This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9daf2f-46d2-4d05-926b-a8bf214ed166/1/9SBS7gJbmM_H_U69hDRLz5tqENk.roa File: 9SBS7gJbmM_H_U69hDRLz5tqENk.roa (raw, json) Hash identifier: CohDToPDWHyGMje9oQIew781Ud8ugON8LORc7w4Ntug= Subject key identifier: F5:20:52:EE:02:5B:98:CF:C7:FD:4E:BD:84:34:4B:CF:9B:6A:10:D9 Certificate issuer: /CN=fe340911274377a89ca1f9c15f180da986d744b7 Certificate serial: 019B7FF24404C1720DAD0A78C76405226D67 Authority key identifier: FE:34:09:11:27:43:77:A8:9C:A1:F9:C1:5F:18:0D:A9:86:D7:44:B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_jQJESdDd6icofnBXxgNqYbXRLc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9daf2f-46d2-4d05-926b-a8bf214ed166/1/9SBS7gJbmM_H_U69hDRLz5tqENk.roa Signing time: Fri 02 Jan 2026 18:22:22 +0000 ROA not before: Fri 02 Jan 2026 18:22:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197942 IP address blocks: 2001:678:f84::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/9daf2f-46d2-4d05-926b-a8bf214ed166/1/_jQJESdDd6icofnBXxgNqYbXRLc.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/9daf2f-46d2-4d05-926b-a8bf214ed166/1/_jQJESdDd6icofnBXxgNqYbXRLc.mft rsync://rpki.ripe.net/repository/DEFAULT/_jQJESdDd6icofnBXxgNqYbXRLc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:44:04:c1:72:0d:ad:0a:78:c7:64:05:22:6d:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe340911274377a89ca1f9c15f180da986d744b7 Validity Not Before: Jan 2 18:22:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f52052ee025b98cfc7fd4ebd84344bcf9b6a10d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:4a:e0:94:e0:8e:d6:85:15:f0:80:85:08:f1: 9c:88:88:5a:ac:d8:a2:00:0f:c0:37:2d:d1:cb:5e: e3:c1:21:6e:0d:75:47:cb:61:2f:db:64:78:67:83: 60:bd:1a:b5:c2:b8:b6:fa:06:19:62:d4:cf:30:b3: a9:70:db:70:33:c9:9c:97:c2:f7:cf:7f:cb:94:0e: 76:be:ad:aa:99:b5:a7:d8:f9:a5:0e:30:35:22:7e: 74:2a:e5:4c:b4:d3:e6:4a:6a:af:c5:07:d3:1b:13: 52:3d:d4:1c:dc:46:33:c7:e4:0f:52:a8:12:27:9f: 3c:b8:41:99:96:0a:c5:54:76:33:02:59:06:12:c3: d0:a4:0e:b8:74:c3:ac:38:ea:27:05:b5:f2:fd:14: fe:18:52:ad:eb:7f:27:f6:4e:d7:9b:33:56:fd:2a: 0d:02:ef:42:81:0b:f3:73:f9:02:9e:20:52:8a:a6: 3b:e4:40:cf:7a:5e:8e:64:6e:a1:ec:23:ed:9d:47: 56:a4:a0:49:a0:28:05:6e:77:58:ce:27:50:23:36: a3:73:70:ed:36:32:a3:29:77:78:c3:b4:55:b5:69: 31:99:53:4f:e6:0d:c1:dd:34:26:16:e9:9f:c5:62: 07:27:d5:96:9d:1c:cd:b7:f7:b7:ad:e1:c0:19:12: 8c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:20:52:EE:02:5B:98:CF:C7:FD:4E:BD:84:34:4B:CF:9B:6A:10:D9 X509v3 Authority Key Identifier: keyid:FE:34:09:11:27:43:77:A8:9C:A1:F9:C1:5F:18:0D:A9:86:D7:44:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_jQJESdDd6icofnBXxgNqYbXRLc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9daf2f-46d2-4d05-926b-a8bf214ed166/1/9SBS7gJbmM_H_U69hDRLz5tqENk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9daf2f-46d2-4d05-926b-a8bf214ed166/1/_jQJESdDd6icofnBXxgNqYbXRLc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:f84::/48 Signature Algorithm: sha256WithRSAEncryption 7b:87:47:1f:4f:6f:2c:5a:de:f5:97:18:bf:9b:8d:c4:80:88: 99:42:1e:bb:08:da:87:80:16:5c:05:bc:26:0f:10:ae:20:22: 70:86:92:1e:7c:fc:00:8a:d6:6b:3a:11:0e:96:15:f0:a7:54: 99:d2:a9:9b:40:31:3d:31:80:53:3c:06:17:14:0d:fc:b5:f5: db:72:8f:e3:db:e9:18:f8:ab:ff:ea:60:5e:ac:64:4f:7a:87: 95:31:d5:42:96:ec:80:7d:c9:65:1b:2f:af:14:72:29:0e:d9: c6:83:21:aa:38:7c:ed:36:37:5f:1b:99:00:a1:d1:95:c7:ea: 65:8b:ef:21:91:26:20:58:c5:be:be:15:ce:9f:ec:e7:3f:68: 1c:e0:c7:b1:6d:56:06:a7:1b:7a:8e:b7:5e:17:76:49:42:4a: ea:d8:e8:b3:af:67:41:4b:c0:55:32:a4:9b:1f:0a:e8:fe:e0: c7:4d:e1:3d:8b:a1:d4:94:a6:9f:38:0f:c5:2c:7b:81:f8:75: 60:ba:6f:4c:30:08:ac:30:73:0e:14:9d:b3:07:25:8b:53:e0: 36:36:17:9f:69:ed:5c:57:51:03:26:a2:c7:72:dd:47:6f:3c: e0:e7:89:93:77:32:db:04:91:80:f9:15:10:9a:15:c7:57:89: 19:23:db:0c -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/8kQEwXINrQp4x2QFIm1nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlMzQwOTExMjc0Mzc3YTg5Y2ExZjljMTVmMTgwZGE5ODZk NzQ0YjcwHhcNMjYwMTAyMTgyMjIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNTIwNTJlZTAyNWI5OGNmYzdmZDRlYmQ4NDM0NGJjZjliNmExMGQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmErglOCO1oUV8ICFCPGciIharNii AA/ANy3Ry17jwSFuDXVHy2Ev22R4Z4NgvRq1wri2+gYZYtTPMLOpcNtwM8mcl8L3 z3/LlA52vq2qmbWn2PmlDjA1In50KuVMtNPmSmqvxQfTGxNSPdQc3EYzx+QPUqgS J588uEGZlgrFVHYzAlkGEsPQpA64dMOsOOonBbXy/RT+GFKt638n9k7XmzNW/SoN Au9CgQvzc/kCniBSiqY75EDPel6OZG6h7CPtnUdWpKBJoCgFbndYzidQIzajc3Dt NjKjKXd4w7RVtWkxmVNP5g3B3TQmFumfxWIHJ9WWnRzNt/e3reHAGRKMmwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFPUgUu4CW5jPx/1OvYQ0S8+bahDZMB8GA1UdIwQY MBaAFP40CREnQ3eonKH5wV8YDamG10S3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2pRSkVTZERkNmljb2ZuQlh4Z05xWWJYUkxjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85ZGFmMmYtNDZkMi00ZDA1LTkyNmIt YThiZjIxNGVkMTY2LzEvOVNCUzdnSmJtTV9IX1U2OWhEUkx6NXRxRU5rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy85ZGFmMmYtNDZkMi00ZDA1LTkyNmItYThiZjIxNGVkMTY2 LzEvX2pRSkVTZERkNmljb2ZuQlh4Z05xWWJYUkxjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA+E MA0GCSqGSIb3DQEBCwUAA4IBAQB7h0cfT28sWt71lxi/m43EgIiZQh67CNqHgBZc BbwmDxCuICJwhpIefPwAitZrOhEOlhXwp1SZ0qmbQDE9MYBTPAYXFA38tfXbco/j 2+kY+Kv/6mBerGRPeoeVMdVCluyAfcllGy+vFHIpDtnGgyGqOHztNjdfG5kAodGV x+pli+8hkSYgWMW+vhXOn+znP2gc4MexbVYGpxt6jrdeF3ZJQkrq2Oizr2dBS8BV MqSbHwro/uDHTeE9i6HUlKafOA/FLHuB+HVgum9MMAisMHMOFJ2zByWLU+A2Nhef ae1cV1EDJqLHct1Hbzzg54mTdzLbBJGA+RUQmhXHV4kZI9sM -----END CERTIFICATE-----Generated at Mon Feb 2 08:04:05 2026 by rpki-client