This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/06970a-2866-489d-b71a-84e6cd2232ac/1/NLoNNi5CjHst33m7ywBlAPo2j9g.roa File: NLoNNi5CjHst33m7ywBlAPo2j9g.roa (raw, json) Hash identifier: fKsxjWS8XzZz8fe3QPRIR0J9BUvOdRhlN77VHIREw+U= Subject key identifier: 34:BA:0D:36:2E:42:8C:7B:2D:DF:79:BB:CB:00:65:00:FA:36:8F:D8 Certificate issuer: /CN=fc6a4c595f0b2dd05a1fe67287c13ce0ebc80adb Certificate serial: 019B7EA733B705AF7CECE8D160C4C9A91081 Authority key identifier: FC:6A:4C:59:5F:0B:2D:D0:5A:1F:E6:72:87:C1:3C:E0:EB:C8:0A:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_GpMWV8LLdBaH-Zyh8E84OvICts.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/06970a-2866-489d-b71a-84e6cd2232ac/1/NLoNNi5CjHst33m7ywBlAPo2j9g.roa Signing time: Fri 02 Jan 2026 12:20:45 +0000 ROA not before: Fri 02 Jan 2026 12:20:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8075 IP address blocks: 2a0c:61c7:ace::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/06970a-2866-489d-b71a-84e6cd2232ac/1/_GpMWV8LLdBaH-Zyh8E84OvICts.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/06970a-2866-489d-b71a-84e6cd2232ac/1/_GpMWV8LLdBaH-Zyh8E84OvICts.mft rsync://rpki.ripe.net/repository/DEFAULT/_GpMWV8LLdBaH-Zyh8E84OvICts.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 14:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:33:b7:05:af:7c:ec:e8:d1:60:c4:c9:a9:10:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fc6a4c595f0b2dd05a1fe67287c13ce0ebc80adb Validity Not Before: Jan 2 12:20:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=34ba0d362e428c7b2ddf79bbcb006500fa368fd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0f:b2:b5:be:f1:ce:e5:14:49:e8:5f:27:0b: 70:9b:00:b9:39:ad:cd:76:ad:93:96:bd:1c:74:77: ab:f1:d2:51:0c:e2:17:70:c3:01:7a:ff:49:7d:b1: b9:40:a2:c3:a4:4f:02:c0:25:47:07:b1:51:5e:02: d7:19:40:47:1a:eb:ff:2e:96:a0:2d:d5:75:eb:7c: 11:05:cb:b5:a0:3d:22:0e:48:bf:1d:92:c8:6f:b4: 89:75:ad:22:51:10:b1:a4:66:34:aa:24:98:b6:6f: 16:dd:bd:9c:5a:c2:f3:d5:44:69:9c:13:c9:5a:f5: 48:c9:1a:bd:36:3e:48:bc:32:e9:52:cd:30:db:2b: 97:6f:b5:16:c3:55:0f:b4:85:6c:05:17:1e:b0:a3: 85:e3:26:9e:02:0a:4e:38:47:67:ef:d4:93:3b:ca: 0c:18:7c:81:16:7d:88:ed:f8:a7:38:10:63:92:47: 70:77:62:da:34:31:46:a2:08:ad:e6:15:74:43:c2: 64:03:a1:02:6a:d3:66:de:cb:fb:35:d8:d7:5a:1e: 47:bc:9c:70:06:2a:6e:47:88:b2:fb:b3:7e:81:bd: 03:61:c1:2a:5d:8c:cc:e6:c8:e1:8c:4d:f5:83:98: a2:d6:7a:71:01:6b:2e:dc:1d:c3:8f:01:19:37:72: 93:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:BA:0D:36:2E:42:8C:7B:2D:DF:79:BB:CB:00:65:00:FA:36:8F:D8 X509v3 Authority Key Identifier: keyid:FC:6A:4C:59:5F:0B:2D:D0:5A:1F:E6:72:87:C1:3C:E0:EB:C8:0A:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_GpMWV8LLdBaH-Zyh8E84OvICts.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/06970a-2866-489d-b71a-84e6cd2232ac/1/NLoNNi5CjHst33m7ywBlAPo2j9g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/06970a-2866-489d-b71a-84e6cd2232ac/1/_GpMWV8LLdBaH-Zyh8E84OvICts.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:61c7:ace::/48 Signature Algorithm: sha256WithRSAEncryption 94:85:e4:a2:c6:4a:0b:f7:31:c1:91:b2:5f:ca:19:3c:67:fb: 31:93:d4:5d:cc:d8:59:08:e4:3d:f2:20:dd:ef:c7:5a:1d:b0: 80:ef:04:8e:4f:b4:17:2f:a3:2e:d1:32:c8:23:6e:8c:3b:68: cc:a7:59:db:37:29:67:8f:6a:9d:e2:74:8b:16:72:32:e6:79: 10:9b:1c:94:90:3b:ec:c3:65:0d:f3:d5:ca:6a:5c:72:e5:d3: 4a:c4:6d:b0:c8:ce:56:37:15:8a:2a:92:59:99:e2:c6:3e:0b: bf:83:06:16:83:ea:bc:a1:90:7f:39:91:c0:ad:92:6f:ac:57: 91:1a:03:58:c0:2b:86:c9:5c:fe:67:c8:04:43:96:a0:ce:9e: 16:57:13:ee:fe:54:b5:46:95:2a:ba:13:e7:15:e7:5f:da:30: 99:bd:27:1c:0b:72:97:55:00:2f:d7:75:c4:95:00:f5:db:e3: 9e:c7:1b:19:be:e0:2e:08:02:6c:73:fb:60:35:3d:84:3c:f6: 19:f7:17:35:0d:6c:97:6f:a9:ca:7b:20:8d:58:13:5a:89:04: 14:b4:f4:03:f0:f6:4d:65:5d:c5:13:d5:c3:d5:51:01:15:8a: 9f:4c:f3:93:9e:b5:98:eb:91:d6:6b:3e:7e:3a:1c:db:25:c9: 64:3b:f6:3b -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+pzO3Ba987OjRYMTJqRCBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjNmE0YzU5NWYwYjJkZDA1YTFmZTY3Mjg3YzEzY2UwZWJj ODBhZGIwHhcNMjYwMTAyMTIyMDQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNGJhMGQzNjJlNDI4YzdiMmRkZjc5YmJjYjAwNjUwMGZhMzY4ZmQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQ+ytb7xzuUUSehfJwtwmwC5Oa3N dq2Tlr0cdHer8dJRDOIXcMMBev9JfbG5QKLDpE8CwCVHB7FRXgLXGUBHGuv/Lpag LdV163wRBcu1oD0iDki/HZLIb7SJda0iURCxpGY0qiSYtm8W3b2cWsLz1URpnBPJ WvVIyRq9Nj5IvDLpUs0w2yuXb7UWw1UPtIVsBRcesKOF4yaeAgpOOEdn79STO8oM GHyBFn2I7finOBBjkkdwd2LaNDFGogit5hV0Q8JkA6ECatNm3sv7NdjXWh5HvJxw BipuR4iy+7N+gb0DYcEqXYzM5sjhjE31g5ii1npxAWsu3B3DjwEZN3KT2QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDS6DTYuQox7Ld95u8sAZQD6No/YMB8GA1UdIwQY MBaAFPxqTFlfCy3QWh/mcofBPODryArbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0dwTVdWOExMZEJhSC1aeWg4RTg0T3ZJQ3RzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8wNjk3MGEtMjg2Ni00ODlkLWI3MWEt ODRlNmNkMjIzMmFjLzEvTkxvTk5pNUNqSHN0MzNtN3l3QmxBUG8yajlnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8wNjk3MGEtMjg2Ni00ODlkLWI3MWEtODRlNmNkMjIzMmFj LzEvX0dwTVdWOExMZEJhSC1aeWg4RTg0T3ZJQ3RzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgxhxwrO MA0GCSqGSIb3DQEBCwUAA4IBAQCUheSixkoL9zHBkbJfyhk8Z/sxk9RdzNhZCOQ9 8iDd78daHbCA7wSOT7QXL6Mu0TLII26MO2jMp1nbNylnj2qd4nSLFnIy5nkQmxyU kDvsw2UN89XKalxy5dNKxG2wyM5WNxWKKpJZmeLGPgu/gwYWg+q8oZB/OZHArZJv rFeRGgNYwCuGyVz+Z8gEQ5agzp4WVxPu/lS1RpUquhPnFedf2jCZvSccC3KXVQAv 13XElQD12+OexxsZvuAuCAJsc/tgNT2EPPYZ9xc1DWyXb6nKeyCNWBNaiQQUtPQD 8PZNZV3FE9XD1VEBFYqfTPOTnrWY65HWaz5+OhzbJclkO/Y7 -----END CERTIFICATE-----Generated at Sun Jan 18 16:37:47 2026 by rpki-client