This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/IPD7v-J9c376oyXeNIKc_aWnNmQ.roa File: IPD7v-J9c376oyXeNIKc_aWnNmQ.roa (raw, json) Hash identifier: EEItVG+CeXn/JupxjY6OK4AdQvnwdrYLgxk2U0ldhpY= Subject key identifier: 20:F0:FB:BF:E2:7D:73:7E:FA:A3:25:DE:34:82:9C:FD:A5:A7:36:64 Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0 Certificate serial: 019B77C6B9F16AF8184AC992617E9C9B017B Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/IPD7v-J9c376oyXeNIKc_aWnNmQ.roa Signing time: Thu 01 Jan 2026 04:17:51 +0000 ROA not before: Thu 01 Jan 2026 04:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208022 IP address blocks: 2a05:88c0::/29 maxlen: 29 2a05:88c0::/32 maxlen: 32 2a05:88c1::/32 maxlen: 32 2a05:88c2::/32 maxlen: 32 2a05:88c3::/32 maxlen: 32 2a05:88c4::/32 maxlen: 32 2a05:88c5::/32 maxlen: 32 2a05:88c6::/32 maxlen: 32 2a05:88c7::/32 maxlen: 32 2a10:3300::/29 maxlen: 29 2a10:3300::/32 maxlen: 32 2a10:3301::/32 maxlen: 32 2a10:3302::/32 maxlen: 32 2a10:3303::/32 maxlen: 32 2a10:3304::/32 maxlen: 32 2a10:3305::/32 maxlen: 32 2a10:3306::/32 maxlen: 32 2a10:3307::/32 maxlen: 32 2a10:7f40::/29 maxlen: 29 2a10:7f40::/32 maxlen: 32 2a10:7f41::/32 maxlen: 32 2a10:7f42::/32 maxlen: 32 2a10:7f43::/32 maxlen: 32 2a10:7f44::/32 maxlen: 32 2a10:7f45::/32 maxlen: 32 2a10:7f46::/32 maxlen: 32 2a10:7f47::/32 maxlen: 32 2a10:7fc0::/29 maxlen: 29 2a10:7fc0::/32 maxlen: 32 2a10:7fc1::/32 maxlen: 32 2a10:7fc2::/32 maxlen: 32 2a10:7fc3::/32 maxlen: 32 2a10:7fc4::/32 maxlen: 32 2a10:7fc5::/32 maxlen: 32 2a10:7fc6::/32 maxlen: 32 2a10:7fc7::/32 maxlen: 32 2a11:d100::/29 maxlen: 29 2a11:d100::/32 maxlen: 32 2a11:d101::/32 maxlen: 32 2a11:d102::/32 maxlen: 32 2a11:d103::/32 maxlen: 32 2a11:d104::/32 maxlen: 32 2a11:d105::/32 maxlen: 32 2a11:d106::/32 maxlen: 32 2a11:d107::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:b9:f1:6a:f8:18:4a:c9:92:61:7e:9c:9b:01:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0 Validity Not Before: Jan 1 04:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=20f0fbbfe27d737efaa325de34829cfda5a73664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c5:1b:2e:aa:71:df:95:b0:95:28:14:b9:8d: 37:c4:24:25:b3:d5:19:0d:29:21:45:8f:e5:fe:ae: 06:28:04:04:62:9f:fa:87:38:c4:4e:14:14:97:98: 20:35:b7:63:c3:fd:7d:14:0c:e8:e7:13:b8:f2:68: 00:d7:11:d8:25:32:5d:32:72:bd:b2:7e:45:3a:b9: 5b:d5:a2:69:1e:99:b9:99:da:25:aa:fe:02:06:7b: d5:91:0f:81:ab:1e:ac:af:e6:49:22:2a:9c:ac:66: 9d:41:a5:f3:52:72:cf:7f:ff:6a:41:ae:e2:de:77: ca:f8:5d:d7:e0:70:35:21:f9:11:ac:de:e3:f9:74: 64:3c:0d:1d:74:55:cd:e3:52:7a:95:fd:34:c4:32: e5:bc:f1:5a:ae:50:c9:e6:6d:9c:65:95:1a:d6:fe: d6:40:ac:a0:ba:3a:7f:49:38:1b:00:25:54:46:13: 05:3b:62:cd:01:06:15:12:e8:11:05:35:99:98:17: 4b:bf:c4:98:d5:1f:d4:fe:c9:22:9e:5f:e3:87:9f: e8:55:73:1e:f3:e2:04:c8:09:ae:1d:d8:f1:d9:53: 59:09:b3:93:36:19:09:3e:32:41:2a:93:2d:dd:2d: ca:48:af:96:a5:8e:d3:bd:7e:3b:fe:87:47:04:3c: dd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F0:FB:BF:E2:7D:73:7E:FA:A3:25:DE:34:82:9C:FD:A5:A7:36:64 X509v3 Authority Key Identifier: keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/IPD7v-J9c376oyXeNIKc_aWnNmQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:88c0::/29 2a10:3300::/29 2a10:7f40::/29 2a10:7fc0::/29 2a11:d100::/29 Signature Algorithm: sha256WithRSAEncryption 41:04:a8:40:cd:14:ff:02:b7:72:50:c2:ea:af:82:41:33:38: de:e7:ae:b8:0a:3c:c6:0d:37:a7:2a:94:4d:d9:d0:96:82:3d: b2:b4:17:69:49:b5:99:18:b4:ce:23:85:44:e6:d9:4a:2b:3d: 62:0e:3c:1e:06:1a:d3:ba:50:6b:8c:ff:ea:7e:51:41:3a:67: 90:7d:88:e6:9c:ee:b9:57:91:d4:e6:dc:26:3e:47:ea:4a:be: 6c:aa:25:7a:57:94:23:c5:fa:90:21:6e:65:9b:f8:49:7e:67: 05:40:17:fd:7a:f1:f1:a7:0c:9b:db:b2:33:4d:63:e0:09:ae: 7b:6e:62:b8:a3:53:f4:f3:7a:81:f1:bc:ee:6f:54:62:12:31: 5a:04:29:79:db:3c:65:33:71:23:7d:15:c7:7f:1c:c7:90:c8: 1b:d0:d0:ee:af:6a:6e:ed:c5:bc:7b:43:67:e8:ee:63:78:0a: 33:d5:62:c7:e8:04:1a:20:c3:7b:c0:fc:c3:04:49:5e:71:e0: be:07:48:e8:5a:09:57:3d:25:ba:12:23:31:e8:8a:9e:06:95: 5f:f3:53:47:80:9d:d7:7d:ce:ad:c5:e7:7c:71:10:b9:3d:85: 31:3a:f1:5d:21:e0:9c:39:af:4f:8d:38:86:ff:79:e7:94:73: 1d:b2:4a:99 -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgISAZt3xrnxavgYSsmSYX6cmwF7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkYjM0Nzc0YjAxOTc5Mjg0ZmQ5ZTc1NGZlYTY4ZmEzYzYx NzgzZDAwHhcNMjYwMTAxMDQxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMGYwZmJiZmUyN2Q3MzdlZmFhMzI1ZGUzNDgyOWNmZGE1YTczNjY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8UbLqpx35WwlSgUuY03xCQls9UZ DSkhRY/l/q4GKAQEYp/6hzjEThQUl5ggNbdjw/19FAzo5xO48mgA1xHYJTJdMnK9 sn5FOrlb1aJpHpm5mdolqv4CBnvVkQ+Bqx6sr+ZJIiqcrGadQaXzUnLPf/9qQa7i 3nfK+F3X4HA1IfkRrN7j+XRkPA0ddFXN41J6lf00xDLlvPFarlDJ5m2cZZUa1v7W QKygujp/STgbACVURhMFO2LNAQYVEugRBTWZmBdLv8SY1R/U/skinl/jh5/oVXMe 8+IEyAmuHdjx2VNZCbOTNhkJPjJBKpMt3S3KSK+WpY7TvX47/odHBDzdPQIDAQAB o4ICJjCCAiIwHQYDVR0OBBYEFCDw+7/ifXN++qMl3jSCnP2lpzZkMB8GA1UdIwQY MBaAFI2zR3SwGXkoT9nnVP6mj6PGF4PQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGIt NjI2NTUyMWY2ZGY3LzEvSVBEN3YtSjljMzc2b3lYZU5JS2NfYVduTm1RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGItNjI2NTUyMWY2ZGY3 LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzApBAIAAjAjAwUDKgWIwAMF AyoQMwADBQMqEH9AAwUDKhB/wAMFAyoR0QAwDQYJKoZIhvcNAQELBQADggEBAEEE qEDNFP8Ct3JQwuqvgkEzON7nrrgKPMYNN6cqlE3Z0JaCPbK0F2lJtZkYtM4jhUTm 2UorPWIOPB4GGtO6UGuM/+p+UUE6Z5B9iOac7rlXkdTm3CY+R+pKvmyqJXpXlCPF +pAhbmWb+El+ZwVAF/168fGnDJvbsjNNY+AJrntuYrijU/TzeoHxvO5vVGISMVoE KXnbPGUzcSN9Fcd/HMeQyBvQ0O6vam7txbx7Q2fo7mN4CjPVYsfoBBogw3vA/MME SV5x4L4HSOhaCVc9JboSIzHoip4GlV/zU0eAndd9zq3F53xxELk9hTE68V0h4Jw5 r0+NOIb/eeeUcx2ySpk= -----END CERTIFICATE-----Generated at Wed Jan 21 20:32:22 2026 by rpki-client