This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/bd4d8d-9380-40e9-8142-f2b4efba59bc/1/a6C5SFiUk80yaQysAFlbgHQ3BJE.roa File: a6C5SFiUk80yaQysAFlbgHQ3BJE.roa (raw, json) Hash identifier: vtb8i4mZAE6TV6J6coLOSP+tnQ8FsVz6tF34wr10+CY= Subject key identifier: 6B:A0:B9:48:58:94:93:CD:32:69:0C:AC:00:59:5B:80:74:37:04:91 Certificate issuer: /CN=118ba4ef901aac10876ccf976a5f7d16c4ca79f0 Certificate serial: 019B797E90291F1A6CD99529E53B85E9C569 Authority key identifier: 11:8B:A4:EF:90:1A:AC:10:87:6C:CF:97:6A:5F:7D:16:C4:CA:79:F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EYuk75AarBCHbM-Xal99FsTKefA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/bd4d8d-9380-40e9-8142-f2b4efba59bc/1/a6C5SFiUk80yaQysAFlbgHQ3BJE.roa Signing time: Thu 01 Jan 2026 12:18:16 +0000 ROA not before: Thu 01 Jan 2026 12:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 2a03:5640::/36 maxlen: 48 2a03:5640:f000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/bd4d8d-9380-40e9-8142-f2b4efba59bc/1/EYuk75AarBCHbM-Xal99FsTKefA.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/bd4d8d-9380-40e9-8142-f2b4efba59bc/1/EYuk75AarBCHbM-Xal99FsTKefA.mft rsync://rpki.ripe.net/repository/DEFAULT/EYuk75AarBCHbM-Xal99FsTKefA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:90:29:1f:1a:6c:d9:95:29:e5:3b:85:e9:c5:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=118ba4ef901aac10876ccf976a5f7d16c4ca79f0 Validity Not Before: Jan 1 12:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6ba0b948589493cd32690cac00595b8074370491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6d:b1:8d:85:ba:c9:9e:74:e2:69:38:82:96: 99:c3:c0:b0:72:92:d4:74:e3:b8:92:b5:bb:5c:04: 08:82:04:8f:b7:b9:46:a1:ba:69:8f:6f:37:54:5c: 76:c5:b3:3e:29:25:9a:f8:71:49:76:33:f2:93:94: ad:d6:15:6b:94:72:e9:8f:8d:89:92:26:21:61:d7: b2:62:4c:96:6a:4d:89:e2:f9:9e:f9:81:c9:b9:0b: 78:75:d4:08:65:88:0d:34:fe:f5:91:4a:bd:8f:42: 7b:cf:4a:70:4b:8b:5f:5d:04:89:b9:06:92:6e:be: 2b:2c:6d:f3:2b:5b:88:e8:04:37:81:f7:15:6b:35: 7c:e2:0f:b3:a8:79:75:eb:cf:00:49:e4:ba:20:83: 87:33:7f:30:5a:10:0a:67:85:5d:c7:f6:54:dc:92: 46:d6:0c:5f:c2:bb:30:14:4c:b2:56:ac:0d:95:2e: 7f:43:98:2e:ec:f6:dd:30:9a:08:0b:9f:a9:c3:4c: f1:4c:2a:c8:0d:b0:02:cb:28:9c:12:90:24:f4:f1: ba:bf:4a:a9:f3:ad:3a:e2:0a:40:54:bc:8e:06:fd: 37:d9:53:8f:31:55:ea:be:7b:24:37:6d:65:57:b9: f7:c5:5c:63:6c:0d:03:cc:34:28:df:ae:d5:0d:bf: e1:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A0:B9:48:58:94:93:CD:32:69:0C:AC:00:59:5B:80:74:37:04:91 X509v3 Authority Key Identifier: keyid:11:8B:A4:EF:90:1A:AC:10:87:6C:CF:97:6A:5F:7D:16:C4:CA:79:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EYuk75AarBCHbM-Xal99FsTKefA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/bd4d8d-9380-40e9-8142-f2b4efba59bc/1/a6C5SFiUk80yaQysAFlbgHQ3BJE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/bd4d8d-9380-40e9-8142-f2b4efba59bc/1/EYuk75AarBCHbM-Xal99FsTKefA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:5640::/36 2a03:5640:f000::/36 Signature Algorithm: sha256WithRSAEncryption 4d:0c:0a:b9:5c:74:24:33:b1:2b:f0:7e:9e:0b:f5:ee:f3:17: 36:84:65:4e:b1:c1:d5:da:02:c1:07:35:b2:b4:26:1b:e1:8f: f2:06:ed:6d:58:1e:e0:5c:f0:dc:9e:ce:c6:ba:9e:38:76:ba: 32:d9:83:18:e6:40:ee:c0:9b:17:07:1b:ec:14:f4:cd:9b:e6: 5f:6f:f1:6b:35:84:63:86:1e:9d:93:c3:eb:12:64:5b:34:2f: d2:6e:7f:ad:cc:19:20:91:eb:a0:78:5e:5a:87:47:36:12:a1: c9:e1:96:a9:1b:cf:32:c8:fa:33:51:ff:72:55:e5:24:dc:54: 0e:0c:c6:9b:e1:a9:19:65:10:21:75:5f:e3:31:25:21:48:31: 75:71:2e:d8:cf:f8:c1:71:91:f1:d7:ce:5e:68:8e:f8:2e:1c: 70:fd:2f:1c:ed:c7:5c:39:40:45:86:2e:59:5c:b7:e7:98:12: 6e:85:56:ba:84:3c:cb:06:4c:d6:ea:2b:da:1c:a2:71:0c:33: 7e:9c:48:02:e7:01:f2:8d:46:5e:78:bd:55:ff:34:a1:6b:8f: a2:24:3f:bb:9a:ea:fa:58:53:d1:bb:9a:64:f0:24:55:7e:9d: a9:d2:68:4a:12:dc:d4:f2:c3:64:74:8e:fc:04:ce:f9:b3:3d: 2d:58:f3:18 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZt5fpApHxps2ZUp5TuF6cVpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExOGJhNGVmOTAxYWFjMTA4NzZjY2Y5NzZhNWY3ZDE2YzRj YTc5ZjAwHhcNMjYwMTAxMTIxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YmEwYjk0ODU4OTQ5M2NkMzI2OTBjYWMwMDU5NWI4MDc0MzcwNDkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy22xjYW6yZ504mk4gpaZw8CwcpLU dOO4krW7XAQIggSPt7lGobppj283VFx2xbM+KSWa+HFJdjPyk5St1hVrlHLpj42J kiYhYdeyYkyWak2J4vme+YHJuQt4ddQIZYgNNP71kUq9j0J7z0pwS4tfXQSJuQaS br4rLG3zK1uI6AQ3gfcVazV84g+zqHl1688ASeS6IIOHM38wWhAKZ4Vdx/ZU3JJG 1gxfwrswFEyyVqwNlS5/Q5gu7PbdMJoIC5+pw0zxTCrIDbACyyicEpAk9PG6v0qp 86064gpAVLyOBv032VOPMVXqvnskN21lV7n3xVxjbA0DzDQo367VDb/h6QIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFGuguUhYlJPNMmkMrABZW4B0NwSRMB8GA1UdIwQY MBaAFBGLpO+QGqwQh2zPl2pffRbEynnwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVl1azc1QWFyQkNIYk0tWGFsOTlGc1RLZWZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9iZDRkOGQtOTM4MC00MGU5LTgxNDIt ZjJiNGVmYmE1OWJjLzEvYTZDNVNGaVVrODB5YVF5c0FGbGJnSFEzQkpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC9iZDRkOGQtOTM4MC00MGU5LTgxNDItZjJiNGVmYmE1OWJj LzEvRVl1azc1QWFyQkNIYk0tWGFsOTlGc1RLZWZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYEKgNWQAAD BgQqA1ZA8DANBgkqhkiG9w0BAQsFAAOCAQEATQwKuVx0JDOxK/B+ngv17vMXNoRl TrHB1doCwQc1srQmG+GP8gbtbVge4Fzw3J7OxrqeOHa6MtmDGOZA7sCbFwcb7BT0 zZvmX2/xazWEY4YenZPD6xJkWzQv0m5/rcwZIJHroHheWodHNhKhyeGWqRvPMsj6 M1H/clXlJNxUDgzGm+GpGWUQIXVf4zElIUgxdXEu2M/4wXGR8dfOXmiO+C4ccP0v HO3HXDlARYYuWVy355gSboVWuoQ8ywZM1uor2hyicQwzfpxIAucB8o1GXni9Vf80 oWuPoiQ/u5rq+lhT0buaZPAkVX6dqdJoShLc1PLDZHSO/ATO+bM9LVjzGA== -----END CERTIFICATE-----Generated at Fri Jan 2 19:23:58 2026 by rpki-client