This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/9eYCrd2nOqfuf6NEHSQoNYQG0yU.roa File: 9eYCrd2nOqfuf6NEHSQoNYQG0yU.roa (raw, json) Hash identifier: UFik8WxcKFpDWi6UbHUXoN2LSztqXZRSjp2w86EnPXo= Subject key identifier: F5:E6:02:AD:DD:A7:3A:A7:EE:7F:A3:44:1D:24:28:35:84:06:D3:25 Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a Certificate serial: 019B7BA400AECA0EC2E0B230BFFDE849B68F Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/9eYCrd2nOqfuf6NEHSQoNYQG0yU.roa Signing time: Thu 01 Jan 2026 22:18:24 +0000 ROA not before: Thu 01 Jan 2026 22:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51722 IP address blocks: 2a0b:7780::/29 maxlen: 29 2a0b:da00::/29 maxlen: 29 2a0c:77c0::/29 maxlen: 29 2a0c:aa40::/29 maxlen: 29 2a0d:2dc0::/29 maxlen: 29 2a0d:3880::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.mft rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:00:ae:ca:0e:c2:e0:b2:30:bf:fd:e8:49:b6:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a Validity Not Before: Jan 1 22:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f5e602addda73aa7ee7fa3441d2428358406d325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a5:6a:af:af:2d:eb:ce:cb:18:b8:3a:ed:fa: 82:b8:08:e5:9b:18:f8:ca:ab:30:ff:e5:38:2d:95: e5:91:2d:46:4e:2f:43:f8:3a:52:34:96:f8:da:19: b6:4b:df:04:23:41:02:fb:7f:b8:79:ce:37:41:05: f2:f7:a6:97:24:2b:19:c3:c0:42:b4:12:8b:3d:66: c9:1c:f6:f1:cd:50:29:c4:52:90:13:b3:1e:2e:28: 3a:d2:bf:22:46:4d:a6:ca:26:0d:c7:93:1c:ca:46: f7:c1:f7:df:ab:19:33:18:06:ee:cc:36:ca:6c:ef: be:24:f4:20:54:b4:7c:a6:e9:43:cf:53:c0:33:9c: 2e:cc:72:1b:7d:66:ea:33:de:3c:ff:3e:85:88:07: 9c:4d:97:40:c2:d3:01:71:0f:95:e6:02:ec:cf:4e: 8e:a4:7c:80:54:22:17:4a:9c:3a:07:9c:53:ff:76: e9:cc:88:ae:f1:16:50:76:4e:33:e6:c0:ba:88:73: 18:fc:88:a7:0d:25:f3:37:93:af:da:4f:23:bb:aa: 6f:87:f5:48:e8:0d:9e:88:47:12:60:fd:e8:6e:92: aa:1e:2f:b7:06:02:cb:d0:d6:87:7a:ac:74:46:f5: bb:9c:23:35:bf:4c:e1:df:81:a3:f5:9e:71:52:f8: b6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E6:02:AD:DD:A7:3A:A7:EE:7F:A3:44:1D:24:28:35:84:06:D3:25 X509v3 Authority Key Identifier: keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/9eYCrd2nOqfuf6NEHSQoNYQG0yU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:7780::/29 2a0b:da00::/29 2a0c:77c0::/29 2a0c:aa40::/29 2a0d:2dc0::/29 2a0d:3880::/29 Signature Algorithm: sha256WithRSAEncryption 79:ce:39:94:a2:3d:c5:9d:96:11:45:6e:98:34:7d:34:c3:4b: c2:bb:ff:1f:c2:f4:22:1e:f4:e8:9d:8f:e7:3d:df:f5:e8:f4: c0:42:76:c8:6a:0f:74:5f:6f:b6:7f:04:c7:03:88:4d:2d:89: 2b:e1:3f:13:12:fb:d5:8f:0a:4c:35:cc:f2:88:51:a7:1d:72: c4:f2:46:8e:06:f0:6e:c2:ce:c6:ff:6c:77:12:98:5c:1a:b5: 93:c2:ff:9b:87:cb:12:c9:d6:77:60:54:f6:ad:d5:a3:1b:42: d4:e6:6a:a5:54:41:a2:65:1d:af:4f:4e:d7:c7:f5:07:6a:01: 49:41:b5:fd:7e:54:2b:ab:e8:94:69:00:7d:37:bc:ea:02:a1: 03:06:3f:b7:ed:c7:4e:8d:4d:c9:35:ff:c8:28:84:3b:2b:6b: 5c:7d:86:8b:48:5b:c3:6c:8b:f8:c7:63:a2:41:b7:3d:c9:3b: 68:62:26:ee:fe:d0:95:1f:27:84:60:9e:d8:ad:6a:50:5a:04: 23:0b:c6:ac:1d:64:21:c3:bc:c5:d9:29:47:93:8d:b2:ed:e2: 0b:0a:af:88:10:6e:c0:c2:51:9f:40:ae:08:6c:4c:d7:4b:8e: 44:36:7a:03:77:7b:27:2f:8c:3c:b5:e7:af:64:5a:5c:52:4a: 29:8a:37:10 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt7pACuyg7C4LIwv/3oSbaPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NzA5MGMyNzVjMzRjMDVjMzA2ZjNiMzYwNjM4OTNhMGQ3 Mjc4MmEwHhcNMjYwMTAxMjIxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNWU2MDJhZGRkYTczYWE3ZWU3ZmEzNDQxZDI0MjgzNTg0MDZkMzI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmqVqr68t687LGLg67fqCuAjlmxj4 yqsw/+U4LZXlkS1GTi9D+DpSNJb42hm2S98EI0EC+3+4ec43QQXy96aXJCsZw8BC tBKLPWbJHPbxzVApxFKQE7MeLig60r8iRk2myiYNx5Mcykb3wfffqxkzGAbuzDbK bO++JPQgVLR8pulDz1PAM5wuzHIbfWbqM948/z6FiAecTZdAwtMBcQ+V5gLsz06O pHyAVCIXSpw6B5xT/3bpzIiu8RZQdk4z5sC6iHMY/IinDSXzN5Ov2k8ju6pvh/VI 6A2eiEcSYP3obpKqHi+3BgLL0NaHeqx0RvW7nCM1v0zh34Gj9Z5xUvi2JQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFPXmAq3dpzqn7n+jRB0kKDWEBtMlMB8GA1UdIwQY MBaAFKhwkMJ1w0wFwwbzs2BjiToNcngqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEt YjU3YTM2ZjJhZmNkLzEvOWVZQ3JkMm5PcWZ1ZjZORUhTUW9OWVFHMHlVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEtYjU3YTM2ZjJhZmNk LzEvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAAjAqAwUDKgt3gAMF AyoL2gADBQMqDHfAAwUDKgyqQAMFAyoNLcADBQMqDTiAMA0GCSqGSIb3DQEBCwUA A4IBAQB5zjmUoj3FnZYRRW6YNH00w0vCu/8fwvQiHvTonY/nPd/16PTAQnbIag90 X2+2fwTHA4hNLYkr4T8TEvvVjwpMNczyiFGnHXLE8kaOBvBuws7G/2x3EphcGrWT wv+bh8sSydZ3YFT2rdWjG0LU5mqlVEGiZR2vT07Xx/UHagFJQbX9flQrq+iUaQB9 N7zqAqEDBj+37cdOjU3JNf/IKIQ7K2tcfYaLSFvDbIv4x2OiQbc9yTtoYibu/tCV HyeEYJ7YrWpQWgQjC8asHWQhw7zF2SlHk42y7eILCq+IEG7AwlGfQK4IbEzXS45E NnoDd3snL4w8teevZFpcUkopijcQ -----END CERTIFICATE-----Generated at Tue Jan 20 02:47:49 2026 by rpki-client