This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/fNqRbWyjIOtwuzHNSk9Hs2wT9kI.roa File: fNqRbWyjIOtwuzHNSk9Hs2wT9kI.roa (raw, json) Hash identifier: TAPoBqnNsjTw5YArcEk7ui0KobVxF5Zv4qTLQwSW0tg= Subject key identifier: 7C:DA:91:6D:6C:A3:20:EB:70:BB:31:CD:4A:4F:47:B3:6C:13:F6:42 Certificate issuer: /CN=3a611bc291ff1de02256f2315345680603fa4edb Certificate serial: 019B7F157E0677966E4C7B39081E5E8EB5B1 Authority key identifier: 3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/fNqRbWyjIOtwuzHNSk9Hs2wT9kI.roa Signing time: Fri 02 Jan 2026 14:21:13 +0000 ROA not before: Fri 02 Jan 2026 14:21:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215041 IP address blocks: 2001:67c:1570::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:7e:06:77:96:6e:4c:7b:39:08:1e:5e:8e:b5:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a611bc291ff1de02256f2315345680603fa4edb Validity Not Before: Jan 2 14:21:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7cda916d6ca320eb70bb31cd4a4f47b36c13f642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:65:28:10:17:a8:ec:70:83:22:c8:32:eb:b6: 7e:8f:52:c3:1f:65:50:1f:c3:33:0c:3c:a8:52:00: 44:16:39:dd:3a:a8:6f:0f:fa:bf:79:0d:9a:ad:10: 96:31:06:04:6d:b6:e8:4a:6f:99:ca:28:9f:9f:2b: 85:36:d7:f4:3d:f1:3a:6e:cc:b5:9e:70:d0:50:40: e6:7a:bc:6b:45:0c:15:6e:11:1f:b4:7d:85:0e:09: 94:45:fc:0f:d3:40:de:25:6e:86:cc:2d:b5:94:ca: 30:64:5c:03:3a:75:9b:10:a5:37:8b:07:f3:14:af: 72:96:c0:8b:eb:fe:93:83:02:0e:90:96:cd:8b:c8: b9:8b:74:84:9e:77:ca:ff:99:3e:56:f9:41:0c:75: 56:1a:37:fa:11:36:e4:be:49:94:7b:d0:51:f9:bf: b2:88:4a:c0:60:fb:fc:44:13:69:20:03:6c:c0:0d: ae:b2:ac:a3:52:7e:da:0e:d7:64:74:d6:13:51:bf: 1a:48:a1:ce:57:39:cc:15:97:ad:3d:0e:e8:a9:48: dd:9d:85:26:b9:a9:ea:22:23:55:dc:e6:00:c7:67: 18:16:3d:e5:e9:b1:2d:fa:f5:9f:38:9e:13:c1:95: 50:fb:f0:83:48:47:ff:32:f8:be:63:36:9d:c5:3a: a2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:DA:91:6D:6C:A3:20:EB:70:BB:31:CD:4A:4F:47:B3:6C:13:F6:42 X509v3 Authority Key Identifier: keyid:3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/fNqRbWyjIOtwuzHNSk9Hs2wT9kI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:1570::/48 Signature Algorithm: sha256WithRSAEncryption b6:fe:b3:31:dd:7d:ae:95:61:b4:79:41:49:07:20:42:ad:75: 67:f2:34:a5:69:6a:ca:c0:6b:6c:79:42:a4:66:48:37:66:e6: 41:4d:2a:ef:49:bf:0f:ff:4a:c7:4f:3c:12:ac:68:04:b5:f7: e7:d7:e6:ce:54:64:9e:47:9a:3a:ac:4a:1c:f7:7c:23:c1:ca: 18:f1:e1:2f:bf:e6:55:46:6c:60:95:d6:d5:de:99:25:1a:de: 35:3e:d9:43:cb:21:02:60:a9:f5:a6:ee:d5:39:24:d9:1f:8f: 76:94:40:b1:f1:c3:b2:27:ac:f9:59:67:ce:8e:74:fd:9e:43: 47:4a:62:5b:93:55:6f:9c:59:9b:98:75:6b:cc:04:79:1d:82: 98:fd:34:2e:81:ab:2a:3f:35:c5:c6:1a:ab:78:0b:0b:64:77: eb:b5:78:9f:60:52:f5:9c:79:d3:3b:dc:f3:cf:a0:b2:8f:97: 63:a1:58:7c:22:2b:4d:ce:c1:d2:15:3f:a4:c4:d2:cf:40:00: ac:5b:d5:73:c5:41:33:be:80:75:45:b2:9c:f6:08:2f:c4:80: dc:65:98:08:38:01:f8:24:54:d7:6f:e0:a6:b5:3b:22:ac:8a: 13:d3:b3:88:dc:73:1b:89:74:f0:f3:12:ab:9a:01:a5:83:7f: ea:73:8e:08 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/FX4Gd5ZuTHs5CB5ejrWxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNjExYmMyOTFmZjFkZTAyMjU2ZjIzMTUzNDU2ODA2MDNm YTRlZGIwHhcNMjYwMTAyMTQyMTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Y2RhOTE2ZDZjYTMyMGViNzBiYjMxY2Q0YTRmNDdiMzZjMTNmNjQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGUoEBeo7HCDIsgy67Z+j1LDH2VQ H8MzDDyoUgBEFjndOqhvD/q/eQ2arRCWMQYEbbboSm+ZyiifnyuFNtf0PfE6bsy1 nnDQUEDmerxrRQwVbhEftH2FDgmURfwP00DeJW6GzC21lMowZFwDOnWbEKU3iwfz FK9ylsCL6/6TgwIOkJbNi8i5i3SEnnfK/5k+VvlBDHVWGjf6ETbkvkmUe9BR+b+y iErAYPv8RBNpIANswA2usqyjUn7aDtdkdNYTUb8aSKHOVznMFZetPQ7oqUjdnYUm uanqIiNV3OYAx2cYFj3l6bEt+vWfOJ4TwZVQ+/CDSEf/Mvi+YzadxTqi1QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFHzakW1soyDrcLsxzUpPR7NsE/ZCMB8GA1UdIwQY MBaAFDphG8KR/x3gIlbyMVNFaAYD+k7bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT21FYndwSF9IZUFpVnZJeFUwVm9CZ1A2VHRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9kMTQ3MjgtNDQyZS00NGVhLWFmZDct MWI1Y2Q1YjRkMzk5LzEvZk5xUmJXeWpJT3R3dXpITlNrOUhzMndUOWtJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy9kMTQ3MjgtNDQyZS00NGVhLWFmZDctMWI1Y2Q1YjRkMzk5 LzEvT21FYndwSF9IZUFpVnZJeFUwVm9CZ1A2VHRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBVw MA0GCSqGSIb3DQEBCwUAA4IBAQC2/rMx3X2ulWG0eUFJByBCrXVn8jSlaWrKwGts eUKkZkg3ZuZBTSrvSb8P/0rHTzwSrGgEtffn1+bOVGSeR5o6rEoc93wjwcoY8eEv v+ZVRmxgldbV3pklGt41PtlDyyECYKn1pu7VOSTZH492lECx8cOyJ6z5WWfOjnT9 nkNHSmJbk1VvnFmbmHVrzAR5HYKY/TQugasqPzXFxhqreAsLZHfrtXifYFL1nHnT O9zzz6Cyj5djoVh8IitNzsHSFT+kxNLPQACsW9VzxUEzvoB1RbKc9ggvxIDcZZgI OAH4JFTXb+CmtTsirIoT07OI3HMbiXTw8xKrmgGlg3/qc44I -----END CERTIFICATE-----Generated at Wed Jan 21 01:34:18 2026 by rpki-client