This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/7NNCcnoF0xOxp5GVu3ju0_KI9Xg.roa File: 7NNCcnoF0xOxp5GVu3ju0_KI9Xg.roa (raw, json) Hash identifier: +FbL/goD4ywpuxwaYjRmf6aRrbpvlMXzbw4BzxQuZjw= Subject key identifier: EC:D3:42:72:7A:05:D3:13:B1:A7:91:95:BB:78:EE:D3:F2:88:F5:78 Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Certificate serial: 019B7EA6F0D96B8BFA12A82E7210E23DE929 Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/7NNCcnoF0xOxp5GVu3ju0_KI9Xg.roa Signing time: Fri 02 Jan 2026 12:20:28 +0000 ROA not before: Fri 02 Jan 2026 12:20:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207888 IP address blocks: 2a0e:46c3::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 02:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:f0:d9:6b:8b:fa:12:a8:2e:72:10:e2:3d:e9:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Validity Not Before: Jan 2 12:20:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ecd342727a05d313b1a79195bb78eed3f288f578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b0:dd:32:2b:ce:f7:08:54:bd:0d:93:a6:3b: 0e:da:d7:9f:8c:c4:c8:35:03:6f:74:01:9f:5d:f1: 55:d3:a7:88:48:e0:14:cc:18:2a:69:3b:76:e2:a3: 55:a7:46:96:0d:dd:5f:32:79:6e:f4:49:86:b8:27: 28:c5:07:c9:ab:25:4a:34:9f:7f:2a:6c:3c:d6:42: 05:4d:b5:7a:ea:25:93:2d:5c:77:af:2a:1d:0e:90: 36:b2:dd:0f:c2:f8:0c:8d:aa:0e:26:23:95:47:44: 50:17:47:46:5e:18:04:63:db:e0:48:14:9e:5c:43: 4d:e9:69:aa:89:b1:e8:82:ab:d9:36:03:17:6d:f4: 5a:bf:20:88:46:91:87:aa:f3:23:2b:af:46:7c:02: ea:87:25:34:0c:ab:54:7d:17:b5:18:cd:bd:ff:9c: d7:76:39:47:61:cf:2b:db:e9:05:1c:7f:b3:0d:b0: a0:d6:db:d5:3b:fb:17:28:78:1f:3d:bc:22:70:58: e1:47:86:90:60:49:c4:70:65:96:11:dc:59:8b:76: c8:c9:37:d8:b9:86:c4:1c:ac:45:53:0f:c1:75:6f: 66:62:b6:9a:0b:2a:53:d9:94:29:04:9f:c4:c8:d1: 33:4e:47:47:81:90:60:a8:aa:db:a0:79:1f:89:1c: 24:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:D3:42:72:7A:05:D3:13:B1:A7:91:95:BB:78:EE:D3:F2:88:F5:78 X509v3 Authority Key Identifier: keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/7NNCcnoF0xOxp5GVu3ju0_KI9Xg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:46c3::/40 Signature Algorithm: sha256WithRSAEncryption 9f:b5:07:0c:13:dc:87:8f:58:6a:bc:c5:b7:0a:3f:02:e2:d7: b4:26:00:14:48:ed:79:e7:b7:1c:5b:cc:82:26:ca:ab:29:34: 49:2a:5e:6f:1c:c6:62:d2:5e:38:62:28:cf:25:79:1a:69:de: 0a:99:f6:16:f1:8e:af:ef:1c:3c:e6:c4:8b:8f:a6:50:0a:26: 62:8e:93:f8:5d:06:1c:4e:eb:30:2d:d0:c2:cb:6c:58:ff:0b: 75:8f:67:19:79:2b:99:e1:3c:66:26:a8:78:8a:82:03:2d:6d: c0:fb:ca:26:15:c4:08:14:7e:7f:72:5f:56:80:44:40:da:44: 70:72:ae:73:df:3e:55:48:06:28:ac:05:a8:6c:1f:98:89:67: 52:3c:17:5c:70:6b:40:6f:58:28:a5:09:c0:dd:3a:c2:a3:ca: 76:51:a0:20:ec:1e:e2:98:5f:98:74:61:dd:03:7c:b5:fc:b4: 31:e8:cc:60:16:91:57:d8:34:de:b3:d0:72:ee:88:af:52:01: 36:66:54:ab:6f:7d:b8:4c:87:30:5d:cd:ea:c1:75:bb:72:3e: 30:76:00:be:aa:73:ec:98:b5:89:ef:66:05:27:af:c6:31:8c: 9c:82:58:ac:fc:3d:81:3e:ee:b0:e7:c4:c8:8c:03:37:a3:e4: dc:c9:02:03 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt+pvDZa4v6EqguchDiPekpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl NDgwMDgwHhcNMjYwMTAyMTIyMDI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlY2QzNDI3MjdhMDVkMzEzYjFhNzkxOTViYjc4ZWVkM2YyODhmNTc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtLDdMivO9whUvQ2TpjsO2tefjMTI NQNvdAGfXfFV06eISOAUzBgqaTt24qNVp0aWDd1fMnlu9EmGuCcoxQfJqyVKNJ9/ Kmw81kIFTbV66iWTLVx3ryodDpA2st0PwvgMjaoOJiOVR0RQF0dGXhgEY9vgSBSe XENN6WmqibHogqvZNgMXbfRavyCIRpGHqvMjK69GfALqhyU0DKtUfRe1GM29/5zX djlHYc8r2+kFHH+zDbCg1tvVO/sXKHgfPbwicFjhR4aQYEnEcGWWEdxZi3bIyTfY uYbEHKxFUw/BdW9mYraaCypT2ZQpBJ/EyNEzTkdHgZBgqKrboHkfiRwkhwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFOzTQnJ6BdMTsaeRlbt47tPyiPV4MB8GA1UdIwQY MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt YmY0ZTUyN2I5ZmE4LzEvN05OQ2Nub0YweE94cDVHVnUzanUwX0tJOVhnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4 LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKg5GwwAw DQYJKoZIhvcNAQELBQADggEBAJ+1BwwT3IePWGq8xbcKPwLi17QmABRI7Xnntxxb zIImyqspNEkqXm8cxmLSXjhiKM8leRpp3gqZ9hbxjq/vHDzmxIuPplAKJmKOk/hd BhxO6zAt0MLLbFj/C3WPZxl5K5nhPGYmqHiKggMtbcD7yiYVxAgUfn9yX1aAREDa RHByrnPfPlVIBiisBahsH5iJZ1I8F1xwa0BvWCilCcDdOsKjynZRoCDsHuKYX5h0 Yd0DfLX8tDHozGAWkVfYNN6z0HLuiK9SATZmVKtvfbhMhzBdzerBdbtyPjB2AL6q c+yYtYnvZgUnr8YxjJyCWKz8PYE+7rDnxMiMAzej5NzJAgM= -----END CERTIFICATE-----Generated at Tue Jan 20 09:06:51 2026 by rpki-client