This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/81dc62-b3cc-4f99-aa42-c10f782fb07f/1/6cN6nhFqlJSDVgIjOl3TycQtV6k.roa File: 6cN6nhFqlJSDVgIjOl3TycQtV6k.roa (raw, json) Hash identifier: sgH5lKfufrchfpVAD0K9/jz6mZi6QmMqB/TNXEsdDxk= Subject key identifier: E9:C3:7A:9E:11:6A:94:94:83:56:02:23:3A:5D:D3:C9:C4:2D:57:A9 Certificate issuer: /CN=587d8b0e7546351176cc0c6e51ed4520abe04ef1 Certificate serial: 019B7F81F1B62F3C0BD281D5B902633B91CE Authority key identifier: 58:7D:8B:0E:75:46:35:11:76:CC:0C:6E:51:ED:45:20:AB:E0:4E:F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WH2LDnVGNRF2zAxuUe1FIKvgTvE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/81dc62-b3cc-4f99-aa42-c10f782fb07f/1/6cN6nhFqlJSDVgIjOl3TycQtV6k.roa Signing time: Fri 02 Jan 2026 16:19:40 +0000 ROA not before: Fri 02 Jan 2026 16:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60781 IP address blocks: 185.71.60.0/22 maxlen: 22 2a03:38a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/81dc62-b3cc-4f99-aa42-c10f782fb07f/1/WH2LDnVGNRF2zAxuUe1FIKvgTvE.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/81dc62-b3cc-4f99-aa42-c10f782fb07f/1/WH2LDnVGNRF2zAxuUe1FIKvgTvE.mft rsync://rpki.ripe.net/repository/DEFAULT/WH2LDnVGNRF2zAxuUe1FIKvgTvE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:81:f1:b6:2f:3c:0b:d2:81:d5:b9:02:63:3b:91:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=587d8b0e7546351176cc0c6e51ed4520abe04ef1 Validity Not Before: Jan 2 16:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e9c37a9e116a9494835602233a5dd3c9c42d57a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:57:22:fc:7a:2f:69:1a:d3:d1:27:2b:7c:68: 01:39:0b:80:51:48:a8:65:49:b8:a3:43:ee:55:cb: e0:66:c8:8f:8e:07:b2:c5:45:1d:c6:96:08:be:7a: 02:38:16:0d:5f:c3:91:d5:e3:b8:e4:65:5f:f1:53: 69:8e:0c:58:e7:d4:66:f1:85:b7:d5:ca:ca:02:bb: 9d:fe:ca:16:95:10:94:b7:d1:de:43:d0:92:29:aa: c2:06:ac:b1:88:df:f4:6c:df:43:7c:a2:6d:be:88: 96:69:b4:10:0d:84:4a:94:c6:70:b5:71:b7:9f:21: 35:58:d7:74:23:57:ab:07:0b:f1:ea:d5:21:ad:76: c8:3f:0d:e4:cd:16:aa:5a:14:78:e1:ee:df:39:75: 59:f9:ec:c5:a3:de:96:00:ee:8a:f1:03:72:ba:1b: fd:da:51:d4:83:87:f2:40:05:73:d2:71:3e:26:8b: ca:7b:f0:c4:c1:b5:62:b4:24:4b:95:ec:98:42:fc: 71:77:e7:a6:15:5e:d8:04:86:da:f5:b4:c0:4b:0f: d2:6f:50:37:b6:69:39:5c:e6:05:7d:7e:ca:6e:3f: 11:34:b6:39:87:cf:28:00:67:4d:04:c7:98:23:7b: bf:04:09:14:16:7f:a9:aa:dd:02:de:2a:37:e6:52: 03:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:C3:7A:9E:11:6A:94:94:83:56:02:23:3A:5D:D3:C9:C4:2D:57:A9 X509v3 Authority Key Identifier: keyid:58:7D:8B:0E:75:46:35:11:76:CC:0C:6E:51:ED:45:20:AB:E0:4E:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WH2LDnVGNRF2zAxuUe1FIKvgTvE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/81dc62-b3cc-4f99-aa42-c10f782fb07f/1/6cN6nhFqlJSDVgIjOl3TycQtV6k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/81dc62-b3cc-4f99-aa42-c10f782fb07f/1/WH2LDnVGNRF2zAxuUe1FIKvgTvE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.71.60.0/22 IPv6: 2a03:38a0::/32 Signature Algorithm: sha256WithRSAEncryption a3:a7:c7:9c:2e:6f:6d:1a:dd:53:c4:2b:c8:f8:ad:b7:2d:42: a1:13:7f:2c:3f:cc:dc:f7:5f:46:40:ae:76:d1:26:38:11:96: 29:a1:c5:c8:4f:c1:72:d6:8a:f4:48:00:1b:31:c3:f2:b8:d1: 11:7e:7c:95:ba:e0:e7:a2:f0:16:28:0b:b6:7e:37:b8:cc:85: 2a:5e:b6:a6:bf:69:7f:aa:62:1c:7c:b8:2b:3a:2d:a3:46:18: 03:b7:8c:6f:f8:2b:33:e8:15:65:c5:87:b2:4a:51:c7:f2:78: 9a:f7:c4:db:33:ed:43:9a:1d:88:ec:0b:b5:7b:c9:ad:fd:ed: 7e:31:c1:90:16:04:ef:d7:4a:6a:b8:07:be:06:4a:03:76:d7: 57:8f:3c:30:96:3f:64:f2:50:99:b9:e5:b6:e3:e9:1b:9d:d7: 83:cf:78:12:e1:04:66:53:5f:24:dd:8a:e7:87:e8:43:5d:50: 90:ab:e0:13:4c:f8:04:33:78:b0:f0:8f:7b:f0:87:0d:5a:a1: ba:bf:5e:87:fc:5f:93:43:05:c1:86:ec:fb:c7:03:18:3a:03: c5:2b:31:f4:90:7a:05:6e:7e:7f:ab:78:48:dd:28:d2:4c:83: 2f:52:8c:3b:3d:77:cd:74:e6:c6:a8:2e:55:f4:82:e1:5c:d8: 6e:17:24:53 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/gfG2LzwL0oHVuQJjO5HOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4N2Q4YjBlNzU0NjM1MTE3NmNjMGM2ZTUxZWQ0NTIwYWJl MDRlZjEwHhcNMjYwMTAyMTYxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlOWMzN2E5ZTExNmE5NDk0ODM1NjAyMjMzYTVkZDNjOWM0MmQ1N2E5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjlci/HovaRrT0ScrfGgBOQuAUUio ZUm4o0PuVcvgZsiPjgeyxUUdxpYIvnoCOBYNX8OR1eO45GVf8VNpjgxY59Rm8YW3 1crKArud/soWlRCUt9HeQ9CSKarCBqyxiN/0bN9DfKJtvoiWabQQDYRKlMZwtXG3 nyE1WNd0I1erBwvx6tUhrXbIPw3kzRaqWhR44e7fOXVZ+ezFo96WAO6K8QNyuhv9 2lHUg4fyQAVz0nE+JovKe/DEwbVitCRLleyYQvxxd+emFV7YBIba9bTASw/Sb1A3 tmk5XOYFfX7Kbj8RNLY5h88oAGdNBMeYI3u/BAkUFn+pqt0C3io35lIDSwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFOnDep4RapSUg1YCIzpd08nELVepMB8GA1UdIwQY MBaAFFh9iw51RjURdswMblHtRSCr4E7xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0gyTERuVkdOUkYyekF4dVVlMUZJS3ZnVHZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC84MWRjNjItYjNjYy00Zjk5LWFhNDIt YzEwZjc4MmZiMDdmLzEvNmNONm5oRnFsSlNEVmdJak9sM1R5Y1F0VjZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC84MWRjNjItYjNjYy00Zjk5LWFhNDItYzEwZjc4MmZiMDdm LzEvV0gyTERuVkdOUkYyekF4dVVlMUZJS3ZnVHZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuUc8MA0E AgACMAcDBQAqAzigMA0GCSqGSIb3DQEBCwUAA4IBAQCjp8ecLm9tGt1TxCvI+K23 LUKhE38sP8zc919GQK520SY4EZYpocXIT8Fy1or0SAAbMcPyuNERfnyVuuDnovAW KAu2fje4zIUqXramv2l/qmIcfLgrOi2jRhgDt4xv+Csz6BVlxYeySlHH8nia98Tb M+1Dmh2I7Au1e8mt/e1+McGQFgTv10pquAe+BkoDdtdXjzwwlj9k8lCZueW24+kb ndeDz3gS4QRmU18k3Yrnh+hDXVCQq+ATTPgEM3iw8I978IcNWqG6v16H/F+TQwXB huz7xwMYOgPFKzH0kHoFbn5/q3hI3SjSTIMvUow7PXfNdObGqC5V9ILhXNhuFyRT -----END CERTIFICATE-----Generated at Mon Jan 19 16:52:55 2026 by rpki-client