This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/7qgd2pvO9gowaVwB7N3YkBlAl44.roa File: 7qgd2pvO9gowaVwB7N3YkBlAl44.roa (raw, json) Hash identifier: 6a7Wc7Hkqt3TUUSCEBU54+2U2NCLB1vhEUugwmMRjlg= Subject key identifier: EE:A8:1D:DA:9B:CE:F6:0A:30:69:5C:01:EC:DD:D8:90:19:40:97:8E Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56 Certificate serial: 019B7B35F4383DC65CAB5DE42CC6D7D89C9B Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/7qgd2pvO9gowaVwB7N3YkBlAl44.roa Signing time: Thu 01 Jan 2026 20:18:12 +0000 ROA not before: Thu 01 Jan 2026 20:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 26383 IP address blocks: 2a0e:91c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:f4:38:3d:c6:5c:ab:5d:e4:2c:c6:d7:d8:9c:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56 Validity Not Before: Jan 1 20:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eea81dda9bcef60a30695c01ecddd8901940978e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:86:7e:dc:b7:75:f1:18:17:64:82:ad:b4:24: e3:88:b3:52:ee:20:12:34:b5:50:62:b0:bf:67:66: 71:5b:1c:87:41:f3:c8:62:6b:cf:f1:ec:bc:2f:9f: a4:ce:59:b7:65:1c:96:a9:dd:6d:a7:4b:97:5f:c6: 3d:83:88:b1:55:da:57:d7:8c:f2:ad:bf:dd:76:fb: f9:47:5c:c6:9f:96:10:ee:ce:d8:00:6f:7f:14:98: 99:20:d6:d4:85:f3:12:47:af:23:70:76:3e:86:5b: a0:3c:9e:02:2d:43:73:8d:ca:1d:c3:b7:d9:71:24: 41:22:1d:d5:0c:0f:4e:9c:f5:15:5f:e4:3c:a1:a3: fe:10:01:e9:7a:ae:d0:ea:6c:d8:ae:a1:57:99:cf: d4:c2:41:6a:00:5e:83:32:9e:01:df:70:80:1d:69: 8f:2e:34:73:00:49:3b:7d:68:ed:a3:e2:98:77:4d: 7e:0b:11:68:b1:9d:7d:0d:2b:a9:ae:c3:bd:2a:28: 6e:4c:ef:04:97:f1:ec:1f:fa:d0:cd:6b:86:91:ec: c5:58:62:fe:7a:3e:70:d5:30:89:6c:3e:81:b9:a4: c5:aa:97:e2:a3:64:9c:c5:19:bb:17:97:e0:63:12: 44:1e:ad:13:9a:b1:82:59:2d:db:0d:d6:98:2e:42: 3c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A8:1D:DA:9B:CE:F6:0A:30:69:5C:01:EC:DD:D8:90:19:40:97:8E X509v3 Authority Key Identifier: keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/7qgd2pvO9gowaVwB7N3YkBlAl44.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:91c0::/29 Signature Algorithm: sha256WithRSAEncryption 88:f9:5b:68:58:28:82:0f:64:0b:3f:ac:d7:7e:a0:8e:d8:da: 17:e2:29:95:ef:49:c3:63:46:ef:51:1a:df:8d:9f:38:da:b3: 07:66:b8:31:22:e1:1e:fa:b1:f9:a9:d0:c6:ff:e4:c7:3f:f5: da:81:06:99:7b:9e:59:6b:2f:a2:d9:78:64:96:ad:84:e6:a9: df:a7:7b:24:80:58:55:69:bc:bd:52:24:cc:fd:fd:c4:87:10: 0a:4d:a3:a0:66:60:dc:2b:08:bb:b8:a1:6d:32:3f:ef:98:1c: 2b:3e:6c:ca:3b:4b:82:de:5e:56:1c:ea:32:d5:41:c4:50:2a: c1:a7:8d:52:a2:39:78:1f:eb:7b:34:f0:66:51:af:48:6e:d1: 75:76:f9:25:14:ea:0d:8d:86:a3:62:1a:e3:ed:f4:c3:70:3a: 86:46:b9:ae:c5:b3:9c:a1:2f:e5:c1:f9:25:cd:97:28:e1:e9: ab:91:59:55:3e:f9:38:3a:6e:41:39:3c:b6:7a:e2:1c:f8:65: a4:41:91:52:c5:60:b6:03:b9:c8:3b:ae:58:ea:d0:62:6a:69: c4:55:9b:66:3d:63:41:47:c9:e8:a7:f2:6e:41:55:99:a8:d6: a7:e3:16:a7:ba:ae:2b:e0:26:7e:04:aa:0c:4e:40:d1:a1:24: b2:f5:41:9c -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt7NfQ4PcZcq13kLMbX2JybMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw N2VlNTYwHhcNMjYwMTAxMjAxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZWE4MWRkYTliY2VmNjBhMzA2OTVjMDFlY2RkZDg5MDE5NDA5NzhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtIZ+3Ld18RgXZIKttCTjiLNS7iAS NLVQYrC/Z2ZxWxyHQfPIYmvP8ey8L5+kzlm3ZRyWqd1tp0uXX8Y9g4ixVdpX14zy rb/ddvv5R1zGn5YQ7s7YAG9/FJiZINbUhfMSR68jcHY+hlugPJ4CLUNzjcodw7fZ cSRBIh3VDA9OnPUVX+Q8oaP+EAHpeq7Q6mzYrqFXmc/UwkFqAF6DMp4B33CAHWmP LjRzAEk7fWjto+KYd01+CxFosZ19DSuprsO9KihuTO8El/HsH/rQzWuGkezFWGL+ ej5w1TCJbD6BuaTFqpfio2ScxRm7F5fgYxJEHq0TmrGCWS3bDdaYLkI8jwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFO6oHdqbzvYKMGlcAezd2JAZQJeOMB8GA1UdIwQY MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt OGJmYmRkNDVjYjYyLzEvN3FnZDJwdk85Z293YVZ3QjdOM1lrQmxBbDQ0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg6RwDAN BgkqhkiG9w0BAQsFAAOCAQEAiPlbaFgogg9kCz+s136gjtjaF+Iple9Jw2NG71Ea 342fONqzB2a4MSLhHvqx+anQxv/kxz/12oEGmXueWWsvotl4ZJathOap36d7JIBY VWm8vVIkzP39xIcQCk2joGZg3CsIu7ihbTI/75gcKz5syjtLgt5eVhzqMtVBxFAq waeNUqI5eB/rezTwZlGvSG7RdXb5JRTqDY2Go2Ia4+30w3A6hka5rsWznKEv5cH5 Jc2XKOHpq5FZVT75ODpuQTk8tnriHPhlpEGRUsVgtgO5yDuuWOrQYmppxFWbZj1j QUfJ6KfybkFVmajWp+MWp7quK+AmfgSqDE5A0aEksvVBnA== -----END CERTIFICATE-----Generated at Fri Jan 9 08:22:20 2026 by rpki-client