This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/B7mKkJOQIDMNFDDRLxnggLv2QZ0.roa File: B7mKkJOQIDMNFDDRLxnggLv2QZ0.roa (raw, json) Hash identifier: Mi1l3jAauhlk+iIu6HPrxpd0H99Ta8USVmSJWxkvFOc= Subject key identifier: 07:B9:8A:90:93:90:20:33:0D:14:30:D1:2F:19:E0:80:BB:F6:41:9D Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f Certificate serial: 019B7C12B48A91BF280BB15E2F90D9D71E3E Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/B7mKkJOQIDMNFDDRLxnggLv2QZ0.roa Signing time: Fri 02 Jan 2026 00:19:19 +0000 ROA not before: Fri 02 Jan 2026 00:19:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199518 IP address blocks: 2a0a:280:2300::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.mft rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:b4:8a:91:bf:28:0b:b1:5e:2f:90:d9:d7:1e:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f Validity Not Before: Jan 2 00:19:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=07b98a90939020330d1430d12f19e080bbf6419d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:b2:2e:04:71:19:0e:38:f9:42:2d:28:c2:e7: ad:fc:1a:00:8d:1b:50:51:93:af:7c:36:36:d7:9c: 0c:1f:2a:c0:a5:39:b8:64:96:67:8d:cb:b4:b5:6d: 50:01:46:75:63:79:84:9d:fd:42:8b:69:6e:4b:0a: 7f:56:f4:3c:84:fc:19:0d:9a:f3:fe:fc:26:1e:22: e1:84:80:71:70:3e:c1:9b:f1:87:3b:39:11:a2:4d: 10:e9:77:26:04:3b:06:71:07:d9:f3:a6:a8:8f:0f: c1:10:67:91:bf:1c:9c:07:1c:8d:a5:13:2a:8c:59: 3a:b9:31:04:46:0c:45:75:ba:eb:48:aa:ae:84:a0: ee:8c:a8:ab:8e:8c:dc:af:cd:6d:ea:9a:15:19:55: 3f:84:ae:d8:9c:66:49:7e:df:de:f2:e1:ab:05:05: 85:4c:d6:55:fd:82:10:7d:62:ce:6f:d8:df:16:52: 3b:27:cb:32:5a:e1:4b:5e:93:8c:fb:d2:00:cd:3c: 74:80:1f:cc:15:35:cc:7f:bc:95:13:44:97:5a:c7: 80:c7:cb:8d:eb:fb:59:88:3e:8a:b5:5c:73:53:1f: 93:d1:87:a8:f3:fd:21:ee:c0:c2:6d:f1:02:15:55: e0:26:f8:a7:60:b7:f8:f1:af:e3:27:f6:13:02:46: af:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B9:8A:90:93:90:20:33:0D:14:30:D1:2F:19:E0:80:BB:F6:41:9D X509v3 Authority Key Identifier: keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/B7mKkJOQIDMNFDDRLxnggLv2QZ0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:280:2300::/40 Signature Algorithm: sha256WithRSAEncryption 70:37:a7:b4:ee:7a:d3:e7:ce:91:2d:dd:59:f0:d6:97:f7:e0: 9f:c9:44:40:3b:91:ff:e1:9f:9d:29:93:eb:fc:29:d4:43:1a: ba:9f:bf:ba:71:56:cd:cd:bc:4b:e3:09:02:51:06:1f:e6:a0: bf:d1:7c:62:98:bb:ad:f9:1b:d5:59:e5:b6:02:d3:e6:78:79: db:ec:5f:31:77:c5:ed:a2:0e:77:fb:32:ac:f8:4d:3c:c5:e3: 1a:52:53:19:e7:df:2d:ba:df:b8:f2:fa:59:d9:91:3d:35:37: b2:e2:54:f5:86:43:78:e3:9c:7a:ae:d1:45:34:4d:05:4c:c4: ff:e5:da:02:1b:cc:54:e9:af:11:38:f3:a6:12:8f:17:f4:9a: 57:32:aa:34:b6:e0:22:fb:5e:16:46:af:93:8e:56:54:ca:31: a0:d8:13:0f:6c:0d:87:f0:1f:d3:86:0f:c2:73:d3:e0:6b:a2: cb:57:03:7c:45:46:b1:3e:6e:aa:26:1d:e6:bd:8f:c9:73:a5: 9f:01:5f:46:01:20:7f:65:85:e4:50:aa:29:d5:5f:cf:a4:73: be:9b:f9:1b:95:73:04:47:87:14:34:1d:00:9c:e7:57:cc:0b: cb:83:61:f8:a1:98:44:27:dc:bf:51:28:01:b6:6b:c7:09:c0: 9e:0c:4d:c6 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt8ErSKkb8oC7FeL5DZ1x4+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiOWYyMWJhMDRlNWUzMDc3YjM5MWUzZDQ4ZmY1YjBhNTBi MzM2OWYwHhcNMjYwMTAyMDAxOTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwN2I5OGE5MDkzOTAyMDMzMGQxNDMwZDEyZjE5ZTA4MGJiZjY0MTlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9rIuBHEZDjj5Qi0owuet/BoAjRtQ UZOvfDY215wMHyrApTm4ZJZnjcu0tW1QAUZ1Y3mEnf1Ci2luSwp/VvQ8hPwZDZrz /vwmHiLhhIBxcD7Bm/GHOzkRok0Q6XcmBDsGcQfZ86aojw/BEGeRvxycBxyNpRMq jFk6uTEERgxFdbrrSKquhKDujKirjozcr81t6poVGVU/hK7YnGZJft/e8uGrBQWF TNZV/YIQfWLOb9jfFlI7J8syWuFLXpOM+9IAzTx0gB/MFTXMf7yVE0SXWseAx8uN 6/tZiD6KtVxzUx+T0Yeo8/0h7sDCbfECFVXgJvinYLf48a/jJ/YTAkavWQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFAe5ipCTkCAzDRQw0S8Z4IC79kGdMB8GA1UdIwQY MBaAFBufIboE5eMHezkePUj/WwpQszafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUt ZjUxYzVmYjNkZjlhLzEvQjdtS2tKT1FJRE1ORkREUkx4bmdnTHYyUVowLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUtZjUxYzVmYjNkZjlh LzEvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgoCgCMw DQYJKoZIhvcNAQELBQADggEBAHA3p7TuetPnzpEt3Vnw1pf34J/JREA7kf/hn50p k+v8KdRDGrqfv7pxVs3NvEvjCQJRBh/moL/RfGKYu635G9VZ5bYC0+Z4edvsXzF3 xe2iDnf7Mqz4TTzF4xpSUxnn3y2637jy+lnZkT01N7LiVPWGQ3jjnHqu0UU0TQVM xP/l2gIbzFTprxE486YSjxf0mlcyqjS24CL7XhZGr5OOVlTKMaDYEw9sDYfwH9OG D8Jz0+BrostXA3xFRrE+bqomHea9j8lzpZ8BX0YBIH9lheRQqinVX8+kc76b+RuV cwRHhxQ0HQCc51fMC8uDYfihmEQn3L9RKAG2a8cJwJ4MTcY= -----END CERTIFICATE-----Generated at Wed Jan 21 14:41:45 2026 by rpki-client