This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/AXxO62dBfHaEAXsDwvFI5whI2U4.roa File: AXxO62dBfHaEAXsDwvFI5whI2U4.roa (raw, json) Hash identifier: CSzvUTS7e1OrZDbpvOb9mA/Qm3ZS35EoFWB1i3S45V8= Subject key identifier: 01:7C:4E:EB:67:41:7C:76:84:01:7B:03:C2:F1:48:E7:08:48:D9:4E Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019B7B358C7455C147A1903DA27B88AE1880 Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/AXxO62dBfHaEAXsDwvFI5whI2U4.roa Signing time: Thu 01 Jan 2026 20:17:45 +0000 ROA not before: Thu 01 Jan 2026 20:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213625 IP address blocks: 2a14:67c1:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:8c:74:55:c1:47:a1:90:3d:a2:7b:88:ae:18:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Jan 1 20:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=017c4eeb67417c7684017b03c2f148e70848d94e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:25:cf:98:0e:02:a3:42:18:60:13:96:db:09: 15:11:31:90:c8:4a:bb:03:d7:db:49:f5:9f:5d:b1: 95:a6:14:c3:5b:3a:e3:95:e7:93:61:da:a3:5b:10: 3d:fa:ca:36:81:07:fb:ac:be:33:5a:fb:a4:be:8f: 22:b0:4e:c3:b5:89:fc:9d:9b:ff:65:d1:23:bf:9b: 72:3e:d7:d3:c4:49:f4:ac:b8:05:a0:62:da:a3:ca: b7:94:4a:26:13:29:10:d2:53:8f:20:a0:9f:e1:fe: e1:d0:34:5c:db:2d:a5:32:01:0b:01:99:b5:77:68: bc:c2:fa:56:a9:13:a6:43:ea:4e:c7:a0:fb:0f:f5: 80:cc:85:52:11:93:b7:2d:0f:89:a3:01:19:0f:58: 46:02:82:84:cd:36:34:e2:5a:f4:d0:0c:67:d5:d6: 76:df:14:fd:10:e5:e2:f1:91:0d:e6:17:f8:76:fc: ff:db:dd:be:2d:43:50:d8:30:96:ba:a5:b7:0f:a7: 2f:55:29:ba:5d:e1:c3:60:60:14:98:47:0f:b5:93: de:ab:1e:14:d2:08:e4:bb:e4:14:9b:2f:a0:77:c9: 88:0c:fb:e6:75:f3:e3:62:b2:61:50:b7:1e:51:25: 90:52:4c:d0:42:79:f0:29:e2:f6:ca:9c:63:39:09: 37:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:7C:4E:EB:67:41:7C:76:84:01:7B:03:C2:F1:48:E7:08:48:D9:4E X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/AXxO62dBfHaEAXsDwvFI5whI2U4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:67c1:800::/40 Signature Algorithm: sha256WithRSAEncryption 70:b1:bb:23:f5:1d:0e:71:e3:ef:75:50:c9:f7:e5:75:5e:73: 31:13:87:55:e2:bf:a2:d6:0d:11:76:eb:21:63:ef:53:49:c5: 9e:b4:cd:0a:9e:03:71:96:4d:f3:24:2f:a7:0c:7b:0e:e3:82: b8:ae:b2:f7:e6:01:db:4c:96:a0:9c:07:96:bc:85:c2:8a:cb: c0:9a:46:07:32:e1:4b:18:f7:37:c3:15:74:e5:f1:24:c6:6a: 24:19:ce:91:d1:00:aa:20:07:e7:31:4e:a5:bc:c5:b0:f1:60: 32:94:30:dc:8a:6a:c3:fd:4e:0a:a2:6b:3c:7d:4b:bc:0d:2f: 54:b1:5b:51:de:ad:bf:90:a4:3a:bd:56:3c:68:06:0e:b4:34: d3:12:38:2e:74:df:26:5a:91:c3:a6:69:13:7f:64:0d:10:97: 1a:95:4d:51:9f:bf:55:30:b8:8b:a8:e9:7d:77:bc:71:09:32: 31:bd:53:8a:8f:31:a3:a0:1d:13:c0:46:2b:b0:46:14:a8:bc: b0:95:ca:85:06:50:e8:49:99:e3:0d:71:fa:06:e0:70:d8:6d: 8b:ed:58:6f:bd:fc:4d:97:8e:68:db:6b:fa:1f:54:62:0b:a6: f5:c9:2c:c8:55:76:a0:d0:3a:c9:a9:f9:42:ae:ac:28:2a:94: 35:16:4d:92 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt7NYx0VcFHoZA9onuIrhiAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjYwMTAxMjAxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMTdjNGVlYjY3NDE3Yzc2ODQwMTdiMDNjMmYxNDhlNzA4NDhkOTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuyXPmA4Co0IYYBOW2wkVETGQyEq7 A9fbSfWfXbGVphTDWzrjleeTYdqjWxA9+so2gQf7rL4zWvukvo8isE7DtYn8nZv/ ZdEjv5tyPtfTxEn0rLgFoGLao8q3lEomEykQ0lOPIKCf4f7h0DRc2y2lMgELAZm1 d2i8wvpWqROmQ+pOx6D7D/WAzIVSEZO3LQ+JowEZD1hGAoKEzTY04lr00Axn1dZ2 3xT9EOXi8ZEN5hf4dvz/292+LUNQ2DCWuqW3D6cvVSm6XeHDYGAUmEcPtZPeqx4U 0gjku+QUmy+gd8mIDPvmdfPjYrJhULceUSWQUkzQQnnwKeL2ypxjOQk3cwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFAF8TutnQXx2hAF7A8LxSOcISNlOMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEvQVh4TzYyZEJmSGFFQVhzRHd2Rkk1d2hJMlU0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhRnwQgw DQYJKoZIhvcNAQELBQADggEBAHCxuyP1HQ5x4+91UMn35XVeczETh1Xiv6LWDRF2 6yFj71NJxZ60zQqeA3GWTfMkL6cMew7jgriusvfmAdtMlqCcB5a8hcKKy8CaRgcy 4UsY9zfDFXTl8STGaiQZzpHRAKogB+cxTqW8xbDxYDKUMNyKasP9Tgqiazx9S7wN L1SxW1Herb+QpDq9VjxoBg60NNMSOC503yZakcOmaRN/ZA0QlxqVTVGfv1UwuIuo 6X13vHEJMjG9U4qPMaOgHRPARiuwRhSovLCVyoUGUOhJmeMNcfoG4HDYbYvtWG+9 /E2Xjmjba/ofVGILpvXJLMhVdqDQOsmp+UKurCgqlDUWTZI= -----END CERTIFICATE-----Generated at Tue Jan 20 12:27:26 2026 by rpki-client