This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/206ff0-445a-42b4-99f5-7e157bae6c2b/1/lraVilWlpRwJwEb3HMYRqrG9ypE.roa File: lraVilWlpRwJwEb3HMYRqrG9ypE.roa (raw, json) Hash identifier: rxQGW+9bYJxaygOsVFP4v6AJEoysywtUM+KMY7B4r/M= Subject key identifier: 96:B6:95:8A:55:A5:A5:1C:09:C0:46:F7:1C:C6:11:AA:B1:BD:CA:91 Certificate issuer: /CN=087813142b0d3f068dea6dd4341c4e0b907988ec Certificate serial: 019B79ECB09587CD4DEBEF8EA06691575B70 Authority key identifier: 08:78:13:14:2B:0D:3F:06:8D:EA:6D:D4:34:1C:4E:0B:90:79:88:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CHgTFCsNPwaN6m3UNBxOC5B5iOw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/206ff0-445a-42b4-99f5-7e157bae6c2b/1/lraVilWlpRwJwEb3HMYRqrG9ypE.roa Signing time: Thu 01 Jan 2026 14:18:33 +0000 ROA not before: Thu 01 Jan 2026 14:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49825 IP address blocks: 2a0b:8fc1::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/206ff0-445a-42b4-99f5-7e157bae6c2b/1/CHgTFCsNPwaN6m3UNBxOC5B5iOw.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/206ff0-445a-42b4-99f5-7e157bae6c2b/1/CHgTFCsNPwaN6m3UNBxOC5B5iOw.mft rsync://rpki.ripe.net/repository/DEFAULT/CHgTFCsNPwaN6m3UNBxOC5B5iOw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 23:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:b0:95:87:cd:4d:eb:ef:8e:a0:66:91:57:5b:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=087813142b0d3f068dea6dd4341c4e0b907988ec Validity Not Before: Jan 1 14:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=96b6958a55a5a51c09c046f71cc611aab1bdca91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fe:bd:80:ad:d7:71:17:12:72:97:c0:b5:8c: bc:1a:8c:f2:7d:12:16:33:97:8d:1e:7c:5e:1c:8b: d4:f6:ea:bf:c4:5b:88:ee:3c:17:40:da:44:0c:2a: 03:77:bf:54:64:29:99:e7:f0:71:76:db:19:1b:ad: b8:1a:da:85:a6:ba:b5:a4:25:d9:97:fb:95:f9:dd: 23:6a:d7:63:99:a8:b1:86:38:54:b4:7b:e7:e3:12: 5a:8b:e0:c3:85:84:05:be:4a:b6:af:6c:90:c8:94: 61:64:f2:4b:f5:11:0f:4a:b9:ed:0b:c4:64:e9:1a: 86:e6:8d:07:69:b0:51:fa:8f:de:f7:d8:f4:87:90: 04:2a:4a:c4:4f:05:c2:68:ca:e4:c9:6e:82:18:94: 7e:2a:d4:b4:9a:e5:a4:f8:c1:d8:f1:64:f7:6e:7d: 16:e5:06:4c:a3:b6:ab:9e:ee:d2:46:4e:c1:7c:2e: 47:53:95:4a:f1:34:35:6a:3d:48:68:aa:88:61:4c: fc:1f:c3:cc:f6:a9:d3:21:11:78:32:1e:8f:49:6d: a2:8b:4a:65:b7:ae:56:e1:c9:bd:46:00:10:5f:38: 07:fe:68:34:0e:a1:f0:cc:3a:eb:0b:96:d9:72:b6: 77:fd:98:ee:0b:28:dc:c6:4d:bf:e4:36:a3:bb:6b: a8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:B6:95:8A:55:A5:A5:1C:09:C0:46:F7:1C:C6:11:AA:B1:BD:CA:91 X509v3 Authority Key Identifier: keyid:08:78:13:14:2B:0D:3F:06:8D:EA:6D:D4:34:1C:4E:0B:90:79:88:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CHgTFCsNPwaN6m3UNBxOC5B5iOw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/206ff0-445a-42b4-99f5-7e157bae6c2b/1/lraVilWlpRwJwEb3HMYRqrG9ypE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/206ff0-445a-42b4-99f5-7e157bae6c2b/1/CHgTFCsNPwaN6m3UNBxOC5B5iOw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:8fc1::/32 Signature Algorithm: sha256WithRSAEncryption 28:f2:c4:2b:0f:55:4c:0a:b9:87:3c:0a:7b:cb:bf:bd:3c:f8: 9c:05:e7:1b:40:7e:d6:51:1f:4a:fa:4b:bf:6c:61:66:c0:98: 9a:7e:39:2f:aa:8e:c9:ec:81:1b:2d:0e:03:41:c4:02:c2:74: 98:b4:3e:8d:44:aa:e3:5f:17:b8:4f:3e:47:63:fa:4e:16:68: 62:74:ce:62:d5:82:92:42:e6:b5:65:b8:e5:d1:29:67:11:ec: 70:b0:3c:06:6d:be:d0:44:ca:17:8e:cf:07:2b:e7:43:7f:47: b7:02:6e:88:e3:c6:96:56:2d:30:bd:23:f1:87:74:db:ad:d2: 3e:23:95:27:0e:5c:af:04:94:fd:ec:2f:10:4d:97:4d:13:38: 82:ba:f3:c7:1d:de:ee:cb:a5:b9:af:f6:ee:ed:49:84:67:4f: 4c:cd:02:6e:51:43:5d:93:db:6a:8e:67:4c:84:c3:4e:b4:d6: 87:5e:8b:64:95:3f:8b:ec:4d:dd:72:1b:c2:33:8e:38:c3:2d: 09:a2:d0:19:53:88:f7:36:9f:af:15:3a:e3:5a:da:ab:a1:c3: 4f:58:68:5d:f8:fc:47:58:99:4f:e7:2a:4f:6b:1b:bd:8b:ff: ec:e9:36:70:d0:e4:0b:6c:d7:73:67:26:f1:30:b5:7b:4c:3e: 11:6c:3f:65 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt57LCVh81N6++OoGaRV1twMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4NzgxMzE0MmIwZDNmMDY4ZGVhNmRkNDM0MWM0ZTBiOTA3 OTg4ZWMwHhcNMjYwMTAxMTQxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NmI2OTU4YTU1YTVhNTFjMDljMDQ2ZjcxY2M2MTFhYWIxYmRjYTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvf69gK3XcRcScpfAtYy8GozyfRIW M5eNHnxeHIvU9uq/xFuI7jwXQNpEDCoDd79UZCmZ5/BxdtsZG624GtqFprq1pCXZ l/uV+d0jatdjmaixhjhUtHvn4xJai+DDhYQFvkq2r2yQyJRhZPJL9REPSrntC8Rk 6RqG5o0HabBR+o/e99j0h5AEKkrETwXCaMrkyW6CGJR+KtS0muWk+MHY8WT3bn0W 5QZMo7arnu7SRk7BfC5HU5VK8TQ1aj1IaKqIYUz8H8PM9qnTIRF4Mh6PSW2ii0pl t65W4cm9RgAQXzgH/mg0DqHwzDrrC5bZcrZ3/ZjuCyjcxk2/5Daju2uozwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFJa2lYpVpaUcCcBG9xzGEaqxvcqRMB8GA1UdIwQY MBaAFAh4ExQrDT8Gjept1DQcTguQeYjsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0hnVEZDc05Qd2FONm0zVU5CeE9DNUI1aU93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8yMDZmZjAtNDQ1YS00MmI0LTk5ZjUt N2UxNTdiYWU2YzJiLzEvbHJhVmlsV2xwUndKd0ViM0hNWVJxckc5eXBFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy8yMDZmZjAtNDQ1YS00MmI0LTk5ZjUtN2UxNTdiYWU2YzJi LzEvQ0hnVEZDc05Qd2FONm0zVU5CeE9DNUI1aU93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKguPwTAN BgkqhkiG9w0BAQsFAAOCAQEAKPLEKw9VTAq5hzwKe8u/vTz4nAXnG0B+1lEfSvpL v2xhZsCYmn45L6qOyeyBGy0OA0HEAsJ0mLQ+jUSq418XuE8+R2P6ThZoYnTOYtWC kkLmtWW45dEpZxHscLA8Bm2+0ETKF47PByvnQ39HtwJuiOPGllYtML0j8Yd0263S PiOVJw5crwSU/ewvEE2XTRM4grrzxx3e7sulua/27u1JhGdPTM0CblFDXZPbao5n TITDTrTWh16LZJU/i+xN3XIbwjOOOMMtCaLQGVOI9zafrxU641raq6HDT1hoXfj8 R1iZT+cqT2sbvYv/7Ok2cNDkC2zXc2cm8TC1e0w+EWw/ZQ== -----END CERTIFICATE-----Generated at Tue Feb 10 08:41:34 2026 by rpki-client