This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/mM02a2XIqr9lWm3FewuxLn-upUE.roa File: mM02a2XIqr9lWm3FewuxLn-upUE.roa (raw, json) Hash identifier: m3a532+MRwbaKBcE1PxNpzB4/We3F7i3MF0cXbV5QVE= Subject key identifier: 98:CD:36:6B:65:C8:AA:BF:65:5A:6D:C5:7B:0B:B1:2E:7F:AE:A5:41 Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa Certificate serial: 019B797EC01A25A7DA5987C9238A602F6A10 Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/mM02a2XIqr9lWm3FewuxLn-upUE.roa Signing time: Thu 01 Jan 2026 12:18:28 +0000 ROA not before: Thu 01 Jan 2026 12:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214921 IP address blocks: 2a0e:aa06:500::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.mft rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 14:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:c0:1a:25:a7:da:59:87:c9:23:8a:60:2f:6a:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa Validity Not Before: Jan 1 12:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=98cd366b65c8aabf655a6dc57b0bb12e7faea541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ec:c6:17:e0:ca:69:a6:89:1a:93:e6:1f:13: 1d:c4:0a:ed:58:8e:33:8f:22:94:5b:2d:19:48:09: 6f:80:88:17:e6:1b:ba:c8:ef:fa:4d:a2:ec:62:e9: 74:5e:d2:44:f1:a5:e6:ae:8f:17:f7:8c:3b:0c:96: 70:88:d8:19:d5:58:47:3d:3d:56:e2:dc:7a:96:46: 6e:a4:92:a6:d2:c4:24:e8:fe:4a:ff:2c:3a:3e:a0: ec:31:72:4c:32:3d:28:f1:90:8f:1e:8c:18:3a:c3: 7b:f9:70:88:5d:1f:d5:86:ee:14:3f:c5:83:5f:ff: aa:94:e0:53:21:73:16:49:8f:4c:d6:19:f0:ab:93: be:95:09:a1:9b:ec:64:7f:47:f4:5f:52:e1:e5:59: ee:6d:14:88:05:b6:64:d2:4c:bf:65:75:04:8b:b4: 9b:d1:00:88:a4:59:40:56:90:ed:10:90:91:10:91: 6c:0c:89:cc:46:76:85:cc:25:95:6c:27:d8:a3:84: f1:04:c3:93:91:2a:6f:e5:ce:21:cc:99:3d:c6:c9: 16:aa:f0:b4:d7:7b:03:0a:f1:2e:3d:9d:f9:a8:8d: bd:b9:a5:d0:b6:be:13:02:73:a9:68:47:1e:ac:65: ed:58:d3:b4:c9:d1:a0:5a:24:8f:f8:8a:12:df:3b: 64:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:CD:36:6B:65:C8:AA:BF:65:5A:6D:C5:7B:0B:B1:2E:7F:AE:A5:41 X509v3 Authority Key Identifier: keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/mM02a2XIqr9lWm3FewuxLn-upUE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:aa06:500::/44 Signature Algorithm: sha256WithRSAEncryption c6:32:5e:c8:b7:6b:05:8f:69:79:75:2c:ff:a7:83:12:a6:ae: e5:3d:27:40:62:06:b8:da:41:1a:dd:c3:36:f9:a2:31:f1:92: 23:35:a2:51:e3:e9:00:31:19:3c:2e:40:46:3b:5b:5a:90:33: 69:81:85:85:88:83:39:dd:e8:99:06:6a:f3:12:da:9a:85:b3: 96:68:dc:d6:89:ae:74:ab:61:81:97:fa:dc:a5:db:07:47:08: 53:d0:e2:04:de:fc:0e:31:b5:71:2f:b3:cd:f6:2b:cd:28:29: 68:41:70:52:4c:30:44:2b:73:7a:50:8c:7e:a4:b8:56:78:be: 10:76:5c:7b:a4:a6:c1:6d:d8:3c:66:b7:95:a8:27:0e:93:4a: 3f:c1:04:30:59:b4:43:bd:2a:10:d9:e6:13:13:62:05:b7:6b: cd:61:9e:ed:4b:bf:47:37:e4:d5:90:08:3f:f5:31:5e:b8:fc: 67:3a:46:e1:b1:09:53:40:b5:72:9f:3f:ea:fb:2c:37:b7:77: 49:2b:a1:49:fc:85:ef:a0:31:2e:77:2f:d1:29:d1:a4:48:7b: 77:89:6c:db:63:57:fc:c1:88:b7:34:45:91:4b:51:09:3a:a9: b9:8d:48:23:4e:e3:83:00:f6:90:9f:0f:9a:45:a6:b1:39:4c: 8a:51:3f:c9 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5fsAaJafaWYfJI4pgL2oQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0 ZWYzYWEwHhcNMjYwMTAxMTIxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OGNkMzY2YjY1YzhhYWJmNjU1YTZkYzU3YjBiYjEyZTdmYWVhNTQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqezGF+DKaaaJGpPmHxMdxArtWI4z jyKUWy0ZSAlvgIgX5hu6yO/6TaLsYul0XtJE8aXmro8X94w7DJZwiNgZ1VhHPT1W 4tx6lkZupJKm0sQk6P5K/yw6PqDsMXJMMj0o8ZCPHowYOsN7+XCIXR/Vhu4UP8WD X/+qlOBTIXMWSY9M1hnwq5O+lQmhm+xkf0f0X1Lh5VnubRSIBbZk0ky/ZXUEi7Sb 0QCIpFlAVpDtEJCREJFsDInMRnaFzCWVbCfYo4TxBMOTkSpv5c4hzJk9xskWqvC0 13sDCvEuPZ35qI29uaXQtr4TAnOpaEcerGXtWNO0ydGgWiSP+IoS3ztktwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJjNNmtlyKq/ZVptxXsLsS5/rqVBMB8GA1UdIwQY MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt YTU0MWQxYmNlZTE5LzEvbU0wMmEyWElxcjlsV20zRmV3dXhMbi11cFVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5 LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6qBgUA MA0GCSqGSIb3DQEBCwUAA4IBAQDGMl7It2sFj2l5dSz/p4MSpq7lPSdAYga42kEa 3cM2+aIx8ZIjNaJR4+kAMRk8LkBGO1takDNpgYWFiIM53eiZBmrzEtqahbOWaNzW ia50q2GBl/rcpdsHRwhT0OIE3vwOMbVxL7PN9ivNKCloQXBSTDBEK3N6UIx+pLhW eL4Qdlx7pKbBbdg8ZreVqCcOk0o/wQQwWbRDvSoQ2eYTE2IFt2vNYZ7tS79HN+TV kAg/9TFeuPxnOkbhsQlTQLVynz/q+yw3t3dJK6FJ/IXvoDEudy/RKdGkSHt3iWzb Y1f8wYi3NEWRS1EJOqm5jUgjTuODAPaQnw+aRaaxOUyKUT/J -----END CERTIFICATE-----Generated at Tue Jan 6 21:31:19 2026 by rpki-client