This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/mGXcdc3NkS89VR-ehnhFaQ3OaKc.roa File: mGXcdc3NkS89VR-ehnhFaQ3OaKc.roa (raw, json) Hash identifier: c2VXcpUEdl/AX8z8uYRh5IzdPmWTuNl2Mu8B+2l4c3E= Subject key identifier: 98:65:DC:75:CD:CD:91:2F:3D:55:1F:9E:86:78:45:69:0D:CE:68:A7 Certificate issuer: /CN=a7a4e23482268475c1b935637d0002c2fd2993b8 Certificate serial: 019B7CEE6F707DF3551A23A665A488FCEF53 Authority key identifier: A7:A4:E2:34:82:26:84:75:C1:B9:35:63:7D:00:02:C2:FD:29:93:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/mGXcdc3NkS89VR-ehnhFaQ3OaKc.roa Signing time: Fri 02 Jan 2026 04:19:19 +0000 ROA not before: Fri 02 Jan 2026 04:19:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208787 IP address blocks: 2a14:ae00:30::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.mft rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:6f:70:7d:f3:55:1a:23:a6:65:a4:88:fc:ef:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7a4e23482268475c1b935637d0002c2fd2993b8 Validity Not Before: Jan 2 04:19:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9865dc75cdcd912f3d551f9e867845690dce68a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9c:15:6a:78:15:fe:1e:bf:11:d4:ab:f3:44: 0c:37:28:98:d7:87:36:f1:25:7b:5f:1f:54:a6:d6: 62:b6:65:c1:ca:20:9f:e0:8c:88:26:ff:a3:c8:3a: dd:c2:b2:38:06:88:2e:a3:ed:ec:62:85:ff:5d:b7: a1:6b:8f:ea:ff:fd:cc:3a:c5:c4:7a:7e:59:87:98: 33:df:b8:a2:78:6e:c9:41:3c:83:d5:5a:dc:06:46: 45:a4:ab:3e:14:82:40:62:e2:97:a8:60:e2:5c:4b: b9:2b:35:c2:56:c1:64:66:ac:e7:e3:74:de:8e:cc: dc:52:fe:d7:aa:2a:db:b0:9e:01:dc:93:75:4a:8c: 0d:7a:f8:61:1b:dc:65:16:31:82:e6:55:5d:38:16: ae:53:45:8a:70:88:55:5a:58:1a:d2:83:52:97:04: 15:e8:d0:f8:b7:12:0b:19:8a:e2:99:ed:ab:b2:a9: a2:21:1f:ba:15:67:45:fc:d4:08:ed:f0:ce:ff:e2: 14:7a:b0:84:15:55:3e:7f:86:8e:cb:87:5c:b5:3e: d8:a7:98:b9:a1:c0:a8:cb:34:64:fe:65:d5:55:a1: a2:aa:ba:c0:35:70:53:de:39:4f:09:92:f3:28:d3: 36:da:74:95:51:66:92:52:ac:67:b6:dd:b0:7e:83: 38:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:65:DC:75:CD:CD:91:2F:3D:55:1F:9E:86:78:45:69:0D:CE:68:A7 X509v3 Authority Key Identifier: keyid:A7:A4:E2:34:82:26:84:75:C1:B9:35:63:7D:00:02:C2:FD:29:93:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/mGXcdc3NkS89VR-ehnhFaQ3OaKc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:ae00:30::/44 Signature Algorithm: sha256WithRSAEncryption 2a:6d:af:be:68:ce:1f:fb:72:7a:9d:9e:52:c0:31:03:6a:19: 62:24:c2:a9:86:a2:cb:ee:11:98:74:b8:44:ae:70:de:82:1b: ff:a2:14:74:cc:4d:81:bf:e4:86:e0:a2:35:1a:b6:77:20:85: e2:e3:63:b8:0c:39:40:b7:5e:9d:d8:48:84:b7:05:d6:c4:c3: 58:e0:21:3f:20:78:61:41:9d:33:47:09:77:aa:1e:9f:41:88: df:27:92:65:13:99:3b:98:ed:03:af:b8:b0:4c:e7:39:23:03: c6:c3:a2:a5:89:c8:d9:e6:4c:ad:e8:24:f0:22:cf:27:9b:f3: a2:fa:ab:05:db:4d:ad:11:e1:b1:6e:6d:60:6d:cd:2e:ba:85: 1f:72:42:30:b0:30:4c:7d:ad:ab:dd:08:a5:4b:26:95:7b:1a: 17:fc:04:37:bf:f6:a8:bb:15:0b:5f:ce:55:94:63:18:27:7c: 2a:5e:00:9f:df:3a:c5:04:dd:4f:68:99:6a:f3:b8:16:b5:41: e2:68:87:42:90:74:b9:75:78:84:5e:d8:51:ce:f4:56:34:2d: 3e:c1:57:84:52:00:cd:a4:ce:c6:62:30:b8:ff:02:65:2d:6b: 74:78:96:2c:8f:8a:a9:b7:53:d9:29:97:da:8a:b8:c4:54:63: d5:2b:36:d5 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt87m9wffNVGiOmZaSI/O9TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3YTRlMjM0ODIyNjg0NzVjMWI5MzU2MzdkMDAwMmMyZmQy OTkzYjgwHhcNMjYwMTAyMDQxOTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ODY1ZGM3NWNkY2Q5MTJmM2Q1NTFmOWU4Njc4NDU2OTBkY2U2OGE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZwVangV/h6/EdSr80QMNyiY14c2 8SV7Xx9UptZitmXByiCf4IyIJv+jyDrdwrI4Boguo+3sYoX/Xbeha4/q//3MOsXE en5Zh5gz37iieG7JQTyD1VrcBkZFpKs+FIJAYuKXqGDiXEu5KzXCVsFkZqzn43Te jszcUv7XqirbsJ4B3JN1SowNevhhG9xlFjGC5lVdOBauU0WKcIhVWlga0oNSlwQV 6ND4txILGYrime2rsqmiIR+6FWdF/NQI7fDO/+IUerCEFVU+f4aOy4dctT7Yp5i5 ocCoyzRk/mXVVaGiqrrANXBT3jlPCZLzKNM22nSVUWaSUqxntt2wfoM4wwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJhl3HXNzZEvPVUfnoZ4RWkNzminMB8GA1UdIwQY MBaAFKek4jSCJoR1wbk1Y30AAsL9KZO4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDZUaU5JSW1oSFhCdVRWamZRQUN3djBwazdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8wN2Y2MjMtMTRmYi00YTgwLTlmNDYt MjMzMzFiNjQ5MTZjLzEvbUdYY2RjM05rUzg5VlItZWhuaEZhUTNPYUtjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy8wN2Y2MjMtMTRmYi00YTgwLTlmNDYtMjMzMzFiNjQ5MTZj LzEvcDZUaU5JSW1oSFhCdVRWamZRQUN3djBwazdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhSuAAAw MA0GCSqGSIb3DQEBCwUAA4IBAQAqba++aM4f+3J6nZ5SwDEDahliJMKphqLL7hGY dLhErnDeghv/ohR0zE2Bv+SG4KI1GrZ3IIXi42O4DDlAt16d2EiEtwXWxMNY4CE/ IHhhQZ0zRwl3qh6fQYjfJ5JlE5k7mO0Dr7iwTOc5IwPGw6KlicjZ5kyt6CTwIs8n m/Oi+qsF202tEeGxbm1gbc0uuoUfckIwsDBMfa2r3QilSyaVexoX/AQ3v/aouxUL X85VlGMYJ3wqXgCf3zrFBN1PaJlq87gWtUHiaIdCkHS5dXiEXthRzvRWNC0+wVeE UgDNpM7GYjC4/wJlLWt0eJYsj4qpt1PZKZfairjEVGPVKzbV -----END CERTIFICATE-----Generated at Sun Jan 25 09:19:31 2026 by rpki-client