This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/Ijb7iSjXHWScmToMbPFSrQVtScc.roa File: Ijb7iSjXHWScmToMbPFSrQVtScc.roa (raw, json) Hash identifier: k808OvtRG9i8yuoEML3SpdfiQI+xAXss+miB0P2YTIY= Subject key identifier: 22:36:FB:89:28:D7:1D:64:9C:99:3A:0C:6C:F1:52:AD:05:6D:49:C7 Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a Certificate serial: 019ADA8A9BF7D4629EDDBA923E7B35581DE5 Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/Ijb7iSjXHWScmToMbPFSrQVtScc.roa Signing time: Mon 01 Dec 2025 15:31:48 +0000 ROA not before: Mon 01 Dec 2025 15:31:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 212234 IP address blocks: 2a03:5840:135::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.mft rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 10 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:da:8a:9b:f7:d4:62:9e:dd:ba:92:3e:7b:35:58:1d:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a Validity Not Before: Dec 1 15:31:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=2236fb8928d71d649c993a0c6cf152ad056d49c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:19:11:03:1b:99:f5:1d:b4:ee:74:2d:e7:3c: fc:26:df:9d:c7:77:bf:35:c8:c7:3a:a2:a6:f2:98: 5e:ac:cc:40:85:ed:40:30:64:8f:71:40:6f:d7:ef: be:f7:6d:a8:08:76:3f:a9:82:07:26:98:56:cd:79: a2:90:ce:55:3d:2a:ce:f9:b6:0a:12:4d:96:e6:e2: 65:33:7e:4f:fc:df:4b:1c:87:ce:03:c9:bf:79:f0: 73:b1:16:50:22:43:a9:50:2d:51:fd:02:1c:15:a5: 29:db:81:ac:ef:d3:2b:35:5d:28:35:a7:19:c8:45: f4:d2:5f:77:c3:2b:21:d1:61:50:ad:98:82:b8:69: 05:f9:0d:2e:63:fc:0d:3f:c2:56:c1:a3:e2:2d:ab: f8:16:91:84:d7:d8:94:d4:46:16:7d:db:63:bb:de: 4f:d9:1a:c1:b5:f5:19:78:32:8d:26:af:26:bc:93: f3:40:ce:5b:cd:93:fc:29:b8:32:a9:64:ec:89:1f: d3:f5:c8:40:6d:89:fc:23:1b:fd:12:eb:52:c1:01: fb:09:52:d5:bc:7f:64:d1:1c:8e:83:71:bd:4f:80: 1e:11:20:af:0c:b9:a1:c1:fd:fa:3b:b3:1d:e4:1c: f0:08:2a:71:42:4e:48:22:32:13:f4:d6:3e:59:b8: 41:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:36:FB:89:28:D7:1D:64:9C:99:3A:0C:6C:F1:52:AD:05:6D:49:C7 X509v3 Authority Key Identifier: keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/Ijb7iSjXHWScmToMbPFSrQVtScc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:5840:135::/48 Signature Algorithm: sha256WithRSAEncryption 76:ca:2b:8a:a6:e9:26:8a:8c:49:31:08:be:5a:af:a7:fe:73: 90:c7:ae:62:99:d2:e9:b7:e7:e9:31:47:db:d1:e1:48:17:99: d2:97:42:e3:66:cd:4c:14:fd:76:ff:13:de:4e:68:cb:ac:59: e3:bd:39:6f:00:d9:9e:7a:14:6d:a8:68:b9:d5:7b:e3:66:a5: 03:65:2b:d4:ad:0f:8a:16:09:d7:25:55:37:bf:5c:f9:dc:28: 3d:ed:21:be:01:02:73:35:72:9d:f3:50:7f:3d:26:2a:d9:a5: 32:de:72:1f:db:e6:9f:aa:18:62:f3:05:92:b0:dd:d7:19:36: a9:98:9e:70:be:3d:5d:e5:6f:95:80:58:1e:f9:d6:bd:e6:f8: 51:d3:21:59:c0:6b:af:ed:bf:45:22:e3:c0:ec:8a:a9:ae:7b: 1c:ad:43:bb:f4:a3:89:57:6a:22:32:cf:da:43:dc:24:31:ed: 5b:dd:24:b0:a1:c1:e1:a3:aa:f1:c1:57:90:be:eb:fa:65:72: 7d:78:fc:3e:3d:4d:68:c4:6f:b7:d5:9f:46:12:95:b5:f5:d1: 26:9f:88:02:20:e4:4f:60:45:68:b1:16:e8:db:9f:65:22:b4: 22:96:3f:84:8d:49:9e:ee:45:a3:50:b1:71:ee:29:04:b2:12: c1:f6:e8:9f -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZraipv31GKe3bqSPns1WB3lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3NzcwNWU4OWJiNjViNDcyZTRlMDE4NGQ2ZmU5YmZiOGM1 ODYzNWEwHhcNMjUxMjAxMTUzMTQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMjM2ZmI4OTI4ZDcxZDY0OWM5OTNhMGM2Y2YxNTJhZDA1NmQ0OWM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmhkRAxuZ9R207nQt5zz8Jt+dx3e/ NcjHOqKm8pherMxAhe1AMGSPcUBv1+++922oCHY/qYIHJphWzXmikM5VPSrO+bYK Ek2W5uJlM35P/N9LHIfOA8m/efBzsRZQIkOpUC1R/QIcFaUp24Gs79MrNV0oNacZ yEX00l93wysh0WFQrZiCuGkF+Q0uY/wNP8JWwaPiLav4FpGE19iU1EYWfdtju95P 2RrBtfUZeDKNJq8mvJPzQM5bzZP8KbgyqWTsiR/T9chAbYn8Ixv9EutSwQH7CVLV vH9k0RyOg3G9T4AeESCvDLmhwf36O7Md5BzwCCpxQk5IIjIT9NY+WbhBxwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFCI2+4ko1x1knJk6DGzxUq0FbUnHMB8GA1UdIwQY MBaAFPd3BeibtltHLk4BhNb+m/uMWGNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYt NmNiODk3OTFkN2ZkLzEvSWpiN2lTalhIV1NjbVRvTWJQRlNyUVZ0U2NjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYtNmNiODk3OTFkN2Zk LzEvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgNYQAE1 MA0GCSqGSIb3DQEBCwUAA4IBAQB2yiuKpukmioxJMQi+Wq+n/nOQx65imdLpt+fp MUfb0eFIF5nSl0LjZs1MFP12/xPeTmjLrFnjvTlvANmeehRtqGi51XvjZqUDZSvU rQ+KFgnXJVU3v1z53Cg97SG+AQJzNXKd81B/PSYq2aUy3nIf2+afqhhi8wWSsN3X GTapmJ5wvj1d5W+VgFge+da95vhR0yFZwGuv7b9FIuPA7IqprnscrUO79KOJV2oi Ms/aQ9wkMe1b3SSwocHho6rxwVeQvuv6ZXJ9ePw+PU1oxG+31Z9GEpW19dEmn4gC IORPYEVosRbo259lIrQilj+EjUme7kWjULFx7ikEshLB9uif -----END CERTIFICATE-----Generated at Tue Dec 9 09:15:06 2025 by rpki-client