This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/dJ7nwF1H28tZ9XiMty5fVPt0k0k.roa File: dJ7nwF1H28tZ9XiMty5fVPt0k0k.roa (raw, json) Hash identifier: Z7C2VhCRlOXZHap2zxC417J1miQAl+N1yehbKJTU+ko= Subject key identifier: 74:9E:E7:C0:5D:47:DB:CB:59:F5:78:8C:B7:2E:5F:54:FB:74:93:49 Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa Certificate serial: 019B7F1595743812F0DD35843AD9214EFCA5 Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/dJ7nwF1H28tZ9XiMty5fVPt0k0k.roa Signing time: Fri 02 Jan 2026 14:21:19 +0000 ROA not before: Fri 02 Jan 2026 14:21:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7545 IP address blocks: 2a02:26f0:700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.mft rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:95:74:38:12:f0:dd:35:84:3a:d9:21:4e:fc:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa Validity Not Before: Jan 2 14:21:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=749ee7c05d47dbcb59f5788cb72e5f54fb749349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5d:f2:1c:8e:87:39:63:6e:44:77:44:c1:11: 3c:48:1f:8a:78:17:0d:dd:c0:30:ca:8f:75:1f:75: b0:59:ba:80:d3:88:6e:6c:ba:0b:44:28:3a:98:f6: d7:06:7d:1c:eb:37:4a:5e:33:92:b9:50:4f:6e:92: 70:e7:e7:80:27:5f:34:97:e1:77:02:fa:1f:9f:78: b0:0b:3a:cc:77:02:65:99:f5:a9:b0:c1:4e:4c:b5: e7:7c:89:14:29:8d:91:83:c1:31:a8:91:eb:cf:6f: b7:dc:7d:3d:10:89:d2:a0:f6:90:50:89:a8:50:da: a6:5f:91:a4:6b:aa:92:ba:f0:db:5c:62:36:dc:34: 61:17:b2:8d:c0:28:bb:40:6c:1c:85:ca:37:35:37: 2f:58:2c:a9:04:0e:a7:2a:5d:61:ff:aa:c5:e8:f8: 3d:c3:b4:54:c3:a0:52:68:e6:39:0d:fd:d7:1f:aa: 01:a6:28:e0:c8:8c:03:49:e9:f9:f4:cd:79:4c:30: 6f:f6:14:72:30:29:99:9b:a1:04:35:c7:d2:73:06: 18:4b:6f:ef:58:03:8e:e2:48:d6:8a:d1:2f:42:42: 5b:b1:7e:f6:d6:d3:3f:db:84:cc:8d:6d:3e:27:2f: e3:21:e7:7d:7f:b4:85:04:a6:a3:57:f2:44:1e:bf: 88:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:9E:E7:C0:5D:47:DB:CB:59:F5:78:8C:B7:2E:5F:54:FB:74:93:49 X509v3 Authority Key Identifier: keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/dJ7nwF1H28tZ9XiMty5fVPt0k0k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:26f0:700::/48 Signature Algorithm: sha256WithRSAEncryption 22:37:a8:cd:4f:65:aa:cb:d1:51:58:29:47:82:f0:05:2f:a6: 42:e8:39:53:47:ec:d6:51:8e:b6:05:8e:0e:62:a6:57:b7:da: 80:28:32:c8:5b:4d:fa:64:6b:04:15:71:62:be:4d:86:e9:17: dc:60:10:b6:72:5b:76:93:68:12:cd:ab:02:fe:91:4d:eb:ca: 36:b4:67:80:68:98:bd:5c:25:73:f0:0e:b9:60:1f:59:57:45: e2:88:27:67:e4:a1:f0:04:1c:47:04:d9:63:2f:de:34:5a:37: d1:cc:04:e1:d1:b0:b2:d5:ca:f1:19:7d:68:d9:48:6a:f0:99: aa:cc:13:74:7d:93:3b:92:95:5a:45:81:22:23:fb:d1:0f:09: 23:84:91:49:a8:f3:ef:f8:2b:e6:5f:75:6d:49:09:ae:f4:8e: 74:f2:c7:ba:3f:4e:9a:82:30:98:64:78:0c:79:cb:a4:e9:ae: 74:7d:52:e4:68:9a:92:f4:c4:40:ca:3c:8e:85:3a:f0:ef:6b: 98:9c:e1:96:ad:92:26:91:d4:96:69:47:5d:37:b9:6c:37:5f: 99:a8:66:0f:19:3c:50:76:b0:40:47:d6:dc:7b:08:77:27:7f: e6:99:54:dc:24:98:9c:95:f7:99:4f:e9:13:fc:67:54:08:e4: 15:4e:54:0e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/FZV0OBLw3TWEOtkhTvylMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiNWZjYmJlYTQ4OTM3YTQ0MmJhYmRiMzMwMjEzMmM0YmM5 YmQ2YWEwHhcNMjYwMTAyMTQyMTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NDllZTdjMDVkNDdkYmNiNTlmNTc4OGNiNzJlNWY1NGZiNzQ5MzQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqV3yHI6HOWNuRHdEwRE8SB+KeBcN 3cAwyo91H3WwWbqA04hubLoLRCg6mPbXBn0c6zdKXjOSuVBPbpJw5+eAJ180l+F3 Avofn3iwCzrMdwJlmfWpsMFOTLXnfIkUKY2Rg8ExqJHrz2+33H09EInSoPaQUImo UNqmX5Gka6qSuvDbXGI23DRhF7KNwCi7QGwchco3NTcvWCypBA6nKl1h/6rF6Pg9 w7RUw6BSaOY5Df3XH6oBpijgyIwDSen59M15TDBv9hRyMCmZm6EENcfScwYYS2/v WAOO4kjWitEvQkJbsX721tM/24TMjW0+Jy/jIed9f7SFBKajV/JEHr+IiwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFHSe58BdR9vLWfV4jLcuX1T7dJNJMB8GA1UdIwQY MBaAFGtfy76kiTekQrq9szAhMsS8m9aqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYTFfTHZxU0pONlJDdXIyek1DRXl4THliMXFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC8wNDIxODgtZGZiNi00YWQ0LTkxYTQt ODhkMWNhYzllNGYxLzEvZEo3bndGMUgyOHRaOVhpTXR5NWZWUHQwazBrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC8wNDIxODgtZGZiNi00YWQ0LTkxYTQtODhkMWNhYzllNGYx LzEvYTFfTHZxU0pONlJDdXIyek1DRXl4THliMXFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgIm8AcA MA0GCSqGSIb3DQEBCwUAA4IBAQAiN6jNT2Wqy9FRWClHgvAFL6ZC6DlTR+zWUY62 BY4OYqZXt9qAKDLIW036ZGsEFXFivk2G6RfcYBC2clt2k2gSzasC/pFN68o2tGeA aJi9XCVz8A65YB9ZV0XiiCdn5KHwBBxHBNljL940WjfRzATh0bCy1crxGX1o2Uhq 8JmqzBN0fZM7kpVaRYEiI/vRDwkjhJFJqPPv+CvmX3VtSQmu9I508se6P06agjCY ZHgMecuk6a50fVLkaJqS9MRAyjyOhTrw72uYnOGWrZImkdSWaUddN7lsN1+ZqGYP GTxQdrBAR9bcewh3J3/mmVTcJJiclfeZT+kT/GdUCOQVTlQO -----END CERTIFICATE-----Generated at Wed Jan 21 10:28:43 2026 by rpki-client