This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/e85a41-b3ff-4fcd-80b2-4aabec0d30a3/1/L6c5Lr0p1aRMGxRILmBZgQtfR4U.roa File: L6c5Lr0p1aRMGxRILmBZgQtfR4U.roa (raw, json) Hash identifier: zHP0uUQQ1j3lH9UmRrJUovyfnfMO31UL4btwp3/nVG0= Subject key identifier: 2F:A7:39:2E:BD:29:D5:A4:4C:1B:14:48:2E:60:59:81:0B:5F:47:85 Certificate issuer: /CN=9fb79d298110b6fb319301ebc22bf180e7054796 Certificate serial: 019B7CEE5EDF46167DA965F48F3C00C64692 Authority key identifier: 9F:B7:9D:29:81:10:B6:FB:31:93:01:EB:C2:2B:F1:80:E7:05:47:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n7edKYEQtvsxkwHrwivxgOcFR5Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/e85a41-b3ff-4fcd-80b2-4aabec0d30a3/1/L6c5Lr0p1aRMGxRILmBZgQtfR4U.roa Signing time: Fri 02 Jan 2026 04:19:15 +0000 ROA not before: Fri 02 Jan 2026 04:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8949 IP address blocks: 2001:67c:560::/48 maxlen: 48 2001:67c:7bc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/e85a41-b3ff-4fcd-80b2-4aabec0d30a3/1/n7edKYEQtvsxkwHrwivxgOcFR5Y.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/e85a41-b3ff-4fcd-80b2-4aabec0d30a3/1/n7edKYEQtvsxkwHrwivxgOcFR5Y.mft rsync://rpki.ripe.net/repository/DEFAULT/n7edKYEQtvsxkwHrwivxgOcFR5Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:5e:df:46:16:7d:a9:65:f4:8f:3c:00:c6:46:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9fb79d298110b6fb319301ebc22bf180e7054796 Validity Not Before: Jan 2 04:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2fa7392ebd29d5a44c1b14482e6059810b5f4785 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:90:a7:e8:3d:c4:ed:2f:cc:a1:da:4d:41:74: 59:12:eb:14:fe:a6:60:0e:27:f8:9b:33:c3:0b:15: 9d:f0:62:f7:d4:e6:08:d0:db:d0:4f:88:87:3c:7d: d8:60:12:14:8d:87:32:ab:86:e6:e7:10:ec:e4:06: c8:89:c3:49:91:23:58:ac:82:cb:4b:29:b1:c1:19: c7:6d:47:6c:00:72:fe:d5:27:12:36:8f:ef:2a:3a: d0:c0:f7:64:1d:6c:fc:fc:c8:73:d6:74:c1:fd:1a: a2:e4:d7:d9:1f:bf:43:fe:2e:11:61:36:9a:87:ce: a0:ba:dc:8d:d7:0e:b3:ee:d1:9d:9e:5b:86:68:8f: 19:c7:81:7d:36:c8:ac:8f:8c:64:3e:ee:91:0c:f4: 11:af:45:73:a0:b0:e2:00:a4:c5:4a:25:f0:17:46: de:74:be:52:8f:75:1f:45:79:b7:3d:55:c8:65:a3: 35:df:37:0e:cf:47:11:8d:30:80:e8:0b:51:e9:1d: 08:1f:84:30:f4:fc:53:e3:45:d3:f7:70:fd:5b:f1: ac:66:91:d9:25:91:fd:d5:bf:57:e8:32:fa:ac:62: f0:9d:12:2a:49:8c:c3:1b:cd:c0:44:2d:56:ae:ef: b2:ab:6b:e9:fe:d8:e3:8c:33:91:c3:0e:d2:70:f2: c7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:A7:39:2E:BD:29:D5:A4:4C:1B:14:48:2E:60:59:81:0B:5F:47:85 X509v3 Authority Key Identifier: keyid:9F:B7:9D:29:81:10:B6:FB:31:93:01:EB:C2:2B:F1:80:E7:05:47:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n7edKYEQtvsxkwHrwivxgOcFR5Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/e85a41-b3ff-4fcd-80b2-4aabec0d30a3/1/L6c5Lr0p1aRMGxRILmBZgQtfR4U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/e85a41-b3ff-4fcd-80b2-4aabec0d30a3/1/n7edKYEQtvsxkwHrwivxgOcFR5Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:560::/48 2001:67c:7bc::/48 Signature Algorithm: sha256WithRSAEncryption 3a:c3:0b:b6:62:53:cc:ea:48:06:f5:f8:36:a9:70:6d:a8:37: 8e:b4:c2:13:ab:14:28:cf:53:b9:d1:f5:f6:bd:bc:f9:0a:52: 61:68:5a:f7:99:11:70:95:1a:34:74:67:0d:e2:bc:b5:df:37: 65:16:52:fb:57:03:66:4c:08:95:7f:cf:c8:a5:77:ec:34:5b: d9:3d:be:84:66:6e:4d:33:70:9d:4d:c5:17:a8:ed:1d:4a:6a: 8e:b3:43:4f:83:ac:1e:6d:c4:e5:94:8d:36:c1:81:1f:d5:57: df:e6:ae:e7:84:e8:86:0f:3b:61:69:42:c0:9d:de:35:57:f7: aa:0e:f3:89:74:eb:79:c0:4b:5e:28:d5:58:be:74:74:e4:18: 0e:c2:c2:76:a2:f9:cb:ed:c6:c9:77:b3:32:62:41:f7:04:eb: 88:20:b4:ac:0e:eb:b3:c1:a8:fd:10:6f:8a:d6:d5:e3:35:f2: 53:7b:a3:43:9f:55:89:ab:05:55:fd:33:1c:a7:80:ed:5c:ce: 50:76:c6:ee:ae:9f:72:02:35:5c:7d:66:99:7e:4a:33:d2:09: 34:34:4d:72:01:f4:4a:9b:a9:71:a0:5e:39:0f:fa:95:ba:8f: 1a:21:ad:96:f6:5e:fe:dc:a1:89:e5:91:f4:40:d9:1c:28:dd: f2:0c:cf:d0 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt87l7fRhZ9qWX0jzwAxkaSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmYjc5ZDI5ODExMGI2ZmIzMTkzMDFlYmMyMmJmMTgwZTcw NTQ3OTYwHhcNMjYwMTAyMDQxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZmE3MzkyZWJkMjlkNWE0NGMxYjE0NDgyZTYwNTk4MTBiNWY0Nzg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZCn6D3E7S/ModpNQXRZEusU/qZg Dif4mzPDCxWd8GL31OYI0NvQT4iHPH3YYBIUjYcyq4bm5xDs5AbIicNJkSNYrILL SymxwRnHbUdsAHL+1ScSNo/vKjrQwPdkHWz8/Mhz1nTB/Rqi5NfZH79D/i4RYTaa h86gutyN1w6z7tGdnluGaI8Zx4F9Nsisj4xkPu6RDPQRr0VzoLDiAKTFSiXwF0be dL5Sj3UfRXm3PVXIZaM13zcOz0cRjTCA6AtR6R0IH4Qw9PxT40XT93D9W/GsZpHZ JZH91b9X6DL6rGLwnRIqSYzDG83ARC1Wru+yq2vp/tjjjDORww7ScPLHSQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFC+nOS69KdWkTBsUSC5gWYELX0eFMB8GA1UdIwQY MBaAFJ+3nSmBELb7MZMB68Ir8YDnBUeWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbjdlZEtZRVF0dnN4a3dIcndpdnhnT2NGUjVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9lODVhNDEtYjNmZi00ZmNkLTgwYjIt NGFhYmVjMGQzMGEzLzEvTDZjNUxyMHAxYVJNR3hSSUxtQlpnUXRmUjRVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy9lODVhNDEtYjNmZi00ZmNkLTgwYjItNGFhYmVjMGQzMGEz LzEvbjdlZEtZRVF0dnN4a3dIcndpdnhnT2NGUjVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAIAEGfAVg AwcAIAEGfAe8MA0GCSqGSIb3DQEBCwUAA4IBAQA6wwu2YlPM6kgG9fg2qXBtqDeO tMITqxQoz1O50fX2vbz5ClJhaFr3mRFwlRo0dGcN4ry13zdlFlL7VwNmTAiVf8/I pXfsNFvZPb6EZm5NM3CdTcUXqO0dSmqOs0NPg6webcTllI02wYEf1Vff5q7nhOiG DzthaULAnd41V/eqDvOJdOt5wEteKNVYvnR05BgOwsJ2ovnL7cbJd7MyYkH3BOuI ILSsDuuzwaj9EG+K1tXjNfJTe6NDn1WJqwVV/TMcp4DtXM5Qdsburp9yAjVcfWaZ fkoz0gk0NE1yAfRKm6lxoF45D/qVuo8aIa2W9l7+3KGJ5ZH0QNkcKN3yDM/Q -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:02 2026 by rpki-client