This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/42EfHvgoTeVDCbivZjEFQ-d1oCw.roa File: 42EfHvgoTeVDCbivZjEFQ-d1oCw.roa (raw, json) Hash identifier: QdEMIOUYwxFooixIiatyj1Ouv74WTIYLrpULutdJrzk= Subject key identifier: E3:61:1F:1E:F8:28:4D:E5:43:09:B8:AF:66:31:05:43:E7:75:A0:2C Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Certificate serial: 019B7F82D27C272E22DD4222F39AC880B9B4 Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/42EfHvgoTeVDCbivZjEFQ-d1oCw.roa Signing time: Fri 02 Jan 2026 16:20:38 +0000 ROA not before: Fri 02 Jan 2026 16:20:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209556 IP address blocks: 2a0b:b86:ffe0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 07:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:d2:7c:27:2e:22:dd:42:22:f3:9a:c8:80:b9:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Validity Not Before: Jan 2 16:20:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e3611f1ef8284de54309b8af66310543e775a02c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:75:96:2d:24:45:99:a1:2e:06:12:01:3b:0f: 71:54:ae:d1:2b:40:24:ea:08:fe:01:73:54:e9:96: 7b:19:6c:98:23:c6:d7:dd:73:4b:05:b6:5c:67:2c: 1b:be:1c:23:49:21:e8:af:3c:50:9b:5f:d8:fe:d2: 66:7f:41:99:eb:95:ee:cd:fa:10:f1:bc:ac:03:45: 26:3d:30:87:6a:eb:ba:b6:8d:0a:9e:0c:b3:1d:7e: a2:e8:c1:f2:60:ba:01:76:88:60:49:47:a5:b6:82: 02:1c:65:fa:15:22:70:55:a9:94:fa:1b:28:75:c5: fe:57:0a:ac:20:bd:35:8c:d3:7b:49:9c:88:56:ad: 4b:9b:63:16:2c:69:a3:fc:58:56:f4:af:a8:6d:11: b7:38:62:da:38:f6:78:d0:0d:0b:1a:1e:97:36:b4: 90:9c:6b:d4:10:db:d4:79:c6:ec:f8:d6:18:00:31: 93:db:38:bb:d2:87:fb:95:f9:c7:e0:b3:fb:25:cd: c9:dd:c6:ff:f0:2d:3b:8e:e4:8d:81:e3:3b:2f:a0: cd:05:e5:da:5c:3e:17:ae:ae:cf:11:2e:40:8b:4a: 35:6c:66:0f:66:ae:b3:10:8d:63:52:24:8f:0d:15: fb:23:20:08:08:b2:99:a7:91:18:29:a6:c5:46:1a: 82:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:61:1F:1E:F8:28:4D:E5:43:09:B8:AF:66:31:05:43:E7:75:A0:2C X509v3 Authority Key Identifier: keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/42EfHvgoTeVDCbivZjEFQ-d1oCw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:b86:ffe0::/48 Signature Algorithm: sha256WithRSAEncryption b3:1b:d8:24:4a:6d:cc:79:1d:1a:3b:2a:6a:5b:5c:b5:f3:e3: d5:b5:44:ba:44:8d:c0:6b:ef:8b:c7:09:9d:2f:d0:c5:d7:f8: 41:93:30:89:76:8b:87:84:44:df:88:7b:33:e1:21:01:4c:44: 7c:e3:5b:8b:7f:14:41:65:4a:32:61:76:17:9b:46:9e:75:2b: 68:da:d2:33:9a:c1:dc:64:1b:1a:1f:04:2e:fe:26:77:84:50: d6:29:39:4b:a2:a9:94:7c:67:56:8a:e1:df:31:34:3f:a3:76: a7:13:a7:c0:1e:27:1a:35:5d:2a:82:1f:df:9a:a9:fe:87:e7: 43:2a:0c:4d:88:ca:0e:d3:44:fd:90:be:37:03:25:1a:e9:12: 76:99:13:6a:5f:7d:1a:9f:c8:66:0e:a3:77:ca:e8:8a:4c:6d: 9e:86:34:60:c3:2c:c5:53:8f:5d:44:fd:b8:8b:7d:7d:1e:64: 8d:50:c3:a2:5b:08:3f:21:be:00:18:f1:29:c9:fa:1e:0b:11: 30:01:bc:af:1f:4b:80:c4:ba:e4:9b:fd:3f:54:91:c8:d2:3b: 51:e8:21:22:c7:90:5a:df:52:7a:10:87:ac:d7:f8:75:30:c4: f4:1e:e0:71:2c:9c:fd:24:89:da:b0:db:74:98:ac:d7:58:19: 7a:d5:63:23 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/gtJ8Jy4i3UIi85rIgLm0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz YjUwMzQwHhcNMjYwMTAyMTYyMDM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzYxMWYxZWY4Mjg0ZGU1NDMwOWI4YWY2NjMxMDU0M2U3NzVhMDJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuHWWLSRFmaEuBhIBOw9xVK7RK0Ak 6gj+AXNU6ZZ7GWyYI8bX3XNLBbZcZywbvhwjSSHorzxQm1/Y/tJmf0GZ65XuzfoQ 8bysA0UmPTCHauu6to0KngyzHX6i6MHyYLoBdohgSUeltoICHGX6FSJwVamU+hso dcX+VwqsIL01jNN7SZyIVq1Lm2MWLGmj/FhW9K+obRG3OGLaOPZ40A0LGh6XNrSQ nGvUENvUecbs+NYYADGT2zi70of7lfnH4LP7Jc3J3cb/8C07juSNgeM7L6DNBeXa XD4Xrq7PES5Ai0o1bGYPZq6zEI1jUiSPDRX7IyAICLKZp5EYKabFRhqCaQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFONhHx74KE3lQwm4r2YxBUPndaAsMB8GA1UdIwQY MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It Mzk0YWNkMjFmMzliLzEvNDJFZkh2Z29UZVZEQ2JpdlpqRUZRLWQxb0N3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgsLhv/g MA0GCSqGSIb3DQEBCwUAA4IBAQCzG9gkSm3MeR0aOypqW1y18+PVtUS6RI3Aa++L xwmdL9DF1/hBkzCJdouHhETfiHsz4SEBTER841uLfxRBZUoyYXYXm0aedSto2tIz msHcZBsaHwQu/iZ3hFDWKTlLoqmUfGdWiuHfMTQ/o3anE6fAHicaNV0qgh/fmqn+ h+dDKgxNiMoO00T9kL43AyUa6RJ2mRNqX30an8hmDqN3yuiKTG2ehjRgwyzFU49d RP24i319HmSNUMOiWwg/Ib4AGPEpyfoeCxEwAbyvH0uAxLrkm/0/VJHI0jtR6CEi x5Ba31J6EIes1/h1MMT0HuBxLJz9JInasNt0mKzXWBl61WMj -----END CERTIFICATE-----Generated at Tue Jan 20 15:18:58 2026 by rpki-client