This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/685b5a-fa27-41ec-adf9-9df2f79bef10/1/mBarFDGWX74TA5Zzt2YAA4dJipo.roa File: mBarFDGWX74TA5Zzt2YAA4dJipo.roa (raw, json) Hash identifier: CId8nPwT9kwu7694B2Snf7hm053RirlYLW2TmMowCn0= Subject key identifier: 98:16:AB:14:31:96:5F:BE:13:03:96:73:B7:66:00:03:87:49:8A:9A Certificate issuer: /CN=b249ae69b3a72ec2e6e9adb99090d812a1d29951 Certificate serial: 019B77C6CBD1B80ABE9502884B7A19A7CDBA Authority key identifier: B2:49:AE:69:B3:A7:2E:C2:E6:E9:AD:B9:90:90:D8:12:A1:D2:99:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/skmuabOnLsLm6a25kJDYEqHSmVE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/685b5a-fa27-41ec-adf9-9df2f79bef10/1/mBarFDGWX74TA5Zzt2YAA4dJipo.roa Signing time: Thu 01 Jan 2026 04:17:55 +0000 ROA not before: Thu 01 Jan 2026 04:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51531 IP address blocks: 2001:67c:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/685b5a-fa27-41ec-adf9-9df2f79bef10/1/skmuabOnLsLm6a25kJDYEqHSmVE.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/685b5a-fa27-41ec-adf9-9df2f79bef10/1/skmuabOnLsLm6a25kJDYEqHSmVE.mft rsync://rpki.ripe.net/repository/DEFAULT/skmuabOnLsLm6a25kJDYEqHSmVE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:cb:d1:b8:0a:be:95:02:88:4b:7a:19:a7:cd:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b249ae69b3a72ec2e6e9adb99090d812a1d29951 Validity Not Before: Jan 1 04:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9816ab1431965fbe13039673b766000387498a9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:df:6b:3a:ab:60:56:51:bf:75:b4:7c:b5:4f: 2a:90:e9:89:40:d1:79:25:0c:e1:2c:aa:5f:95:d5: 12:4b:e3:a0:e8:e4:a5:b5:6f:a5:68:a0:79:71:78: 13:ab:b0:d6:68:a2:8e:12:13:f0:64:f2:9f:11:08: b4:0c:16:42:be:14:57:27:8d:54:15:ea:0c:df:7f: 34:9b:84:18:4c:9b:f8:8a:94:e1:ca:40:80:17:f3: f5:f7:67:c4:b5:d8:2d:b8:d8:3c:75:91:10:b9:1b: 95:15:76:7c:52:d9:0d:9f:cf:00:3a:9f:6c:78:46: c3:53:d7:f5:a6:a7:0e:12:19:19:8f:32:0b:f8:43: c7:18:e2:91:b4:87:9b:6f:10:43:bb:00:76:d3:ac: 8c:0a:9d:ec:98:23:c5:8e:2c:0d:8c:e3:c2:f8:18: d9:74:f5:c6:0c:3d:62:48:af:a8:bb:0f:71:64:5f: a6:fd:84:df:a5:09:5f:ab:8d:ca:cc:d8:07:6f:bc: d1:e1:3a:c4:b5:78:ae:c6:97:3e:be:80:b2:7f:58: b0:cc:ce:03:1a:6b:d1:2a:4b:80:6a:aa:56:3c:f9: 38:49:68:7f:70:31:32:0e:1f:ec:ab:2c:b8:95:36: 99:ee:0f:5f:ab:b6:20:ec:c0:e6:82:ef:01:9b:1f: fb:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:16:AB:14:31:96:5F:BE:13:03:96:73:B7:66:00:03:87:49:8A:9A X509v3 Authority Key Identifier: keyid:B2:49:AE:69:B3:A7:2E:C2:E6:E9:AD:B9:90:90:D8:12:A1:D2:99:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skmuabOnLsLm6a25kJDYEqHSmVE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/685b5a-fa27-41ec-adf9-9df2f79bef10/1/mBarFDGWX74TA5Zzt2YAA4dJipo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/685b5a-fa27-41ec-adf9-9df2f79bef10/1/skmuabOnLsLm6a25kJDYEqHSmVE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:4::/48 Signature Algorithm: sha256WithRSAEncryption 6b:2f:29:9b:ef:1c:85:4b:f0:d6:72:3c:9d:f3:b3:88:0a:84: d8:0c:0d:6c:f4:4d:f5:cf:bd:16:41:d0:33:b4:90:0a:90:02: 30:3a:f0:8a:e6:26:30:7c:3a:27:be:a0:0d:a8:af:b6:60:14: fb:55:73:a6:a5:36:fe:a9:b5:77:1a:f5:e2:96:e5:8a:54:12: 18:6b:75:e7:6c:3c:1e:d4:3c:a4:87:b8:42:28:5b:02:ee:2f: d1:54:91:d9:4f:7a:fd:42:19:c6:9a:6b:3d:83:c1:4f:c9:a9: e4:d0:8f:04:36:e3:04:27:1c:f8:43:74:3c:50:37:50:65:36: 33:30:17:98:a3:38:20:ce:dc:44:ff:68:d8:c3:79:10:a9:b5: c2:e5:f0:8e:f8:f5:e1:7b:03:78:69:ed:a3:b3:09:a6:c5:ba: d6:40:f5:01:03:a2:0d:bb:c3:cb:46:9f:ec:ed:c7:91:c3:df: 7e:c6:96:d3:87:05:d1:54:64:f7:e5:34:71:ad:de:c1:d7:b2: 8d:84:cd:00:fe:77:d2:cb:27:d0:cd:08:bf:99:27:48:fb:cd: aa:b4:b6:d3:7a:3e:40:cd:86:12:e8:78:3c:80:18:16:68:e1: 1a:42:5c:19:28:ee:29:a4:5f:e9:52:e3:3a:66:25:03:cc:3e: 7a:d0:e1:a8 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3xsvRuAq+lQKIS3oZp826MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyNDlhZTY5YjNhNzJlYzJlNmU5YWRiOTkwOTBkODEyYTFk Mjk5NTEwHhcNMjYwMTAxMDQxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ODE2YWIxNDMxOTY1ZmJlMTMwMzk2NzNiNzY2MDAwMzg3NDk4YTlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArN9rOqtgVlG/dbR8tU8qkOmJQNF5 JQzhLKpfldUSS+Og6OSltW+laKB5cXgTq7DWaKKOEhPwZPKfEQi0DBZCvhRXJ41U FeoM3380m4QYTJv4ipThykCAF/P192fEtdgtuNg8dZEQuRuVFXZ8UtkNn88AOp9s eEbDU9f1pqcOEhkZjzIL+EPHGOKRtIebbxBDuwB206yMCp3smCPFjiwNjOPC+BjZ dPXGDD1iSK+ouw9xZF+m/YTfpQlfq43KzNgHb7zR4TrEtXiuxpc+voCyf1iwzM4D GmvRKkuAaqpWPPk4SWh/cDEyDh/sqyy4lTaZ7g9fq7Yg7MDmgu8Bmx/7iQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJgWqxQxll++EwOWc7dmAAOHSYqaMB8GA1UdIwQY MBaAFLJJrmmzpy7C5umtuZCQ2BKh0plRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2ttdWFiT25Mc0xtNmEyNWtKRFlFcUhTbVZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC82ODViNWEtZmEyNy00MWVjLWFkZjkt OWRmMmY3OWJlZjEwLzEvbUJhckZER1dYNzRUQTVaenQyWUFBNGRKaXBvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC82ODViNWEtZmEyNy00MWVjLWFkZjktOWRmMmY3OWJlZjEw LzEvc2ttdWFiT25Mc0xtNmEyNWtKRFlFcUhTbVZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAAE MA0GCSqGSIb3DQEBCwUAA4IBAQBrLymb7xyFS/DWcjyd87OICoTYDA1s9E31z70W QdAztJAKkAIwOvCK5iYwfDonvqANqK+2YBT7VXOmpTb+qbV3GvXiluWKVBIYa3Xn bDwe1Dykh7hCKFsC7i/RVJHZT3r9QhnGmms9g8FPyank0I8ENuMEJxz4Q3Q8UDdQ ZTYzMBeYozggztxE/2jYw3kQqbXC5fCO+PXhewN4ae2jswmmxbrWQPUBA6INu8PL Rp/s7ceRw99+xpbThwXRVGT35TRxrd7B17KNhM0A/nfSyyfQzQi/mSdI+82qtLbT ej5AzYYS6Hg8gBgWaOEaQlwZKO4ppF/pUuM6ZiUDzD560OGo -----END CERTIFICATE-----Generated at Mon Feb 2 14:22:59 2026 by rpki-client