This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0a8fc1-986e-4209-930c-1c77431b05f7/1/0f-a9_GN4BlFPHzpxP1ErjNcYpw.roa File: 0f-a9_GN4BlFPHzpxP1ErjNcYpw.roa (raw, json) Hash identifier: liGbjhGL+F+gsqi1YSPCU6zeplSqGVUh3nmEpRRgfOY= Subject key identifier: D1:FF:9A:F7:F1:8D:E0:19:45:3C:7C:E9:C4:FD:44:AE:33:5C:62:9C Certificate issuer: /CN=0e6b385c7b8778bf78af2421c99f5d38bd556914 Certificate serial: 019B7D5C7D62E2A6E68C4A1163E7C19C1DB7 Authority key identifier: 0E:6B:38:5C:7B:87:78:BF:78:AF:24:21:C9:9F:5D:38:BD:55:69:14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dms4XHuHeL94ryQhyZ9dOL1VaRQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0a8fc1-986e-4209-930c-1c77431b05f7/1/0f-a9_GN4BlFPHzpxP1ErjNcYpw.roa Signing time: Fri 02 Jan 2026 06:19:31 +0000 ROA not before: Fri 02 Jan 2026 06:19:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48136 IP address blocks: 2001:67c:c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/0a8fc1-986e-4209-930c-1c77431b05f7/1/Dms4XHuHeL94ryQhyZ9dOL1VaRQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/0a8fc1-986e-4209-930c-1c77431b05f7/1/Dms4XHuHeL94ryQhyZ9dOL1VaRQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Dms4XHuHeL94ryQhyZ9dOL1VaRQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:7d:62:e2:a6:e6:8c:4a:11:63:e7:c1:9c:1d:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e6b385c7b8778bf78af2421c99f5d38bd556914 Validity Not Before: Jan 2 06:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d1ff9af7f18de019453c7ce9c4fd44ae335c629c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d5:17:e0:0a:28:d0:a9:2c:d5:5d:32:f6:b3: 37:9c:4c:2f:79:1b:31:47:90:87:be:cd:52:c9:35: 1b:f4:c1:e9:fc:dd:22:dd:82:f6:4b:cc:5d:fe:9e: 62:6b:b0:2d:76:27:92:cb:90:4c:8b:5f:20:52:ae: 9b:d5:3a:3b:af:82:57:0e:6a:30:3b:4b:1b:53:7b: 3d:da:68:ac:94:8b:30:e5:8c:a3:66:87:39:16:ee: 02:69:8d:d5:d0:6c:3b:33:67:1f:83:3b:8e:e2:a6: 24:64:b7:68:64:53:cd:5f:2b:8d:77:86:7e:17:9f: 6f:5a:8a:7f:cd:58:f7:f3:06:3e:ad:7d:a4:ac:49: 8a:19:cb:d0:1b:f8:cb:b0:69:23:db:cc:a3:12:e0: 60:40:45:75:2f:e6:0d:1a:02:cf:1a:81:e1:14:a3: d4:d2:f3:bb:dc:de:a6:44:75:40:4e:1d:e7:ee:ec: 5f:c5:3e:7d:76:78:6a:c3:2d:91:72:93:fb:04:97: 38:7a:4f:d5:97:c5:a5:bb:45:cf:6a:9a:e9:83:48: 58:7b:02:fb:cb:54:b5:53:a7:b8:0b:92:5a:fa:a1: a7:75:08:5b:d6:0c:09:ff:b7:9a:c7:c0:e7:f3:7c: a0:e3:5b:98:49:c2:8e:7b:84:dd:aa:3a:a5:0f:86: 3c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:FF:9A:F7:F1:8D:E0:19:45:3C:7C:E9:C4:FD:44:AE:33:5C:62:9C X509v3 Authority Key Identifier: keyid:0E:6B:38:5C:7B:87:78:BF:78:AF:24:21:C9:9F:5D:38:BD:55:69:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dms4XHuHeL94ryQhyZ9dOL1VaRQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0a8fc1-986e-4209-930c-1c77431b05f7/1/0f-a9_GN4BlFPHzpxP1ErjNcYpw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0a8fc1-986e-4209-930c-1c77431b05f7/1/Dms4XHuHeL94ryQhyZ9dOL1VaRQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:c::/48 Signature Algorithm: sha256WithRSAEncryption 06:9b:ea:ca:8d:fb:84:89:fe:ee:c0:99:8b:5b:96:0e:e9:46: aa:cc:c7:f4:0c:07:07:05:47:5e:09:e6:72:00:85:8d:15:b7: 7a:66:70:85:9f:71:8a:d4:8f:41:38:19:ee:26:48:ec:f8:f9: 15:ea:d7:c8:d1:b1:6c:75:68:5b:33:10:b9:fc:9b:81:20:ff: 12:04:65:f0:0f:18:0d:9f:4e:4b:9f:76:0c:e6:1f:f3:1e:3a: fd:6c:30:cf:cd:1a:86:4c:37:74:40:b1:e5:3a:e5:fe:54:d3: 5c:16:19:2f:4d:94:fe:17:62:30:5f:e2:f1:a9:19:1a:36:7d: 81:2f:1d:c1:6e:51:f0:21:be:ed:a0:68:dc:d7:c8:e2:16:c2: 73:32:d6:46:34:b1:09:82:bf:45:df:bc:89:40:d8:05:ea:8d: c4:23:e7:04:5f:da:ec:e3:29:bb:dd:83:c9:08:38:0d:29:14: b8:54:be:e1:cc:a3:69:88:3f:20:1d:cd:78:f9:c0:29:fa:77: 57:43:0d:39:3c:af:59:8d:7f:ca:f2:6a:15:9a:a7:cd:47:a7: da:4f:09:46:ed:77:ae:f9:6b:0e:84:c0:b1:ab:fb:bc:d1:41: 9f:5d:0f:c7:40:c9:22:db:07:8c:b2:fb:3d:36:36:bf:1f:90: e5:63:cf:cf -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XH1i4qbmjEoRY+fBnB23MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlNmIzODVjN2I4Nzc4YmY3OGFmMjQyMWM5OWY1ZDM4YmQ1 NTY5MTQwHhcNMjYwMTAyMDYxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMWZmOWFmN2YxOGRlMDE5NDUzYzdjZTljNGZkNDRhZTMzNWM2MjljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNUX4Aoo0Kks1V0y9rM3nEwveRsx R5CHvs1SyTUb9MHp/N0i3YL2S8xd/p5ia7AtdieSy5BMi18gUq6b1To7r4JXDmow O0sbU3s92mislIsw5YyjZoc5Fu4CaY3V0Gw7M2cfgzuO4qYkZLdoZFPNXyuNd4Z+ F59vWop/zVj38wY+rX2krEmKGcvQG/jLsGkj28yjEuBgQEV1L+YNGgLPGoHhFKPU 0vO73N6mRHVATh3n7uxfxT59dnhqwy2RcpP7BJc4ek/Vl8Wlu0XPaprpg0hYewL7 y1S1U6e4C5Ja+qGndQhb1gwJ/7eax8Dn83yg41uYScKOe4TdqjqlD4Y8RQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNH/mvfxjeAZRTx86cT9RK4zXGKcMB8GA1UdIwQY MBaAFA5rOFx7h3i/eK8kIcmfXTi9VWkUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRG1zNFhIdUhlTDk0cnlRaHlaOWRPTDFWYVJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wYThmYzEtOTg2ZS00MjA5LTkzMGMt MWM3NzQzMWIwNWY3LzEvMGYtYTlfR040QmxGUEh6cHhQMUVyak5jWXB3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8wYThmYzEtOTg2ZS00MjA5LTkzMGMtMWM3NzQzMWIwNWY3 LzEvRG1zNFhIdUhlTDk0cnlRaHlaOWRPTDFWYVJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAAM MA0GCSqGSIb3DQEBCwUAA4IBAQAGm+rKjfuEif7uwJmLW5YO6UaqzMf0DAcHBUde CeZyAIWNFbd6ZnCFn3GK1I9BOBnuJkjs+PkV6tfI0bFsdWhbMxC5/JuBIP8SBGXw DxgNn05Ln3YM5h/zHjr9bDDPzRqGTDd0QLHlOuX+VNNcFhkvTZT+F2IwX+LxqRka Nn2BLx3BblHwIb7toGjc18jiFsJzMtZGNLEJgr9F37yJQNgF6o3EI+cEX9rs4ym7 3YPJCDgNKRS4VL7hzKNpiD8gHc14+cAp+ndXQw05PK9ZjX/K8moVmqfNR6faTwlG 7Xeu+WsOhMCxq/u80UGfXQ/HQMki2weMsvs9Nja/H5DlY8/P -----END CERTIFICATE-----Generated at Mon Feb 9 22:37:03 2026 by rpki-client