This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/B0prEVO7hJD7i0waZUt5WqrB8Cg.roa File: B0prEVO7hJD7i0waZUt5WqrB8Cg.roa (raw, json) Hash identifier: YkE8G5oGA5KgDiZvSy8P6PL395VjSfyn5YakBfVMZtM= Subject key identifier: 07:4A:6B:11:53:BB:84:90:FB:8B:4C:1A:65:4B:79:5A:AA:C1:F0:28 Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Certificate serial: 019B9A65156EC6335DCF2F61132FAAD989B9 Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/B0prEVO7hJD7i0waZUt5WqrB8Cg.roa Signing time: Wed 07 Jan 2026 21:37:54 +0000 ROA not before: Wed 07 Jan 2026 21:37:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203069 IP address blocks: 2a0f:b240:b00::/40 maxlen: 48 2a0f:b240:8400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.mft rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 02:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9a:65:15:6e:c6:33:5d:cf:2f:61:13:2f:aa:d9:89:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Validity Not Before: Jan 7 21:37:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=074a6b1153bb8490fb8b4c1a654b795aaac1f028 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:15:5f:cc:76:c1:5f:db:e5:d9:6a:86:be:6d: 50:6c:2f:c2:7b:c0:d3:ba:bb:ab:84:74:f4:79:57: 25:60:f0:5c:75:cc:ec:81:39:fd:22:66:51:9f:9c: 02:07:e9:15:96:cc:ae:1e:c8:12:67:4d:05:a4:40: 89:84:aa:71:7f:d8:8d:48:a1:18:de:ba:2f:3e:ad: 29:fe:aa:78:80:cb:55:32:d0:1c:8f:76:a0:e5:98: 84:ea:21:fe:5a:bc:6a:e7:a6:6b:ed:ae:25:7d:3a: 0e:96:27:fa:17:2d:f2:e4:f2:eb:79:a4:03:0e:98: 42:90:c6:85:b3:60:41:d5:62:99:12:6f:43:78:11: a0:a8:01:4b:b2:ce:26:43:ee:f5:07:db:f1:39:c7: c8:55:0b:e2:4e:38:d3:ea:8b:b0:aa:f3:12:ca:55: bf:94:b9:0d:0f:9c:6d:98:77:77:a9:b3:28:fe:5b: a8:13:e9:b8:30:5b:5c:1b:a6:e9:82:df:4f:b2:53: 0f:30:b5:cd:bb:20:6f:d8:7b:be:43:a9:9e:66:e3: 47:cc:cb:5f:d7:7c:03:e5:b0:ac:4b:6c:20:7b:19: 36:c7:b0:dd:67:4b:88:e0:ed:c0:03:b0:51:d4:11: 87:c9:60:4c:d7:05:cf:8f:b6:bd:64:01:8b:89:32: fb:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:4A:6B:11:53:BB:84:90:FB:8B:4C:1A:65:4B:79:5A:AA:C1:F0:28 X509v3 Authority Key Identifier: keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/B0prEVO7hJD7i0waZUt5WqrB8Cg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:b240:b00::/40 2a0f:b240:8400::/40 Signature Algorithm: sha256WithRSAEncryption 3e:d0:b2:dd:86:aa:b2:57:99:b3:87:34:17:6a:fe:43:09:98: fc:5d:7d:80:7e:84:99:9d:fb:52:da:bc:3c:3d:c0:95:66:c2: 16:56:d0:c7:df:53:47:e5:61:8b:6a:6f:c7:a1:d1:dc:37:c3: e0:6b:19:a6:c7:1c:1b:4c:c9:1c:55:b2:0b:d7:97:66:ee:30: ed:b2:75:ca:3c:d6:13:56:2c:48:95:b8:90:94:69:55:e4:40: 6e:4c:d6:6b:ed:ef:bc:5a:bf:e2:0b:4a:76:0f:92:b2:60:07: bb:6b:e8:27:f8:44:90:3c:20:01:ed:88:d9:70:82:91:3b:f6: da:24:3c:cb:fb:11:36:fd:75:e5:c5:20:4b:6a:c0:81:88:64: 6c:cc:da:6e:94:0e:de:a1:62:13:0e:fc:df:74:89:0e:4a:27: 4d:f3:45:c2:a0:b6:ad:a5:e7:ad:13:ee:3b:81:d5:e8:48:60: 68:ff:0b:a4:8c:0d:28:5d:d6:38:13:5d:0c:d5:4f:cc:1b:c7: 58:04:53:63:69:b1:4b:1e:c1:13:e9:8f:b6:99:dd:88:cd:82: f2:57:5d:dc:cc:3a:dd:fd:f8:fd:cf:e8:bd:b7:62:81:82:b2: 38:00:f8:4a:34:fc:72:ce:6a:53:23:02:f3:38:af:3d:f2:73: f0:ba:65:43 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZuaZRVuxjNdzy9hEy+q2Ym5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk ZmUyMGYwHhcNMjYwMTA3MjEzNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNzRhNmIxMTUzYmI4NDkwZmI4YjRjMWE2NTRiNzk1YWFhYzFmMDI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyRVfzHbBX9vl2WqGvm1QbC/Ce8DT ururhHT0eVclYPBcdczsgTn9ImZRn5wCB+kVlsyuHsgSZ00FpECJhKpxf9iNSKEY 3rovPq0p/qp4gMtVMtAcj3ag5ZiE6iH+Wrxq56Zr7a4lfToOlif6Fy3y5PLreaQD DphCkMaFs2BB1WKZEm9DeBGgqAFLss4mQ+71B9vxOcfIVQviTjjT6ouwqvMSylW/ lLkND5xtmHd3qbMo/luoE+m4MFtcG6bpgt9PslMPMLXNuyBv2Hu+Q6meZuNHzMtf 13wD5bCsS2wgexk2x7DdZ0uI4O3AA7BR1BGHyWBM1wXPj7a9ZAGLiTL7CQIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFAdKaxFTu4SQ+4tMGmVLeVqqwfAoMB8GA1UdIwQY MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct YjcxNzk4MGU0YWQ2LzEvQjBwckVWTzdoSkQ3aTB3YVpVdDVXcXJCOENnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2 LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYAKg+yQAsD BgAqD7JAhDANBgkqhkiG9w0BAQsFAAOCAQEAPtCy3YaqsleZs4c0F2r+QwmY/F19 gH6EmZ37Utq8PD3AlWbCFlbQx99TR+Vhi2pvx6HR3DfD4GsZpsccG0zJHFWyC9eX Zu4w7bJ1yjzWE1YsSJW4kJRpVeRAbkzWa+3vvFq/4gtKdg+SsmAHu2voJ/hEkDwg Ae2I2XCCkTv22iQ8y/sRNv115cUgS2rAgYhkbMzabpQO3qFiEw7833SJDkonTfNF wqC2raXnrRPuO4HV6EhgaP8LpIwNKF3WOBNdDNVPzBvHWARTY2mxSx7BE+mPtpnd iM2C8ldd3Mw63f34/c/ovbdigYKyOAD4SjT8cs5qUyMC8zivPfJz8LplQw== -----END CERTIFICATE-----Generated at Wed Jan 21 11:57:49 2026 by rpki-client