This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/xe3xZx3T1nKXLVrwCoQvj5FQuOs.roa File: xe3xZx3T1nKXLVrwCoQvj5FQuOs.roa (raw, json) Hash identifier: Oh3fgAVKVsH+R7XbFy5HM0U29rpdkHugOvIbh7/mWJs= Subject key identifier: C5:ED:F1:67:1D:D3:D6:72:97:2D:5A:F0:0A:84:2F:8F:91:50:B8:EB Certificate issuer: /CN=89bd54e7d69c147d6b56f8c6a209d3deaea277dd Certificate serial: 019B77C667097FDE1D205E6915079A760888 Authority key identifier: 89:BD:54:E7:D6:9C:14:7D:6B:56:F8:C6:A2:09:D3:DE:AE:A2:77:DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/xe3xZx3T1nKXLVrwCoQvj5FQuOs.roa Signing time: Thu 01 Jan 2026 04:17:29 +0000 ROA not before: Thu 01 Jan 2026 04:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 2001:678:f64::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.crl rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 13:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:67:09:7f:de:1d:20:5e:69:15:07:9a:76:08:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89bd54e7d69c147d6b56f8c6a209d3deaea277dd Validity Not Before: Jan 1 04:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c5edf1671dd3d672972d5af00a842f8f9150b8eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:64:13:0a:bc:71:87:c6:b2:85:92:9c:d2:bc: f9:0c:2d:f2:c3:eb:7e:a6:f5:0b:6b:98:fe:0a:15: c5:31:23:32:9c:8d:e3:bd:70:3b:22:83:80:d8:fe: f2:71:f2:4d:6c:d2:1e:30:d3:89:7f:57:06:e3:fd: ae:33:2b:bf:d9:06:26:09:7b:59:d4:a8:c5:1a:0e: b6:4a:70:c9:ed:60:b4:b4:73:31:d6:64:45:9b:28: 43:ca:23:ba:b6:e0:64:10:84:86:19:c5:01:17:3e: e0:9c:5c:6e:22:12:e9:46:3d:fe:6f:a8:26:d7:88: 63:a6:6c:c4:ca:4a:46:73:b2:9a:58:eb:bf:ba:7c: 0e:ec:54:f8:58:0d:97:54:2f:ec:5d:bf:25:f3:25: 00:f9:19:e2:d9:dc:51:bc:14:76:58:5e:e3:51:76: 67:5a:17:d6:fd:e4:ef:fc:bf:63:db:2a:94:6f:42: 30:d3:5a:19:e6:ca:be:f7:75:50:83:98:fb:1d:18: 4d:b3:a4:bf:52:9c:7a:d6:33:07:7e:76:b0:bd:9d: 36:15:af:c3:a1:85:98:ef:e8:ec:87:07:f8:38:0f: da:b5:27:b1:9e:f9:8e:00:4e:e5:31:c5:a9:48:41: 43:70:01:55:41:20:ac:d6:73:68:fa:18:6a:a0:9f: 90:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:ED:F1:67:1D:D3:D6:72:97:2D:5A:F0:0A:84:2F:8F:91:50:B8:EB X509v3 Authority Key Identifier: keyid:89:BD:54:E7:D6:9C:14:7D:6B:56:F8:C6:A2:09:D3:DE:AE:A2:77:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/xe3xZx3T1nKXLVrwCoQvj5FQuOs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:f64::/48 Signature Algorithm: sha256WithRSAEncryption aa:f7:2c:1a:b2:69:dd:7e:af:39:3f:59:be:30:c9:30:0f:00: ce:d0:9e:bf:ed:16:85:91:9d:7c:41:cb:fb:69:c9:fc:17:e2: c9:f5:64:d5:18:45:0b:61:a3:64:33:40:a4:b6:a5:b1:f4:23: 2b:2b:43:a0:04:79:c8:1c:56:d3:a4:b0:b2:87:c3:ed:bd:6c: b1:59:79:04:9e:ce:d6:f2:6c:17:6e:e8:32:bc:0e:12:9f:ea: c0:d9:16:c8:48:05:dc:e4:84:6f:54:0f:67:87:47:ad:c9:bf: 3b:3e:4f:32:42:e9:13:20:ef:05:3f:e6:e6:82:3a:91:9c:b3: bb:40:ff:22:86:e5:8e:f9:06:7d:ef:c0:6d:c4:e8:c8:18:e9: 88:9a:95:67:45:9b:27:2a:0e:81:f3:70:60:eb:6c:87:67:d4: 3d:1f:86:28:63:a3:16:99:83:e1:bc:ce:f1:fe:84:d6:70:a7: 30:5b:a8:c9:82:23:23:1d:37:2c:e8:19:c2:d5:17:2c:62:da: 29:eb:4c:fd:20:a3:f1:1f:b9:4b:4a:97:21:f5:6d:b0:44:58: 21:fa:14:e3:cb:62:2a:2f:6f:ed:b9:bf:68:8b:6e:a0:56:10: 12:03:13:79:57:5a:ea:fd:58:d8:ea:81:31:87:65:6c:d5:f0: 10:e9:77:6c -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3xmcJf94dIF5pFQeadgiIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YmQ1NGU3ZDY5YzE0N2Q2YjU2ZjhjNmEyMDlkM2RlYWVh Mjc3ZGQwHhcNMjYwMTAxMDQxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNWVkZjE2NzFkZDNkNjcyOTcyZDVhZjAwYTg0MmY4ZjkxNTBiOGViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzGQTCrxxh8ayhZKc0rz5DC3yw+t+ pvULa5j+ChXFMSMynI3jvXA7IoOA2P7ycfJNbNIeMNOJf1cG4/2uMyu/2QYmCXtZ 1KjFGg62SnDJ7WC0tHMx1mRFmyhDyiO6tuBkEISGGcUBFz7gnFxuIhLpRj3+b6gm 14hjpmzEykpGc7KaWOu/unwO7FT4WA2XVC/sXb8l8yUA+Rni2dxRvBR2WF7jUXZn WhfW/eTv/L9j2yqUb0Iw01oZ5sq+93VQg5j7HRhNs6S/Upx61jMHfnawvZ02Fa/D oYWY7+jshwf4OA/atSexnvmOAE7lMcWpSEFDcAFVQSCs1nNo+hhqoJ+QSwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFMXt8Wcd09Zyly1a8AqEL4+RULjrMB8GA1UdIwQY MBaAFIm9VOfWnBR9a1b4xqIJ096uonfdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWIxVTU5YWNGSDFyVnZqR29nblQzcTZpZDkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9kODAwYmUtNGFjZi00OWYyLTk2OWQt ZGIyMjdjNDk2ODA0LzEveGUzeFp4M1QxbktYTFZyd0NvUXZqNUZRdU9zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZS9kODAwYmUtNGFjZi00OWYyLTk2OWQtZGIyMjdjNDk2ODA0 LzEvaWIxVTU5YWNGSDFyVnZqR29nblQzcTZpZDkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA9k MA0GCSqGSIb3DQEBCwUAA4IBAQCq9ywasmndfq85P1m+MMkwDwDO0J6/7RaFkZ18 Qcv7acn8F+LJ9WTVGEULYaNkM0CktqWx9CMrK0OgBHnIHFbTpLCyh8PtvWyxWXkE ns7W8mwXbugyvA4Sn+rA2RbISAXc5IRvVA9nh0etyb87Pk8yQukTIO8FP+bmgjqR nLO7QP8ihuWO+QZ978BtxOjIGOmImpVnRZsnKg6B83Bg62yHZ9Q9H4YoY6MWmYPh vM7x/oTWcKcwW6jJgiMjHTcs6BnC1RcsYtop60z9IKPxH7lLSpch9W2wRFgh+hTj y2IqL2/tub9oi26gVhASAxN5V1rq/VjY6oExh2Vs1fAQ6Xds -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:02 2026 by rpki-client