This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/1-6yxprrU4uaIf-t6dg83iszIusk.roa File: 1-6yxprrU4uaIf-t6dg83iszIusk.roa (raw, json) Hash identifier: E4cV83Mcbo6G1vQZTG0m3B+aRwks4252JTHD0pN9HWo= Subject key identifier: FB:AC:B1:A6:BA:D4:E2:E6:88:7F:EB:7A:76:0F:37:8A:CC:C8:BA:C9 Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430 Certificate serial: 019B7FF195AC7D38E92C70B537398888141A Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/1-6yxprrU4uaIf-t6dg83iszIusk.roa Signing time: Fri 02 Jan 2026 18:21:37 +0000 ROA not before: Fri 02 Jan 2026 18:21:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 64399 IP address blocks: 212.16.70.0/24 maxlen: 24 212.16.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.mft rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 23:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:95:ac:7d:38:e9:2c:70:b5:37:39:88:88:14:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430 Validity Not Before: Jan 2 18:21:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fbacb1a6bad4e2e6887feb7a760f378accc8bac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a1:61:ca:4a:91:75:ab:8b:1b:43:b3:fc:c2: ce:d2:94:c8:0b:9a:4c:25:f7:5e:de:91:ec:5e:98: bc:2e:e9:f5:6a:2f:a2:e4:13:f9:18:82:70:7a:6a: 58:e8:de:4f:49:1d:06:dc:e8:5f:76:35:52:c8:87: de:ce:b0:b4:4f:67:94:94:6d:ea:01:db:3c:89:33: a9:8f:7e:b0:8b:90:c0:14:c9:01:de:b3:20:86:d9: 79:0b:71:e6:43:81:97:25:17:30:49:0d:e1:7e:66: 04:8b:cd:47:87:36:8d:ce:47:b7:d4:5e:c1:a6:92: d5:1a:ee:92:d5:d9:1f:4f:bb:bb:91:cb:b0:be:b2: 2c:a4:10:3d:43:f2:f6:f1:cd:80:bd:d0:d3:94:50: cb:20:15:04:b3:6b:cb:7e:c9:ce:e3:14:fc:3b:16: bf:b4:86:82:dd:ab:40:6d:29:58:03:09:46:d9:9b: a5:58:89:df:75:92:42:4a:39:cc:2c:7f:f5:fd:3c: a7:e8:5b:90:3b:31:a9:2f:2e:f9:4e:55:63:20:00: b1:e1:b2:9a:cc:5f:b5:66:6c:60:a9:92:22:dc:a7: 82:c1:d3:32:37:55:68:31:54:05:9f:c0:f1:02:72: 97:75:97:75:4b:70:25:45:31:04:ca:69:51:3f:56: 06:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:AC:B1:A6:BA:D4:E2:E6:88:7F:EB:7A:76:0F:37:8A:CC:C8:BA:C9 X509v3 Authority Key Identifier: keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/1-6yxprrU4uaIf-t6dg83iszIusk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.16.70.0/24 212.16.73.0/24 Signature Algorithm: sha256WithRSAEncryption 36:8d:36:90:ec:25:86:0a:dd:69:23:7a:eb:fb:db:00:72:11: 90:7d:9c:e7:98:12:a7:9d:b7:ef:39:4b:20:83:67:ef:cf:a4: e6:7a:07:b7:76:3e:37:f3:bd:ac:18:a0:5b:85:08:98:d9:c4: 81:32:a6:0a:3c:06:e8:da:f9:c9:4c:f7:3d:00:00:f5:97:3e: bc:3e:13:ab:6c:f0:7f:70:c1:d9:42:e6:1b:59:1d:01:12:1c: 5b:cf:16:10:11:f2:56:41:14:89:24:f2:65:fd:8b:99:e2:18: 28:18:e2:df:11:a5:98:ee:c0:a7:7e:ca:36:f8:ba:57:99:8b: 88:6a:95:ca:5e:87:58:8e:32:09:74:44:1f:eb:16:04:a5:8a: 7e:fe:97:56:2a:79:31:f4:70:6b:6b:39:1c:da:a5:f0:a3:cb: 70:30:5f:02:57:51:58:8f:f7:7d:0f:db:99:bd:b1:21:98:28: 5b:da:4a:45:1d:9b:b5:9c:e4:3b:cc:93:df:4c:66:6f:44:ba: eb:a9:fb:66:dd:8a:d7:4b:5d:41:82:cd:29:b9:94:28:14:b2: 4b:0f:e1:36:11:df:09:9d:42:f9:c7:04:e9:dd:0f:d1:45:22: 3c:72:0d:6b:a7:3b:f0:dd:0e:5f:98:6c:4a:32:df:c3:62:b6: e7:96:be:82 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgISAZt/8ZWsfTjpLHC1NzmIiBQaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj NWY0MzAwHhcNMjYwMTAyMTgyMTM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYmFjYjFhNmJhZDRlMmU2ODg3ZmViN2E3NjBmMzc4YWNjYzhiYWM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyaFhykqRdauLG0Oz/MLO0pTIC5pM Jfde3pHsXpi8Lun1ai+i5BP5GIJwempY6N5PSR0G3OhfdjVSyIfezrC0T2eUlG3q Ads8iTOpj36wi5DAFMkB3rMghtl5C3HmQ4GXJRcwSQ3hfmYEi81HhzaNzke31F7B ppLVGu6S1dkfT7u7kcuwvrIspBA9Q/L28c2AvdDTlFDLIBUEs2vLfsnO4xT8Oxa/ tIaC3atAbSlYAwlG2ZulWInfdZJCSjnMLH/1/Tyn6FuQOzGpLy75TlVjIACx4bKa zF+1ZmxgqZIi3KeCwdMyN1VoMVQFn8DxAnKXdZd1S3AlRTEEymlRP1YGkQIDAQAB o4ICEDCCAgwwHQYDVR0OBBYEFPussaa61OLmiH/renYPN4rMyLrJMB8GA1UdIwQY MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt MmEwOWNjNTNhODA1LzEvMS02eXhwcnJVNHVhSWYtdDZkZzgzaXN6SXVzay5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNjEvNWY2OTA2LTNmYjAtNGRmZi04ZDAxLTJhMDljYzUzYTgw NS8xL3R5bEY5WEVERlRvSGhVNTA0aWZ5cnNIRjlEQS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEANQQRgME ANQQSTANBgkqhkiG9w0BAQsFAAOCAQEANo02kOwlhgrdaSN66/vbAHIRkH2c55gS p5237zlLIINn78+k5noHt3Y+N/O9rBigW4UImNnEgTKmCjwG6Nr5yUz3PQAA9Zc+ vD4Tq2zwf3DB2ULmG1kdARIcW88WEBHyVkEUiSTyZf2LmeIYKBji3xGlmO7Ap37K Nvi6V5mLiGqVyl6HWI4yCXREH+sWBKWKfv6XVip5MfRwa2s5HNql8KPLcDBfAldR WI/3fQ/bmb2xIZgoW9pKRR2btZzkO8yT30xmb0S666n7Zt2K10tdQYLNKbmUKBSy Sw/hNhHfCZ1C+ccE6d0P0UUiPHINa6c78N0OX5hsSjLfw2K255a+gg== -----END CERTIFICATE-----Generated at Wed Jan 21 04:04:59 2026 by rpki-client