This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/eWt0Tak3myBNkMD7r4cZaRZMMuI.roa File: eWt0Tak3myBNkMD7r4cZaRZMMuI.roa (raw, json) Hash identifier: H9iIgQUbeHquNPmfK/S2A+3CGFk8Rb9c/Cx3jhDtaaM= Subject key identifier: 79:6B:74:4D:A9:37:9B:20:4D:90:C0:FB:AF:87:19:69:16:4C:32:E2 Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0 Certificate serial: 019B7FF23F54BDD3250F2450BD811319B3CB Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/eWt0Tak3myBNkMD7r4cZaRZMMuI.roa Signing time: Fri 02 Jan 2026 18:22:20 +0000 ROA not before: Fri 02 Jan 2026 18:22:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210542 IP address blocks: 2a0e:da40:1::/48 maxlen: 128 2a0e:da40:10::/44 maxlen: 128 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.mft rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:3f:54:bd:d3:25:0f:24:50:bd:81:13:19:b3:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0 Validity Not Before: Jan 2 18:22:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=796b744da9379b204d90c0fbaf871969164c32e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c1:36:97:15:59:0c:f3:66:70:18:ee:dd:46: 17:0a:f7:d7:b3:4d:54:dd:8a:a5:d7:e7:68:c4:ee: fa:c1:ab:70:16:24:74:95:39:83:2e:23:a1:83:0b: a9:f6:e3:2d:2f:ba:32:96:93:d5:66:53:c0:cd:05: d4:74:03:8d:2d:96:a7:04:3a:0c:90:31:b3:ba:71: ea:6b:e4:ce:a3:1b:40:db:b2:d2:c5:de:8a:34:52: 28:7f:9d:6c:ba:3b:74:11:ea:d8:b8:0c:5a:21:69: 25:f3:93:50:22:0e:19:2f:17:7c:3a:b7:fc:e8:1b: 6b:e5:ff:87:6f:bc:f5:da:ab:e9:61:9b:bc:5b:1c: d7:5b:92:64:7c:e3:b9:55:2e:bd:48:59:fe:00:07: bc:42:39:41:09:fd:87:48:59:b0:df:6f:06:40:27: 41:01:52:6c:fe:0e:05:31:36:54:74:af:b7:8a:d2: a3:39:97:59:76:9d:11:8a:4b:f2:ad:a7:86:68:8d: 2e:92:35:06:26:6e:ab:e5:7d:6b:38:52:d7:fd:36: 65:01:49:14:b5:fe:c4:26:bc:1e:66:65:4a:45:1f: c8:07:20:e9:33:56:31:22:dd:c3:c9:6f:c9:4c:75: b0:4e:fa:34:4f:77:7d:cb:1f:9f:a8:e2:85:ab:b1: ff:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:6B:74:4D:A9:37:9B:20:4D:90:C0:FB:AF:87:19:69:16:4C:32:E2 X509v3 Authority Key Identifier: keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/eWt0Tak3myBNkMD7r4cZaRZMMuI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:da40:1::/48 2a0e:da40:10::/44 Signature Algorithm: sha256WithRSAEncryption 7b:93:0d:39:a3:40:85:a4:6f:bb:c2:43:aa:ce:a2:67:15:3a: 57:b0:ba:7f:86:b0:fe:52:52:7c:59:1a:93:11:f1:80:b3:b0: ad:33:a3:72:cb:4a:cd:d3:ba:6e:c6:65:b5:4b:b1:c4:cc:ea: ce:c3:a9:7a:1f:51:9f:91:d1:16:ad:c7:76:eb:49:76:9a:aa: 42:73:cb:64:46:8b:f0:49:d9:a3:82:ef:62:16:c1:82:80:8d: 7c:7f:c6:0f:b6:0d:8f:63:b3:d5:e3:3a:9c:fb:d5:3d:1f:51: 2a:43:8d:c9:8c:23:0c:79:86:61:78:e7:65:f4:e4:e5:7b:11: 46:9b:92:1e:de:56:3c:a0:df:50:20:09:b2:76:ff:59:88:e8: 0c:5d:fd:8b:79:23:06:1e:9d:aa:2d:0f:64:10:49:12:2b:9f: d2:f2:73:fd:76:d4:51:0e:6d:06:1d:14:0b:f2:56:22:40:4a: 7c:57:c8:24:a5:cb:5b:9e:a9:5c:aa:f1:de:a6:cb:a0:13:47: c5:f9:d7:90:3d:a3:4d:b9:76:bf:36:2a:94:5b:17:18:fb:32: 28:ba:cd:9e:f2:6d:eb:8d:97:62:12:f8:97:d1:29:01:39:4e: bc:f8:d1:7f:1b:52:35:95:ab:80:41:86:62:f8:27:5b:4c:b8: 7f:8d:14:54 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt/8j9UvdMlDyRQvYETGbPLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkYjY3YzVjN2ZhN2ZlMjQ5MmVlYzM3Y2Y0Mjc2NDJiNzFk NDI1YjAwHhcNMjYwMTAyMTgyMjIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OTZiNzQ0ZGE5Mzc5YjIwNGQ5MGMwZmJhZjg3MTk2OTE2NGMzMmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcE2lxVZDPNmcBju3UYXCvfXs01U 3Yql1+doxO76watwFiR0lTmDLiOhgwup9uMtL7oylpPVZlPAzQXUdAONLZanBDoM kDGzunHqa+TOoxtA27LSxd6KNFIof51sujt0EerYuAxaIWkl85NQIg4ZLxd8Orf8 6Btr5f+Hb7z12qvpYZu8WxzXW5JkfOO5VS69SFn+AAe8QjlBCf2HSFmw328GQCdB AVJs/g4FMTZUdK+3itKjOZdZdp0RikvyraeGaI0ukjUGJm6r5X1rOFLX/TZlAUkU tf7EJrweZmVKRR/IByDpM1YxIt3DyW/JTHWwTvo0T3d9yx+fqOKFq7H/ZQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFHlrdE2pN5sgTZDA+6+HGWkWTDLiMB8GA1UdIwQY MBaAFA22fFx/p/4kku7DfPQnZCtx1CWwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGJaOFhILW5faVNTN3NOODlDZGtLM0hVSmJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS8wZjM3NTctZjBlZC00ZTdlLTkzMjkt YjAzZGY5OTZlNDgxLzEvZVd0MFRhazNteUJOa01EN3I0Y1phUlpNTXVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS8wZjM3NTctZjBlZC00ZTdlLTkzMjktYjAzZGY5OTZlNDgx LzEvRGJaOFhILW5faVNTN3NOODlDZGtLM0hVSmJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKg7aQAAB AwcEKg7aQAAQMA0GCSqGSIb3DQEBCwUAA4IBAQB7kw05o0CFpG+7wkOqzqJnFTpX sLp/hrD+UlJ8WRqTEfGAs7CtM6Nyy0rN07puxmW1S7HEzOrOw6l6H1GfkdEWrcd2 60l2mqpCc8tkRovwSdmjgu9iFsGCgI18f8YPtg2PY7PV4zqc+9U9H1EqQ43JjCMM eYZheOdl9OTlexFGm5Ie3lY8oN9QIAmydv9ZiOgMXf2LeSMGHp2qLQ9kEEkSK5/S 8nP9dtRRDm0GHRQL8lYiQEp8V8gkpctbnqlcqvHepsugE0fF+deQPaNNuXa/NiqU WxcY+zIous2e8m3rjZdiEviX0SkBOU68+NF/G1I1lauAQYZi+CdbTLh/jRRU -----END CERTIFICATE-----Generated at Wed Jan 21 01:08:56 2026 by rpki-client