This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5dac30-8570-47b2-b26a-7f3a428171c7/1/vG7UQUChYLey5nR_Sv-0wx1TNeg.roa File: vG7UQUChYLey5nR_Sv-0wx1TNeg.roa (raw, json) Hash identifier: S15AVBuDsdwRGeDBytez+VIQASsm2pW1hwEeubDp1fA= Subject key identifier: BC:6E:D4:41:40:A1:60:B7:B2:E6:74:7F:4A:FF:B4:C3:1D:53:35:E8 Certificate issuer: /CN=922a1a67e2da7112d4559cd8dbd8141f8f3277e8 Certificate serial: 019B7A5AC83823B8776D6EB3EE756FCD1458 Authority key identifier: 92:2A:1A:67:E2:DA:71:12:D4:55:9C:D8:DB:D8:14:1F:8F:32:77:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kioaZ-LacRLUVZzY29gUH48yd-g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5dac30-8570-47b2-b26a-7f3a428171c7/1/vG7UQUChYLey5nR_Sv-0wx1TNeg.roa Signing time: Thu 01 Jan 2026 16:18:48 +0000 ROA not before: Thu 01 Jan 2026 16:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201321 IP address blocks: 2a13:5a07:ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/5dac30-8570-47b2-b26a-7f3a428171c7/1/kioaZ-LacRLUVZzY29gUH48yd-g.crl rsync://rpki.ripe.net/repository/DEFAULT/61/5dac30-8570-47b2-b26a-7f3a428171c7/1/kioaZ-LacRLUVZzY29gUH48yd-g.mft rsync://rpki.ripe.net/repository/DEFAULT/kioaZ-LacRLUVZzY29gUH48yd-g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:c8:38:23:b8:77:6d:6e:b3:ee:75:6f:cd:14:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=922a1a67e2da7112d4559cd8dbd8141f8f3277e8 Validity Not Before: Jan 1 16:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc6ed44140a160b7b2e6747f4affb4c31d5335e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:c8:7f:45:10:7d:56:45:bb:d3:ce:81:3b:21: 3b:4c:7c:74:7d:4c:90:55:99:94:0c:19:c1:c4:c6: d5:de:ba:b1:b8:c9:b1:8a:30:03:c3:5e:c5:5b:55: 41:19:16:85:23:91:98:90:bd:ef:93:eb:0f:7f:ae: 45:c9:af:68:80:f2:60:d2:28:a0:e4:05:59:fa:52: 1f:16:55:4d:2b:bf:a6:7c:d8:aa:11:9b:18:63:65: a8:6a:f2:b0:2a:9e:9b:ec:e7:f4:c2:da:34:83:f1: 7e:e7:f8:2c:40:c2:f3:9e:e9:75:d9:18:0e:d6:9c: 2a:c6:66:67:07:3a:1a:ae:91:c9:c7:fb:fa:18:60: 96:1e:17:cf:0f:50:ba:7b:96:22:be:3b:68:94:14: ab:8e:4d:74:65:50:7b:80:1f:8d:e5:c4:b0:7e:ac: 08:0c:23:ae:43:58:61:5f:3d:a6:cb:09:9d:fb:bc: f0:b6:2e:f1:32:8f:44:e2:25:db:48:a4:9c:d5:a8: f3:ce:9b:04:0e:e9:cd:7f:9f:7c:b7:0b:8d:29:a6: 42:d6:02:9d:70:0a:16:22:3a:a0:14:26:86:cb:23: 28:91:b6:f6:9d:77:66:ab:4d:e2:0b:b2:ad:f0:05: c5:80:c6:b0:f6:c4:d3:74:5c:26:5a:7f:c5:2e:30: 01:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:6E:D4:41:40:A1:60:B7:B2:E6:74:7F:4A:FF:B4:C3:1D:53:35:E8 X509v3 Authority Key Identifier: keyid:92:2A:1A:67:E2:DA:71:12:D4:55:9C:D8:DB:D8:14:1F:8F:32:77:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kioaZ-LacRLUVZzY29gUH48yd-g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5dac30-8570-47b2-b26a-7f3a428171c7/1/vG7UQUChYLey5nR_Sv-0wx1TNeg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5dac30-8570-47b2-b26a-7f3a428171c7/1/kioaZ-LacRLUVZzY29gUH48yd-g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:5a07:ff::/48 Signature Algorithm: sha256WithRSAEncryption 99:bf:b9:56:b7:8f:f4:8c:c2:26:cc:7e:69:29:72:ad:b4:2d: c1:d7:d4:16:67:7d:34:b8:8c:ef:4b:2a:8b:64:9f:3b:ff:26: 2d:0a:a7:2f:99:4e:27:e6:a4:eb:a7:60:22:86:38:f9:ec:5d: 84:13:ab:8d:bb:aa:c8:27:0e:96:36:48:da:98:ba:05:63:b6: 7d:51:d7:a8:e8:f9:c6:fc:b4:59:0a:9e:7d:68:fc:d0:d9:63: 82:47:c8:68:73:14:c6:8c:b9:a3:5a:fa:82:dd:ee:2b:bd:75: b9:be:fa:06:3c:d4:5c:1a:4a:b0:ea:61:25:a2:f8:fa:c4:a5: 4c:96:f4:e8:77:3e:cd:85:20:7c:4d:39:2e:d3:6f:c6:ba:08: 0d:33:60:ff:99:31:90:ca:f4:34:5f:e2:8f:6d:af:4f:88:54: c2:d6:f3:98:88:3f:7f:6d:88:c5:89:01:08:a9:11:91:10:30: d4:0e:61:af:af:3a:81:bc:25:50:54:2b:b8:64:44:3e:0d:fd: 49:ee:72:82:e0:8d:3c:c6:45:aa:b3:69:dd:e8:35:86:22:eb: c0:fd:95:62:f7:b2:68:47:89:e5:a9:fd:d9:44:d9:51:43:fc: e5:d4:cc:bd:a2:9f:9e:2c:9b:76:d6:c4:89:98:88:a1:86:18: 7e:da:7f:b8 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt6Wsg4I7h3bW6z7nVvzRRYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMmExYTY3ZTJkYTcxMTJkNDU1OWNkOGRiZDgxNDFmOGYz Mjc3ZTgwHhcNMjYwMTAxMTYxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzZlZDQ0MTQwYTE2MGI3YjJlNjc0N2Y0YWZmYjRjMzFkNTMzNWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhMh/RRB9VkW7086BOyE7THx0fUyQ VZmUDBnBxMbV3rqxuMmxijADw17FW1VBGRaFI5GYkL3vk+sPf65Fya9ogPJg0iig 5AVZ+lIfFlVNK7+mfNiqEZsYY2WoavKwKp6b7Of0wto0g/F+5/gsQMLznul12RgO 1pwqxmZnBzoarpHJx/v6GGCWHhfPD1C6e5YivjtolBSrjk10ZVB7gB+N5cSwfqwI DCOuQ1hhXz2mywmd+7zwti7xMo9E4iXbSKSc1ajzzpsEDunNf598twuNKaZC1gKd cAoWIjqgFCaGyyMokbb2nXdmq03iC7Kt8AXFgMaw9sTTdFwmWn/FLjABUwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLxu1EFAoWC3suZ0f0r/tMMdUzXoMB8GA1UdIwQY MBaAFJIqGmfi2nES1FWc2NvYFB+PMnfoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2lvYVotTGFjUkxVVlp6WTI5Z1VINDh5ZC1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZGFjMzAtODU3MC00N2IyLWIyNmEt N2YzYTQyODE3MWM3LzEvdkc3VVFVQ2hZTGV5NW5SX1N2LTB3eDFUTmVnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS81ZGFjMzAtODU3MC00N2IyLWIyNmEtN2YzYTQyODE3MWM3 LzEva2lvYVotTGFjUkxVVlp6WTI5Z1VINDh5ZC1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhNaBwD/ MA0GCSqGSIb3DQEBCwUAA4IBAQCZv7lWt4/0jMImzH5pKXKttC3B19QWZ300uIzv SyqLZJ87/yYtCqcvmU4n5qTrp2Aihjj57F2EE6uNu6rIJw6WNkjamLoFY7Z9Udeo 6PnG/LRZCp59aPzQ2WOCR8hocxTGjLmjWvqC3e4rvXW5vvoGPNRcGkqw6mElovj6 xKVMlvTodz7NhSB8TTku02/GuggNM2D/mTGQyvQ0X+KPba9PiFTC1vOYiD9/bYjF iQEIqRGREDDUDmGvrzqBvCVQVCu4ZEQ+Df1J7nKC4I08xkWqs2nd6DWGIuvA/ZVi 97JoR4nlqf3ZRNlRQ/zl1My9op+eLJt21sSJmIihhhh+2n+4 -----END CERTIFICATE-----Generated at Mon Feb 9 18:21:28 2026 by rpki-client