This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/ErelCPr-1FaefL1NK7Lj8pKbIho.roa File: ErelCPr-1FaefL1NK7Lj8pKbIho.roa (raw, json) Hash identifier: xUsIxQbdEJ6uFNSP7A014nQDetlJXfYHV5e1fTWwqjo= Subject key identifier: 12:B7:A5:08:FA:FE:D4:56:9E:7C:BD:4D:2B:B2:E3:F2:92:9B:22:1A Certificate issuer: /CN=69dbe1e7d9e87d68701a4035a76c51bfecd88d81 Certificate serial: 019B7EA6C9A5CA53754A5759893CF5880DAF Authority key identifier: 69:DB:E1:E7:D9:E8:7D:68:70:1A:40:35:A7:6C:51:BF:EC:D8:8D:81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/advh59nofWhwGkA1p2xRv-zYjYE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/ErelCPr-1FaefL1NK7Lj8pKbIho.roa Signing time: Fri 02 Jan 2026 12:20:18 +0000 ROA not before: Fri 02 Jan 2026 12:20:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50104 IP address blocks: 2a01:e281:a764::/48 maxlen: 48 2a01:e281:b300::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/advh59nofWhwGkA1p2xRv-zYjYE.crl rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/advh59nofWhwGkA1p2xRv-zYjYE.mft rsync://rpki.ripe.net/repository/DEFAULT/advh59nofWhwGkA1p2xRv-zYjYE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:c9:a5:ca:53:75:4a:57:59:89:3c:f5:88:0d:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69dbe1e7d9e87d68701a4035a76c51bfecd88d81 Validity Not Before: Jan 2 12:20:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=12b7a508fafed4569e7cbd4d2bb2e3f2929b221a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:84:cc:e8:e6:26:d4:74:0c:02:a8:ff:00:ab: 5f:ef:fd:6e:c0:25:6a:78:45:61:18:d0:90:f3:f6: 3f:62:f8:a4:d9:c0:8a:30:24:6e:68:96:41:f4:88: 3a:cd:2c:d4:d4:57:f2:3c:c0:03:59:9d:6d:e7:5e: b0:31:1d:70:3a:74:d9:fc:fe:af:a3:a6:5c:35:90: d7:d9:e6:d3:3f:8f:90:2d:d1:ae:23:59:26:1f:23: 79:67:86:b8:ed:22:89:fe:a7:43:52:9c:4a:49:92: a3:24:a2:21:98:a4:0c:b4:f4:c4:45:87:48:f6:57: 31:91:62:0d:57:c5:cf:e2:ac:4f:3f:d6:79:2d:6b: fa:c8:42:4d:ea:22:44:96:0f:b0:06:dd:97:c5:65: fe:e6:73:94:41:b3:dc:4e:83:b7:4b:3d:32:b5:87: da:c1:f4:62:90:92:23:2b:d9:a9:9d:f2:63:f7:4d: 29:b7:9d:c9:cd:dc:0d:bf:a2:c6:17:e2:75:8c:f9: 37:c6:4f:4a:d0:5a:32:9a:38:7e:77:d7:d8:d3:6d: ae:40:bd:df:ec:a1:80:89:8c:0d:6f:9e:6f:2e:42: 57:5f:b4:89:2e:73:1a:ed:5f:3a:89:37:20:d5:98: 35:62:16:be:ca:f3:5f:3a:fa:22:a5:b0:5d:f8:e4: 9b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B7:A5:08:FA:FE:D4:56:9E:7C:BD:4D:2B:B2:E3:F2:92:9B:22:1A X509v3 Authority Key Identifier: keyid:69:DB:E1:E7:D9:E8:7D:68:70:1A:40:35:A7:6C:51:BF:EC:D8:8D:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/advh59nofWhwGkA1p2xRv-zYjYE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/ErelCPr-1FaefL1NK7Lj8pKbIho.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/advh59nofWhwGkA1p2xRv-zYjYE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:e281:a764::/48 2a01:e281:b300::/40 Signature Algorithm: sha256WithRSAEncryption 82:db:e6:af:43:06:f7:28:fb:a0:fa:db:60:a4:20:7e:32:b5: 00:0c:a9:84:e8:bb:b3:42:07:37:a4:f6:c2:7d:01:ab:f1:eb: f9:7a:2d:e6:1a:9c:63:21:cd:e4:96:1a:09:a5:b0:58:76:f4: 52:6f:60:b3:e6:ba:dd:77:61:13:40:cf:4c:28:18:96:13:93: 9f:39:b1:b5:30:ae:49:4d:4f:24:f3:40:70:1e:55:41:f2:95: 86:88:08:df:36:6d:90:51:e8:11:92:e1:fc:7e:74:bc:37:3a: 93:97:03:a8:40:76:51:7a:c2:35:44:35:c8:01:74:0c:4d:bb: dd:71:51:35:d9:1b:cf:7f:29:51:78:78:5c:34:06:99:79:ae: 92:44:80:05:59:8d:6f:f5:6a:67:3b:32:04:04:f4:68:d9:98: 88:6d:43:f7:88:d6:18:d0:5b:26:2e:c3:e2:97:a0:00:2b:7c: c9:79:71:8a:53:df:99:87:66:7a:c5:e3:2f:04:73:f1:02:45: e8:cf:d4:17:6c:60:41:7e:e4:35:42:e6:64:07:f7:9d:62:3f: c2:8b:71:72:fa:8f:dc:aa:d1:f4:d9:b6:fa:89:81:09:9d:98: 93:ef:af:7f:9e:ac:1c:ee:9f:df:2d:92:8c:5f:cf:07:6a:24: 2f:a6:dc:4b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgISAZt+psmlylN1SldZiTz1iA2vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZGJlMWU3ZDllODdkNjg3MDFhNDAzNWE3NmM1MWJmZWNk ODhkODEwHhcNMjYwMTAyMTIyMDE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMmI3YTUwOGZhZmVkNDU2OWU3Y2JkNGQyYmIyZTNmMjkyOWIyMjFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnoTM6OYm1HQMAqj/AKtf7/1uwCVq eEVhGNCQ8/Y/Yvik2cCKMCRuaJZB9Ig6zSzU1FfyPMADWZ1t516wMR1wOnTZ/P6v o6ZcNZDX2ebTP4+QLdGuI1kmHyN5Z4a47SKJ/qdDUpxKSZKjJKIhmKQMtPTERYdI 9lcxkWINV8XP4qxPP9Z5LWv6yEJN6iJElg+wBt2XxWX+5nOUQbPcToO3Sz0ytYfa wfRikJIjK9mpnfJj900pt53JzdwNv6LGF+J1jPk3xk9K0Foymjh+d9fY022uQL3f 7KGAiYwNb55vLkJXX7SJLnMa7V86iTcg1Zg1Yha+yvNfOvoipbBd+OSbYwIDAQAB o4ICFDCCAhAwHQYDVR0OBBYEFBK3pQj6/tRWnny9TSuy4/KSmyIaMB8GA1UdIwQY MBaAFGnb4efZ6H1ocBpANadsUb/s2I2BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWR2aDU5bm9mV2h3R2tBMXAyeFJ2LXpZallFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC83MjcwMTUtZTE0ZS00ZDQxLWIwNWIt OGQ5NDU1M2I3NWUxLzEvRXJlbENQci0xRmFlZkwxTks3TGo4cEtiSWhvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC83MjcwMTUtZTE0ZS00ZDQxLWIwNWItOGQ5NDU1M2I3NWUx LzEvYWR2aDU5bm9mV2h3R2tBMXAyeFJ2LXpZallFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwcAKgHigadk AwYAKgHigbMwDQYJKoZIhvcNAQELBQADggEBAILb5q9DBvco+6D622CkIH4ytQAM qYTou7NCBzek9sJ9Aavx6/l6LeYanGMhzeSWGgmlsFh29FJvYLPmut13YRNAz0wo GJYTk585sbUwrklNTyTzQHAeVUHylYaICN82bZBR6BGS4fx+dLw3OpOXA6hAdlF6 wjVENcgBdAxNu91xUTXZG89/KVF4eFw0Bpl5rpJEgAVZjW/1amc7MgQE9GjZmIht Q/eI1hjQWyYuw+KXoAArfMl5cYpT35mHZnrF4y8Ec/ECRejP1BdsYEF+5DVC5mQH 951iP8KLcXL6j9yq0fTZtvqJgQmdmJPvr3+erBzun98tkoxfzwdqJC+m3Es= -----END CERTIFICATE-----Generated at Mon Jan 26 14:16:43 2026 by rpki-client