This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/D6UhsDjF9BrehJtx-sx0QF0rHzU.roa File: D6UhsDjF9BrehJtx-sx0QF0rHzU.roa (raw, json) Hash identifier: EGLLGIufzW4gVg2A/qAKs01zcWRaviYEmmU/cM83fhE= Subject key identifier: 0F:A5:21:B0:38:C5:F4:1A:DE:84:9B:71:FA:CC:74:40:5D:2B:1F:35 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37BC8E828F6494D5B5EDA2A48B8559 Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/D6UhsDjF9BrehJtx-sx0QF0rHzU.roa Signing time: Fri 02 Jan 2026 10:19:00 +0000 ROA not before: Fri 02 Jan 2026 10:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56488 IP address blocks: 170.62.206.0/24 maxlen: 24 170.62.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:bc:8e:82:8f:64:94:d5:b5:ed:a2:a4:8b:85:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0fa521b038c5f41ade849b71facc74405d2b1f35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6b:28:54:84:22:ac:96:7f:f3:3c:05:b0:03: b7:f0:a0:21:4f:c8:6c:ad:00:4f:4b:9f:11:69:87: 62:eb:99:65:44:1c:0f:17:3c:05:f5:d0:50:5b:bf: 4f:e5:8f:f5:09:bc:bc:3f:98:79:ca:8a:75:65:a5: d1:fb:6b:4f:f4:0d:2d:9a:a5:b6:e2:ed:c5:e4:e6: 7b:ce:e2:73:0e:ce:c6:a7:11:8a:36:a8:d4:79:d8: 67:5d:9b:c7:4c:96:b4:ad:de:0f:4b:73:50:5d:54: 01:64:4e:e5:a8:22:66:75:13:ca:62:4b:2b:1e:8f: ad:cc:81:91:d1:bd:4d:64:d2:5d:e5:9b:a0:be:bb: 85:c2:03:78:2a:8f:79:58:79:6f:cb:2d:3c:27:fc: 9f:ac:c1:53:a0:4e:98:b0:b2:ef:92:34:3d:5f:21: 2d:3f:71:47:19:4f:f5:bd:cd:c2:8b:c7:38:21:1d: 16:e7:3d:77:5a:2f:0e:1f:d6:46:2d:2e:71:f3:c6: 2f:02:94:30:c5:80:96:72:b2:1f:55:ae:2d:f5:57: 15:2a:cb:32:e0:e3:b5:86:61:f9:7a:72:c6:54:d4: 60:f3:ff:75:da:04:d5:d9:f1:e7:4d:c5:9a:03:d8: 44:c9:cb:48:80:b4:8c:b7:a2:b7:bc:24:15:53:0f: 7b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:A5:21:B0:38:C5:F4:1A:DE:84:9B:71:FA:CC:74:40:5D:2B:1F:35 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/D6UhsDjF9BrehJtx-sx0QF0rHzU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.62.206.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:8b:17:ec:ca:53:cb:74:e3:11:5d:2b:57:19:fe:5e:e1:98: 4b:82:f7:39:ef:a4:85:8c:90:2c:41:be:f2:bd:9b:08:b2:a8: c0:b2:d2:71:6e:d8:b6:76:d6:a3:51:06:fc:da:0d:27:7a:e6: 5e:13:7d:68:14:e5:62:a0:1e:b5:76:04:fb:79:9c:07:cc:68: 76:2e:50:ee:1a:7d:c3:60:e7:64:58:1f:d7:db:8d:55:aa:ca: 36:d3:a7:d9:4e:16:64:78:93:8e:53:34:8b:f8:9f:dd:e0:8c: a9:1a:c6:f2:80:b6:ad:c5:17:b4:eb:9a:39:79:a2:22:77:10: 56:b6:39:13:bc:89:e9:4f:fe:f2:4f:14:0c:4e:f8:a5:17:67: 21:17:1c:d8:57:ca:74:26:38:0c:70:3a:0a:a9:dc:b8:41:3a: 2e:a6:06:fb:b6:98:d7:af:5c:08:93:95:d3:bb:c7:3a:60:e6: e0:5e:56:e1:0f:27:67:05:59:11:21:5c:43:cb:85:4e:f9:2f: 97:cc:b1:68:5a:e6:16:8c:35:34:fc:ec:33:e9:1b:e8:90:a2: 38:c0:13:98:34:d2:3b:af:09:7d:59:ef:a2:b3:42:35:b4:b4: fe:52:ab:40:21:c0:46:bc:71:c7:a0:26:d5:58:64:18:8a:61: c9:66:8c:4b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N7yOgo9klNW17aKki4VZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZmE1MjFiMDM4YzVmNDFhZGU4NDliNzFmYWNjNzQ0MDVkMmIxZjM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2soVIQirJZ/8zwFsAO38KAhT8hs rQBPS58RaYdi65llRBwPFzwF9dBQW79P5Y/1Cby8P5h5yop1ZaXR+2tP9A0tmqW2 4u3F5OZ7zuJzDs7GpxGKNqjUedhnXZvHTJa0rd4PS3NQXVQBZE7lqCJmdRPKYksr Ho+tzIGR0b1NZNJd5ZugvruFwgN4Ko95WHlvyy08J/yfrMFToE6YsLLvkjQ9XyEt P3FHGU/1vc3Ci8c4IR0W5z13Wi8OH9ZGLS5x88YvApQwxYCWcrIfVa4t9VcVKssy 4OO1hmH5enLGVNRg8/912gTV2fHnTcWaA9hEyctIgLSMt6K3vCQVUw97SQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA+lIbA4xfQa3oSbcfrMdEBdKx81MB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvRDZVaHNEakY5QnJlaEp0eC1zeDBRRjBySHpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqj7OMA0G CSqGSIb3DQEBCwUAA4IBAQAqixfsylPLdOMRXStXGf5e4ZhLgvc576SFjJAsQb7y vZsIsqjAstJxbti2dtajUQb82g0neuZeE31oFOVioB61dgT7eZwHzGh2LlDuGn3D YOdkWB/X241Vqso206fZThZkeJOOUzSL+J/d4IypGsbygLatxRe065o5eaIidxBW tjkTvInpT/7yTxQMTvilF2chFxzYV8p0JjgMcDoKqdy4QToupgb7tpjXr1wIk5XT u8c6YObgXlbhDydnBVkRIVxDy4VO+S+XzLFoWuYWjDU0/Owz6RvokKI4wBOYNNI7 rwl9We+is0I1tLT+UqtAIcBGvHHHoCbVWGQYimHJZoxL -----END CERTIFICATE-----Generated at Tue Jan 20 00:56:02 2026 by rpki-client