This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ac0923-7eb1-4a5f-9105-15b21a9b4325/1/MNcRXpZmo9U1VGyp7iNoe-ahRYc.roa File: MNcRXpZmo9U1VGyp7iNoe-ahRYc.roa (raw, json) Hash identifier: sUVdf+DEbppS/mcQWvKY4TguTZDnt2ApNazCAD8Sm+4= Subject key identifier: 30:D7:11:5E:96:66:A3:D5:35:54:6C:A9:EE:23:68:7B:E6:A1:45:87 Certificate issuer: /CN=d62d7949e698441dbe9abc5609c49eaca73c9796 Certificate serial: 019B79113FE8C7CA1BA787DF15B6185047FC Authority key identifier: D6:2D:79:49:E6:98:44:1D:BE:9A:BC:56:09:C4:9E:AC:A7:3C:97:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1i15SeaYRB2-mrxWCcSerKc8l5Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ac0923-7eb1-4a5f-9105-15b21a9b4325/1/MNcRXpZmo9U1VGyp7iNoe-ahRYc.roa Signing time: Thu 01 Jan 2026 10:18:52 +0000 ROA not before: Thu 01 Jan 2026 10:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206128 IP address blocks: 2001:678:270::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/ac0923-7eb1-4a5f-9105-15b21a9b4325/1/1i15SeaYRB2-mrxWCcSerKc8l5Y.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/ac0923-7eb1-4a5f-9105-15b21a9b4325/1/1i15SeaYRB2-mrxWCcSerKc8l5Y.mft rsync://rpki.ripe.net/repository/DEFAULT/1i15SeaYRB2-mrxWCcSerKc8l5Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:3f:e8:c7:ca:1b:a7:87:df:15:b6:18:50:47:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d62d7949e698441dbe9abc5609c49eaca73c9796 Validity Not Before: Jan 1 10:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=30d7115e9666a3d535546ca9ee23687be6a14587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fb:1f:26:de:c5:71:0d:e1:dc:98:40:c3:11: 73:22:ba:97:aa:30:c4:16:dc:c0:a2:28:2f:d3:0f: b8:c8:95:ed:4d:48:f1:05:33:3d:ef:bc:03:e6:b4: e7:2e:cf:ad:1a:ce:93:dc:f2:91:af:d2:8f:75:e1: 29:80:0c:a2:16:05:10:70:71:44:27:c1:30:a0:1b: b3:2a:e0:c9:8e:26:54:d4:2e:c8:b1:04:5a:86:70: 50:56:8c:80:95:74:fa:8b:ff:06:91:44:5d:ca:fa: 59:5a:7f:4f:9f:69:06:71:d9:76:4e:72:79:aa:5c: da:d6:c4:44:21:1f:8c:70:06:b9:3a:f6:b1:97:0d: 44:38:82:ec:fe:fa:1d:7a:06:54:ed:5e:15:08:f3: 48:09:ac:f2:91:57:50:7e:3c:27:ce:53:bd:fe:2d: cb:a8:8d:7c:35:03:6d:ab:c4:bd:3c:74:a5:49:21: a1:8b:1e:3f:04:91:b5:c0:da:06:a8:a4:4a:53:67: 62:b3:53:01:7d:07:04:ca:d9:61:65:ee:d3:63:a7: 2f:9f:f8:a9:07:27:9e:2c:dc:20:1b:97:4b:55:24: 04:6f:ff:e9:c4:6e:6f:dd:f1:97:2d:fd:74:cb:8b: 8f:fc:a6:0e:b9:21:dc:fb:b0:45:69:91:5b:ec:2b: 94:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D7:11:5E:96:66:A3:D5:35:54:6C:A9:EE:23:68:7B:E6:A1:45:87 X509v3 Authority Key Identifier: keyid:D6:2D:79:49:E6:98:44:1D:BE:9A:BC:56:09:C4:9E:AC:A7:3C:97:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1i15SeaYRB2-mrxWCcSerKc8l5Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ac0923-7eb1-4a5f-9105-15b21a9b4325/1/MNcRXpZmo9U1VGyp7iNoe-ahRYc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ac0923-7eb1-4a5f-9105-15b21a9b4325/1/1i15SeaYRB2-mrxWCcSerKc8l5Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:270::/48 Signature Algorithm: sha256WithRSAEncryption 81:e1:5e:d3:f2:8a:ac:13:8a:95:8e:ce:39:5c:58:cd:a7:c0: 63:bd:b1:b7:a7:26:0f:24:00:eb:0b:b8:98:03:f5:c7:10:83: ea:27:9a:7b:55:93:93:40:62:44:c8:5c:86:dd:59:e8:79:42: 20:d4:c0:64:b0:ad:83:4e:24:c9:b0:8c:21:69:b0:b2:31:cd: 2c:ed:d5:01:bf:9b:ba:8d:01:c1:58:c4:09:7e:72:35:38:7a: 8e:3b:e2:51:96:30:d1:24:8a:0e:25:6a:5b:11:2d:6b:6a:34: 8e:60:bb:ee:7d:19:ea:78:01:3f:fe:43:ce:35:88:79:17:f7: 8d:e4:17:b5:59:c8:f9:04:6d:a6:4f:48:86:52:bd:7d:08:97: 3d:83:65:12:4b:46:6a:42:56:83:de:81:78:e8:06:64:74:84: 6d:ab:77:6a:b4:db:ba:8c:75:aa:08:15:97:99:ea:c6:07:f4: 7e:ed:e0:71:56:6e:d8:69:d7:17:15:27:e7:29:1c:f5:cb:db: 9d:24:dc:a1:5c:54:7d:e9:9b:a9:15:66:65:b3:da:03:b2:5f: 0e:9d:f5:ef:d4:fc:b8:77:b5:2b:d5:1f:86:e4:49:cf:e6:e7: 9f:3b:00:ca:6d:96:ba:88:66:a8:51:7b:4f:37:1a:76:f8:ac: 61:94:39:29 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5ET/ox8obp4ffFbYYUEf8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2MmQ3OTQ5ZTY5ODQ0MWRiZTlhYmM1NjA5YzQ5ZWFjYTcz Yzk3OTYwHhcNMjYwMTAxMTAxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMGQ3MTE1ZTk2NjZhM2Q1MzU1NDZjYTllZTIzNjg3YmU2YTE0NTg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtPsfJt7FcQ3h3JhAwxFzIrqXqjDE FtzAoigv0w+4yJXtTUjxBTM977wD5rTnLs+tGs6T3PKRr9KPdeEpgAyiFgUQcHFE J8EwoBuzKuDJjiZU1C7IsQRahnBQVoyAlXT6i/8GkURdyvpZWn9Pn2kGcdl2TnJ5 qlza1sREIR+McAa5Ovaxlw1EOILs/vodegZU7V4VCPNICazykVdQfjwnzlO9/i3L qI18NQNtq8S9PHSlSSGhix4/BJG1wNoGqKRKU2dis1MBfQcEytlhZe7TY6cvn/ip ByeeLNwgG5dLVSQEb//pxG5v3fGXLf10y4uP/KYOuSHc+7BFaZFb7CuU3QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDDXEV6WZqPVNVRsqe4jaHvmoUWHMB8GA1UdIwQY MBaAFNYteUnmmEQdvpq8VgnEnqynPJeWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWkxNVNlYVlSQjItbXJ4V0NjU2VyS2M4bDVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9hYzA5MjMtN2ViMS00YTVmLTkxMDUt MTViMjFhOWI0MzI1LzEvTU5jUlhwWm1vOVUxVkd5cDdpTm9lLWFoUlljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi9hYzA5MjMtN2ViMS00YTVmLTkxMDUtMTViMjFhOWI0MzI1 LzEvMWkxNVNlYVlSQjItbXJ4V0NjU2VyS2M4bDVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAJw MA0GCSqGSIb3DQEBCwUAA4IBAQCB4V7T8oqsE4qVjs45XFjNp8BjvbG3pyYPJADr C7iYA/XHEIPqJ5p7VZOTQGJEyFyG3VnoeUIg1MBksK2DTiTJsIwhabCyMc0s7dUB v5u6jQHBWMQJfnI1OHqOO+JRljDRJIoOJWpbES1rajSOYLvufRnqeAE//kPONYh5 F/eN5Be1Wcj5BG2mT0iGUr19CJc9g2USS0ZqQlaD3oF46AZkdIRtq3dqtNu6jHWq CBWXmerGB/R+7eBxVm7YadcXFSfnKRz1y9udJNyhXFR96ZupFWZls9oDsl8OnfXv 1Py4d7Ur1R+G5EnP5uefOwDKbZa6iGaoUXtPNxp2+KxhlDkp -----END CERTIFICATE-----Generated at Tue Feb 10 00:01:42 2026 by rpki-client