This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/P01TFLNm2nh_j5KhWwp6U978sM0.roa File: P01TFLNm2nh_j5KhWwp6U978sM0.roa (raw, json) Hash identifier: JvVgk8H+6nOQP0eoyck3XAHJsZYLI4+jRADR0OtFB1g= Subject key identifier: 3F:4D:53:14:B3:66:DA:78:7F:8F:92:A1:5B:0A:7A:53:DE:FC:B0:CD Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3 Certificate serial: 019B31F48F09D688A95AA11F864BA9A6C3DF Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/P01TFLNm2nh_j5KhWwp6U978sM0.roa Signing time: Thu 18 Dec 2025 14:54:29 +0000 ROA not before: Thu 18 Dec 2025 14:54:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 216138 IP address blocks: 2a0f:d480::/32 maxlen: 40 2a11:f240::/32 maxlen: 40 2a12:6b80::/32 maxlen: 40 2a12:f0c0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.mft rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:f4:8f:09:d6:88:a9:5a:a1:1f:86:4b:a9:a6:c3:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3 Validity Not Before: Dec 18 14:54:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=3f4d5314b366da787f8f92a15b0a7a53defcb0cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5a:04:13:d7:1e:ae:e5:5d:db:00:bc:d6:54: 48:16:95:eb:0c:6b:6e:c0:dc:59:1f:26:47:de:94: 88:c1:d7:33:5d:79:87:11:ae:25:0d:9a:72:22:89: 2a:ff:d1:bf:d8:92:4d:80:97:45:0e:e6:44:c6:84: d5:c8:ea:19:37:46:d3:a2:51:6d:c5:81:1c:a1:26: c5:ee:df:07:25:e8:f6:35:72:22:cb:4f:3e:72:43: ef:d4:a9:a6:f0:61:f2:0d:66:06:0a:41:2b:20:e9: 6a:7b:8b:64:87:4e:52:e4:a8:20:c7:87:72:1a:2d: b2:9e:94:92:d4:f3:6c:23:9e:8b:0f:d5:2f:ef:f8: b1:e3:4d:93:5f:73:b3:76:43:40:b5:2d:b4:16:dd: 2e:04:e7:8e:2c:30:35:73:af:93:23:8c:fd:7a:db: 6b:37:40:97:6a:03:b8:73:c3:84:e9:cf:81:ce:d3: b5:87:6a:63:3a:d9:51:18:16:90:23:c8:46:2f:ec: 4f:d9:12:81:45:aa:3d:45:ec:bc:66:1f:68:95:d8: ba:5c:4a:14:64:24:fa:7d:92:fd:35:db:6c:3f:d2: 89:37:1e:ea:bb:e5:64:16:0d:be:56:1d:bd:1f:c9: 2e:3e:73:64:12:94:5a:95:1a:0b:d6:ea:73:e2:2c: 68:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:4D:53:14:B3:66:DA:78:7F:8F:92:A1:5B:0A:7A:53:DE:FC:B0:CD X509v3 Authority Key Identifier: keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/P01TFLNm2nh_j5KhWwp6U978sM0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:d480::/32 2a11:f240::/32 2a12:6b80::/32 2a12:f0c0::/32 Signature Algorithm: sha256WithRSAEncryption 26:55:75:79:f4:ea:21:df:0e:ae:20:4f:7c:6a:17:02:fd:4f: 6a:06:9d:fc:1a:8c:21:77:93:44:9f:92:40:63:63:e0:ee:f8: 4e:be:46:37:8d:63:bb:c4:c0:24:d3:9a:47:28:7e:20:90:7f: 49:22:ff:76:fb:f2:ad:42:dc:a8:93:97:5e:42:5e:e5:c7:16: a0:c8:c8:53:b5:1d:e5:b8:50:2a:8e:31:84:58:33:f8:19:89: 80:b0:c8:31:03:c8:32:d0:bf:17:c7:17:3f:ba:2d:8d:35:88: 93:16:21:f5:eb:6b:1d:01:4a:8f:48:27:06:86:cd:e0:46:0e: 06:02:69:c7:0c:76:24:77:77:4c:65:e8:38:f6:a9:72:71:d4: 33:9b:4e:99:a9:ac:7d:8e:de:89:b2:28:e3:f1:1d:a2:ef:39: c6:f0:27:af:16:76:42:00:f5:4e:58:1d:c1:c5:1c:17:c8:b3: 14:0a:cd:f3:5c:89:24:51:a9:d7:78:e7:f7:5c:0f:0d:84:1e: b7:bc:ee:38:44:95:96:dc:12:5c:52:93:a6:a0:be:c4:49:69: af:62:39:4c:7a:60:c6:b2:ab:45:9a:d5:fa:b3:15:78:31:0d: 0d:a9:3a:ab:c6:a5:f2:6f:50:18:33:f6:84:44:00:60:04:05: 35:4b:30:a0 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgISAZsx9I8J1oipWqEfhkuppsPfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz Mjc2ZTMwHhcNMjUxMjE4MTQ1NDI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZjRkNTMxNGIzNjZkYTc4N2Y4ZjkyYTE1YjBhN2E1M2RlZmNiMGNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqloEE9ceruVd2wC81lRIFpXrDGtu wNxZHyZH3pSIwdczXXmHEa4lDZpyIokq/9G/2JJNgJdFDuZExoTVyOoZN0bTolFt xYEcoSbF7t8HJej2NXIiy08+ckPv1Kmm8GHyDWYGCkErIOlqe4tkh05S5Kggx4dy Gi2ynpSS1PNsI56LD9Uv7/ix402TX3OzdkNAtS20Ft0uBOeOLDA1c6+TI4z9ettr N0CXagO4c8OE6c+BztO1h2pjOtlRGBaQI8hGL+xP2RKBRao9Rey8Zh9oldi6XEoU ZCT6fZL9NdtsP9KJNx7qu+VkFg2+Vh29H8kuPnNkEpRalRoL1upz4ixoLQIDAQAB o4ICHzCCAhswHQYDVR0OBBYEFD9NUxSzZtp4f4+SoVsKelPe/LDNMB8GA1UdIwQY MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt YTJhNGM2YTYyMWNkLzEvUDAxVEZMTm0ybmhfajVLaFd3cDZVOTc4c00wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAAjAcAwUAKg/UgAMF ACoR8kADBQAqEmuAAwUAKhLwwDANBgkqhkiG9w0BAQsFAAOCAQEAJlV1efTqId8O riBPfGoXAv1Pagad/BqMIXeTRJ+SQGNj4O74Tr5GN41ju8TAJNOaRyh+IJB/SSL/ dvvyrULcqJOXXkJe5ccWoMjIU7Ud5bhQKo4xhFgz+BmJgLDIMQPIMtC/F8cXP7ot jTWIkxYh9etrHQFKj0gnBobN4EYOBgJpxwx2JHd3TGXoOPapcnHUM5tOmamsfY7e ibIo4/Edou85xvAnrxZ2QgD1TlgdwcUcF8izFArN81yJJFGp13jn91wPDYQet7zu OESVltwSXFKTpqC+xElpr2I5THpgxrKrRZrV+rMVeDENDak6q8al8m9QGDP2hEQA YAQFNUswoA== -----END CERTIFICATE-----Generated at Fri Dec 19 19:42:25 2025 by rpki-client