This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/2db683-c9e9-4647-823b-cd403bdee4df/1/n6Tkvj9baCMXCAsK_ODmF8IM-68.roa File: n6Tkvj9baCMXCAsK_ODmF8IM-68.roa (raw, json) Hash identifier: 76lc1Uwva5TvIie1HotWiuL4PgdbtEXQtjT6zma+kj8= Subject key identifier: 9F:A4:E4:BE:3F:5B:68:23:17:08:0B:0A:FC:E0:E6:17:C2:0C:FB:AF Certificate issuer: /CN=94962e2afa7748f45265d89fd15624b584e72466 Certificate serial: 019B79EC46CE3F0544CFAFF25DF6A37EA073 Authority key identifier: 94:96:2E:2A:FA:77:48:F4:52:65:D8:9F:D1:56:24:B5:84:E7:24:66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJYuKvp3SPRSZdif0VYktYTnJGY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/2db683-c9e9-4647-823b-cd403bdee4df/1/n6Tkvj9baCMXCAsK_ODmF8IM-68.roa Signing time: Thu 01 Jan 2026 14:18:06 +0000 ROA not before: Thu 01 Jan 2026 14:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 680 IP address blocks: 131.220.0.0/16 maxlen: 17 193.23.254.0/24 maxlen: 32 2a00:5ba0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/2db683-c9e9-4647-823b-cd403bdee4df/1/lJYuKvp3SPRSZdif0VYktYTnJGY.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/2db683-c9e9-4647-823b-cd403bdee4df/1/lJYuKvp3SPRSZdif0VYktYTnJGY.mft rsync://rpki.ripe.net/repository/DEFAULT/lJYuKvp3SPRSZdif0VYktYTnJGY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 02:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:46:ce:3f:05:44:cf:af:f2:5d:f6:a3:7e:a0:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94962e2afa7748f45265d89fd15624b584e72466 Validity Not Before: Jan 1 14:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9fa4e4be3f5b682317080b0afce0e617c20cfbaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c3:ca:25:95:5c:d4:5d:9b:5f:a7:f8:f0:75: 28:04:13:0b:5b:28:d6:33:1d:3e:0e:15:b0:1e:6d: 47:ac:dd:73:da:6a:91:07:8e:c0:31:e1:b2:9b:ac: 3a:ca:65:f2:24:c3:e9:f2:28:7e:8b:ec:0a:99:de: 68:92:d7:5b:47:fa:a8:28:66:ca:9f:48:3f:7a:0b: 15:4f:d6:e3:12:13:b3:28:11:9e:d6:97:c6:08:f4: 25:c5:32:0a:3a:24:b2:55:fe:c2:d8:75:bd:0f:dd: df:58:98:54:e9:f2:2e:15:58:8a:0e:97:df:f7:3f: 0e:0b:62:14:3a:92:ad:fe:cc:5f:e3:f4:35:f0:ff: fd:53:8a:64:4b:3a:31:03:49:da:f5:2e:86:70:27: ab:b2:27:5e:06:be:c8:69:96:b9:03:0f:8d:c9:28: 58:a0:b0:5a:42:5a:62:2a:23:25:21:21:65:34:58: 50:a4:fb:59:c1:15:e5:4f:72:43:c1:13:4a:35:37: 2a:42:1b:6f:62:89:38:8d:85:40:3b:88:f9:22:dd: 22:fb:e4:32:76:99:fd:5d:83:9f:fa:9a:28:08:ac: e8:09:9e:83:22:5c:32:de:ed:bb:31:91:36:a3:6a: 61:da:cd:8f:cf:26:44:fe:e4:25:42:b1:8b:dd:a9: 2d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A4:E4:BE:3F:5B:68:23:17:08:0B:0A:FC:E0:E6:17:C2:0C:FB:AF X509v3 Authority Key Identifier: keyid:94:96:2E:2A:FA:77:48:F4:52:65:D8:9F:D1:56:24:B5:84:E7:24:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJYuKvp3SPRSZdif0VYktYTnJGY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/2db683-c9e9-4647-823b-cd403bdee4df/1/n6Tkvj9baCMXCAsK_ODmF8IM-68.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/2db683-c9e9-4647-823b-cd403bdee4df/1/lJYuKvp3SPRSZdif0VYktYTnJGY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.220.0.0/16 193.23.254.0/24 IPv6: 2a00:5ba0::/29 Signature Algorithm: sha256WithRSAEncryption 86:ce:13:9c:7b:e7:36:70:f7:cd:73:8c:d1:07:0c:a7:62:18: 6c:88:28:e2:00:47:dc:44:ed:3f:31:c2:dd:df:a4:4c:d7:7f: 74:22:8c:af:47:d7:7b:49:bd:da:99:ee:bd:80:63:15:f6:a0: 74:61:40:57:ba:5d:0b:2d:f0:5d:4e:da:84:33:0c:91:1d:ab: f6:a3:b7:5a:89:c7:f0:d6:29:b8:d4:8e:04:27:dd:de:61:1d: 4e:ac:e9:43:89:19:09:f3:03:e0:ea:75:aa:ce:72:6a:69:13: ec:ff:a1:98:44:33:61:92:1d:ff:8e:11:d7:95:b0:27:9f:f6: b0:a8:7b:e0:c0:ad:eb:81:3c:99:4d:e2:a0:95:60:f9:00:44: 5a:e9:44:f6:a9:6f:5a:58:18:17:6f:d7:f6:70:31:8d:aa:5c: 9f:e7:1a:8c:d8:5d:30:2f:58:0c:4d:a7:51:51:ba:83:f2:18: 60:15:6a:f9:52:6c:8d:90:77:85:15:d3:74:47:5e:23:19:f6: 0a:4e:8b:19:96:89:78:00:b8:60:04:7d:04:f2:65:16:fa:21: 27:ea:90:93:0f:27:12:67:66:b8:e8:88:3f:6a:14:ee:72:fb: 40:b8:3d:31:de:1c:85:df:5e:7a:ac:65:88:0f:4c:84:bb:53: 7a:27:1a:cc -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISAZt57EbOPwVEz6/yXfajfqBzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0OTYyZTJhZmE3NzQ4ZjQ1MjY1ZDg5ZmQxNTYyNGI1ODRl NzI0NjYwHhcNMjYwMTAxMTQxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZmE0ZTRiZTNmNWI2ODIzMTcwODBiMGFmY2UwZTYxN2MyMGNmYmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyMPKJZVc1F2bX6f48HUoBBMLWyjW Mx0+DhWwHm1HrN1z2mqRB47AMeGym6w6ymXyJMPp8ih+i+wKmd5oktdbR/qoKGbK n0g/egsVT9bjEhOzKBGe1pfGCPQlxTIKOiSyVf7C2HW9D93fWJhU6fIuFViKDpff 9z8OC2IUOpKt/sxf4/Q18P/9U4pkSzoxA0na9S6GcCersideBr7IaZa5Aw+NyShY oLBaQlpiKiMlISFlNFhQpPtZwRXlT3JDwRNKNTcqQhtvYok4jYVAO4j5It0i++Qy dpn9XYOf+pooCKzoCZ6DIlwy3u27MZE2o2ph2s2PzyZE/uQlQrGL3aktvQIDAQAB o4ICHTCCAhkwHQYDVR0OBBYEFJ+k5L4/W2gjFwgLCvzg5hfCDPuvMB8GA1UdIwQY MBaAFJSWLir6d0j0UmXYn9FWJLWE5yRmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEpZdUt2cDNTUFJTWmRpZjBWWWt0WVRuSkdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS8yZGI2ODMtYzllOS00NjQ3LTgyM2It Y2Q0MDNiZGVlNGRmLzEvbjZUa3ZqOWJhQ01YQ0FzS19PRG1GOElNLTY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS8yZGI2ODMtYzllOS00NjQ3LTgyM2ItY2Q0MDNiZGVlNGRm LzEvbEpZdUt2cDNTUFJTWmRpZjBWWWt0WVRuSkdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjARBAIAATALAwMAg9wDBADB F/4wDQQCAAIwBwMFAyoAW6AwDQYJKoZIhvcNAQELBQADggEBAIbOE5x75zZw981z jNEHDKdiGGyIKOIAR9xE7T8xwt3fpEzXf3QijK9H13tJvdqZ7r2AYxX2oHRhQFe6 XQst8F1O2oQzDJEdq/ajt1qJx/DWKbjUjgQn3d5hHU6s6UOJGQnzA+DqdarOcmpp E+z/oZhEM2GSHf+OEdeVsCef9rCoe+DAreuBPJlN4qCVYPkARFrpRPapb1pYGBdv 1/ZwMY2qXJ/nGozYXTAvWAxNp1FRuoPyGGAVavlSbI2Qd4UV03RHXiMZ9gpOixmW iXgAuGAEfQTyZRb6ISfqkJMPJxJnZrjoiD9qFO5y+0C4PTHeHIXfXnqsZYgPTIS7 U3onGsw= -----END CERTIFICATE-----Generated at Tue Jan 27 11:25:13 2026 by rpki-client