This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/xHv2_HdEJG5Cfvg9tYmqVThQtwc.roa File: xHv2_HdEJG5Cfvg9tYmqVThQtwc.roa (raw, json) Hash identifier: Nxypi5IV+neWqZvzXksjBejqnOVHDrNcZpixogm0gqk= Subject key identifier: C4:7B:F6:FC:77:44:24:6E:42:7E:F8:3D:B5:89:AA:55:38:50:B7:07 Certificate issuer: /CN=a669f1c21370c44dfd10e2af688c8c4e0ea12955 Certificate serial: 019B7C80C1E6346A6E6FDC91F36572C46C33 Authority key identifier: A6:69:F1:C2:13:70:C4:4D:FD:10:E2:AF:68:8C:8C:4E:0E:A1:29:55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pmnxwhNwxE39EOKvaIyMTg6hKVU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/xHv2_HdEJG5Cfvg9tYmqVThQtwc.roa Signing time: Fri 02 Jan 2026 02:19:31 +0000 ROA not before: Fri 02 Jan 2026 02:19:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211723 IP address blocks: 2001:67c:296c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/pmnxwhNwxE39EOKvaIyMTg6hKVU.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/pmnxwhNwxE39EOKvaIyMTg6hKVU.mft rsync://rpki.ripe.net/repository/DEFAULT/pmnxwhNwxE39EOKvaIyMTg6hKVU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:c1:e6:34:6a:6e:6f:dc:91:f3:65:72:c4:6c:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a669f1c21370c44dfd10e2af688c8c4e0ea12955 Validity Not Before: Jan 2 02:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c47bf6fc7744246e427ef83db589aa553850b707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:83:d7:fa:9f:6a:58:a5:a0:c8:ef:09:18:ff: 98:1b:c1:cc:fc:1b:2b:ab:9f:cd:82:bd:b6:4d:b2: 07:59:49:17:ec:0f:6d:80:9e:fb:a8:cf:72:73:0c: dd:98:70:2b:5f:eb:18:85:1f:28:59:cb:19:14:fe: f1:f2:32:fa:a7:14:2c:a4:99:5f:6e:e0:79:2c:af: af:ee:f5:44:b1:e0:b0:f2:9a:3b:08:ab:15:4a:bd: 03:86:da:a1:5e:a1:92:b1:5f:c1:0d:db:de:ca:69: 35:75:f3:d6:31:f8:6d:45:5f:18:61:b2:f3:2e:bf: b6:96:e6:ae:dc:51:98:5c:69:87:91:b9:cb:de:79: c5:af:23:75:b2:e0:b6:13:95:28:5b:a2:12:28:7c: 3f:65:8f:a1:db:61:b3:ba:a1:43:76:cf:12:62:42: fc:e7:17:37:4a:2f:75:85:09:b8:df:bb:61:4b:22: 3a:b1:85:bd:7b:de:6b:45:61:6f:4d:2f:e3:e6:6a: c1:ab:4e:6a:2a:a6:3c:bc:20:65:cb:17:40:56:4e: 8e:9b:27:d7:60:3e:2d:fa:39:55:25:76:01:08:59: 80:2a:a1:49:3b:71:9c:75:82:95:6b:d1:65:e9:4c: 05:cf:2a:51:b8:b2:01:d0:aa:42:0a:b7:83:c6:3d: 79:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:7B:F6:FC:77:44:24:6E:42:7E:F8:3D:B5:89:AA:55:38:50:B7:07 X509v3 Authority Key Identifier: keyid:A6:69:F1:C2:13:70:C4:4D:FD:10:E2:AF:68:8C:8C:4E:0E:A1:29:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pmnxwhNwxE39EOKvaIyMTg6hKVU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/xHv2_HdEJG5Cfvg9tYmqVThQtwc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/pmnxwhNwxE39EOKvaIyMTg6hKVU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:296c::/48 Signature Algorithm: sha256WithRSAEncryption 69:ff:32:c8:48:0f:29:6d:1d:f7:82:fc:5b:04:72:3d:5d:69: 36:cc:10:e0:56:62:77:aa:6f:26:d3:92:44:d3:da:28:90:17: 84:3f:bd:69:3f:99:51:f9:30:55:c9:0b:2f:e6:d7:5a:60:b3: 95:29:95:09:ca:6a:87:a2:a6:0c:43:bf:5c:62:43:a1:49:98: 69:fe:58:2c:d8:c9:9e:0e:f0:a1:a0:1c:e8:f1:c2:6f:32:37: 03:5f:c4:d4:3e:d2:0f:76:24:67:b3:6b:08:ff:3f:4e:0e:03: dd:69:1d:a4:ba:e6:54:8b:a0:29:9c:3e:fa:28:9f:f4:8a:40: 18:7b:bc:82:5e:bb:04:19:d7:69:4f:11:02:09:d9:84:ce:fc: 33:7d:70:38:86:77:6b:51:0a:9d:18:59:85:2a:93:f7:11:95: 97:1f:cf:c4:62:60:f6:20:99:ab:5c:e1:40:6d:ba:99:b7:72: 77:41:c4:67:d0:1f:5b:a0:95:a0:20:1b:0a:4a:9e:3b:42:d8: 17:25:bc:0e:2f:18:05:b0:5b:e1:a3:fa:7e:f0:13:07:91:b6: b2:58:5f:5f:d6:5d:4c:09:1d:06:91:18:6d:b3:23:e7:b6:96: 1a:2c:41:e4:5e:49:65:63:0d:19:02:8d:50:42:3f:be:7c:da: 3e:98:5a:0a -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt8gMHmNGpub9yR82VyxGwzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2NjlmMWMyMTM3MGM0NGRmZDEwZTJhZjY4OGM4YzRlMGVh MTI5NTUwHhcNMjYwMTAyMDIxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNDdiZjZmYzc3NDQyNDZlNDI3ZWY4M2RiNTg5YWE1NTM4NTBiNzA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj4PX+p9qWKWgyO8JGP+YG8HM/Bsr q5/Ngr22TbIHWUkX7A9tgJ77qM9ycwzdmHArX+sYhR8oWcsZFP7x8jL6pxQspJlf buB5LK+v7vVEseCw8po7CKsVSr0DhtqhXqGSsV/BDdveymk1dfPWMfhtRV8YYbLz Lr+2luau3FGYXGmHkbnL3nnFryN1suC2E5UoW6ISKHw/ZY+h22GzuqFDds8SYkL8 5xc3Si91hQm437thSyI6sYW9e95rRWFvTS/j5mrBq05qKqY8vCBlyxdAVk6OmyfX YD4t+jlVJXYBCFmAKqFJO3GcdYKVa9Fl6UwFzypRuLIB0KpCCreDxj15wwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFMR79vx3RCRuQn74PbWJqlU4ULcHMB8GA1UdIwQY MBaAFKZp8cITcMRN/RDir2iMjE4OoSlVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG1ueHdoTnd4RTM5RU9LdmFJeU1UZzZoS1ZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9lN2I0MGMtNDE0Yi00NzNhLWI4Yzct YjdiMTQ4MTYyNWIxLzEveEh2Ml9IZEVKRzVDZnZnOXRZbXFWVGhRdHdjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS9lN2I0MGMtNDE0Yi00NzNhLWI4YzctYjdiMTQ4MTYyNWIx LzEvcG1ueHdoTnd4RTM5RU9LdmFJeU1UZzZoS1ZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCls MA0GCSqGSIb3DQEBCwUAA4IBAQBp/zLISA8pbR33gvxbBHI9XWk2zBDgVmJ3qm8m 05JE09ookBeEP71pP5lR+TBVyQsv5tdaYLOVKZUJymqHoqYMQ79cYkOhSZhp/lgs 2MmeDvChoBzo8cJvMjcDX8TUPtIPdiRns2sI/z9ODgPdaR2kuuZUi6ApnD76KJ/0 ikAYe7yCXrsEGddpTxECCdmEzvwzfXA4hndrUQqdGFmFKpP3EZWXH8/EYmD2IJmr XOFAbbqZt3J3QcRn0B9boJWgIBsKSp47QtgXJbwOLxgFsFvho/p+8BMHkbayWF9f 1l1MCR0GkRhtsyPntpYaLEHkXkllYw0ZAo1QQj++fNo+mFoK -----END CERTIFICATE-----Generated at Mon Feb 9 20:11:12 2026 by rpki-client