This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/b4Gw7j-yP0EZ_bzVtavyIaNnrmg.roa File: b4Gw7j-yP0EZ_bzVtavyIaNnrmg.roa (raw, json) Hash identifier: cLtga3Mhn3zwBbBdmpjnTy+iZQhQiui6Ln+erQHDISQ= Subject key identifier: 6F:81:B0:EE:3F:B2:3F:41:19:FD:BC:D5:B5:AB:F2:21:A3:67:AE:68 Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa Certificate serial: 019B797EA273744DA1F948A0273969D4BA6B Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/b4Gw7j-yP0EZ_bzVtavyIaNnrmg.roa Signing time: Thu 01 Jan 2026 12:18:20 +0000 ROA not before: Thu 01 Jan 2026 12:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 138631 IP address blocks: 2a0e:aa06:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.mft rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 14:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:a2:73:74:4d:a1:f9:48:a0:27:39:69:d4:ba:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa Validity Not Before: Jan 1 12:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6f81b0ee3fb23f4119fdbcd5b5abf221a367ae68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a7:82:cf:66:66:5b:c9:2b:2d:4e:1a:81:39: f5:f9:23:7c:b7:30:ed:ef:d8:32:a1:27:88:30:f0: 96:6a:8b:41:36:f0:3e:e4:da:5e:b2:69:5a:30:29: 70:56:a2:d6:93:ed:5f:3d:af:5c:f4:d4:d7:78:83: 0d:68:f2:cf:c5:39:f6:df:30:37:6e:2a:80:a2:94: b8:79:7d:91:d7:7d:4a:b2:f4:75:52:88:a7:dc:a9: 7e:fb:ec:47:4c:0b:bb:e4:26:33:dd:b4:c5:c3:a7: 3e:33:38:89:74:1e:c9:b8:0f:a6:4e:92:a2:d7:e4: 1a:e8:b5:c0:0c:f9:9d:d9:7d:86:e9:ee:80:a3:6d: cf:6f:dc:53:df:52:91:70:9c:23:7c:4b:86:e9:ac: 3c:f9:87:51:e9:a3:67:35:7c:0a:d0:14:88:6a:37: d0:b9:4d:85:07:d7:61:68:9c:cc:cd:fa:6d:18:4f: 03:ad:29:ef:7b:5c:63:bc:b2:85:09:99:05:81:6d: dc:bd:c2:e0:8c:11:7b:a3:82:ae:18:03:39:4b:8a: 4b:41:a3:24:60:24:55:e2:c3:b3:ee:95:07:31:d1: 66:07:75:b9:4b:df:4c:0c:91:2e:a0:d4:8f:54:b9: d0:5e:a3:1e:a3:40:54:7f:ca:8e:0c:eb:b5:f6:44: 12:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:81:B0:EE:3F:B2:3F:41:19:FD:BC:D5:B5:AB:F2:21:A3:67:AE:68 X509v3 Authority Key Identifier: keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/b4Gw7j-yP0EZ_bzVtavyIaNnrmg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:aa06:100::/40 Signature Algorithm: sha256WithRSAEncryption 9e:06:e0:87:10:ef:c3:3f:38:fb:a1:97:06:52:f0:b3:39:db: 7b:0c:79:2d:a5:93:11:bf:9c:3c:df:37:b8:41:2b:29:a8:15: c0:9d:53:a0:68:2f:8b:51:ad:37:42:e5:89:69:61:d2:a3:44: 4c:e6:50:55:5b:da:30:30:ff:da:24:19:33:3a:77:91:75:2e: 0d:57:62:8e:29:11:cd:3a:43:17:bc:fa:17:d9:7d:2e:27:fa: 00:d4:06:67:df:9d:05:3c:fb:00:a5:25:c3:e0:9f:b0:5d:81: a9:f4:c8:81:49:14:56:37:f8:e6:11:c1:eb:0b:ef:b6:af:65: 4f:ad:fe:69:30:20:6c:33:a1:cb:2d:2a:05:62:7b:8f:bc:96: 84:97:60:c5:7c:0c:4c:6f:b2:d4:f0:9b:5b:80:f8:d1:fc:7b: d7:c0:34:12:56:73:c4:bc:3b:c9:14:12:3a:09:e5:41:ad:4c: fb:39:76:49:36:40:e4:c3:b4:32:f5:4c:65:11:7d:76:20:3e: 11:32:aa:59:c0:bb:36:db:c1:dc:be:96:8a:38:33:15:9f:ff: 81:85:36:a4:1a:82:94:69:c4:55:58:09:8e:b6:1c:23:84:21: 91:44:4d:6e:3f:16:1b:f1:8b:e5:c2:98:9f:41:04:96:54:0a: 3c:50:e3:30 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt5fqJzdE2h+UigJzlp1LprMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0 ZWYzYWEwHhcNMjYwMTAxMTIxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZjgxYjBlZTNmYjIzZjQxMTlmZGJjZDViNWFiZjIyMWEzNjdhZTY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3qeCz2ZmW8krLU4agTn1+SN8tzDt 79gyoSeIMPCWaotBNvA+5NpesmlaMClwVqLWk+1fPa9c9NTXeIMNaPLPxTn23zA3 biqAopS4eX2R131KsvR1Uoin3Kl+++xHTAu75CYz3bTFw6c+MziJdB7JuA+mTpKi 1+Qa6LXADPmd2X2G6e6Ao23Pb9xT31KRcJwjfEuG6aw8+YdR6aNnNXwK0BSIajfQ uU2FB9dhaJzMzfptGE8DrSnve1xjvLKFCZkFgW3cvcLgjBF7o4KuGAM5S4pLQaMk YCRV4sOz7pUHMdFmB3W5S99MDJEuoNSPVLnQXqMeo0BUf8qODOu19kQSIQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFG+BsO4/sj9BGf281bWr8iGjZ65oMB8GA1UdIwQY MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt YTU0MWQxYmNlZTE5LzEvYjRHdzdqLXlQMEVaX2J6VnRhdnlJYU5ucm1nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5 LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKg6qBgEw DQYJKoZIhvcNAQELBQADggEBAJ4G4IcQ78M/OPuhlwZS8LM523sMeS2lkxG/nDzf N7hBKymoFcCdU6BoL4tRrTdC5YlpYdKjREzmUFVb2jAw/9okGTM6d5F1Lg1XYo4p Ec06Qxe8+hfZfS4n+gDUBmffnQU8+wClJcPgn7Bdgan0yIFJFFY3+OYRwesL77av ZU+t/mkwIGwzocstKgVie4+8loSXYMV8DExvstTwm1uA+NH8e9fANBJWc8S8O8kU EjoJ5UGtTPs5dkk2QOTDtDL1TGURfXYgPhEyqlnAuzbbwdy+loo4MxWf/4GFNqQa gpRpxFVYCY62HCOEIZFETW4/Fhvxi+XCmJ9BBJZUCjxQ4zA= -----END CERTIFICATE-----Generated at Tue Jan 6 21:31:59 2026 by rpki-client