This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/80f42c-d249-4461-9fd7-4d2a6334de77/1/PvCgDhF7NMwisHTGu6gMJAQYao8.roa File: PvCgDhF7NMwisHTGu6gMJAQYao8.roa (raw, json) Hash identifier: iU0qJG0gVhiOE7d2EF+iy3h3MwEr90mkXIIvaKDVia4= Subject key identifier: 3E:F0:A0:0E:11:7B:34:CC:22:B0:74:C6:BB:A8:0C:24:04:18:6A:8F Certificate issuer: /CN=6021a4daa7dcf4a4cb08ac4747375f698aae8643 Certificate serial: 019B7E380F242BF75D9CF7F614EACE2D4E85 Authority key identifier: 60:21:A4:DA:A7:DC:F4:A4:CB:08:AC:47:47:37:5F:69:8A:AE:86:43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YCGk2qfc9KTLCKxHRzdfaYquhkM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/80f42c-d249-4461-9fd7-4d2a6334de77/1/PvCgDhF7NMwisHTGu6gMJAQYao8.roa Signing time: Fri 02 Jan 2026 10:19:21 +0000 ROA not before: Fri 02 Jan 2026 10:19:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208447 IP address blocks: 2001:678:9e8::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/80f42c-d249-4461-9fd7-4d2a6334de77/1/YCGk2qfc9KTLCKxHRzdfaYquhkM.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/80f42c-d249-4461-9fd7-4d2a6334de77/1/YCGk2qfc9KTLCKxHRzdfaYquhkM.mft rsync://rpki.ripe.net/repository/DEFAULT/YCGk2qfc9KTLCKxHRzdfaYquhkM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:0f:24:2b:f7:5d:9c:f7:f6:14:ea:ce:2d:4e:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6021a4daa7dcf4a4cb08ac4747375f698aae8643 Validity Not Before: Jan 2 10:19:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3ef0a00e117b34cc22b074c6bba80c2404186a8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:81:3d:46:06:4e:fc:b7:8b:25:58:3d:29:14: f9:74:7b:7d:da:92:d3:84:78:2a:8d:f8:31:9e:a8: 8a:04:89:23:19:3a:c1:1c:e2:dd:06:99:ee:fc:4f: 5d:33:a4:8d:cc:b8:09:41:b5:8b:6f:1c:ac:24:b7: a3:54:39:5f:09:40:69:51:8c:da:50:31:16:93:5e: 46:59:bf:99:6b:70:cb:35:c0:e5:bc:07:64:ec:1a: 76:10:1f:df:47:1d:02:1d:be:68:3e:6c:81:c4:44: 6d:d6:c5:35:7c:4c:0a:f1:0d:13:ba:c2:53:d6:e0: f0:d3:35:af:be:e7:6e:d3:f0:75:65:b5:6d:b6:ce: c2:e6:70:c9:55:5d:99:fc:ce:9b:97:52:ff:b7:80: a8:cd:f9:77:d3:74:42:4e:54:d4:df:8b:f4:27:b3: f1:b2:f8:5f:e0:cd:54:51:fa:a8:72:f7:59:71:d4: 02:72:53:43:e3:a3:6b:40:04:c6:7e:9b:32:46:20: 91:78:bd:32:a0:2f:a4:d1:d0:8e:f2:1b:d5:24:cb: 56:b9:dd:06:17:30:ed:63:e0:20:d3:38:16:4e:02: d2:e8:09:a3:19:fd:b0:e6:1b:a2:45:9c:22:4b:e9: d0:0d:cc:25:af:ce:a0:cd:24:16:2d:c8:df:1c:46: 2a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:F0:A0:0E:11:7B:34:CC:22:B0:74:C6:BB:A8:0C:24:04:18:6A:8F X509v3 Authority Key Identifier: keyid:60:21:A4:DA:A7:DC:F4:A4:CB:08:AC:47:47:37:5F:69:8A:AE:86:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YCGk2qfc9KTLCKxHRzdfaYquhkM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/80f42c-d249-4461-9fd7-4d2a6334de77/1/PvCgDhF7NMwisHTGu6gMJAQYao8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/80f42c-d249-4461-9fd7-4d2a6334de77/1/YCGk2qfc9KTLCKxHRzdfaYquhkM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:9e8::/48 Signature Algorithm: sha256WithRSAEncryption 4b:f3:ad:e6:c6:8d:3c:31:9d:41:57:84:72:a0:d5:02:c1:ae: ba:aa:9b:ec:f7:b9:45:b7:22:3d:f1:bd:7f:4c:e5:e4:98:b2: 6c:36:fc:b1:a3:f5:cf:4e:e5:a8:27:6a:06:29:7c:70:22:e2: 80:63:7a:15:9b:7b:df:a7:2e:f5:c7:4f:84:cb:dc:75:ff:fa: 17:44:8a:b0:95:fa:37:0d:20:0b:c6:db:d1:ff:92:7e:27:f5: 61:9e:fd:80:d1:fe:76:00:54:5e:c3:04:82:16:10:3c:5f:3e: ca:01:1c:88:44:de:e7:47:cd:0c:8b:80:f1:57:73:14:25:27: 47:d4:96:97:ac:a0:32:9e:f1:3f:87:61:6b:3d:24:38:6a:52: ae:6e:42:c0:80:c8:e0:d1:7b:f5:83:0c:1d:1a:ff:3c:09:ea: 40:11:78:30:6d:63:4d:fb:7a:dc:e0:b0:50:67:5a:6c:51:30: 1c:8d:73:0e:27:b6:c2:ca:0f:49:29:db:c0:ef:1a:b1:fd:c0: 16:35:34:a2:08:f0:4c:84:bb:03:f8:fa:6c:a6:d8:f4:34:06: f9:d1:01:18:b1:57:cb:02:97:66:b2:be:2d:c4:76:1e:f6:ce: ea:16:67:88:f5:cd:c8:88:da:3d:9a:3e:5e:8b:12:c3:c6:d1: b0:1d:ad:8e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OA8kK/ddnPf2FOrOLU6FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMjFhNGRhYTdkY2Y0YTRjYjA4YWM0NzQ3Mzc1ZjY5OGFh ZTg2NDMwHhcNMjYwMTAyMTAxOTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZWYwYTAwZTExN2IzNGNjMjJiMDc0YzZiYmE4MGMyNDA0MTg2YThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4E9RgZO/LeLJVg9KRT5dHt92pLT hHgqjfgxnqiKBIkjGTrBHOLdBpnu/E9dM6SNzLgJQbWLbxysJLejVDlfCUBpUYza UDEWk15GWb+Za3DLNcDlvAdk7Bp2EB/fRx0CHb5oPmyBxERt1sU1fEwK8Q0TusJT 1uDw0zWvvudu0/B1ZbVtts7C5nDJVV2Z/M6bl1L/t4Cozfl303RCTlTU34v0J7Px svhf4M1UUfqocvdZcdQCclND46NrQATGfpsyRiCReL0yoC+k0dCO8hvVJMtWud0G FzDtY+Ag0zgWTgLS6AmjGf2w5huiRZwiS+nQDcwlr86gzSQWLcjfHEYq/QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFD7woA4RezTMIrB0xruoDCQEGGqPMB8GA1UdIwQY MBaAFGAhpNqn3PSkywisR0c3X2mKroZDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUNHazJxZmM5S1RMQ0t4SFJ6ZGZhWXF1aGtNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS84MGY0MmMtZDI0OS00NDYxLTlmZDct NGQyYTYzMzRkZTc3LzEvUHZDZ0RoRjdOTXdpc0hUR3U2Z01KQVFZYW84LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS84MGY0MmMtZDI0OS00NDYxLTlmZDctNGQyYTYzMzRkZTc3 LzEvWUNHazJxZmM5S1RMQ0t4SFJ6ZGZhWXF1aGtNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAno MA0GCSqGSIb3DQEBCwUAA4IBAQBL863mxo08MZ1BV4RyoNUCwa66qpvs97lFtyI9 8b1/TOXkmLJsNvyxo/XPTuWoJ2oGKXxwIuKAY3oVm3vfpy71x0+Ey9x1//oXRIqw lfo3DSALxtvR/5J+J/Vhnv2A0f52AFRewwSCFhA8Xz7KARyIRN7nR80Mi4DxV3MU JSdH1JaXrKAynvE/h2FrPSQ4alKubkLAgMjg0Xv1gwwdGv88CepAEXgwbWNN+3rc 4LBQZ1psUTAcjXMOJ7bCyg9JKdvA7xqx/cAWNTSiCPBMhLsD+Ppsptj0NAb50QEY sVfLApdmsr4txHYe9s7qFmeI9c3IiNo9mj5eixLDxtGwHa2O -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:22 2026 by rpki-client