3eoaG4eouyg9Uj RHmj5xirMmRcI/gxCRP6FJYuSB/gAxNDtZUTVItIz8SwAaVMTMxW9eswts0JK66d HCKBdHlOt7KBuy1IrwiLrom9vmI37cv8UaVr2+0FHoekcWhc -----END CERTIFICATE-----Generated at Mon Feb 2 08:07:45 2026 by rpki-client