This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/VIjK-dF1RkU8oL9JO5ackgQvQqk.roa File: VIjK-dF1RkU8oL9JO5ackgQvQqk.roa (raw, json) Hash identifier: EuZj5CNsImrt381xNpJVt+ICs2RyaQvBUySYpPa5Un8= Subject key identifier: 54:88:CA:F9:D1:75:46:45:3C:A0:BF:49:3B:96:9C:92:04:2F:42:A9 Certificate issuer: /CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f Certificate serial: 019B79112A8FF5D70B5DAE8F21B77BB49DB9 Authority key identifier: B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/VIjK-dF1RkU8oL9JO5ackgQvQqk.roa Signing time: Thu 01 Jan 2026 10:18:46 +0000 ROA not before: Thu 01 Jan 2026 10:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43851 IP address blocks: 2001:67c:3e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:2a:8f:f5:d7:0b:5d:ae:8f:21:b7:7b:b4:9d:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f Validity Not Before: Jan 1 10:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5488caf9d17546453ca0bf493b969c92042f42a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:85:73:33:47:91:4e:d7:b9:22:cd:5b:d2:8c: 74:7f:33:0f:0b:9e:23:48:6c:80:bf:b2:88:d3:ae: ab:9f:13:8c:05:13:cf:55:29:7f:b2:49:13:ec:f0: 6c:b0:0a:d8:8b:7c:a1:e2:a0:5c:30:36:d0:8f:bc: e6:b5:28:6e:f5:b2:39:63:61:a9:0e:99:7f:f8:23: 5e:74:5a:5e:e1:0a:8e:2d:34:80:0f:ea:e3:88:1f: ce:56:11:4c:21:52:92:3c:24:89:b8:ca:f2:a6:74: 4c:dc:72:57:2d:02:9d:b4:d9:7c:4d:e9:81:fd:d6: 06:37:ed:1f:c4:16:cc:15:52:be:6f:39:c8:93:ea: 82:f1:83:73:86:8b:26:be:d9:29:f0:ea:81:33:62: ec:5c:b2:fe:77:d8:16:83:7c:77:73:6f:f9:b0:d0: 79:83:05:41:b0:b3:25:e0:fa:70:22:15:56:7b:75: 5a:82:b2:45:0c:39:5c:76:08:63:bc:5c:95:c7:f7: f7:7c:9e:0c:d6:e3:81:b2:ea:ef:b1:64:0b:54:88: 0a:d1:bd:0b:84:24:27:76:66:fc:31:04:07:04:15: 64:bf:7a:90:41:3d:cc:de:ed:33:4d:a5:24:25:39: 7e:88:4c:db:95:80:03:73:83:51:9f:88:d4:01:8b: 02:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:88:CA:F9:D1:75:46:45:3C:A0:BF:49:3B:96:9C:92:04:2F:42:A9 X509v3 Authority Key Identifier: keyid:B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/VIjK-dF1RkU8oL9JO5ackgQvQqk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:3e0::/48 Signature Algorithm: sha256WithRSAEncryption 67:df:42:21:ff:d5:40:16:d6:a8:ef:93:17:08:65:41:09:57: 16:b8:e3:ed:7d:08:80:28:8c:f4:fc:18:c6:58:f0:d8:3b:0a: ed:a3:8a:6b:ed:4f:e0:c3:fd:4c:ab:7d:f0:af:fe:aa:06:72: ee:5f:75:e1:f7:3c:42:15:15:ff:12:d9:48:ca:b7:86:96:81: 73:0b:e3:52:d8:c1:32:cc:cb:8b:2a:8b:4a:a6:0d:7d:d6:7b: b4:71:9f:27:37:85:86:43:88:d9:4c:c7:b7:4f:4d:53:3b:65: f4:7f:f3:2e:5f:29:89:75:66:ed:8c:61:8c:c4:c2:5a:c2:4a: a8:26:4e:a6:fd:fe:53:52:d4:10:b6:7e:e0:20:c9:6e:0b:df: 9c:f8:f3:aa:9c:85:6e:7c:73:4b:58:2d:75:1b:4e:6c:7c:3c: ee:9e:ea:79:88:88:5e:db:16:f1:a7:eb:f8:c1:96:1f:42:6a: 8b:3d:99:d1:df:c4:52:83:84:15:98:f0:b4:da:3d:c2:4e:9b: bb:9e:60:eb:10:79:75:eb:2b:e5:76:4d:65:5d:5f:1d:77:e5: cd:63:09:84:e0:38:14:ab:59:4f:70:6d:6b:f6:fd:6b:57:66: ea:d4:66:01:ff:44:e8:00:07:8d:e1:2d:56:60:74:06:b9:08: ba:96:c6:bb -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5ESqP9dcLXa6PIbd7tJ25MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1ZjBmODM4YWZiYzEzMjI2ODA1NDRlZDFjOWM1YTJiMDk5 NjVkOWYwHhcNMjYwMTAxMTAxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NDg4Y2FmOWQxNzU0NjQ1M2NhMGJmNDkzYjk2OWM5MjA0MmY0MmE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAooVzM0eRTte5Is1b0ox0fzMPC54j SGyAv7KI066rnxOMBRPPVSl/skkT7PBssArYi3yh4qBcMDbQj7zmtShu9bI5Y2Gp Dpl/+CNedFpe4QqOLTSAD+rjiB/OVhFMIVKSPCSJuMrypnRM3HJXLQKdtNl8TemB /dYGN+0fxBbMFVK+bznIk+qC8YNzhosmvtkp8OqBM2LsXLL+d9gWg3x3c2/5sNB5 gwVBsLMl4PpwIhVWe3VagrJFDDlcdghjvFyVx/f3fJ4M1uOBsurvsWQLVIgK0b0L hCQndmb8MQQHBBVkv3qQQT3M3u0zTaUkJTl+iEzblYADc4NRn4jUAYsCHQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFSIyvnRdUZFPKC/STuWnJIEL0KpMB8GA1UdIwQY MBaAFLXw+DivvBMiaAVE7RycWisJll2fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGZENE9LLThFeUpvQlVUdEhKeGFLd21XWFo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS8zMjA1MTItOTFjYi00MzgzLTk3NjEt YTUyZGM5YzIyMDdjLzEvVklqSy1kRjFSa1U4b0w5Sk81YWNrZ1F2UXFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS8zMjA1MTItOTFjYi00MzgzLTk3NjEtYTUyZGM5YzIyMDdj LzEvdGZENE9LLThFeUpvQlVUdEhKeGFLd21XWFo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAPg MA0GCSqGSIb3DQEBCwUAA4IBAQBn30Ih/9VAFtao75MXCGVBCVcWuOPtfQiAKIz0 /BjGWPDYOwrto4pr7U/gw/1Mq33wr/6qBnLuX3Xh9zxCFRX/EtlIyreGloFzC+NS 2MEyzMuLKotKpg191nu0cZ8nN4WGQ4jZTMe3T01TO2X0f/MuXymJdWbtjGGMxMJa wkqoJk6m/f5TUtQQtn7gIMluC9+c+POqnIVufHNLWC11G05sfDzunup5iIhe2xbx p+v4wZYfQmqLPZnR38RSg4QVmPC02j3CTpu7nmDrEHl16yvldk1lXV8dd+XNYwmE 4DgUq1lPcG1r9v1rV2bq1GYB/0ToAAeN4S1WYHQGuQi6lsa7 -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:27 2026 by rpki-client