This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/bc7078-1ee4-42f1-bc34-1d21d1bce3fe/1/1-7erNI2QQVesZx2S6vBk34vAQbc.roa File: 1-7erNI2QQVesZx2S6vBk34vAQbc.roa (raw, json) Hash identifier: LpuspUCuYwH1ZDqWCvOoYLaa0r5X4XSXoNPE482TARQ= Subject key identifier: FB:B7:AB:34:8D:90:41:57:AC:67:1D:92:EA:F0:64:DF:8B:C0:41:B7 Certificate issuer: /CN=234b54b119a7b3eff153085b7315507cd8513a0f Certificate serial: 019B9EF376FCBBE3FC35D67CF3C633D90474 Authority key identifier: 23:4B:54:B1:19:A7:B3:EF:F1:53:08:5B:73:15:50:7C:D8:51:3A:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0tUsRmns-_xUwhbcxVQfNhROg8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/bc7078-1ee4-42f1-bc34-1d21d1bce3fe/1/1-7erNI2QQVesZx2S6vBk34vAQbc.roa Signing time: Thu 08 Jan 2026 18:51:54 +0000 ROA not before: Thu 08 Jan 2026 18:51:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213423 IP address blocks: 2a04:5b81:2060::/44 maxlen: 48 2a04:5b81:21d0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/bc7078-1ee4-42f1-bc34-1d21d1bce3fe/1/I0tUsRmns-_xUwhbcxVQfNhROg8.crl rsync://rpki.ripe.net/repository/DEFAULT/47/bc7078-1ee4-42f1-bc34-1d21d1bce3fe/1/I0tUsRmns-_xUwhbcxVQfNhROg8.mft rsync://rpki.ripe.net/repository/DEFAULT/I0tUsRmns-_xUwhbcxVQfNhROg8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 15:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9e:f3:76:fc:bb:e3:fc:35:d6:7c:f3:c6:33:d9:04:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=234b54b119a7b3eff153085b7315507cd8513a0f Validity Not Before: Jan 8 18:51:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fbb7ab348d904157ac671d92eaf064df8bc041b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:66:95:e5:d4:86:a7:41:dd:c8:ba:96:76:88: 92:9f:0a:7a:57:1e:cc:f7:30:0b:ec:1a:aa:cc:e7: 4a:64:2f:97:07:d5:87:59:ec:d0:67:4b:9a:a6:4a: 9b:e7:8d:aa:f2:59:93:68:1a:e3:89:57:48:ae:f9: 6f:ad:6e:6c:fb:68:f7:46:f5:11:47:85:e6:0f:84: 39:8a:9f:78:4e:46:3e:5f:d1:b5:1a:66:4c:81:fa: 06:19:d5:5a:d3:d0:7b:a8:6e:01:20:a0:73:65:2f: 2e:e1:c9:95:bf:2c:ae:59:bf:da:68:ad:dd:cb:73: d0:d9:58:5f:a1:25:9b:3b:75:94:fe:47:fb:fa:55: 93:48:ba:9c:e1:1f:d9:9f:17:0d:43:36:60:0d:8f: c2:d4:50:0d:9a:74:5b:13:4b:d8:83:54:64:2b:1f: 22:a2:36:68:0a:06:77:05:10:b9:cd:15:61:6c:f3: 50:a8:46:30:60:de:2f:63:a7:3e:0a:1a:fa:f7:bb: 43:15:8b:43:bc:b5:12:59:3d:26:be:19:2f:40:aa: 56:84:04:61:e7:35:68:e8:a4:a8:7f:f7:6a:43:e1: 8f:f8:c2:57:1b:4a:d4:93:a7:65:cf:bc:84:18:3e: 66:d3:50:03:e8:9f:a4:14:30:45:c0:8b:e8:a8:5e: 9f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B7:AB:34:8D:90:41:57:AC:67:1D:92:EA:F0:64:DF:8B:C0:41:B7 X509v3 Authority Key Identifier: keyid:23:4B:54:B1:19:A7:B3:EF:F1:53:08:5B:73:15:50:7C:D8:51:3A:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0tUsRmns-_xUwhbcxVQfNhROg8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bc7078-1ee4-42f1-bc34-1d21d1bce3fe/1/1-7erNI2QQVesZx2S6vBk34vAQbc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bc7078-1ee4-42f1-bc34-1d21d1bce3fe/1/I0tUsRmns-_xUwhbcxVQfNhROg8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a04:5b81:2060::/44 2a04:5b81:21d0::/44 Signature Algorithm: sha256WithRSAEncryption 23:e1:29:7d:d5:03:75:cf:32:55:05:b0:cd:16:47:37:44:b3: 63:c0:a3:4f:6e:78:38:f5:34:9d:55:6f:75:84:50:b1:41:b8: 37:10:06:4b:ef:be:ea:05:96:f5:9c:16:b9:32:4f:9f:89:99: f0:12:65:e5:0e:a4:71:89:0a:77:fc:c1:86:d7:f0:cc:e6:fc: 4e:18:6b:e9:b0:29:70:da:01:c1:7b:3b:aa:83:bf:bd:b0:d5: 13:41:a1:24:09:ee:34:7d:44:1b:04:14:05:33:68:49:b5:f2: 3b:e9:4d:44:05:fa:20:f9:7d:81:d0:c0:d0:fe:e9:57:54:90: fa:8c:c7:65:42:12:d9:7e:4d:6d:8d:a8:13:8b:fe:a1:01:f4: 6f:cb:7c:2a:b4:06:4e:92:b4:a2:e0:8b:ba:9c:c1:87:9a:0b: 3d:02:4b:6d:8a:04:1a:40:ed:ce:eb:53:95:26:8a:bd:3a:fc: 57:3d:d4:2b:1a:4e:25:b9:e5:e6:87:fb:d5:92:0e:c2:9b:13: 01:c4:ce:80:28:f7:21:11:b2:14:6a:09:7c:be:89:7f:4a:ca: 1d:ee:89:5c:ad:72:29:9b:ce:8e:6f:40:6f:68:3d:f6:c7:ab: d8:96:16:fd:30:ee:2e:f0:7e:e6:a3:85:4e:3d:a9:bc:92:9b: 33:d9:36:ee -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgISAZue83b8u+P8NdZ888Yz2QR0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzNGI1NGIxMTlhN2IzZWZmMTUzMDg1YjczMTU1MDdjZDg1 MTNhMGYwHhcNMjYwMTA4MTg1MTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYmI3YWIzNDhkOTA0MTU3YWM2NzFkOTJlYWYwNjRkZjhiYzA0MWI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA32aV5dSGp0HdyLqWdoiSnwp6Vx7M 9zAL7BqqzOdKZC+XB9WHWezQZ0uapkqb542q8lmTaBrjiVdIrvlvrW5s+2j3RvUR R4XmD4Q5ip94TkY+X9G1GmZMgfoGGdVa09B7qG4BIKBzZS8u4cmVvyyuWb/aaK3d y3PQ2VhfoSWbO3WU/kf7+lWTSLqc4R/ZnxcNQzZgDY/C1FANmnRbE0vYg1RkKx8i ojZoCgZ3BRC5zRVhbPNQqEYwYN4vY6c+Chr697tDFYtDvLUSWT0mvhkvQKpWhARh 5zVo6KSof/dqQ+GP+MJXG0rUk6dlz7yEGD5m01AD6J+kFDBFwIvoqF6fsQIDAQAB o4ICFjCCAhIwHQYDVR0OBBYEFPu3qzSNkEFXrGcdkurwZN+LwEG3MB8GA1UdIwQY MBaAFCNLVLEZp7Pv8VMIW3MVUHzYUToPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTB0VXNSbW5zLV94VXdoYmN4VlFmTmhST2c4LmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9iYzcwNzgtMWVlNC00MmYxLWJjMzQt MWQyMWQxYmNlM2ZlLzEvMS03ZXJOSTJRUVZlc1p4MlM2dkJrMzR2QVFiYy5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNDcvYmM3MDc4LTFlZTQtNDJmMS1iYzM0LTFkMjFkMWJjZTNm ZS8xL0kwdFVzUm1ucy1feFV3aGJjeFZRZk5oUk9nOC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBowGAQCAAIwEgMHBCoEW4Eg YAMHBCoEW4Eh0DANBgkqhkiG9w0BAQsFAAOCAQEAI+EpfdUDdc8yVQWwzRZHN0Sz Y8CjT254OPU0nVVvdYRQsUG4NxAGS+++6gWW9ZwWuTJPn4mZ8BJl5Q6kcYkKd/zB htfwzOb8Thhr6bApcNoBwXs7qoO/vbDVE0GhJAnuNH1EGwQUBTNoSbXyO+lNRAX6 IPl9gdDA0P7pV1SQ+ozHZUIS2X5NbY2oE4v+oQH0b8t8KrQGTpK0ouCLupzBh5oL PQJLbYoEGkDtzutTlSaKvTr8Vz3UKxpOJbnl5of71ZIOwpsTAcTOgCj3IRGyFGoJ fL6Jf0rKHe6JXK1yKZvOjm9Ab2g99ser2JYW/TDuLvB+5qOFTj2pvJKbM9k27g== -----END CERTIFICATE-----Generated at Tue Jan 20 00:28:22 2026 by rpki-client