This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/c--NfYyQ6E-hR59TJgivWxwrXVM.roa File: c--NfYyQ6E-hR59TJgivWxwrXVM.roa (raw, json) Hash identifier: tL2NGDcvc+5rAS2b+OMbEZsDoupyJSLpPH625LDD0s8= Subject key identifier: 73:EF:8D:7D:8C:90:E8:4F:A1:47:9F:53:26:08:AF:5B:1C:2B:5D:53 Certificate issuer: /CN=0b4e3b3b84242258863142ed3a19792d97cbbc74 Certificate serial: 019B7AC87FD3E72363C48E72BBC68CD56001 Authority key identifier: 0B:4E:3B:3B:84:24:22:58:86:31:42:ED:3A:19:79:2D:97:CB:BC:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/c--NfYyQ6E-hR59TJgivWxwrXVM.roa Signing time: Thu 01 Jan 2026 18:18:38 +0000 ROA not before: Thu 01 Jan 2026 18:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213893 IP address blocks: 2a0d:d940:10::/48 maxlen: 48 2a0d:d940:11::/48 maxlen: 48 2a0d:d940:13::/48 maxlen: 48 2a0d:d940:14::/48 maxlen: 48 2a0d:d940:15::/48 maxlen: 48 2a0d:d940:18::/48 maxlen: 48 2a0d:d940:19::/48 maxlen: 48 2a0d:d940:1a::/48 maxlen: 48 2a0d:d940:1b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.crl rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.mft rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 14:20:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:7f:d3:e7:23:63:c4:8e:72:bb:c6:8c:d5:60:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0b4e3b3b84242258863142ed3a19792d97cbbc74 Validity Not Before: Jan 1 18:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=73ef8d7d8c90e84fa1479f532608af5b1c2b5d53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:66:72:a5:21:d1:6f:0f:6a:4a:4f:1c:92:7c: 0d:63:b1:d1:a9:73:58:05:d7:fc:bf:f2:1f:d1:cc: 43:76:ff:0e:da:47:a6:bd:4b:d6:ad:22:a6:6d:5f: ae:90:77:91:cf:37:4d:e7:3a:57:5d:4f:68:83:9a: a9:6d:ad:26:00:02:50:2d:99:4b:ce:9c:67:89:2d: f9:a4:c8:bd:4f:61:bb:df:0c:0d:c5:fa:48:fa:ef: 7e:37:4a:42:7c:54:39:df:fe:f7:3b:57:70:04:02: d2:97:23:90:eb:eb:2f:32:47:1f:e2:07:b0:e2:0d: 84:0e:a0:03:c4:89:8f:ee:bb:bb:8a:2c:8b:7b:af: 27:a4:fc:d4:01:36:41:ca:62:7b:47:ec:44:f5:10: 23:38:97:f1:e2:e0:14:25:a1:9b:68:94:d5:0e:95: 72:9d:e0:90:00:f6:e8:a8:7c:8b:4d:cd:95:dd:f1: 29:84:99:56:45:f0:a5:eb:b9:fb:01:38:cb:05:f9: 12:f1:39:f0:0a:c0:95:af:da:52:cc:4a:54:e3:bf: a5:aa:fc:ad:10:20:33:53:7f:83:35:b6:8d:88:44: ea:2f:e3:9c:5f:d0:ed:bc:d5:77:ff:fd:26:ce:37: 22:03:2f:1c:ee:b6:7c:ed:b5:cf:ef:da:09:46:e5: dd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:EF:8D:7D:8C:90:E8:4F:A1:47:9F:53:26:08:AF:5B:1C:2B:5D:53 X509v3 Authority Key Identifier: keyid:0B:4E:3B:3B:84:24:22:58:86:31:42:ED:3A:19:79:2D:97:CB:BC:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/c--NfYyQ6E-hR59TJgivWxwrXVM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0d:d940:10::/47 2a0d:d940:13::-2a0d:d940:15:ffff:ffff:ffff:ffff:ffff 2a0d:d940:18::/46 Signature Algorithm: sha256WithRSAEncryption d7:dd:8b:e8:4e:f0:6b:50:76:3a:a1:5f:ea:70:1e:2f:de:e0: 5c:97:72:7a:b4:2b:70:a2:14:67:80:85:e3:f4:6d:f0:89:83: 55:74:7c:17:d6:55:ec:be:25:17:a8:8b:69:20:67:d0:4e:2c: cf:21:2d:27:5c:92:47:18:6e:00:cb:83:98:c2:91:12:21:6b: 00:e1:b9:96:1b:28:88:c3:a2:09:c0:59:d3:86:a9:36:32:d6: f7:89:2f:d5:2b:43:01:69:1b:5a:a6:0a:98:ca:76:f7:37:c1: 47:35:ca:00:e6:80:8a:5a:3f:91:32:76:c4:a7:c0:3d:32:9d: 1e:da:9d:2c:b1:76:73:38:78:34:90:52:03:9e:fc:06:c8:da: 9f:81:6e:b5:b5:e5:77:42:76:80:bd:0b:0f:89:15:6b:aa:01: 20:6c:92:7c:58:e8:40:cf:ef:87:79:98:44:18:81:4c:fb:31: c7:b0:62:c7:fc:a7:d5:1d:56:6a:31:e8:c6:5e:21:43:3a:c5: ff:94:b1:a5:54:74:cc:d7:9c:51:90:6a:9d:2d:21:b2:ee:29: 84:81:42:ef:34:21:a2:a4:b6:a6:90:e4:a0:e9:f3:e6:69:0a: 65:9f:e2:5d:e9:5e:32:b8:6d:9e:54:1f:82:60:6f:65:68:c4: f6:65:cc:9c -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgISAZt6yH/T5yNjxI5yu8aM1WABMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiNGUzYjNiODQyNDIyNTg4NjMxNDJlZDNhMTk3OTJkOTdj YmJjNzQwHhcNMjYwMTAxMTgxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3M2VmOGQ3ZDhjOTBlODRmYTE0NzlmNTMyNjA4YWY1YjFjMmI1ZDUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2GZypSHRbw9qSk8cknwNY7HRqXNY Bdf8v/If0cxDdv8O2kemvUvWrSKmbV+ukHeRzzdN5zpXXU9og5qpba0mAAJQLZlL zpxniS35pMi9T2G73wwNxfpI+u9+N0pCfFQ53/73O1dwBALSlyOQ6+svMkcf4gew 4g2EDqADxImP7ru7iiyLe68npPzUATZBymJ7R+xE9RAjOJfx4uAUJaGbaJTVDpVy neCQAPboqHyLTc2V3fEphJlWRfCl67n7ATjLBfkS8TnwCsCVr9pSzEpU47+lqvyt ECAzU3+DNbaNiETqL+OcX9DtvNV3//0mzjciAy8c7rZ87bXP79oJRuXdbQIDAQAB o4ICKTCCAiUwHQYDVR0OBBYEFHPvjX2MkOhPoUefUyYIr1scK11TMB8GA1UdIwQY MBaAFAtOOzuEJCJYhjFC7ToZeS2Xy7x0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQzA0N080UWtJbGlHTVVMdE9obDVMWmZMdkhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS83YmExYjEtNTU2Mi00YTMyLTlmNWQt MTRkMjM4NTI3ODM1LzEvYy0tTmZZeVE2RS1oUjU5VEpnaXZXeHdyWFZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS83YmExYjEtNTU2Mi00YTMyLTlmNWQtMTRkMjM4NTI3ODM1 LzEvQzA0N080UWtJbGlHTVVMdE9obDVMWmZMdkhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAAjAmAwcBKg3ZQAAQ MBIDBwAqDdlAABMDBwEqDdlAABQDBwIqDdlAABgwDQYJKoZIhvcNAQELBQADggEB ANfdi+hO8GtQdjqhX+pwHi/e4FyXcnq0K3CiFGeAheP0bfCJg1V0fBfWVey+JReo i2kgZ9BOLM8hLSdckkcYbgDLg5jCkRIhawDhuZYbKIjDognAWdOGqTYy1veJL9Ur QwFpG1qmCpjKdvc3wUc1ygDmgIpaP5EydsSnwD0ynR7anSyxdnM4eDSQUgOe/AbI 2p+BbrW15XdCdoC9Cw+JFWuqASBsknxY6EDP74d5mEQYgUz7McewYsf8p9UdVmox 6MZeIUM6xf+UsaVUdMzXnFGQap0tIbLuKYSBQu80IaKktqaQ5KDp8+ZpCmWf4l3p XjK4bZ5UH4Jgb2VoxPZlzJw= -----END CERTIFICATE-----Generated at Wed Jan 21 17:00:31 2026 by rpki-client