This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ipD0hl6Kg_Zel9bTkIS779DgqAQ.roa File: ipD0hl6Kg_Zel9bTkIS779DgqAQ.roa (raw, json) Hash identifier: PlHciuUMTFadtdAsvZVc54r2aE0Zqc4avrUwtpm0OIQ= Subject key identifier: 8A:90:F4:86:5E:8A:83:F6:5E:97:D6:D3:90:84:BB:EF:D0:E0:A8:04 Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Certificate serial: 019BDE5E53CF0E16F23909373557662FE845 Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ipD0hl6Kg_Zel9bTkIS779DgqAQ.roa Signing time: Wed 21 Jan 2026 02:24:42 +0000 ROA not before: Wed 21 Jan 2026 02:24:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62513 IP address blocks: 2a0f:b240::/46 maxlen: 48 2a0f:b240:60::/44 maxlen: 48 2a0f:b240:70::/44 maxlen: 48 2a0f:b240:1000::/36 maxlen: 48 2a0f:b240:2000::/36 maxlen: 48 2a0f:b240:3000::/36 maxlen: 48 2a0f:b240:4000::/36 maxlen: 48 2a0f:b240:5800::/40 maxlen: 48 2a0f:b245::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.mft rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 02:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:de:5e:53:cf:0e:16:f2:39:09:37:35:57:66:2f:e8:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f Validity Not Before: Jan 21 02:24:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8a90f4865e8a83f65e97d6d39084bbefd0e0a804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ae:30:f1:9c:1d:44:db:0a:97:ab:35:2d:80: a1:fe:df:56:35:a1:27:8e:23:a6:d8:42:f6:82:49: 54:09:c1:9d:c3:e3:f6:c0:6a:a0:10:2f:77:4d:f6: 44:9d:95:09:0d:fa:94:5b:0b:e0:87:60:51:30:b7: 12:ea:4f:0b:73:28:ae:a5:08:b6:4d:ed:0a:c6:cb: cb:0c:9b:cd:b5:e0:31:37:08:29:4c:a7:be:39:c0: 30:11:ae:55:4d:f3:51:64:3d:8d:1b:a2:22:60:d5: a7:22:80:47:30:88:bc:7b:99:2e:ef:1c:7f:11:f9: 5f:93:fc:d8:38:d8:2a:4d:96:95:60:36:51:32:98: 9e:3a:a2:09:fc:8c:28:91:f3:ae:79:2d:87:ce:c2: 45:d6:c4:8c:73:e9:2b:3e:1b:f0:c3:95:e3:68:6b: d6:98:fa:5d:30:de:a8:3e:68:1e:65:d0:72:ad:77: 60:89:c1:ca:8e:11:25:52:1c:2e:37:ca:ff:1b:9d: e2:d2:ba:a7:dc:36:77:eb:b9:22:a2:2a:a3:37:c6: b3:3e:a8:63:0e:66:0b:69:bf:5e:10:85:40:47:ea: b0:36:88:0d:c4:86:58:b1:52:ff:7e:45:60:0b:90: cc:b5:e5:29:36:76:06:1a:64:36:66:22:73:bb:e5: ad:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:90:F4:86:5E:8A:83:F6:5E:97:D6:D3:90:84:BB:EF:D0:E0:A8:04 X509v3 Authority Key Identifier: keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ipD0hl6Kg_Zel9bTkIS779DgqAQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:b240::/46 2a0f:b240:60::/43 2a0f:b240:1000::-2a0f:b240:4fff:ffff:ffff:ffff:ffff:ffff 2a0f:b240:5800::/40 2a0f:b245::/32 Signature Algorithm: sha256WithRSAEncryption 39:c3:27:4f:a1:99:28:1d:48:3a:72:12:4c:49:f2:9e:b8:93: 52:3d:c1:bd:1e:5d:90:81:34:1d:a0:07:8e:d9:4e:34:16:9f: d6:61:83:46:8b:26:4a:a0:dc:5a:e9:1a:e8:90:ce:46:af:81: f9:bb:f7:77:08:6d:e9:fe:be:1a:68:41:d2:df:ea:71:e5:09: 21:39:67:c5:6b:8d:10:e8:1d:aa:73:8e:12:e6:9a:dc:aa:1e: d6:68:c8:f3:2a:19:d1:74:44:58:27:4d:2c:5f:e5:ab:cc:4a: 6a:a5:a0:75:09:b5:f4:9d:b8:c7:af:b3:62:55:2e:83:72:7d: da:87:ed:db:c6:a8:99:22:7b:d7:a0:46:c6:3a:39:b5:0d:70: 2e:90:69:9a:5b:5b:0e:5c:0a:0c:aa:72:4c:cf:41:ff:8a:a8: f1:bb:40:dc:50:12:0d:64:67:52:60:f8:87:55:43:cf:ac:b4: 41:07:30:3b:f3:81:c4:d2:3d:29:28:6a:36:8c:d1:7f:54:57: 41:fe:70:b6:0f:fa:d0:5a:ec:f4:61:88:df:7f:97:0b:d3:0d: 1e:10:8d:bc:2a:3d:21:ba:90:db:2f:75:e7:bc:e1:ef:39:79: e2:62:12:24:fd:4a:94:6a:26:42:af:12:e2:c0:8e:3d:70:44: ce:63:32:ec -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZveXlPPDhbyOQk3NVdmL+hFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk ZmUyMGYwHhcNMjYwMTIxMDIyNDQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YTkwZjQ4NjVlOGE4M2Y2NWU5N2Q2ZDM5MDg0YmJlZmQwZTBhODA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwq4w8ZwdRNsKl6s1LYCh/t9WNaEn jiOm2EL2gklUCcGdw+P2wGqgEC93TfZEnZUJDfqUWwvgh2BRMLcS6k8LcyiupQi2 Te0KxsvLDJvNteAxNwgpTKe+OcAwEa5VTfNRZD2NG6IiYNWnIoBHMIi8e5ku7xx/ Eflfk/zYONgqTZaVYDZRMpieOqIJ/IwokfOueS2HzsJF1sSMc+krPhvww5XjaGvW mPpdMN6oPmgeZdByrXdgicHKjhElUhwuN8r/G53i0rqn3DZ367kioiqjN8azPqhj DmYLab9eEIVAR+qwNogNxIZYsVL/fkVgC5DMteUpNnYGGmQ2ZiJzu+Wt9QIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFIqQ9IZeioP2XpfW05CEu+/Q4KgEMB8GA1UdIwQY MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct YjcxNzk4MGU0YWQ2LzEvaXBEMGhsNktnX1plbDliVGtJUzc3OURncUFRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2 LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzA5BAIAAjAzAwcCKg+yQAAA AwcFKg+yQABgMBADBgQqD7JAEAMGBCoPskBAAwYAKg+yQFgDBQAqD7JFMA0GCSqG SIb3DQEBCwUAA4IBAQA5wydPoZkoHUg6chJMSfKeuJNSPcG9Hl2QgTQdoAeO2U40 Fp/WYYNGiyZKoNxa6RrokM5Gr4H5u/d3CG3p/r4aaEHS3+px5QkhOWfFa40Q6B2q c44S5prcqh7WaMjzKhnRdERYJ00sX+WrzEpqpaB1CbX0nbjHr7NiVS6Dcn3ah+3b xqiZInvXoEbGOjm1DXAukGmaW1sOXAoMqnJMz0H/iqjxu0DcUBINZGdSYPiHVUPP rLRBBzA784HE0j0pKGo2jNF/VFdB/nC2D/rQWuz0YYjff5cL0w0eEI28Kj0hupDb L3XnvOHvOXniYhIk/UqUaiZCrxLiwI49cETOYzLs -----END CERTIFICATE-----Generated at Wed Jan 21 11:59:01 2026 by rpki-client