This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/40mCOlO0sT4WAER6K5bNVw8pDUU.roa File: 40mCOlO0sT4WAER6K5bNVw8pDUU.roa (raw, json) Hash identifier: csm/jm/iCDQM7+udnueGm7MHFuFhyYJAJLCYeVp0Zxg= Subject key identifier: E3:49:82:3A:53:B4:B1:3E:16:00:44:7A:2B:96:CD:57:0F:29:0D:45 Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019ADE4756115C991AF0E16FC2C9C4C27942 Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/40mCOlO0sT4WAER6K5bNVw8pDUU.roa Signing time: Tue 02 Dec 2025 08:56:48 +0000 ROA not before: Tue 02 Dec 2025 08:56:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 8075 IP address blocks: 2a14:67c2:510::/48 maxlen: 48 2a14:67c2:575::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 05:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:de:47:56:11:5c:99:1a:f0:e1:6f:c2:c9:c4:c2:79:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Dec 2 08:56:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=e349823a53b4b13e1600447a2b96cd570f290d45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b3:c2:e1:21:d8:67:1c:01:59:c3:51:b5:4d: cc:20:11:7d:a6:1c:58:e6:b7:d8:0f:56:10:52:61: 74:b3:1c:98:0e:e9:66:bb:86:f8:9b:77:a3:23:28: 2f:56:aa:1a:15:b0:af:0f:dc:f2:7c:cb:32:6e:a9: 6b:59:ff:f4:07:60:d7:17:e7:b3:15:f1:7f:55:c3: 0d:0c:5a:05:3c:34:33:0f:e9:aa:e2:1e:e2:71:65: e8:59:97:e2:06:1f:11:19:61:12:79:c2:da:14:de: 06:e3:a3:04:8f:f5:07:11:32:69:2d:55:67:b2:8a: 8a:99:fa:4c:ce:04:6c:22:dc:c5:70:65:ad:fb:9f: 9d:62:9c:29:00:a5:6e:55:b3:5c:3b:f8:cb:ac:36: 58:be:1c:8b:d4:30:2a:fc:94:dd:27:28:91:32:a6: ac:d7:76:06:52:ba:55:83:fa:6b:79:be:8e:dc:ef: bd:d7:11:e4:7d:18:fe:72:ff:4b:db:b2:bd:80:5d: 87:04:19:50:eb:db:a0:a7:2c:c3:31:07:eb:e1:2e: 6b:f0:ec:da:55:d4:b0:d0:51:32:3a:c5:0b:80:f3: 99:21:7f:79:47:d2:75:92:75:9b:d6:ba:fa:c1:f0: aa:6a:3f:5a:0a:9b:7a:89:06:03:82:20:9c:0c:82: bd:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:49:82:3A:53:B4:B1:3E:16:00:44:7A:2B:96:CD:57:0F:29:0D:45 X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/40mCOlO0sT4WAER6K5bNVw8pDUU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:67c2:510::/48 2a14:67c2:575::/48 Signature Algorithm: sha256WithRSAEncryption b8:22:87:68:6f:fd:04:b1:a0:e8:97:66:1f:5c:8e:1f:96:f9: db:46:8d:b2:d4:b1:90:40:a9:f5:c4:2d:fb:68:5f:66:85:45: 63:42:99:cc:28:80:ec:9a:c1:e2:22:b7:35:a4:48:20:0b:7c: da:8d:48:60:ff:c9:84:f3:17:6c:dd:87:9a:11:64:90:2a:9f: 33:5b:28:ee:c8:8d:a3:70:cd:de:2e:5b:21:51:48:4c:2b:57: 40:f6:99:58:4e:8a:7e:54:cb:41:21:bf:44:dd:ef:26:5b:ea: 5f:13:48:37:c8:ed:f6:d3:4e:ed:61:94:6a:d0:94:9a:ed:60: 55:4d:d5:ec:bb:24:10:26:8e:bc:d3:94:65:cc:00:86:48:cf: fc:af:99:81:60:d5:54:86:77:a1:7b:23:67:95:e5:a0:bd:5d: ee:bb:d2:22:60:b1:dc:e3:35:89:18:f6:b3:95:93:b7:aa:a6: 14:6c:65:06:12:17:13:d1:57:57:6d:d2:20:10:67:14:66:89: 24:b0:7e:e8:01:d4:d4:4f:22:20:1c:dd:1d:34:58:dc:f8:14: df:03:91:fb:ff:86:a4:8a:93:2c:d1:5a:9b:33:1e:29:a6:b1: b0:d6:33:25:56:a9:df:49:65:76:ba:f9:5a:2b:e9:e2:39:60: ab:86:9c:cc -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZreR1YRXJka8OFvwsnEwnlCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjUxMjAyMDg1NjQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzQ5ODIzYTUzYjRiMTNlMTYwMDQ0N2EyYjk2Y2Q1NzBmMjkwZDQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7PC4SHYZxwBWcNRtU3MIBF9phxY 5rfYD1YQUmF0sxyYDulmu4b4m3ejIygvVqoaFbCvD9zyfMsybqlrWf/0B2DXF+ez FfF/VcMNDFoFPDQzD+mq4h7icWXoWZfiBh8RGWESecLaFN4G46MEj/UHETJpLVVn soqKmfpMzgRsItzFcGWt+5+dYpwpAKVuVbNcO/jLrDZYvhyL1DAq/JTdJyiRMqas 13YGUrpVg/preb6O3O+91xHkfRj+cv9L27K9gF2HBBlQ69ugpyzDMQfr4S5r8Oza VdSw0FEyOsULgPOZIX95R9J1knWb1rr6wfCqaj9aCpt6iQYDgiCcDIK9cwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFONJgjpTtLE+FgBEeiuWzVcPKQ1FMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEvNDBtQ09sTzBzVDRXQUVSNks1Yk5WdzhwRFVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKhRnwgUQ AwcAKhRnwgV1MA0GCSqGSIb3DQEBCwUAA4IBAQC4Iodob/0EsaDol2YfXI4flvnb Ro2y1LGQQKn1xC37aF9mhUVjQpnMKIDsmsHiIrc1pEggC3zajUhg/8mE8xds3Yea EWSQKp8zWyjuyI2jcM3eLlshUUhMK1dA9plYTop+VMtBIb9E3e8mW+pfE0g3yO32 007tYZRq0JSa7WBVTdXsuyQQJo6805RlzACGSM/8r5mBYNVUhneheyNnleWgvV3u u9IiYLHc4zWJGPazlZO3qqYUbGUGEhcT0VdXbdIgEGcUZokksH7oAdTUTyIgHN0d NFjc+BTfA5H7/4akipMs0VqbMx4pprGw1jMlVqnfSWV2uvlaK+niOWCrhpzM -----END CERTIFICATE-----Generated at Thu Dec 4 10:28:20 2025 by rpki-client