This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/258dae-54fa-4a33-a19d-e91b3abd1fe8/1/1-l1XYb54g6dJ2IJlw79HqDOL1T8.roa File: 1-l1XYb54g6dJ2IJlw79HqDOL1T8.roa (raw, json) Hash identifier: 4KNw2FZJhBfZz/48eB8kUaq/nOVXJqe8YKN+AfMvBMc= Subject key identifier: FA:5D:57:61:BE:78:83:A7:49:D8:82:65:C3:BF:47:A8:33:8B:D5:3F Certificate issuer: /CN=6fa64a647bd2a5557f70f676adcc76904fb872ab Certificate serial: 019B7CECF6B75E43F426E2C0EDE59841BFCA Authority key identifier: 6F:A6:4A:64:7B:D2:A5:55:7F:70:F6:76:AD:CC:76:90:4F:B8:72:AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b6ZKZHvSpVV_cPZ2rcx2kE-4cqs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/258dae-54fa-4a33-a19d-e91b3abd1fe8/1/1-l1XYb54g6dJ2IJlw79HqDOL1T8.roa Signing time: Fri 02 Jan 2026 04:17:42 +0000 ROA not before: Fri 02 Jan 2026 04:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213407 IP address blocks: 2a14:9400:230::/48 maxlen: 48 2a14:9400:250::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/258dae-54fa-4a33-a19d-e91b3abd1fe8/1/b6ZKZHvSpVV_cPZ2rcx2kE-4cqs.crl rsync://rpki.ripe.net/repository/DEFAULT/64/258dae-54fa-4a33-a19d-e91b3abd1fe8/1/b6ZKZHvSpVV_cPZ2rcx2kE-4cqs.mft rsync://rpki.ripe.net/repository/DEFAULT/b6ZKZHvSpVV_cPZ2rcx2kE-4cqs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:f6:b7:5e:43:f4:26:e2:c0:ed:e5:98:41:bf:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6fa64a647bd2a5557f70f676adcc76904fb872ab Validity Not Before: Jan 2 04:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fa5d5761be7883a749d88265c3bf47a8338bd53f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ae:16:bf:ec:e7:1e:2d:c0:1f:bd:f9:a1:d2: 9b:15:94:55:dd:e7:bb:ab:ce:68:7f:95:df:e7:b9: 51:10:bf:6f:03:49:54:9a:e0:93:a8:8f:5b:5e:11: ea:cc:a7:80:1f:40:97:9e:a2:b7:41:f8:b7:85:77: 6d:91:4e:18:e1:8a:50:f8:23:84:c1:40:aa:78:84: 76:49:66:db:8c:10:96:b3:f5:8d:d8:b6:74:d8:bd: b7:82:9c:02:2f:c1:b4:53:53:91:0e:2f:a8:5e:2e: 7c:36:e8:fa:99:96:94:f4:d2:bf:a1:60:06:58:1a: 46:53:7a:5e:b5:ed:b7:d7:f4:ae:8a:4e:6b:56:a0: da:29:bf:2f:ad:d2:6f:08:06:2b:c3:96:e0:1a:d0: b5:ee:b0:00:4d:03:42:fc:2d:31:e1:dd:32:40:9d: 8e:58:f7:e0:f3:ec:32:c1:17:aa:f9:94:06:39:e1: 30:4c:96:92:d8:d0:41:0e:69:ae:cc:ef:d9:65:4a: 7c:82:7d:2e:fd:fa:40:58:f6:bb:77:d4:8d:36:fe: db:2e:00:6b:8d:d5:56:eb:ae:ce:4a:4a:30:39:0e: f2:29:66:ba:96:6c:6b:75:27:1b:7b:02:75:94:7e: 45:02:0b:b5:ef:78:ab:06:4a:77:32:ab:ff:73:b4: 5f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:5D:57:61:BE:78:83:A7:49:D8:82:65:C3:BF:47:A8:33:8B:D5:3F X509v3 Authority Key Identifier: keyid:6F:A6:4A:64:7B:D2:A5:55:7F:70:F6:76:AD:CC:76:90:4F:B8:72:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6ZKZHvSpVV_cPZ2rcx2kE-4cqs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/258dae-54fa-4a33-a19d-e91b3abd1fe8/1/1-l1XYb54g6dJ2IJlw79HqDOL1T8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/258dae-54fa-4a33-a19d-e91b3abd1fe8/1/b6ZKZHvSpVV_cPZ2rcx2kE-4cqs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:9400:230::/48 2a14:9400:250::/48 Signature Algorithm: sha256WithRSAEncryption 4c:f5:34:28:b5:57:71:1d:a5:22:4e:6a:8b:37:99:70:ac:55: ff:b5:c3:70:41:27:23:b7:86:bc:a1:42:f4:68:c2:2d:66:c8: df:e1:2d:c3:37:5c:25:ac:55:b0:18:46:7a:d1:64:37:9d:a3: c4:b3:95:f6:ef:5d:ff:94:78:cb:b6:2a:54:8b:7b:1c:13:41: 82:bc:08:0a:8d:ba:97:3a:d8:1b:7c:07:84:ed:43:9a:0d:c9: 3a:f3:0c:8e:89:44:2c:df:43:be:29:ff:ec:6c:d0:4e:b1:33: e3:14:bf:10:e4:42:f3:96:14:41:54:97:b7:74:10:54:66:bc: 5a:eb:20:ea:87:0d:0f:bc:02:a6:57:38:87:32:bb:2e:46:ff: 2a:67:7c:c2:2d:7b:24:6b:d4:0c:0b:1b:90:36:07:5b:0a:58: 51:2b:80:dd:1f:c9:6e:9a:05:c8:8b:00:d9:0b:c6:eb:59:44: e5:1f:f5:0d:06:12:36:9d:7a:36:da:8f:01:ec:13:f7:d5:89: 16:31:e7:d4:aa:86:b8:84:81:1e:5f:1a:a2:f4:7b:9c:23:fe: 7e:04:5d:21:72:e2:19:c9:1d:18:fb:27:99:f4:c2:53:ea:48: 04:d9:15:3d:76:86:d7:b5:50:f5:4a:6b:ab:38:9f:d7:b1:6a: 95:3e:a0:90 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgISAZt87Pa3XkP0JuLA7eWYQb/KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmYTY0YTY0N2JkMmE1NTU3ZjcwZjY3NmFkY2M3NjkwNGZi ODcyYWIwHhcNMjYwMTAyMDQxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYTVkNTc2MWJlNzg4M2E3NDlkODgyNjVjM2JmNDdhODMzOGJkNTNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAta4Wv+znHi3AH735odKbFZRV3ee7 q85of5Xf57lREL9vA0lUmuCTqI9bXhHqzKeAH0CXnqK3Qfi3hXdtkU4Y4YpQ+COE wUCqeIR2SWbbjBCWs/WN2LZ02L23gpwCL8G0U1ORDi+oXi58Nuj6mZaU9NK/oWAG WBpGU3pete231/Suik5rVqDaKb8vrdJvCAYrw5bgGtC17rAATQNC/C0x4d0yQJ2O WPfg8+wywReq+ZQGOeEwTJaS2NBBDmmuzO/ZZUp8gn0u/fpAWPa7d9SNNv7bLgBr jdVW667OSkowOQ7yKWa6lmxrdScbewJ1lH5FAgu173irBkp3Mqv/c7RfHQIDAQAB o4ICFjCCAhIwHQYDVR0OBBYEFPpdV2G+eIOnSdiCZcO/R6gzi9U/MB8GA1UdIwQY MBaAFG+mSmR70qVVf3D2dq3MdpBPuHKrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjZaS1pIdlNwVlZfY1BaMnJjeDJrRS00Y3FzLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8yNThkYWUtNTRmYS00YTMzLWExOWQt ZTkxYjNhYmQxZmU4LzEvMS1sMVhZYjU0ZzZkSjJJSmx3NzlIcURPTDFUOC5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNjQvMjU4ZGFlLTU0ZmEtNGEzMy1hMTlkLWU5MWIzYWJkMWZl OC8xL2I2WktaSHZTcFZWX2NQWjJyY3gya0UtNGNxcy5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBowGAQCAAIwEgMHACoUlAAC MAMHACoUlAACUDANBgkqhkiG9w0BAQsFAAOCAQEATPU0KLVXcR2lIk5qizeZcKxV /7XDcEEnI7eGvKFC9GjCLWbI3+EtwzdcJaxVsBhGetFkN52jxLOV9u9d/5R4y7Yq VIt7HBNBgrwICo26lzrYG3wHhO1Dmg3JOvMMjolELN9Dvin/7GzQTrEz4xS/EORC 85YUQVSXt3QQVGa8Wusg6ocND7wCplc4hzK7Lkb/Kmd8wi17JGvUDAsbkDYHWwpY USuA3R/JbpoFyIsA2QvG61lE5R/1DQYSNp16NtqPAewT99WJFjHn1KqGuISBHl8a ovR7nCP+fgRdIXLiGckdGPsnmfTCU+pIBNkVPXaG17VQ9Uprqzif17FqlT6gkA== -----END CERTIFICATE-----Generated at Sat Jan 10 04:00:48 2026 by rpki-client