This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/71a400-4ede-45f1-b55b-8109d4089828/1/v9qEJJrE4bIoJLkvQpDIDEFgGF4.roa File: v9qEJJrE4bIoJLkvQpDIDEFgGF4.roa (raw, json) Hash identifier: kl+PP56wx1175s4ViXBlwNJra6/Xw7Fsdl6qvV23Cuc= Subject key identifier: BF:DA:84:24:9A:C4:E1:B2:28:24:B9:2F:42:90:C8:0C:41:60:18:5E Certificate issuer: /CN=b090d40bfcd5a4a30875160ecc6f9fe53c05a6e6 Certificate serial: 019B77592819091623571F34253A49E5C97D Authority key identifier: B0:90:D4:0B:FC:D5:A4:A3:08:75:16:0E:CC:6F:9F:E5:3C:05:A6:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sJDUC_zVpKMIdRYOzG-f5TwFpuY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/71a400-4ede-45f1-b55b-8109d4089828/1/v9qEJJrE4bIoJLkvQpDIDEFgGF4.roa Signing time: Thu 01 Jan 2026 02:18:10 +0000 ROA not before: Thu 01 Jan 2026 02:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206835 IP address blocks: 2001:67c:868::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/71a400-4ede-45f1-b55b-8109d4089828/1/sJDUC_zVpKMIdRYOzG-f5TwFpuY.crl rsync://rpki.ripe.net/repository/DEFAULT/76/71a400-4ede-45f1-b55b-8109d4089828/1/sJDUC_zVpKMIdRYOzG-f5TwFpuY.mft rsync://rpki.ripe.net/repository/DEFAULT/sJDUC_zVpKMIdRYOzG-f5TwFpuY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:28:19:09:16:23:57:1f:34:25:3a:49:e5:c9:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b090d40bfcd5a4a30875160ecc6f9fe53c05a6e6 Validity Not Before: Jan 1 02:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bfda84249ac4e1b22824b92f4290c80c4160185e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4c:8a:ff:8b:0c:f8:fb:6c:5a:73:78:38:64: ce:84:6f:32:ad:6f:a0:3c:76:1d:c6:07:fa:24:99: a3:90:c5:7d:4f:12:41:1c:09:63:e4:ea:c5:8f:ba: 2f:8e:3f:b0:c7:e1:da:8b:96:63:53:c7:66:d5:bf: df:f0:4a:89:b4:41:52:fc:e7:ab:dd:2a:e1:0e:01: 2b:ba:d7:36:9f:35:42:f2:c2:40:b7:e7:b9:c3:c9: 0d:81:c5:2a:03:63:c6:0d:b8:52:b2:6e:09:b9:00: a2:82:de:d9:f8:6f:be:21:49:34:5d:61:3c:3d:bd: ca:e8:03:cc:26:7b:24:4d:a9:13:07:0b:8b:93:2c: b3:5d:59:33:9d:a4:28:39:73:a9:0b:bb:06:e5:44: e8:f9:5b:ed:9d:8b:c3:7e:6a:94:f6:a4:85:aa:e8: 3f:9a:03:8e:ad:c7:19:79:1a:a6:d2:1c:2d:72:f8: 54:ed:24:c1:f9:fa:7a:bb:82:bf:5f:54:12:39:80: 6e:a9:48:91:8d:10:b4:6a:8c:7e:ca:65:87:dd:26: fe:db:10:e8:f2:c1:e0:f0:9c:e8:24:0b:c9:10:24: b8:e3:2e:9d:5f:b3:1a:16:11:d6:40:ad:5f:3e:a6: 01:d3:59:f3:f7:14:f2:a7:83:86:ce:5d:fa:69:7f: d2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:DA:84:24:9A:C4:E1:B2:28:24:B9:2F:42:90:C8:0C:41:60:18:5E X509v3 Authority Key Identifier: keyid:B0:90:D4:0B:FC:D5:A4:A3:08:75:16:0E:CC:6F:9F:E5:3C:05:A6:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sJDUC_zVpKMIdRYOzG-f5TwFpuY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/71a400-4ede-45f1-b55b-8109d4089828/1/v9qEJJrE4bIoJLkvQpDIDEFgGF4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/71a400-4ede-45f1-b55b-8109d4089828/1/sJDUC_zVpKMIdRYOzG-f5TwFpuY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:868::/48 Signature Algorithm: sha256WithRSAEncryption 82:98:a4:d9:98:95:17:fc:82:ba:33:58:e4:b3:9d:97:49:7f: 87:b9:3a:cb:b1:d9:40:28:d1:27:38:0a:57:2c:d2:df:98:26: 94:14:37:4e:31:f3:fb:95:e1:f0:fb:7f:85:b1:1f:09:a1:ab: 22:5a:2e:24:eb:66:0b:45:bf:90:4d:6f:f0:3f:8b:af:f4:e5: 9e:ce:cf:d9:2d:2c:b0:91:6d:9c:95:bd:f2:ed:35:6a:e5:0e: 79:de:ba:32:43:90:d4:92:bc:d7:28:14:19:45:e9:a0:a0:a9: 19:af:a7:c9:f4:07:a8:86:bf:62:8e:fd:78:5e:cc:96:76:67: bc:e1:a7:91:a9:c9:65:b1:2e:cc:c0:f8:5b:9e:4b:1f:18:a7: 31:aa:ef:e7:62:45:2a:0b:c4:b9:13:99:3e:5e:6d:ae:9e:63: 5a:8c:2d:58:cd:32:04:68:53:45:32:0e:c6:e7:fb:fa:4e:41: 6b:66:0e:51:f7:85:d3:5c:6b:d4:82:ba:ed:c9:a2:04:a7:40: 38:93:31:9b:6a:8f:ad:53:70:62:9e:1d:9d:b3:4a:26:66:14: de:b6:f4:15:40:68:22:fc:19:05:de:08:89:0e:58:d2:b9:59: f0:ab:b9:84:09:e1:2a:65:35:66:4f:a1:c4:0b:5e:24:5d:35: c8:ec:16:a0 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3WSgZCRYjVx80JTpJ5cl9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwOTBkNDBiZmNkNWE0YTMwODc1MTYwZWNjNmY5ZmU1M2Mw NWE2ZTYwHhcNMjYwMTAxMDIxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZmRhODQyNDlhYzRlMWIyMjgyNGI5MmY0MjkwYzgwYzQxNjAxODVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0EyK/4sM+PtsWnN4OGTOhG8yrW+g PHYdxgf6JJmjkMV9TxJBHAlj5OrFj7ovjj+wx+Hai5ZjU8dm1b/f8EqJtEFS/Oer 3SrhDgErutc2nzVC8sJAt+e5w8kNgcUqA2PGDbhSsm4JuQCigt7Z+G++IUk0XWE8 Pb3K6APMJnskTakTBwuLkyyzXVkznaQoOXOpC7sG5UTo+VvtnYvDfmqU9qSFqug/ mgOOrccZeRqm0hwtcvhU7STB+fp6u4K/X1QSOYBuqUiRjRC0aox+ymWH3Sb+2xDo 8sHg8JzoJAvJECS44y6dX7MaFhHWQK1fPqYB01nz9xTyp4OGzl36aX/SHwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFL/ahCSaxOGyKCS5L0KQyAxBYBheMB8GA1UdIwQY MBaAFLCQ1Av81aSjCHUWDsxvn+U8BabmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0pEVUNfelZwS01JZFJZT3pHLWY1VHdGcHVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni83MWE0MDAtNGVkZS00NWYxLWI1NWIt ODEwOWQ0MDg5ODI4LzEvdjlxRUpKckU0YklvSkxrdlFwRElERUZnR0Y0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni83MWE0MDAtNGVkZS00NWYxLWI1NWItODEwOWQ0MDg5ODI4 LzEvc0pEVUNfelZwS01JZFJZT3pHLWY1VHdGcHVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAho MA0GCSqGSIb3DQEBCwUAA4IBAQCCmKTZmJUX/IK6M1jks52XSX+HuTrLsdlAKNEn OApXLNLfmCaUFDdOMfP7leHw+3+FsR8JoasiWi4k62YLRb+QTW/wP4uv9OWezs/Z LSywkW2clb3y7TVq5Q553royQ5DUkrzXKBQZRemgoKkZr6fJ9Aeohr9ijv14XsyW dme84aeRqcllsS7MwPhbnksfGKcxqu/nYkUqC8S5E5k+Xm2unmNajC1YzTIEaFNF Mg7G5/v6TkFrZg5R94XTXGvUgrrtyaIEp0A4kzGbao+tU3Binh2ds0omZhTetvQV QGgi/BkF3giJDljSuVnwq7mECeEqZTVmT6HEC14kXTXI7Bag -----END CERTIFICATE-----Generated at Mon Feb 9 18:43:38 2026 by rpki-client