This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/25e96a-e91f-417b-a32d-0960c16f74bf/1/6wdz3UOZ9WAT3BEVKu977wzSb_Y.roa File: 6wdz3UOZ9WAT3BEVKu977wzSb_Y.roa (raw, json) Hash identifier: j0wO5SPrwe9SF358RdnDGX3XEdT1IQMBpaTX8mDR3sE= Subject key identifier: EB:07:73:DD:43:99:F5:60:13:DC:11:15:2A:EF:7B:EF:0C:D2:6F:F6 Certificate issuer: /CN=bac4a089f8e68a830eb98a5c1fe2560651e5b39b Certificate serial: 019B03704B16AF9EAECFAE4EBA5E4FC6334C Authority key identifier: BA:C4:A0:89:F8:E6:8A:83:0E:B9:8A:5C:1F:E2:56:06:51:E5:B3:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/usSgifjmioMOuYpcH-JWBlHls5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/25e96a-e91f-417b-a32d-0960c16f74bf/1/6wdz3UOZ9WAT3BEVKu977wzSb_Y.roa Signing time: Tue 09 Dec 2025 14:07:29 +0000 ROA not before: Tue 09 Dec 2025 14:07:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 203019 IP address blocks: 2001:678:1174::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/25e96a-e91f-417b-a32d-0960c16f74bf/1/usSgifjmioMOuYpcH-JWBlHls5s.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/25e96a-e91f-417b-a32d-0960c16f74bf/1/usSgifjmioMOuYpcH-JWBlHls5s.mft rsync://rpki.ripe.net/repository/DEFAULT/usSgifjmioMOuYpcH-JWBlHls5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 09:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:03:70:4b:16:af:9e:ae:cf:ae:4e:ba:5e:4f:c6:33:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bac4a089f8e68a830eb98a5c1fe2560651e5b39b Validity Not Before: Dec 9 14:07:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=eb0773dd4399f56013dc11152aef7bef0cd26ff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3f:82:8b:1d:9a:e3:b2:77:1a:5b:4d:5e:41: df:84:31:a6:90:a3:52:36:b7:af:d7:e4:70:10:70: de:98:e1:cf:95:9a:55:9a:3a:3d:59:39:6f:78:85: aa:21:8b:79:09:98:28:ac:05:d5:eb:e7:50:1a:75: af:18:98:92:30:a9:f0:6a:6b:0a:6a:db:3b:d7:2f: 96:59:f9:20:d6:2a:e9:4c:36:70:f1:87:1c:1a:4a: 6c:5a:ca:36:0d:d6:da:21:0b:3f:77:8f:e6:af:62: 0d:1a:92:85:f2:46:f6:35:97:75:4f:d8:7a:3c:9c: 40:63:85:1f:16:c3:f6:b8:df:c7:72:1e:b6:b2:eb: 32:a2:1d:ad:26:9d:43:df:a2:05:7a:e5:69:2c:c2: a2:70:11:32:0a:b6:c6:34:73:5c:48:12:0d:e0:99: 3f:f3:a5:b4:e9:43:6f:5b:93:1d:d5:fc:94:9e:0d: d7:87:a1:29:24:1b:5b:88:80:42:06:d8:69:4f:b6: b4:d6:e5:02:15:81:7f:71:13:cf:51:71:d6:d8:57: 9a:ab:3b:fe:2f:f8:44:34:b3:89:c3:3a:d9:73:85: 08:e5:ca:cd:f5:90:f3:25:21:af:df:f6:d0:ae:64: 75:00:75:73:cd:cf:10:fa:88:ff:0a:65:ea:be:fc: 38:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:07:73:DD:43:99:F5:60:13:DC:11:15:2A:EF:7B:EF:0C:D2:6F:F6 X509v3 Authority Key Identifier: keyid:BA:C4:A0:89:F8:E6:8A:83:0E:B9:8A:5C:1F:E2:56:06:51:E5:B3:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/usSgifjmioMOuYpcH-JWBlHls5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/25e96a-e91f-417b-a32d-0960c16f74bf/1/6wdz3UOZ9WAT3BEVKu977wzSb_Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/25e96a-e91f-417b-a32d-0960c16f74bf/1/usSgifjmioMOuYpcH-JWBlHls5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1174::/48 Signature Algorithm: sha256WithRSAEncryption 15:e9:fb:16:1f:0d:96:55:ae:43:16:ec:04:63:81:28:56:a9: 06:79:c8:1b:df:e3:2c:61:9e:07:e4:11:3d:7c:24:fc:31:b2: 33:bd:44:7d:58:46:5b:80:96:b9:ef:88:3a:4d:c1:8c:3d:a1: 1e:e4:a8:54:d7:51:31:53:d5:18:73:ff:a9:42:0c:5b:46:67: 21:27:5f:0a:7c:40:9b:cb:6a:2c:ed:51:a6:63:0e:00:b5:22: 3e:48:96:64:00:0a:5c:cc:9f:7e:77:93:80:65:11:08:a3:bd: d1:fd:07:08:1c:55:37:a0:ef:74:be:c0:30:40:47:97:51:5d: 71:5f:9d:33:92:7d:1c:e0:96:b1:bb:aa:67:77:f4:22:98:d0: b7:48:de:d9:2f:2d:6c:25:57:34:08:b3:ee:d5:de:ea:ee:e2: 4a:5f:a1:08:55:96:26:3a:4b:11:83:9b:bf:66:c5:76:0e:64: 7c:78:e9:cc:87:9c:02:df:ba:b9:ae:50:8d:1b:09:58:7f:2b: 2e:31:09:43:9a:7a:d0:58:cb:b1:77:4d:c5:9a:76:cb:9f:5d: ad:a6:d4:c4:56:48:8f:1d:8d:6e:6b:a1:55:a2:d6:f3:ed:49: ed:56:ae:f2:0f:b2:e6:e1:e4:b1:da:86:1b:c7:f6:3e:2f:14: ec:0f:5c:df -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZsDcEsWr56uz65Oul5PxjNMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYzRhMDg5ZjhlNjhhODMwZWI5OGE1YzFmZTI1NjA2NTFl NWIzOWIwHhcNMjUxMjA5MTQwNzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYjA3NzNkZDQzOTlmNTYwMTNkYzExMTUyYWVmN2JlZjBjZDI2ZmY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1T+Cix2a47J3GltNXkHfhDGmkKNS Nrev1+RwEHDemOHPlZpVmjo9WTlveIWqIYt5CZgorAXV6+dQGnWvGJiSMKnwamsK ats71y+WWfkg1irpTDZw8YccGkpsWso2DdbaIQs/d4/mr2INGpKF8kb2NZd1T9h6 PJxAY4UfFsP2uN/Hch62susyoh2tJp1D36IFeuVpLMKicBEyCrbGNHNcSBIN4Jk/ 86W06UNvW5Md1fyUng3Xh6EpJBtbiIBCBthpT7a01uUCFYF/cRPPUXHW2Feaqzv+ L/hENLOJwzrZc4UI5crN9ZDzJSGv3/bQrmR1AHVzzc8Q+oj/CmXqvvw42wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFOsHc91DmfVgE9wRFSrve+8M0m/2MB8GA1UdIwQY MBaAFLrEoIn45oqDDrmKXB/iVgZR5bObMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXNTZ2lmam1pb01PdVlwY0gtSldCbEhsczVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8yNWU5NmEtZTkxZi00MTdiLWEzMmQt MDk2MGMxNmY3NGJmLzEvNndkejNVT1o5V0FUM0JFVkt1OTc3d3pTYl9ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi8yNWU5NmEtZTkxZi00MTdiLWEzMmQtMDk2MGMxNmY3NGJm LzEvdXNTZ2lmam1pb01PdVlwY0gtSldCbEhsczVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeBF0 MA0GCSqGSIb3DQEBCwUAA4IBAQAV6fsWHw2WVa5DFuwEY4EoVqkGecgb3+MsYZ4H 5BE9fCT8MbIzvUR9WEZbgJa574g6TcGMPaEe5KhU11ExU9UYc/+pQgxbRmchJ18K fECby2os7VGmYw4AtSI+SJZkAApczJ9+d5OAZREIo73R/QcIHFU3oO90vsAwQEeX UV1xX50zkn0c4Jaxu6pnd/QimNC3SN7ZLy1sJVc0CLPu1d7q7uJKX6EIVZYmOksR g5u/ZsV2DmR8eOnMh5wC37q5rlCNGwlYfysuMQlDmnrQWMuxd03FmnbLn12tptTE VkiPHY1ua6FVotbz7UntVq7yD7Lm4eSx2oYbx/Y+LxTsD1zf -----END CERTIFICATE-----Generated at Tue Dec 16 12:06:41 2025 by rpki-client