This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/M2V_6Ds2_WrBlE9CWpqLPh6MRc0.roa File: M2V_6Ds2_WrBlE9CWpqLPh6MRc0.roa (raw, json) Hash identifier: zolBJGJqkk3s6DdZ3ZHxjtMeW3jPL1+C5624vM4U3Ow= Subject key identifier: 33:65:7F:E8:3B:36:FD:6A:C1:94:4F:42:5A:9A:8B:3E:1E:8C:45:CD Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Certificate serial: 019B7BA541435DEFE886FC758DA56BF6B7B2 Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/M2V_6Ds2_WrBlE9CWpqLPh6MRc0.roa Signing time: Thu 01 Jan 2026 22:19:46 +0000 ROA not before: Thu 01 Jan 2026 22:19:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9312 IP address blocks: 2a07:e340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:41:43:5d:ef:e8:86:fc:75:8d:a5:6b:f6:b7:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Validity Not Before: Jan 1 22:19:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=33657fe83b36fd6ac1944f425a9a8b3e1e8c45cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fe:fb:30:46:3e:2c:e2:01:bf:27:eb:97:9a: 51:e8:66:43:a2:1e:5a:1e:4e:67:6f:6d:85:b9:67: 89:e4:b9:3b:9a:dc:2f:5d:18:bf:a0:90:49:1f:c9: fe:5f:e6:df:c2:0d:05:3c:73:d7:7d:0d:7c:84:ee: bf:f8:65:99:1a:4a:74:c4:ec:96:a3:2f:a1:b1:c7: 72:27:19:dd:12:e9:eb:f9:eb:4b:8b:fb:f4:43:f1: 0a:b2:88:6b:f6:8c:78:3d:17:cb:c0:31:38:12:2f: 4e:da:bd:04:cd:4f:82:30:16:97:57:e4:63:f3:7d: a7:7c:66:10:a4:64:ae:35:78:2e:05:d2:fc:a0:13: 5a:38:2d:f5:48:55:04:28:05:ef:ca:d7:20:9a:71: 4c:2e:a5:61:f5:91:84:e4:d5:f9:40:1e:0c:58:90: 19:f3:ba:5d:ba:0a:d0:79:c5:f5:93:1b:f0:bd:28: cc:a7:23:aa:cc:30:0d:b6:5e:bf:b6:60:1b:55:04: 9e:37:7b:2d:6f:c2:d4:01:0f:a7:7a:20:a6:23:fe: 1a:56:45:eb:c5:19:89:53:32:4b:5f:eb:79:0e:d4: ca:ab:b9:0d:28:07:37:ee:cb:ab:61:f3:18:22:63: 53:97:c3:dd:d6:23:55:8e:5b:3a:e8:91:d1:57:21: 36:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:65:7F:E8:3B:36:FD:6A:C1:94:4F:42:5A:9A:8B:3E:1E:8C:45:CD X509v3 Authority Key Identifier: keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/M2V_6Ds2_WrBlE9CWpqLPh6MRc0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:e340::/32 Signature Algorithm: sha256WithRSAEncryption 88:5c:87:eb:01:6d:f9:ae:b5:fd:6f:29:28:7f:29:df:87:49: 8d:d1:04:14:1f:eb:92:c0:f2:d1:b8:b1:a2:97:ef:77:8b:5c: b7:51:9d:b5:41:fa:e8:be:c0:90:95:d5:44:34:cb:fd:a9:7a: 76:ae:de:93:01:ef:9c:59:e9:ea:1b:e3:54:82:11:d6:5c:72: 00:70:c5:dc:ad:c8:31:f8:e3:e2:66:84:7f:c5:71:dc:fe:a6: 2a:f9:e6:e6:56:72:2a:46:51:1e:ce:04:53:d4:c5:30:71:fd: 1e:e6:f5:60:58:59:68:b0:3f:04:38:e1:4e:8d:ea:ed:22:53: bb:bc:4b:01:3f:c1:ff:30:62:b6:c4:f5:b8:4e:a2:68:ff:b8: f5:af:6b:b5:ad:b0:04:2e:03:31:67:9c:1d:7a:da:ba:76:45: 96:92:3e:f9:db:4a:d2:02:b9:fd:5a:a8:1b:af:75:42:7a:e1: 15:81:7b:be:ee:59:47:94:36:97:83:8d:b8:93:e7:95:92:fe: 22:5f:1c:e9:56:03:2b:a3:24:23:44:e7:f6:5c:83:b5:dd:9c: 29:e8:71:74:13:14:3e:83:85:96:5c:9a:77:6e:14:2c:ae:a0: d7:7e:ae:87:e7:46:26:82:37:68:8e:16:cb:cf:a4:46:50:fd: 41:53:92:05 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt7pUFDXe/ohvx1jaVr9reyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl MGI5MjYwHhcNMjYwMTAxMjIxOTQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMzY1N2ZlODNiMzZmZDZhYzE5NDRmNDI1YTlhOGIzZTFlOGM0NWNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuP77MEY+LOIBvyfrl5pR6GZDoh5a Hk5nb22FuWeJ5Lk7mtwvXRi/oJBJH8n+X+bfwg0FPHPXfQ18hO6/+GWZGkp0xOyW oy+hscdyJxndEunr+etLi/v0Q/EKsohr9ox4PRfLwDE4Ei9O2r0EzU+CMBaXV+Rj 832nfGYQpGSuNXguBdL8oBNaOC31SFUEKAXvytcgmnFMLqVh9ZGE5NX5QB4MWJAZ 87pdugrQecX1kxvwvSjMpyOqzDANtl6/tmAbVQSeN3stb8LUAQ+neiCmI/4aVkXr xRmJUzJLX+t5DtTKq7kNKAc37surYfMYImNTl8Pd1iNVjls66JHRVyE2xwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFDNlf+g7Nv1qwZRPQlqaiz4ejEXNMB8GA1UdIwQY MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt NzM4NTZhZjQ5ZjNlLzEvTTJWXzZEczJfV3JCbEU5Q1dwcUxQaDZNUmMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgfjQDAN BgkqhkiG9w0BAQsFAAOCAQEAiFyH6wFt+a61/W8pKH8p34dJjdEEFB/rksDy0bix opfvd4tct1GdtUH66L7AkJXVRDTL/al6dq7ekwHvnFnp6hvjVIIR1lxyAHDF3K3I Mfjj4maEf8Vx3P6mKvnm5lZyKkZRHs4EU9TFMHH9Hub1YFhZaLA/BDjhTo3q7SJT u7xLAT/B/zBitsT1uE6iaP+49a9rta2wBC4DMWecHXraunZFlpI++dtK0gK5/Vqo G691QnrhFYF7vu5ZR5Q2l4ONuJPnlZL+Il8c6VYDK6MkI0Tn9lyDtd2cKehxdBMU PoOFllyad24ULK6g136uh+dGJoI3aI4Wy8+kRlD9QVOSBQ== -----END CERTIFICATE-----Generated at Mon Jan 19 19:57:58 2026 by rpki-client