This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/6Ukkvt0agZu4htZyV-qJ9NMvAuE.roa File: 6Ukkvt0agZu4htZyV-qJ9NMvAuE.roa (raw, json) Hash identifier: e3jXfxIOhooR1mnyTW8DAq7fVVdB46jmzUR9HpzgDnE= Subject key identifier: E9:49:24:BE:DD:1A:81:9B:B8:86:D6:72:57:EA:89:F4:D3:2F:02:E1 Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Certificate serial: 019B7910B47176B2CDDA77FB1E61B809BAB1 Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/6Ukkvt0agZu4htZyV-qJ9NMvAuE.roa Signing time: Thu 01 Jan 2026 10:18:16 +0000 ROA not before: Thu 01 Jan 2026 10:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214677 IP address blocks: 2a12:bec4:1820::/44 maxlen: 48 2a12:bec4:1da0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:b4:71:76:b2:cd:da:77:fb:1e:61:b8:09:ba:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f Validity Not Before: Jan 1 10:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e94924bedd1a819bb886d67257ea89f4d32f02e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e2:74:91:66:01:cb:57:22:62:09:69:33:3f: 7c:fe:f0:da:d0:c9:2e:cc:9d:cc:2e:df:2a:6a:48: d0:cf:34:3f:6a:ea:fa:bd:83:ed:9a:67:f3:f2:8f: ff:92:22:b4:23:cd:9f:22:96:82:47:f2:77:7f:b5: 57:6f:c5:e9:ef:79:2e:dc:b3:34:cf:b3:8f:d5:07: 55:8a:b4:18:d3:44:47:89:eb:cf:e9:aa:9f:74:6b: c2:ff:e7:62:a4:be:c4:73:1e:ab:31:c5:39:92:f9: bc:07:94:99:19:b9:9a:22:3c:8b:d6:aa:c8:ac:e0: 84:0e:d9:50:29:2a:4d:2b:5c:53:49:e0:b4:99:74: 3e:ae:45:30:12:c7:41:90:47:d0:a9:ed:5b:68:ba: 94:f6:cf:b3:ee:27:4c:9a:5b:65:30:0d:17:e7:03: 5c:45:e6:ca:32:89:1d:82:81:b0:db:9a:19:70:02: 08:31:a4:58:b7:8b:f6:ee:b0:13:fe:2d:14:f6:14: 54:de:75:d2:23:58:97:0a:58:02:ba:d4:2b:07:f6: c1:b3:af:4c:18:d6:0d:64:cb:7c:ef:20:8f:24:f0: af:73:9c:c7:e2:8c:93:bb:e7:00:5c:22:e1:35:cb: a9:da:cd:2d:f0:49:33:e3:99:31:7e:b8:5d:45:85: 97:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:49:24:BE:DD:1A:81:9B:B8:86:D6:72:57:EA:89:F4:D3:2F:02:E1 X509v3 Authority Key Identifier: keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/6Ukkvt0agZu4htZyV-qJ9NMvAuE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:bec4:1820::/44 2a12:bec4:1da0::/44 Signature Algorithm: sha256WithRSAEncryption 28:68:b8:87:b1:06:cd:f3:b0:9a:c0:69:52:3c:16:d2:c0:5e: 50:bf:ad:07:a3:5d:40:0d:a8:d7:24:40:11:3d:18:a2:7a:36: 14:ac:1c:64:c1:cc:0a:67:67:0d:79:5b:ce:70:5b:57:ef:55: aa:6b:c5:b7:f6:f8:2d:f6:b9:2d:37:c1:f6:ec:5c:4a:3d:8c: a9:82:d2:37:d8:e6:2b:e8:f8:4a:07:75:39:37:cb:f9:a9:4e: 8a:36:71:10:0a:01:cf:1d:b8:31:62:02:c1:e6:1f:28:83:ea: df:e7:48:c6:0b:29:74:49:3b:fa:f6:d3:89:23:2f:1f:87:d6: 11:5f:b2:ac:69:06:fb:80:02:7f:80:3f:69:0a:4b:de:d4:69: 75:ce:5c:a0:b7:03:a3:b6:5f:0f:1b:8d:a0:67:12:be:dc:21: ea:ef:4f:b5:6b:20:3d:df:0e:cb:35:c0:f0:56:c9:7e:34:3c: 27:ce:20:d5:09:bb:3b:7e:df:5c:dd:3b:fd:79:49:88:b1:a2: ce:45:3f:dd:50:41:e6:e1:d3:46:10:b6:40:b0:d4:ca:e1:da: 87:a7:e7:0e:92:5b:8c:0c:86:8f:d0:17:fc:64:e9:23:39:18: d4:d1:6b:8c:3a:54:25:f6:50:3a:5d:66:db:de:29:3e:d1:5a: cd:88:15:bf -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt5ELRxdrLN2nf7HmG4CbqxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj M2Q2NmYwHhcNMjYwMTAxMTAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlOTQ5MjRiZWRkMWE4MTliYjg4NmQ2NzI1N2VhODlmNGQzMmYwMmUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2uJ0kWYBy1ciYglpMz98/vDa0Mku zJ3MLt8qakjQzzQ/aur6vYPtmmfz8o//kiK0I82fIpaCR/J3f7VXb8Xp73ku3LM0 z7OP1QdVirQY00RHievP6aqfdGvC/+dipL7Ecx6rMcU5kvm8B5SZGbmaIjyL1qrI rOCEDtlQKSpNK1xTSeC0mXQ+rkUwEsdBkEfQqe1baLqU9s+z7idMmltlMA0X5wNc RebKMokdgoGw25oZcAIIMaRYt4v27rAT/i0U9hRU3nXSI1iXClgCutQrB/bBs69M GNYNZMt87yCPJPCvc5zH4oyTu+cAXCLhNcup2s0t8Ekz45kxfrhdRYWXQwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFOlJJL7dGoGbuIbWclfqifTTLwLhMB8GA1UdIwQY MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt NTUzNjljZjUwN2VlLzEvNlVra3Z0MGFnWnU0aHRaeVYtcUo5Tk12QXVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcEKhK+xBgg AwcEKhK+xB2gMA0GCSqGSIb3DQEBCwUAA4IBAQAoaLiHsQbN87CawGlSPBbSwF5Q v60Ho11ADajXJEARPRiiejYUrBxkwcwKZ2cNeVvOcFtX71Wqa8W39vgt9rktN8H2 7FxKPYypgtI32OYr6PhKB3U5N8v5qU6KNnEQCgHPHbgxYgLB5h8og+rf50jGCyl0 STv69tOJIy8fh9YRX7KsaQb7gAJ/gD9pCkve1Gl1zlygtwOjtl8PG42gZxK+3CHq 70+1ayA93w7LNcDwVsl+NDwnziDVCbs7ft9c3Tv9eUmIsaLORT/dUEHm4dNGELZA sNTK4dqHp+cOkluMDIaP0Bf8ZOkjORjU0WuMOlQl9lA6XWbb3ik+0VrNiBW/ -----END CERTIFICATE-----Generated at Tue Jan 20 02:49:59 2026 by rpki-client