This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/LmNuyfOH30R7gntPr2lUYOUGLY8.roa File: LmNuyfOH30R7gntPr2lUYOUGLY8.roa (raw, json) Hash identifier: EXbzXfwwOW5D+pIFWbOP8Xdjm7G9S9vSRYPyTUSyw6M= Subject key identifier: 2E:63:6E:C9:F3:87:DF:44:7B:82:7B:4F:AF:69:54:60:E5:06:2D:8F Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Certificate serial: 019BD34083B872C09A4014A7423BA4DEFDCB Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/LmNuyfOH30R7gntPr2lUYOUGLY8.roa Signing time: Sun 18 Jan 2026 22:36:19 +0000 ROA not before: Sun 18 Jan 2026 22:36:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215212 IP address blocks: 2a0f:b240:1c::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.mft rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 02:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d3:40:83:b8:72:c0:9a:40:14:a7:42:3b:a4:de:fd:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Validity Not Before: Jan 18 22:36:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e636ec9f387df447b827b4faf695460e5062d8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a7:92:01:be:49:cf:44:84:06:f3:05:55:27: 4b:7d:c1:a8:3b:59:27:38:47:c9:d4:e4:1c:e6:a6: 69:23:80:4b:62:e8:fa:97:47:5e:a1:5f:6f:aa:39: fc:60:cc:82:7d:45:83:f8:3a:35:5b:83:bc:41:e5: 20:7e:3a:0a:dd:d9:c0:9b:90:dd:cc:12:10:f9:e8: 7a:57:6c:ef:82:73:29:92:8c:ee:bb:a1:89:9c:8b: 1f:47:4c:98:71:b2:4a:29:76:3d:53:dc:f1:55:ec: 36:9b:79:5a:ae:d8:7c:32:23:bf:76:e3:85:a2:da: 4a:10:39:eb:a5:3a:0b:20:47:36:48:83:2d:22:51: a1:41:9a:56:56:48:4f:8b:c3:ca:06:01:dc:9a:de: 71:81:06:c3:24:a7:68:49:14:4d:75:99:07:9b:0b: 2d:2b:80:18:d6:06:3a:32:82:62:17:70:c6:73:f4: 78:17:a5:4e:fb:b3:ee:0a:52:5e:10:ac:2b:bb:80: a9:a8:28:10:28:ff:c9:02:b4:c7:04:07:a0:26:70: 23:51:0f:1b:67:7f:a1:28:07:3c:b9:e3:c6:12:3a: 90:04:60:d7:64:07:48:48:97:1e:b8:5b:93:2a:d1: c4:f8:44:f9:4b:e6:2d:af:3e:19:a6:f8:a2:b3:0f: 08:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:63:6E:C9:F3:87:DF:44:7B:82:7B:4F:AF:69:54:60:E5:06:2D:8F X509v3 Authority Key Identifier: keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/LmNuyfOH30R7gntPr2lUYOUGLY8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:b240:1c::/46 Signature Algorithm: sha256WithRSAEncryption 00:fa:8f:0d:1a:13:26:2b:5a:27:95:46:75:ee:d0:39:9b:bd: ef:d9:f5:98:4d:0c:a0:a2:ee:e9:d8:e7:f8:64:c8:21:67:e9: f8:03:92:1d:5a:e2:78:6b:0f:08:68:db:84:87:78:74:b4:a5: c1:a7:6e:76:59:fe:fa:ed:8d:4d:f9:11:10:78:dc:3a:92:29: fb:1b:c3:8c:73:f6:82:05:03:f0:2e:7f:68:2b:30:8c:15:85: a5:e8:69:21:92:3d:3e:79:cd:bb:ce:37:08:23:3f:37:69:32: f1:a0:60:ec:d4:76:c2:1e:31:74:30:4d:ac:c4:97:88:bb:af: eb:55:44:ce:c3:62:97:93:a5:48:69:df:61:8b:de:db:8b:9a: d4:76:77:4f:7c:ff:da:95:92:61:23:9a:7b:52:81:0f:f5:c3: 10:82:e8:f4:ed:15:b7:69:43:c3:eb:15:d4:68:67:5a:cb:db: e2:c6:d7:a3:fa:ad:a2:ce:a6:8f:7e:f3:48:26:a8:8e:de:c6: a5:57:32:9f:cf:93:9f:09:00:c8:d7:d4:6d:cc:12:c2:8f:16: 27:ee:cb:f2:e3:3a:38:0f:e0:2a:83:3b:f4:68:a3:2a:3c:be: 49:ce:26:74:2f:c9:fe:f6:b7:52:27:16:6f:e7:bc:fb:3a:00: ad:61:aa:e1 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZvTQIO4csCaQBSnQjuk3v3LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk ZmUyMGYwHhcNMjYwMTE4MjIzNjE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTYzNmVjOWYzODdkZjQ0N2I4MjdiNGZhZjY5NTQ2MGU1MDYyZDhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6eSAb5Jz0SEBvMFVSdLfcGoO1kn OEfJ1OQc5qZpI4BLYuj6l0deoV9vqjn8YMyCfUWD+Do1W4O8QeUgfjoK3dnAm5Dd zBIQ+eh6V2zvgnMpkozuu6GJnIsfR0yYcbJKKXY9U9zxVew2m3larth8MiO/duOF otpKEDnrpToLIEc2SIMtIlGhQZpWVkhPi8PKBgHcmt5xgQbDJKdoSRRNdZkHmwst K4AY1gY6MoJiF3DGc/R4F6VO+7PuClJeEKwru4CpqCgQKP/JArTHBAegJnAjUQ8b Z3+hKAc8uePGEjqQBGDXZAdISJceuFuTKtHE+ET5S+Ytrz4Zpviisw8IGQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFC5jbsnzh99Ee4J7T69pVGDlBi2PMB8GA1UdIwQY MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct YjcxNzk4MGU0YWQ2LzEvTG1OdXlmT0gzMFI3Z250UHIybFVZT1VHTFk4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2 LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcCKg+yQAAc MA0GCSqGSIb3DQEBCwUAA4IBAQAA+o8NGhMmK1onlUZ17tA5m73v2fWYTQygou7p 2Of4ZMghZ+n4A5IdWuJ4aw8IaNuEh3h0tKXBp252Wf767Y1N+REQeNw6kin7G8OM c/aCBQPwLn9oKzCMFYWl6Gkhkj0+ec27zjcIIz83aTLxoGDs1HbCHjF0ME2sxJeI u6/rVUTOw2KXk6VIad9hi97bi5rUdndPfP/alZJhI5p7UoEP9cMQguj07RW3aUPD 6xXUaGday9vixtej+q2izqaPfvNIJqiO3salVzKfz5OfCQDI19RtzBLCjxYn7svy 4zo4D+Aqgzv0aKMqPL5JziZ0L8n+9rdSJxZv57z7OgCtYarh -----END CERTIFICATE-----Generated at Wed Jan 21 11:57:50 2026 by rpki-client