This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/f37203-f172-459f-8315-82f25ac6887f/1/kVVy-YWr30S0GSdgLLy6UhLp1JQ.roa File: kVVy-YWr30S0GSdgLLy6UhLp1JQ.roa (raw, json) Hash identifier: MLFi2OYZr+v/54OGb70/05XIuu/GA7oMfXFZI0ZBmD0= Subject key identifier: 91:55:72:F9:85:AB:DF:44:B4:19:27:60:2C:BC:BA:52:12:E9:D4:94 Certificate issuer: /CN=e623299ee47b4f612db90a14f95e40767ae06657 Certificate serial: 019B7C135973E18F52B82497493F42EA882A Authority key identifier: E6:23:29:9E:E4:7B:4F:61:2D:B9:0A:14:F9:5E:40:76:7A:E0:66:57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5iMpnuR7T2EtuQoU-V5AdnrgZlc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/f37203-f172-459f-8315-82f25ac6887f/1/kVVy-YWr30S0GSdgLLy6UhLp1JQ.roa Signing time: Fri 02 Jan 2026 00:20:01 +0000 ROA not before: Fri 02 Jan 2026 00:20:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35044 IP address blocks: 2001:67c:484::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/f37203-f172-459f-8315-82f25ac6887f/1/5iMpnuR7T2EtuQoU-V5AdnrgZlc.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/f37203-f172-459f-8315-82f25ac6887f/1/5iMpnuR7T2EtuQoU-V5AdnrgZlc.mft rsync://rpki.ripe.net/repository/DEFAULT/5iMpnuR7T2EtuQoU-V5AdnrgZlc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:59:73:e1:8f:52:b8:24:97:49:3f:42:ea:88:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e623299ee47b4f612db90a14f95e40767ae06657 Validity Not Before: Jan 2 00:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=915572f985abdf44b41927602cbcba5212e9d494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7f:70:c5:ff:a9:91:c8:3d:1e:d7:26:a5:57: 82:ee:d0:1c:dc:f4:4a:9e:f1:ba:77:0e:d7:e5:34: 50:ee:fc:38:65:30:d3:01:1d:96:df:a3:88:b8:24: e7:d8:0d:b5:2b:31:e1:e3:51:d4:95:ef:58:eb:4a: 80:f3:43:86:db:f4:0d:c3:bd:31:81:1a:91:8b:3f: 46:2a:13:43:43:30:8f:cb:8f:ba:f0:8a:a6:51:3d: 56:1d:53:48:db:25:ff:0c:a5:56:04:ba:3f:bf:05: b4:8d:44:35:17:eb:e5:4f:0f:02:2a:ac:d7:a5:37: af:2b:ee:a2:6b:25:26:f1:34:e3:ba:22:30:09:f6: 57:9f:f7:a8:74:21:db:01:b5:36:08:9c:12:d8:a3: 12:ca:41:62:80:a9:48:b3:b2:98:2f:d2:a2:2a:cb: 3a:a5:f7:7f:71:42:4c:4d:69:7d:67:91:e5:1b:07: d9:ee:b5:c0:74:25:d9:05:b7:d1:dc:58:04:c4:e1: 22:af:0d:f8:93:9e:0d:e8:19:62:63:17:9e:d0:08: c6:9b:6a:c2:ef:81:d3:ed:e1:16:89:e6:1e:2a:df: 00:3e:2f:47:dc:7e:3c:db:e6:59:84:c3:93:7e:0d: c6:89:fe:53:fe:74:94:14:21:b3:5d:d9:65:c0:ef: 62:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:55:72:F9:85:AB:DF:44:B4:19:27:60:2C:BC:BA:52:12:E9:D4:94 X509v3 Authority Key Identifier: keyid:E6:23:29:9E:E4:7B:4F:61:2D:B9:0A:14:F9:5E:40:76:7A:E0:66:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iMpnuR7T2EtuQoU-V5AdnrgZlc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/f37203-f172-459f-8315-82f25ac6887f/1/kVVy-YWr30S0GSdgLLy6UhLp1JQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/f37203-f172-459f-8315-82f25ac6887f/1/5iMpnuR7T2EtuQoU-V5AdnrgZlc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:484::/48 Signature Algorithm: sha256WithRSAEncryption 2e:3d:4f:aa:c2:6e:39:af:92:f1:4e:e6:81:d9:2c:bb:1b:ee: b8:e5:7d:77:bc:4c:b6:54:9e:d4:55:89:4c:0c:a9:23:9b:04: b7:ae:9f:fd:45:2c:fa:b3:c9:ce:0d:55:cc:90:72:c6:a2:57: 68:95:4f:c4:20:ff:de:d6:3f:b6:49:ac:36:e2:e7:57:da:2b: df:1e:f2:16:20:c9:b1:81:16:bf:1c:61:7a:4f:95:f4:02:9e: 0e:3b:f6:72:c4:1a:95:52:5b:81:ba:59:de:64:90:74:2b:1f: 1e:c9:e4:e2:63:db:55:ab:87:b1:c1:46:e8:46:87:41:28:bb: 50:bf:37:02:e5:d4:3e:ff:fa:7b:56:5a:07:4e:9b:e6:82:e0: 74:7f:30:55:09:7c:3f:34:21:94:30:91:02:d7:7c:3d:bf:4b: 23:a2:c9:ba:13:ae:1e:95:a7:c8:b5:00:b3:a0:05:5f:de:d1: d6:1c:dd:0e:6e:a7:e1:03:4b:5b:cc:3d:e1:3a:99:85:f8:a5: 77:fa:8a:39:50:b1:de:2b:51:43:71:02:d2:a0:9e:8f:31:8e: 89:df:26:93:70:6e:7b:a8:43:78:6f:74:5d:76:cd:d9:2e:eb: c5:3a:9c:64:bd:8d:19:d2:ad:85:27:c9:bb:27:6d:8e:be:1d: 20:86:3b:21 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt8E1lz4Y9SuCSXST9C6ogqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2MjMyOTllZTQ3YjRmNjEyZGI5MGExNGY5NWU0MDc2N2Fl MDY2NTcwHhcNMjYwMTAyMDAyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTU1NzJmOTg1YWJkZjQ0YjQxOTI3NjAyY2JjYmE1MjEyZTlkNDk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAon9wxf+pkcg9HtcmpVeC7tAc3PRK nvG6dw7X5TRQ7vw4ZTDTAR2W36OIuCTn2A21KzHh41HUle9Y60qA80OG2/QNw70x gRqRiz9GKhNDQzCPy4+68IqmUT1WHVNI2yX/DKVWBLo/vwW0jUQ1F+vlTw8CKqzX pTevK+6iayUm8TTjuiIwCfZXn/eodCHbAbU2CJwS2KMSykFigKlIs7KYL9KiKss6 pfd/cUJMTWl9Z5HlGwfZ7rXAdCXZBbfR3FgExOEirw34k54N6BliYxee0AjGm2rC 74HT7eEWieYeKt8APi9H3H482+ZZhMOTfg3Gif5T/nSUFCGzXdllwO9i6wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJFVcvmFq99EtBknYCy8ulIS6dSUMB8GA1UdIwQY MBaAFOYjKZ7ke09hLbkKFPleQHZ64GZXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWlNcG51UjdUMkV0dVFvVS1WNUFkbnJnWmxjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9mMzcyMDMtZjE3Mi00NTlmLTgzMTUt ODJmMjVhYzY4ODdmLzEva1ZWeS1ZV3IzMFMwR1NkZ0xMeTZVaExwMUpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9mMzcyMDMtZjE3Mi00NTlmLTgzMTUtODJmMjVhYzY4ODdm LzEvNWlNcG51UjdUMkV0dVFvVS1WNUFkbnJnWmxjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfASE MA0GCSqGSIb3DQEBCwUAA4IBAQAuPU+qwm45r5LxTuaB2Sy7G+645X13vEy2VJ7U VYlMDKkjmwS3rp/9RSz6s8nODVXMkHLGoldolU/EIP/e1j+2Saw24udX2ivfHvIW IMmxgRa/HGF6T5X0Ap4OO/ZyxBqVUluBulneZJB0Kx8eyeTiY9tVq4exwUboRodB KLtQvzcC5dQ+//p7VloHTpvmguB0fzBVCXw/NCGUMJEC13w9v0sjosm6E64elafI tQCzoAVf3tHWHN0ObqfhA0tbzD3hOpmF+KV3+oo5ULHeK1FDcQLSoJ6PMY6J3yaT cG57qEN4b3Rdds3ZLuvFOpxkvY0Z0q2FJ8m7J22Ovh0ghjsh -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:15 2026 by rpki-client