This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Sekt2C5g8LsFi3spF1WqZK5QvcU.roa File: Sekt2C5g8LsFi3spF1WqZK5QvcU.roa (raw, json) Hash identifier: AzXDXalqGKBrjuqUtntYueTFycdgdPxVqGx81ZF7lL4= Subject key identifier: 49:E9:2D:D8:2E:60:F0:BB:05:8B:7B:29:17:55:AA:64:AE:50:BD:C5 Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Certificate serial: 019B7F85A8B36B55BAE14AA1DB47A8CEBB30 Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Sekt2C5g8LsFi3spF1WqZK5QvcU.roa Signing time: Fri 02 Jan 2026 16:23:44 +0000 ROA not before: Fri 02 Jan 2026 16:23:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214915 IP address blocks: 2a0f:b240:4::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.mft rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 02:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:a8:b3:6b:55:ba:e1:4a:a1:db:47:a8:ce:bb:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Validity Not Before: Jan 2 16:23:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=49e92dd82e60f0bb058b7b291755aa64ae50bdc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:b5:bb:8f:a1:50:8d:af:e7:a5:8b:da:86:60: ba:c1:23:87:93:2f:0c:e3:c4:eb:c5:f7:d4:5b:a2: 5f:71:5a:53:0a:5e:f7:df:fe:1d:bf:4a:f4:88:74: 4a:93:33:1f:95:24:54:c5:fb:1d:99:11:dd:59:9f: 00:29:f8:c1:fd:f0:44:13:cf:91:6b:a0:82:86:b3: ba:01:11:ea:ce:ea:ed:a8:96:64:e6:c4:9c:cb:6a: 23:cd:e7:87:b4:5f:ef:4d:0b:6e:45:d9:8b:db:e1: 56:78:7d:f7:93:f7:d4:13:97:70:b3:67:cd:72:4b: 1a:a3:af:fb:c4:24:88:ff:95:34:83:29:9a:dd:32: 6d:3c:05:42:11:89:3a:a3:23:de:d0:05:2c:33:72: fe:54:c7:29:46:18:9f:23:89:0f:be:ce:0c:1e:ca: 90:ce:f2:b4:1b:16:6a:c7:86:a7:68:c0:fb:18:04: 9c:55:98:e7:49:ad:ef:05:d7:c0:6d:13:cb:47:e5: 49:35:50:ba:74:9b:84:53:54:56:7f:8b:52:bb:6c: e2:77:a8:b3:7a:d0:75:01:82:a8:63:9f:60:91:f0: f6:69:98:2a:78:df:40:a1:e0:d6:ad:10:b2:07:43: c7:90:10:7c:ce:8e:53:0a:0b:73:40:43:3e:7f:42: 2f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:E9:2D:D8:2E:60:F0:BB:05:8B:7B:29:17:55:AA:64:AE:50:BD:C5 X509v3 Authority Key Identifier: keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Sekt2C5g8LsFi3spF1WqZK5QvcU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:b240:4::/46 Signature Algorithm: sha256WithRSAEncryption 74:41:e0:b1:3e:d9:be:b1:b2:c6:20:51:67:8c:43:e8:9e:e3: db:f0:01:c4:15:e1:ce:1a:97:87:59:8f:76:56:81:7e:ee:06: 7b:6a:52:c7:d7:c5:0f:d1:6d:68:80:7e:c3:af:0a:2f:f9:c6: 1d:92:a1:95:47:66:47:08:29:cf:98:38:b4:86:71:bc:4f:89: c5:d2:22:e9:aa:e6:65:cd:e7:5f:fd:90:70:59:54:2a:49:93: cf:c7:99:fd:50:81:df:4e:ab:a9:68:62:8b:20:27:88:d5:f5: 73:eb:df:ee:f5:1f:22:3c:b4:3f:1d:91:db:59:7b:fc:4d:54: 1b:2a:3f:1a:4d:29:40:d8:49:91:ae:81:33:55:c3:3e:70:69: 4f:a8:8d:a3:36:69:62:49:d1:6a:73:21:6f:2d:10:02:66:2d: 79:06:8e:b3:f8:ac:29:27:3c:cd:ae:7c:fb:e4:a3:d3:2c:db: aa:c8:25:37:b3:27:b3:7b:9e:df:b1:c5:d0:ba:13:05:b9:71: 79:16:15:de:ea:a3:86:36:02:d5:c0:72:a9:99:32:bf:9d:14: 3f:23:c6:ea:ee:04:4e:19:47:ec:1e:a3:61:64:c4:86:17:72: 9b:22:54:26:2f:c0:28:61:90:08:ab:64:11:e3:f2:94:56:f5: 6e:ce:31:26 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/haiza1W64Uqh20eozrswMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk ZmUyMGYwHhcNMjYwMTAyMTYyMzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OWU5MmRkODJlNjBmMGJiMDU4YjdiMjkxNzU1YWE2NGFlNTBiZGM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj7W7j6FQja/npYvahmC6wSOHky8M 48TrxffUW6JfcVpTCl733/4dv0r0iHRKkzMflSRUxfsdmRHdWZ8AKfjB/fBEE8+R a6CChrO6ARHqzurtqJZk5sScy2ojzeeHtF/vTQtuRdmL2+FWeH33k/fUE5dws2fN cksao6/7xCSI/5U0gyma3TJtPAVCEYk6oyPe0AUsM3L+VMcpRhifI4kPvs4MHsqQ zvK0GxZqx4anaMD7GAScVZjnSa3vBdfAbRPLR+VJNVC6dJuEU1RWf4tSu2zid6iz etB1AYKoY59gkfD2aZgqeN9AoeDWrRCyB0PHkBB8zo5TCgtzQEM+f0IvOQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFEnpLdguYPC7BYt7KRdVqmSuUL3FMB8GA1UdIwQY MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct YjcxNzk4MGU0YWQ2LzEvU2VrdDJDNWc4THNGaTNzcEYxV3FaSzVRdmNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2 LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcCKg+yQAAE MA0GCSqGSIb3DQEBCwUAA4IBAQB0QeCxPtm+sbLGIFFnjEPonuPb8AHEFeHOGpeH WY92VoF+7gZ7alLH18UP0W1ogH7Drwov+cYdkqGVR2ZHCCnPmDi0hnG8T4nF0iLp quZlzedf/ZBwWVQqSZPPx5n9UIHfTqupaGKLICeI1fVz69/u9R8iPLQ/HZHbWXv8 TVQbKj8aTSlA2EmRroEzVcM+cGlPqI2jNmliSdFqcyFvLRACZi15Bo6z+KwpJzzN rnz75KPTLNuqyCU3syeze57fscXQuhMFuXF5FhXe6qOGNgLVwHKpmTK/nRQ/I8bq 7gROGUfsHqNhZMSGF3KbIlQmL8AoYZAIq2QR4/KUVvVuzjEm -----END CERTIFICATE-----Generated at Wed Jan 21 11:57:49 2026 by rpki-client