This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/474f27-b286-46f0-ae45-132ffc8bde46/1/F6ReykvnwBeQdGSlwzXJzlYN8dg.roa File: F6ReykvnwBeQdGSlwzXJzlYN8dg.roa (raw, json) Hash identifier: s4VCcqJJfryWhoNKP5oyEvMnzjY6svyk5wyKPWs9bvE= Subject key identifier: 17:A4:5E:CA:4B:E7:C0:17:90:74:64:A5:C3:35:C9:CE:56:0D:F1:D8 Certificate issuer: /CN=0d3558546a2c54bbd812a19228aa98e078d3aa68 Certificate serial: 019B7BA45A93D9D26BF38ED94F94CA15889A Authority key identifier: 0D:35:58:54:6A:2C:54:BB:D8:12:A1:92:28:AA:98:E0:78:D3:AA:68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTVYVGosVLvYEqGSKKqY4HjTqmg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/474f27-b286-46f0-ae45-132ffc8bde46/1/F6ReykvnwBeQdGSlwzXJzlYN8dg.roa Signing time: Thu 01 Jan 2026 22:18:47 +0000 ROA not before: Thu 01 Jan 2026 22:18:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198231 IP address blocks: 2a0f:a300::/29 maxlen: 29 2a10:a280::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/474f27-b286-46f0-ae45-132ffc8bde46/1/DTVYVGosVLvYEqGSKKqY4HjTqmg.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/474f27-b286-46f0-ae45-132ffc8bde46/1/DTVYVGosVLvYEqGSKKqY4HjTqmg.mft rsync://rpki.ripe.net/repository/DEFAULT/DTVYVGosVLvYEqGSKKqY4HjTqmg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 16:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:5a:93:d9:d2:6b:f3:8e:d9:4f:94:ca:15:88:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d3558546a2c54bbd812a19228aa98e078d3aa68 Validity Not Before: Jan 1 22:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=17a45eca4be7c017907464a5c335c9ce560df1d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0f:70:49:91:31:5d:d9:82:8c:b7:9a:d3:33: 7b:58:be:2b:ba:33:71:2e:9c:b9:b4:c7:44:46:49: 8c:21:0e:2d:34:c2:2f:0f:c0:ca:37:3c:71:65:a3: 67:92:69:82:60:6f:df:2a:8c:49:50:6d:63:5d:00: 91:92:89:7c:2b:d7:73:25:51:5f:4b:b2:a5:12:da: 0e:14:9b:0e:af:9a:5e:cb:0b:aa:9d:68:79:5e:4c: ba:b0:36:15:ce:e1:0f:f5:6a:b4:59:c6:9a:53:3d: d2:28:82:26:c3:df:ac:31:88:e8:c3:90:70:2a:9f: a3:53:5b:b8:91:f8:cc:88:80:b3:9f:dc:f1:b2:e5: 7a:25:d2:56:0e:a7:fa:2a:d4:67:4b:9f:3e:e8:ac: 72:b4:1d:9b:ef:3a:79:ac:a5:2d:18:e7:2d:9d:bf: 1f:a4:00:c7:9d:70:e1:78:85:63:b1:5d:d3:1f:4c: fb:e8:b7:34:2c:f7:55:0f:e4:e4:5d:c9:ed:48:21: c5:37:c4:6b:a8:4d:08:87:7b:f9:10:74:01:5e:48: 76:67:3d:dd:fa:66:c6:1a:c8:49:a9:19:94:1d:92: ed:10:e2:a0:fb:da:d9:88:94:52:b0:d7:a8:e8:f0: 65:00:80:90:2f:79:b9:00:fb:32:56:53:b4:54:e0: d3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A4:5E:CA:4B:E7:C0:17:90:74:64:A5:C3:35:C9:CE:56:0D:F1:D8 X509v3 Authority Key Identifier: keyid:0D:35:58:54:6A:2C:54:BB:D8:12:A1:92:28:AA:98:E0:78:D3:AA:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTVYVGosVLvYEqGSKKqY4HjTqmg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/474f27-b286-46f0-ae45-132ffc8bde46/1/F6ReykvnwBeQdGSlwzXJzlYN8dg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/474f27-b286-46f0-ae45-132ffc8bde46/1/DTVYVGosVLvYEqGSKKqY4HjTqmg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:a300::/29 2a10:a280::/29 Signature Algorithm: sha256WithRSAEncryption 96:ab:e2:5b:70:f8:31:c0:9c:b1:a3:90:44:6f:b9:d2:dc:a0: 2d:02:62:58:30:b5:0a:1c:9f:14:4b:9e:ee:ea:e9:43:03:95: 42:af:2c:1a:6f:2a:b0:cf:62:e3:69:cb:68:df:c3:88:20:97: 49:b6:ef:95:09:80:99:79:77:ea:7f:4b:4a:1b:be:0c:f8:4c: 3b:b2:a4:cb:97:a8:2a:1a:e2:a8:f1:0f:21:cd:39:6d:7e:22: 62:fd:87:37:15:05:95:53:6a:7e:5d:9d:69:d9:11:44:df:72: 90:8d:9d:58:09:34:fe:c1:50:46:f2:73:25:8f:ee:e4:81:45: 2c:cd:ad:cf:a5:b0:f8:e1:2f:7a:6b:fa:63:79:cf:d7:61:20: b2:6b:d7:ad:51:2a:87:59:81:db:67:f1:95:3b:f2:9c:5f:6c: 54:70:3f:d9:eb:97:0f:c2:8e:90:11:10:d3:95:fb:f4:8a:82: 03:86:55:03:42:68:f6:53:dc:e5:7b:53:92:a1:c1:29:1c:22: b0:c1:db:3b:2b:00:b1:85:86:e8:0f:64:f7:80:e7:91:03:3a: b1:f6:50:bd:7a:ee:e5:89:2e:2b:34:54:d2:30:89:37:ae:a6: fd:c6:62:2d:73:9e:3a:fb:c0:25:b4:61:a2:b2:ec:48:b1:c2: 59:d7:fd:8d -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt7pFqT2dJr847ZT5TKFYiaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkMzU1ODU0NmEyYzU0YmJkODEyYTE5MjI4YWE5OGUwNzhk M2FhNjgwHhcNMjYwMTAxMjIxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxN2E0NWVjYTRiZTdjMDE3OTA3NDY0YTVjMzM1YzljZTU2MGRmMWQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmw9wSZExXdmCjLea0zN7WL4rujNx Lpy5tMdERkmMIQ4tNMIvD8DKNzxxZaNnkmmCYG/fKoxJUG1jXQCRkol8K9dzJVFf S7KlEtoOFJsOr5peywuqnWh5Xky6sDYVzuEP9Wq0WcaaUz3SKIImw9+sMYjow5Bw Kp+jU1u4kfjMiICzn9zxsuV6JdJWDqf6KtRnS58+6KxytB2b7zp5rKUtGOctnb8f pADHnXDheIVjsV3TH0z76Lc0LPdVD+TkXcntSCHFN8RrqE0Ih3v5EHQBXkh2Zz3d +mbGGshJqRmUHZLtEOKg+9rZiJRSsNeo6PBlAICQL3m5APsyVlO0VODT1QIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFBekXspL58AXkHRkpcM1yc5WDfHYMB8GA1UdIwQY MBaAFA01WFRqLFS72BKhkiiqmOB406poMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFRWWVZHb3NWTHZZRXFHU0tLcVk0SGpUcW1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi80NzRmMjctYjI4Ni00NmYwLWFlNDUt MTMyZmZjOGJkZTQ2LzEvRjZSZXlrdm53QmVRZEdTbHd6WEp6bFlOOGRnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi80NzRmMjctYjI4Ni00NmYwLWFlNDUtMTMyZmZjOGJkZTQ2 LzEvRFRWWVZHb3NWTHZZRXFHU0tLcVk0SGpUcW1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUDKg+jAAMF AyoQooAwDQYJKoZIhvcNAQELBQADggEBAJar4ltw+DHAnLGjkERvudLcoC0CYlgw tQocnxRLnu7q6UMDlUKvLBpvKrDPYuNpy2jfw4ggl0m275UJgJl5d+p/S0obvgz4 TDuypMuXqCoa4qjxDyHNOW1+ImL9hzcVBZVTan5dnWnZEUTfcpCNnVgJNP7BUEby cyWP7uSBRSzNrc+lsPjhL3pr+mN5z9dhILJr161RKodZgdtn8ZU78pxfbFRwP9nr lw/CjpARENOV+/SKggOGVQNCaPZT3OV7U5KhwSkcIrDB2zsrALGFhugPZPeA55ED OrH2UL167uWJLis0VNIwiTeupv3GYi1znjr7wCW0YaKy7EixwlnX/Y0= -----END CERTIFICATE-----Generated at Sat Jan 3 01:01:54 2026 by rpki-client