This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4b9a4c-802d-4b1e-94fe-c8f56c122fec/1/9CS7xyErSCJY_wQFDW0wV1rIDq0.roa File: 9CS7xyErSCJY_wQFDW0wV1rIDq0.roa (raw, json) Hash identifier: e2yWbh2yduLvhGO9ZZhdKHXEB8OOHqP7OQbj14TpHIU= Subject key identifier: F4:24:BB:C7:21:2B:48:22:58:FF:04:05:0D:6D:30:57:5A:C8:0E:AD Certificate issuer: /CN=2384674ea007a12030ac8d2be560db21f4fc0b99 Certificate serial: 019B7C1212484A3C6BDE253019693E9BC2DF Authority key identifier: 23:84:67:4E:A0:07:A1:20:30:AC:8D:2B:E5:60:DB:21:F4:FC:0B:99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I4RnTqAHoSAwrI0r5WDbIfT8C5k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4b9a4c-802d-4b1e-94fe-c8f56c122fec/1/9CS7xyErSCJY_wQFDW0wV1rIDq0.roa Signing time: Fri 02 Jan 2026 00:18:37 +0000 ROA not before: Fri 02 Jan 2026 00:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56821 IP address blocks: 2a14:9880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/4b9a4c-802d-4b1e-94fe-c8f56c122fec/1/I4RnTqAHoSAwrI0r5WDbIfT8C5k.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/4b9a4c-802d-4b1e-94fe-c8f56c122fec/1/I4RnTqAHoSAwrI0r5WDbIfT8C5k.mft rsync://rpki.ripe.net/repository/DEFAULT/I4RnTqAHoSAwrI0r5WDbIfT8C5k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:12:48:4a:3c:6b:de:25:30:19:69:3e:9b:c2:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2384674ea007a12030ac8d2be560db21f4fc0b99 Validity Not Before: Jan 2 00:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f424bbc7212b482258ff04050d6d30575ac80ead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:2f:b4:30:de:c0:15:90:dc:9b:d6:f8:14:e2: 01:4c:d7:43:66:f3:4d:e2:0e:1f:64:63:24:8b:7c: 97:4b:74:4d:fc:97:e3:da:d4:98:67:01:fa:0d:eb: 0d:91:20:8c:f5:8b:7d:24:2d:5e:5d:f0:e7:93:7b: 4f:de:64:cc:6b:b8:5f:7e:de:03:d3:d4:0b:6b:a1: 8f:fc:4c:89:ee:c4:d5:63:b8:8b:47:b2:c7:f2:6c: f4:27:ad:97:a3:ed:ee:e2:c6:26:6f:6e:1b:14:b3: 30:5e:43:da:f3:f9:75:05:3c:aa:59:3a:bf:68:e8: 0d:3e:8a:12:38:b3:73:30:93:28:87:81:bf:16:ed: 1d:59:30:9f:80:44:a7:20:fb:e8:1b:2a:f6:5e:ef: ee:98:3f:43:5a:33:c4:34:79:15:b3:05:68:20:98: 12:b2:c8:b9:e7:89:29:a3:ae:6f:03:ef:c5:7d:ea: 37:83:59:95:44:b1:f2:cd:44:a5:df:3e:68:9d:23: 44:ae:5d:ee:34:05:57:da:ef:aa:0b:2a:70:06:ba: 44:f6:b8:c7:f4:1e:47:11:86:b3:2d:8a:0d:ab:8a: 91:cd:69:8c:65:42:f9:49:dc:d6:3a:3e:d1:6b:ef: ec:37:6b:3f:65:f8:00:45:33:ba:94:d2:d3:15:2a: 27:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:24:BB:C7:21:2B:48:22:58:FF:04:05:0D:6D:30:57:5A:C8:0E:AD X509v3 Authority Key Identifier: keyid:23:84:67:4E:A0:07:A1:20:30:AC:8D:2B:E5:60:DB:21:F4:FC:0B:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I4RnTqAHoSAwrI0r5WDbIfT8C5k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4b9a4c-802d-4b1e-94fe-c8f56c122fec/1/9CS7xyErSCJY_wQFDW0wV1rIDq0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4b9a4c-802d-4b1e-94fe-c8f56c122fec/1/I4RnTqAHoSAwrI0r5WDbIfT8C5k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:9880::/32 Signature Algorithm: sha256WithRSAEncryption 82:e4:6d:de:a0:29:71:05:f3:ec:68:78:df:14:b8:09:39:ad: b1:61:2e:4c:ed:06:c9:82:97:9a:f2:0e:cb:d4:21:a0:76:6d: 1f:ab:ba:bd:d7:de:c0:8a:1e:ce:ca:95:95:ca:01:2d:bd:0f: 21:31:da:7a:e7:fc:22:32:3e:a7:7e:ee:c9:70:b3:ec:94:75: 6b:9d:2c:6e:85:c2:1c:47:37:0a:5d:f2:ad:07:2d:9c:dc:60: af:f7:e1:90:bc:2b:7c:fb:d7:f8:a4:3e:de:f5:1a:5b:f8:f1: 2f:a4:77:ef:85:db:2e:7a:79:f0:ed:07:a5:b2:99:26:fc:ad: ee:5c:34:89:1b:2a:0e:7b:f0:2f:28:9b:97:ec:33:5b:3e:3d: 44:97:2a:f5:8f:91:87:d0:8e:10:51:df:b9:51:23:ad:b0:3d: 57:0a:2c:5c:f9:6d:01:9d:4b:f4:98:40:f9:05:8e:2d:60:97: 7d:35:f8:61:56:ef:c6:d5:a7:7b:eb:ee:dd:29:cd:99:53:9c: 46:97:f0:53:7f:9e:3e:14:8d:50:2b:66:22:c4:66:ce:5f:36: 5c:5e:80:20:a3:2d:dc:d6:07:67:04:49:b3:a5:40:f1:e4:c7: 44:77:27:c5:ed:d1:58:8c:a8:e5:63:6d:2b:ce:0a:a2:fe:77: 9e:ad:61:f1 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt8EhJISjxr3iUwGWk+m8LfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzODQ2NzRlYTAwN2ExMjAzMGFjOGQyYmU1NjBkYjIxZjRm YzBiOTkwHhcNMjYwMTAyMDAxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNDI0YmJjNzIxMmI0ODIyNThmZjA0MDUwZDZkMzA1NzVhYzgwZWFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAii+0MN7AFZDcm9b4FOIBTNdDZvNN 4g4fZGMki3yXS3RN/Jfj2tSYZwH6DesNkSCM9Yt9JC1eXfDnk3tP3mTMa7hfft4D 09QLa6GP/EyJ7sTVY7iLR7LH8mz0J62Xo+3u4sYmb24bFLMwXkPa8/l1BTyqWTq/ aOgNPooSOLNzMJMoh4G/Fu0dWTCfgESnIPvoGyr2Xu/umD9DWjPENHkVswVoIJgS ssi554kpo65vA+/Ffeo3g1mVRLHyzUSl3z5onSNErl3uNAVX2u+qCypwBrpE9rjH 9B5HEYazLYoNq4qRzWmMZUL5SdzWOj7Ra+/sN2s/ZfgARTO6lNLTFSoniwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFPQku8chK0giWP8EBQ1tMFdayA6tMB8GA1UdIwQY MBaAFCOEZ06gB6EgMKyNK+Vg2yH0/AuZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTRSblRxQUhvU0F3ckkwcjVXRGJJZlQ4QzVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YjlhNGMtODAyZC00YjFlLTk0ZmUt YzhmNTZjMTIyZmVjLzEvOUNTN3h5RXJTQ0pZX3dRRkRXMHdWMXJJRHEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC80YjlhNGMtODAyZC00YjFlLTk0ZmUtYzhmNTZjMTIyZmVj LzEvSTRSblRxQUhvU0F3ckkwcjVXRGJJZlQ4QzVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhSYgDAN BgkqhkiG9w0BAQsFAAOCAQEAguRt3qApcQXz7Gh43xS4CTmtsWEuTO0GyYKXmvIO y9QhoHZtH6u6vdfewIoezsqVlcoBLb0PITHaeuf8IjI+p37uyXCz7JR1a50sboXC HEc3Cl3yrQctnNxgr/fhkLwrfPvX+KQ+3vUaW/jxL6R374XbLnp58O0HpbKZJvyt 7lw0iRsqDnvwLyibl+wzWz49RJcq9Y+Rh9COEFHfuVEjrbA9VwosXPltAZ1L9JhA +QWOLWCXfTX4YVbvxtWne+vu3SnNmVOcRpfwU3+ePhSNUCtmIsRmzl82XF6AIKMt 3NYHZwRJs6VA8eTHRHcnxe3RWIyo5WNtK84Kov53nq1h8Q== -----END CERTIFICATE-----Generated at Tue Feb 10 01:02:05 2026 by rpki-client