This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3bc707-76e7-4987-befa-981184dee131/1/9cUez0lt6Mmw_B9XzRcaxVFdcD4.roa File: 9cUez0lt6Mmw_B9XzRcaxVFdcD4.roa (raw, json) Hash identifier: nOpET7s1tBcctYg3BftSbHVRYi4Bukh6zTqeOERZX48= Subject key identifier: F5:C5:1E:CF:49:6D:E8:C9:B0:FC:1F:57:CD:17:1A:C5:51:5D:70:3E Certificate issuer: /CN=d34fa6be3f5c38f4bb7e062b6707747f4961a048 Certificate serial: 019B79112779100059C34BE5FB7385651349 Authority key identifier: D3:4F:A6:BE:3F:5C:38:F4:BB:7E:06:2B:67:07:74:7F:49:61:A0:48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00-mvj9cOPS7fgYrZwd0f0lhoEg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3bc707-76e7-4987-befa-981184dee131/1/9cUez0lt6Mmw_B9XzRcaxVFdcD4.roa Signing time: Thu 01 Jan 2026 10:18:45 +0000 ROA not before: Thu 01 Jan 2026 10:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 2a11:9c80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3bc707-76e7-4987-befa-981184dee131/1/00-mvj9cOPS7fgYrZwd0f0lhoEg.crl rsync://rpki.ripe.net/repository/DEFAULT/04/3bc707-76e7-4987-befa-981184dee131/1/00-mvj9cOPS7fgYrZwd0f0lhoEg.mft rsync://rpki.ripe.net/repository/DEFAULT/00-mvj9cOPS7fgYrZwd0f0lhoEg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 04:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:27:79:10:00:59:c3:4b:e5:fb:73:85:65:13:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d34fa6be3f5c38f4bb7e062b6707747f4961a048 Validity Not Before: Jan 1 10:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f5c51ecf496de8c9b0fc1f57cd171ac5515d703e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:37:5b:bb:f1:67:98:5d:fd:ce:be:4d:15:4e: 9a:ce:53:c3:46:e6:1f:70:b1:69:7d:de:d7:e3:c2: 05:f1:5d:79:c5:31:99:a2:1c:51:9e:8b:af:9e:e9: 8c:3b:78:86:6a:eb:30:a5:e8:46:3e:e8:77:cd:49: 9e:17:58:8a:ab:d7:69:2c:87:e4:5d:72:b8:de:2c: 2c:b2:ee:01:de:6a:b0:cc:51:b1:99:7f:a8:ec:1a: fc:4c:c6:5e:53:20:90:d9:c6:d0:35:f2:19:1d:35: cb:d7:69:68:ac:d3:e7:97:4e:04:80:00:de:84:91: 93:3e:75:4b:28:49:96:66:01:34:69:3e:7b:96:43: 5a:6b:ff:0d:e0:fb:81:80:fa:9e:f3:5b:cc:2a:c3: ed:a5:27:f4:be:a1:db:49:b8:a3:67:38:0e:8b:51: 81:29:7e:fe:f2:62:38:52:05:5c:da:68:21:53:3e: 65:da:0b:27:f7:bd:1c:d8:c2:7e:e9:4a:c4:0f:af: 26:1f:5b:1f:10:71:31:c2:1e:fd:30:b1:65:17:00: 05:32:dc:06:ca:41:18:99:96:41:e2:41:80:70:2d: 2f:ba:b1:20:e6:8d:d2:ae:74:56:c4:8f:78:fd:63: 81:80:a2:20:9f:11:10:e6:7c:9b:0b:11:92:c3:7f: 6d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:C5:1E:CF:49:6D:E8:C9:B0:FC:1F:57:CD:17:1A:C5:51:5D:70:3E X509v3 Authority Key Identifier: keyid:D3:4F:A6:BE:3F:5C:38:F4:BB:7E:06:2B:67:07:74:7F:49:61:A0:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00-mvj9cOPS7fgYrZwd0f0lhoEg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3bc707-76e7-4987-befa-981184dee131/1/9cUez0lt6Mmw_B9XzRcaxVFdcD4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3bc707-76e7-4987-befa-981184dee131/1/00-mvj9cOPS7fgYrZwd0f0lhoEg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:9c80::/29 Signature Algorithm: sha256WithRSAEncryption 4e:9e:5d:ef:14:9f:f4:d0:64:cd:ff:e3:9e:4c:6e:de:b8:1f: d0:d3:ec:00:61:1b:5c:1e:81:7f:b1:76:ce:8e:13:29:7d:1c: 03:fb:6c:c1:ee:a6:86:f8:22:ad:4e:b2:2b:20:91:93:63:72: 16:eb:fa:fa:32:d3:9f:98:d0:25:84:59:b2:1d:4b:e6:73:2f: 3f:44:d3:bc:e9:09:99:aa:ef:0b:c4:59:fb:0f:84:c1:83:e4: 20:f6:ff:21:c6:88:e3:62:70:ac:33:f2:66:ec:83:44:9c:c8: 6d:84:e8:38:18:9e:4e:b9:45:fb:39:52:ce:8a:0c:3b:68:a4: cc:18:23:38:c6:64:d3:a7:7e:92:c0:92:2e:96:2e:bb:e7:fd: 5b:51:71:98:da:37:52:c4:6b:26:6c:cb:2a:07:65:77:78:b1: 04:b8:0e:65:19:57:d0:8f:ca:6f:78:60:47:eb:d1:19:8b:5e: 9e:75:17:e8:09:59:82:50:f6:3d:6d:88:8a:ce:aa:67:46:ba: 70:bf:49:81:6a:e6:75:60:e2:8b:24:7c:be:9c:cd:15:15:c9: 39:71:f4:08:62:f6:4f:25:e7:2e:53:2e:23:9f:b9:76:4e:db: 88:b5:93:15:82:b2:f3:06:90:1f:13:4d:29:66:04:50:b6:a7: 2b:1d:5d:3f -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt5ESd5EABZw0vl+3OFZRNJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzNGZhNmJlM2Y1YzM4ZjRiYjdlMDYyYjY3MDc3NDdmNDk2 MWEwNDgwHhcNMjYwMTAxMTAxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNWM1MWVjZjQ5NmRlOGM5YjBmYzFmNTdjZDE3MWFjNTUxNWQ3MDNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Ddbu/FnmF39zr5NFU6azlPDRuYf cLFpfd7X48IF8V15xTGZohxRnouvnumMO3iGauswpehGPuh3zUmeF1iKq9dpLIfk XXK43iwssu4B3mqwzFGxmX+o7Br8TMZeUyCQ2cbQNfIZHTXL12lorNPnl04EgADe hJGTPnVLKEmWZgE0aT57lkNaa/8N4PuBgPqe81vMKsPtpSf0vqHbSbijZzgOi1GB KX7+8mI4UgVc2mghUz5l2gsn970c2MJ+6UrED68mH1sfEHExwh79MLFlFwAFMtwG ykEYmZZB4kGAcC0vurEg5o3SrnRWxI94/WOBgKIgnxEQ5nybCxGSw39tVwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFPXFHs9JbejJsPwfV80XGsVRXXA+MB8GA1UdIwQY MBaAFNNPpr4/XDj0u34GK2cHdH9JYaBIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDAtbXZqOWNPUFM3ZmdZclp3ZDBmMGxob0VnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8zYmM3MDctNzZlNy00OTg3LWJlZmEt OTgxMTg0ZGVlMTMxLzEvOWNVZXowbHQ2TW13X0I5WHpSY2F4VkZkY0Q0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC8zYmM3MDctNzZlNy00OTg3LWJlZmEtOTgxMTg0ZGVlMTMx LzEvMDAtbXZqOWNPUFM3ZmdZclp3ZDBmMGxob0VnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhGcgDAN BgkqhkiG9w0BAQsFAAOCAQEATp5d7xSf9NBkzf/jnkxu3rgf0NPsAGEbXB6Bf7F2 zo4TKX0cA/tswe6mhvgirU6yKyCRk2NyFuv6+jLTn5jQJYRZsh1L5nMvP0TTvOkJ marvC8RZ+w+EwYPkIPb/IcaI42JwrDPyZuyDRJzIbYToOBieTrlF+zlSzooMO2ik zBgjOMZk06d+ksCSLpYuu+f9W1FxmNo3UsRrJmzLKgdld3ixBLgOZRlX0I/Kb3hg R+vRGYtennUX6AlZglD2PW2Iis6qZ0a6cL9JgWrmdWDiiyR8vpzNFRXJOXH0CGL2 TyXnLlMuI5+5dk7biLWTFYKy8waQHxNNKWYEULanKx1dPw== -----END CERTIFICATE-----Generated at Fri Jan 2 14:22:17 2026 by rpki-client