This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/57OxBTF4X7lyr00PQWTLC_7l0LM.roa File: 57OxBTF4X7lyr00PQWTLC_7l0LM.roa (raw, json) Hash identifier: Qu9Cp0fGN2f6UG2Bu1+rVSKBmfLjLGmUIUXyj9DRqEM= Subject key identifier: E7:B3:B1:05:31:78:5F:B9:72:AF:4D:0F:41:64:CB:0B:FE:E5:D0:B3 Certificate issuer: /CN=2baee7ea482d62a671063eac83789af39f390b74 Certificate serial: 019B7A5AB701092DD77543CEE0E1A2722B4F Authority key identifier: 2B:AE:E7:EA:48:2D:62:A6:71:06:3E:AC:83:78:9A:F3:9F:39:0B:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/57OxBTF4X7lyr00PQWTLC_7l0LM.roa Signing time: Thu 01 Jan 2026 16:18:43 +0000 ROA not before: Thu 01 Jan 2026 16:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197885 IP address blocks: 2001:678:388::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.crl rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:b7:01:09:2d:d7:75:43:ce:e0:e1:a2:72:2b:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2baee7ea482d62a671063eac83789af39f390b74 Validity Not Before: Jan 1 16:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e7b3b10531785fb972af4d0f4164cb0bfee5d0b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7b:c4:7e:8d:6e:c5:09:e8:1a:4a:37:2e:43: e9:a1:33:fe:ff:70:94:33:b2:ba:80:7a:b8:ea:97: be:5d:fb:6a:88:5b:97:73:34:8e:36:fe:a8:9a:ec: 0e:b1:c4:e6:4c:6a:7a:b1:cf:00:9d:3a:7f:b6:3b: c6:f1:25:0b:56:b2:69:1b:a2:a0:33:a8:b7:14:2d: b0:77:8a:44:26:b8:e2:97:4f:c1:7f:58:1c:d2:18: 26:09:85:28:ee:7a:d8:6f:bd:81:2a:90:e4:79:a2: 0a:08:7b:07:52:e5:0e:16:68:4b:d8:f1:d8:dd:be: fa:0f:ac:37:fa:66:5c:e9:8d:9c:93:3a:dc:cc:bc: 0c:29:d1:cc:dd:25:d3:9b:38:12:04:e2:e1:ec:81: 81:7c:7c:12:4c:b3:47:79:a4:b9:c4:70:c2:da:c3: 9e:71:5a:9c:c5:6a:06:37:ae:44:bc:64:5d:cb:c4: 99:53:d9:48:cc:e4:57:2d:f2:c4:18:78:fe:3f:3b: 4e:e9:be:8a:ba:f9:eb:18:a8:9d:60:76:44:b1:8f: 98:63:75:63:9e:7f:84:df:0b:52:61:f3:ca:24:f5: 83:31:19:6d:8b:ad:86:99:5c:bf:4c:d5:c8:e7:02: 17:6d:c7:b5:50:78:ca:9c:02:a8:d4:d1:6c:ad:c2: 7e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B3:B1:05:31:78:5F:B9:72:AF:4D:0F:41:64:CB:0B:FE:E5:D0:B3 X509v3 Authority Key Identifier: keyid:2B:AE:E7:EA:48:2D:62:A6:71:06:3E:AC:83:78:9A:F3:9F:39:0B:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/57OxBTF4X7lyr00PQWTLC_7l0LM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:388::/48 Signature Algorithm: sha256WithRSAEncryption 66:b8:68:00:04:2c:a6:ab:f1:b7:f9:2b:73:00:4f:41:fd:63: 3c:51:7b:b1:37:fe:03:38:f7:ee:3e:0f:df:32:22:6c:3d:b9: e0:cf:67:13:8f:b6:96:e8:26:40:46:d1:24:70:85:c2:b6:4a: bf:d4:3d:5f:45:b0:5b:4c:0b:08:fb:fe:43:86:5b:cf:23:42: d7:d9:b1:b7:f7:56:d7:7b:3d:c3:7e:bf:85:56:54:ab:16:68: 80:b1:5f:fd:12:91:91:96:b9:2b:d0:79:9a:97:b0:39:a1:16: a2:38:ff:72:c5:77:b9:83:51:78:ec:2f:68:9b:a9:8c:3b:63: 11:ec:d8:dc:4d:0d:64:ac:b1:ec:06:15:8f:07:d9:41:de:35: 14:5c:30:e0:54:09:31:ca:98:6c:b7:e7:4d:25:d7:b8:cd:2b: c3:8a:b7:14:72:9c:0c:e9:ef:a7:ac:94:b8:69:0c:eb:00:00: d3:64:ff:b6:e8:64:75:d1:16:94:31:e6:3e:ee:bb:fc:20:d3: ff:3c:f2:26:15:db:21:31:5f:5a:46:2a:aa:aa:47:e8:30:dc: f8:c2:6c:8d:15:02:cc:1c:ef:00:e1:1a:a1:d6:70:5b:71:eb: f5:e3:fd:0f:a5:7c:64:bd:4b:69:fe:24:34:2b:d9:d4:34:2b: 4a:c0:02:b2 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt6WrcBCS3XdUPO4OGicitPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiYWVlN2VhNDgyZDYyYTY3MTA2M2VhYzgzNzg5YWYzOWYz OTBiNzQwHhcNMjYwMTAxMTYxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlN2IzYjEwNTMxNzg1ZmI5NzJhZjRkMGY0MTY0Y2IwYmZlZTVkMGIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHvEfo1uxQnoGko3LkPpoTP+/3CU M7K6gHq46pe+XftqiFuXczSONv6omuwOscTmTGp6sc8AnTp/tjvG8SULVrJpG6Kg M6i3FC2wd4pEJrjil0/Bf1gc0hgmCYUo7nrYb72BKpDkeaIKCHsHUuUOFmhL2PHY 3b76D6w3+mZc6Y2ckzrczLwMKdHM3SXTmzgSBOLh7IGBfHwSTLNHeaS5xHDC2sOe cVqcxWoGN65EvGRdy8SZU9lIzORXLfLEGHj+PztO6b6KuvnrGKidYHZEsY+YY3Vj nn+E3wtSYfPKJPWDMRlti62GmVy/TNXI5wIXbce1UHjKnAKo1NFsrcJ+PwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFOezsQUxeF+5cq9ND0Fkywv+5dCzMB8GA1UdIwQY MBaAFCuu5+pILWKmcQY+rIN4mvOfOQt0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzY3bjZrZ3RZcVp4Qmo2c2czaWE4NTg1QzNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8wMTU3ODQtMzcwNS00MThhLWI5OTQt NzUyMWFmMWNlMjU5LzEvNTdPeEJURjRYN2x5cjAwUFFXVExDXzdsMExNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy8wMTU3ODQtMzcwNS00MThhLWI5OTQtNzUyMWFmMWNlMjU5 LzEvSzY3bjZrZ3RZcVp4Qmo2c2czaWE4NTg1QzNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAOI MA0GCSqGSIb3DQEBCwUAA4IBAQBmuGgABCymq/G3+StzAE9B/WM8UXuxN/4DOPfu Pg/fMiJsPbngz2cTj7aW6CZARtEkcIXCtkq/1D1fRbBbTAsI+/5DhlvPI0LX2bG3 91bXez3Dfr+FVlSrFmiAsV/9EpGRlrkr0Hmal7A5oRaiOP9yxXe5g1F47C9om6mM O2MR7NjcTQ1krLHsBhWPB9lB3jUUXDDgVAkxyphst+dNJde4zSvDircUcpwM6e+n rJS4aQzrAADTZP+26GR10RaUMeY+7rv8INP/PPImFdshMV9aRiqqqkfoMNz4wmyN FQLMHO8A4Rqh1nBbcev14/0PpXxkvUtp/iQ0K9nUNCtKwAKy -----END CERTIFICATE-----Generated at Mon Feb 2 08:09:22 2026 by rpki-client