This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/aiZWIdRM87sxRPL98Sp_w8fnkdg.roa File: aiZWIdRM87sxRPL98Sp_w8fnkdg.roa (raw, json) Hash identifier: O+2gTbLmq5++rXtaYMNgvAsdq3ku74WLvLAsQ80UXIQ= Subject key identifier: 6A:26:56:21:D4:4C:F3:BB:31:44:F2:FD:F1:2A:7F:C3:C7:E7:91:D8 Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Certificate serial: 019B7F85A09294CD57FDABCF7C0DA0EA56C7 Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/aiZWIdRM87sxRPL98Sp_w8fnkdg.roa Signing time: Fri 02 Jan 2026 16:23:42 +0000 ROA not before: Fri 02 Jan 2026 16:23:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212294 IP address blocks: 2a0f:b240:700::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.mft rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 02:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:a0:92:94:cd:57:fd:ab:cf:7c:0d:a0:ea:56:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Validity Not Before: Jan 2 16:23:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a265621d44cf3bb3144f2fdf12a7fc3c7e791d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fc:f6:1a:24:c7:c9:05:93:a7:0f:62:13:29: 5c:d5:1e:4f:44:8b:f2:46:f9:6a:14:5c:5e:f7:35: 11:a7:a6:8c:3d:4c:65:af:6b:f6:4e:e5:98:d6:56: c4:72:6c:f4:f3:11:2f:66:8d:a0:f4:89:27:a9:d6: 1f:b9:3c:f2:82:fe:30:e7:ad:9e:93:4c:28:99:b0: 4d:d1:55:b9:2d:10:e0:d3:f0:e3:ac:8d:09:6b:0e: 24:ab:e7:c3:a3:8f:44:f7:1f:6a:eb:fc:ae:cb:49: ba:a5:6e:4f:0d:7c:73:14:c4:ae:47:5c:bb:4e:18: 69:cf:92:65:23:e9:b0:b2:71:4e:f3:d2:fa:97:e1: 40:4a:8e:2e:36:ad:10:c9:4e:f7:8c:3f:dc:97:0a: a4:2e:62:27:e5:c2:a8:08:eb:7a:89:54:cb:ba:e8: a8:24:5f:fd:40:7f:88:78:35:e6:17:0c:cf:13:60: 76:2f:a2:4a:bd:86:05:7d:82:ff:57:e0:20:af:06: cf:f6:dd:5d:98:fa:a1:2e:36:05:8f:af:1a:95:ce: 2d:2f:52:a9:09:84:2d:90:78:22:75:c4:78:13:d5: 2d:3a:7a:56:0f:45:f0:ce:37:9e:54:73:13:e3:04: 2a:d6:1b:cc:02:bd:33:65:58:8d:e5:80:d1:34:75: 49:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:26:56:21:D4:4C:F3:BB:31:44:F2:FD:F1:2A:7F:C3:C7:E7:91:D8 X509v3 Authority Key Identifier: keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/aiZWIdRM87sxRPL98Sp_w8fnkdg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:b240:700::/40 Signature Algorithm: sha256WithRSAEncryption 13:0c:8b:11:03:1f:c7:11:77:a3:9d:6a:a0:a0:3b:fc:0d:5d: 70:f5:12:d2:c2:bc:5c:3e:b5:74:33:fb:04:4a:14:04:0c:33: 42:53:67:48:1c:00:16:2b:9f:e7:13:24:38:5f:a9:59:b4:2d: 37:06:e4:4c:42:82:21:2b:8a:8a:64:78:9d:8c:78:35:d7:ba: 37:d1:dc:e5:0b:14:0e:2e:07:b4:b6:47:b1:ac:62:9c:61:89: 49:b7:61:d4:2a:1f:69:84:ed:7a:59:ac:fd:48:eb:77:7f:2d: b6:84:9b:b0:61:86:7c:0f:b0:12:7b:72:99:11:a4:a6:cb:45: 7c:f9:f9:9d:5d:d6:f1:24:44:00:88:6a:02:86:0a:2a:07:15: 87:68:8d:a6:d9:68:53:b2:8c:12:eb:46:be:cb:17:b8:1c:c3: ac:f0:f2:e1:c2:4c:92:c4:6a:8f:6d:ae:8c:8e:ee:b6:96:66: 84:8e:f9:6d:ba:6c:70:6f:c3:4b:35:4f:7d:16:47:74:33:39: 85:4e:32:8c:f2:24:ba:7b:9e:2c:2f:c1:65:f0:fc:30:9c:fd: 6e:40:af:0e:b2:9f:ec:6e:9a:2a:0a:d6:c7:98:3b:d9:f7:84: d2:ec:7e:68:65:ae:6d:4d:4f:74:2d:4c:5b:ea:6c:6d:ac:bf: 3d:1b:f1:58 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt/haCSlM1X/avPfA2g6lbHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk ZmUyMGYwHhcNMjYwMTAyMTYyMzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTI2NTYyMWQ0NGNmM2JiMzE0NGYyZmRmMTJhN2ZjM2M3ZTc5MWQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvz2GiTHyQWTpw9iEylc1R5PRIvy RvlqFFxe9zURp6aMPUxlr2v2TuWY1lbEcmz08xEvZo2g9IknqdYfuTzygv4w562e k0wombBN0VW5LRDg0/DjrI0Jaw4kq+fDo49E9x9q6/yuy0m6pW5PDXxzFMSuR1y7 Thhpz5JlI+mwsnFO89L6l+FASo4uNq0QyU73jD/clwqkLmIn5cKoCOt6iVTLuuio JF/9QH+IeDXmFwzPE2B2L6JKvYYFfYL/V+AgrwbP9t1dmPqhLjYFj68alc4tL1Kp CYQtkHgidcR4E9UtOnpWD0XwzjeeVHMT4wQq1hvMAr0zZViN5YDRNHVJ7QIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFGomViHUTPO7MUTy/fEqf8PH55HYMB8GA1UdIwQY MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct YjcxNzk4MGU0YWQ2LzEvYWlaV0lkUk04N3N4UlBMOThTcF93OGZua2RnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2 LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKg+yQAcw DQYJKoZIhvcNAQELBQADggEBABMMixEDH8cRd6OdaqCgO/wNXXD1EtLCvFw+tXQz +wRKFAQMM0JTZ0gcABYrn+cTJDhfqVm0LTcG5ExCgiEriopkeJ2MeDXXujfR3OUL FA4uB7S2R7GsYpxhiUm3YdQqH2mE7XpZrP1I63d/LbaEm7BhhnwPsBJ7cpkRpKbL RXz5+Z1d1vEkRACIagKGCioHFYdojabZaFOyjBLrRr7LF7gcw6zw8uHCTJLEao9t royO7raWZoSO+W26bHBvw0s1T30WR3QzOYVOMozyJLp7niwvwWXw/DCc/W5Arw6y n+xumioK1seYO9n3hNLsfmhlrm1NT3QtTFvqbG2svz0b8Vg= -----END CERTIFICATE-----Generated at Wed Jan 21 11:57:35 2026 by rpki-client