This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/gS1PiJn7PhW-nuhrlwEHTBTZfgs.roa File: gS1PiJn7PhW-nuhrlwEHTBTZfgs.roa (raw, json) Hash identifier: /niJP01bgd6Vvc5EfSrF10oOYXPgw8E+WNxOa5REjdI= Subject key identifier: 81:2D:4F:88:99:FB:3E:15:BE:9E:E8:6B:97:01:07:4C:14:D9:7E:0B Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a Certificate serial: 019B7FF1B6B388505D451D27E2082300A836 Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/gS1PiJn7PhW-nuhrlwEHTBTZfgs.roa Signing time: Fri 02 Jan 2026 18:21:45 +0000 ROA not before: Fri 02 Jan 2026 18:21:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197432 IP address blocks: 2a03:5840:fc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.mft rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:b6:b3:88:50:5d:45:1d:27:e2:08:23:00:a8:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a Validity Not Before: Jan 2 18:21:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=812d4f8899fb3e15be9ee86b9701074c14d97e0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:82:57:af:f2:94:54:4a:f6:80:a1:d5:6a:2a: db:06:3b:2f:de:57:04:4c:97:c2:f1:43:af:cc:ec: 9b:8e:1f:0a:3b:87:f5:f8:4d:31:d7:87:ef:70:6d: 46:01:59:e3:d5:ad:d3:e2:d8:b3:e6:1b:29:fe:c2: cf:78:eb:d0:fd:2f:21:26:8c:e7:d4:5a:e8:fa:f7: 76:3b:fa:b4:e1:08:88:1e:e6:6a:ff:32:c4:ac:bf: 9d:63:31:79:98:d4:cc:06:8d:9a:22:72:33:1e:d3: 45:57:8a:e2:db:aa:1f:73:13:cf:f7:af:83:da:a3: 3a:fb:be:1c:59:b2:7a:4a:8e:5e:ae:a2:59:6a:ac: db:eb:d4:31:72:42:a2:48:9c:7a:54:d4:68:22:57: 2d:fe:ad:0c:bd:15:4d:0b:4b:45:7f:56:47:f3:70: c2:84:50:0a:34:1c:3c:2d:01:d1:b9:37:16:d9:52: 1f:ec:2d:b1:22:58:8a:c3:d2:a8:97:ac:15:db:02: 5a:84:d4:74:af:4d:7b:1d:bd:18:41:5f:2a:ab:02: d2:d3:a7:dd:76:0e:60:47:a7:c0:27:a7:f4:8a:80: cf:73:e1:30:7d:cd:72:b9:21:dc:91:35:87:d8:9a: a8:6d:42:52:31:b7:2e:7d:1b:4d:9d:12:d8:ee:3f: 17:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:2D:4F:88:99:FB:3E:15:BE:9E:E8:6B:97:01:07:4C:14:D9:7E:0B X509v3 Authority Key Identifier: keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/gS1PiJn7PhW-nuhrlwEHTBTZfgs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:5840:fc::/48 Signature Algorithm: sha256WithRSAEncryption 4b:4b:16:7d:9c:4a:a6:c8:82:c4:73:8e:1d:ae:21:e5:86:22: 8e:7d:ef:2e:ab:c6:c4:ef:d0:00:e9:e0:d5:90:fd:95:20:ec: bb:8b:eb:ba:b5:91:c7:30:51:07:71:77:80:59:4c:a4:d6:41: 6c:71:df:c0:d6:1b:5b:6e:82:3e:be:03:06:3d:ec:a2:35:a3: 5d:8c:19:67:c2:e8:78:08:10:69:5c:90:36:7d:74:ea:70:6a: 09:7e:d3:ad:55:45:e8:1c:5a:07:ed:23:cc:5c:29:bd:10:69: 39:a0:d6:5e:e2:60:3a:3c:22:1e:df:d7:c0:97:a3:a3:15:79: 5e:30:2a:9d:b1:62:a5:9f:90:e2:41:0b:b5:94:9f:04:fc:b3: 83:e5:15:a7:24:b1:25:6f:04:64:2d:0e:8c:aa:42:27:33:f8: d5:26:6c:26:9d:73:c5:b4:eb:94:ab:83:43:75:18:80:96:85: 43:76:04:78:1c:49:fb:e6:ef:26:fa:4e:10:4c:b9:7b:80:0b: 73:10:03:67:fc:26:f3:34:9f:60:ad:1b:a3:d8:1d:a1:5e:2b: f2:4f:6a:8f:c5:bc:4a:45:10:b2:f5:89:08:a8:e5:16:c9:dd: 7d:d8:72:5a:75:a5:89:07:f4:e8:5f:ce:8a:21:35:28:17:9f: 8c:5c:8e:11 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/8baziFBdRR0n4ggjAKg2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3NzcwNWU4OWJiNjViNDcyZTRlMDE4NGQ2ZmU5YmZiOGM1 ODYzNWEwHhcNMjYwMTAyMTgyMTQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MTJkNGY4ODk5ZmIzZTE1YmU5ZWU4NmI5NzAxMDc0YzE0ZDk3ZTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhIJXr/KUVEr2gKHVairbBjsv3lcE TJfC8UOvzOybjh8KO4f1+E0x14fvcG1GAVnj1a3T4tiz5hsp/sLPeOvQ/S8hJozn 1Fro+vd2O/q04QiIHuZq/zLErL+dYzF5mNTMBo2aInIzHtNFV4ri26ofcxPP96+D 2qM6+74cWbJ6So5erqJZaqzb69QxckKiSJx6VNRoIlct/q0MvRVNC0tFf1ZH83DC hFAKNBw8LQHRuTcW2VIf7C2xIliKw9Kol6wV2wJahNR0r017Hb0YQV8qqwLS06fd dg5gR6fAJ6f0ioDPc+Ewfc1yuSHckTWH2JqobUJSMbcufRtNnRLY7j8XbwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFIEtT4iZ+z4Vvp7oa5cBB0wU2X4LMB8GA1UdIwQY MBaAFPd3BeibtltHLk4BhNb+m/uMWGNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYt NmNiODk3OTFkN2ZkLzEvZ1MxUGlKbjdQaFctbnVocmx3RUhUQlRaZmdzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYtNmNiODk3OTFkN2Zk LzEvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgNYQAD8 MA0GCSqGSIb3DQEBCwUAA4IBAQBLSxZ9nEqmyILEc44driHlhiKOfe8uq8bE79AA 6eDVkP2VIOy7i+u6tZHHMFEHcXeAWUyk1kFscd/A1htbboI+vgMGPeyiNaNdjBln wuh4CBBpXJA2fXTqcGoJftOtVUXoHFoH7SPMXCm9EGk5oNZe4mA6PCIe39fAl6Oj FXleMCqdsWKln5DiQQu1lJ8E/LOD5RWnJLElbwRkLQ6MqkInM/jVJmwmnXPFtOuU q4NDdRiAloVDdgR4HEn75u8m+k4QTLl7gAtzEANn/CbzNJ9grRuj2B2hXivyT2qP xbxKRRCy9YkIqOUWyd192HJadaWJB/ToX86KITUoF5+MXI4R -----END CERTIFICATE-----Generated at Fri Jan 23 15:20:50 2026 by rpki-client