This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/77774a-fc07-4002-94f9-12dc94ddedcd/1/Lp4ADAtbUAnUUwmRXq0CRRE_xe4.roa File: Lp4ADAtbUAnUUwmRXq0CRRE_xe4.roa (raw, json) Hash identifier: /5OxQHC9qaJZIRED9fTxGtHMX/MOAtFVzPxTg7u1+8I= Subject key identifier: 2E:9E:00:0C:0B:5B:50:09:D4:53:09:91:5E:AD:02:45:11:3F:C5:EE Certificate issuer: /CN=bae7fa77f724bb467325ad59d7dbfc63399c6e79 Certificate serial: 019B7E3777D39A0C1D60D6CE0B2C50918AFF Authority key identifier: BA:E7:FA:77:F7:24:BB:46:73:25:AD:59:D7:DB:FC:63:39:9C:6E:79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uuf6d_cku0ZzJa1Z19v8Yzmcbnk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/77774a-fc07-4002-94f9-12dc94ddedcd/1/Lp4ADAtbUAnUUwmRXq0CRRE_xe4.roa Signing time: Fri 02 Jan 2026 10:18:42 +0000 ROA not before: Fri 02 Jan 2026 10:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206477 IP address blocks: 2001:678:ccc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/77774a-fc07-4002-94f9-12dc94ddedcd/1/uuf6d_cku0ZzJa1Z19v8Yzmcbnk.crl rsync://rpki.ripe.net/repository/DEFAULT/df/77774a-fc07-4002-94f9-12dc94ddedcd/1/uuf6d_cku0ZzJa1Z19v8Yzmcbnk.mft rsync://rpki.ripe.net/repository/DEFAULT/uuf6d_cku0ZzJa1Z19v8Yzmcbnk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:77:d3:9a:0c:1d:60:d6:ce:0b:2c:50:91:8a:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bae7fa77f724bb467325ad59d7dbfc63399c6e79 Validity Not Before: Jan 2 10:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e9e000c0b5b5009d45309915ead0245113fc5ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fc:fa:03:49:43:01:f1:0c:a5:3d:6c:52:dc: 4a:54:ea:f6:0e:67:a7:f9:9e:f6:d4:1c:12:ca:3e: 83:c2:47:e1:83:dd:3e:3b:78:5e:3a:e1:71:88:20: ad:b6:40:ed:51:47:58:95:5a:b9:38:10:29:9b:df: 7e:ea:cb:54:50:43:f1:76:d3:b4:43:5d:5d:0c:be: 07:ac:9f:06:bc:e2:5c:37:4b:5b:a2:22:1e:f8:12: 28:8d:38:28:10:13:3a:17:41:1b:ff:6b:1c:2b:5f: 05:a5:78:d5:90:b1:e9:ef:51:9e:bb:68:50:1c:cd: 84:7d:1c:90:de:04:d7:48:aa:86:05:e6:49:69:a3: c8:47:86:7b:6b:b6:3a:7e:1f:1f:08:0c:67:4c:16: ec:da:01:e0:8e:12:8b:5e:1c:97:a0:f8:52:76:c2: 2e:dd:dc:da:04:e1:94:b7:e5:54:3f:16:cf:1b:25: 87:a5:2d:e8:fb:b8:49:12:2f:82:e7:fb:c1:47:00: a2:9c:38:cf:c5:a1:0d:53:67:49:d4:f5:02:ac:b7: c0:fe:25:2f:d8:f3:58:c5:d9:e6:2e:3e:14:04:d5: eb:da:37:b7:86:9c:04:56:d3:75:31:98:c5:31:a5: 00:90:42:f4:03:96:7c:66:57:f7:a1:54:05:93:d4: af:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:9E:00:0C:0B:5B:50:09:D4:53:09:91:5E:AD:02:45:11:3F:C5:EE X509v3 Authority Key Identifier: keyid:BA:E7:FA:77:F7:24:BB:46:73:25:AD:59:D7:DB:FC:63:39:9C:6E:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uuf6d_cku0ZzJa1Z19v8Yzmcbnk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/77774a-fc07-4002-94f9-12dc94ddedcd/1/Lp4ADAtbUAnUUwmRXq0CRRE_xe4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/77774a-fc07-4002-94f9-12dc94ddedcd/1/uuf6d_cku0ZzJa1Z19v8Yzmcbnk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:ccc::/48 Signature Algorithm: sha256WithRSAEncryption a1:2c:be:e2:46:d8:8e:14:e1:bb:c6:78:c7:e5:7a:cb:58:bc: af:10:26:e2:78:2f:84:8b:9a:e8:c9:2e:d7:d8:f5:b7:6f:ff: 43:90:39:63:a4:10:49:73:14:a5:06:53:0e:ea:db:73:6f:d6: ae:b6:4a:49:cf:a2:dc:dd:4b:db:e1:f8:95:e1:cb:4a:11:bb: d3:d7:a0:e5:82:7e:d0:8f:98:0d:6e:2a:b6:1e:20:6f:54:09: f7:5a:65:47:d2:81:9b:ed:3d:19:80:18:18:76:91:8f:7e:c5: ca:41:a8:da:03:52:0b:1a:41:d4:3b:38:52:7a:45:9f:59:bd: 35:0a:31:45:2b:c1:74:d2:78:ae:fb:33:aa:96:0e:4b:bc:5d: 1d:3a:64:e8:da:6c:57:6d:54:0a:f0:41:96:15:63:d0:f6:0c: 6a:19:d1:18:9f:c9:17:24:c9:c5:6c:a0:2f:65:20:73:b5:01: 31:0f:00:11:9f:e7:a2:66:15:e7:59:62:67:91:3c:18:5b:65: 1e:4a:52:3b:72:54:d7:39:b6:19:af:86:8f:24:dc:5b:45:6b: cd:fc:cc:49:6c:ce:4e:15:76:63:8f:5f:5d:a4:ea:bb:d3:be: 0b:08:f3:7d:23:83:d5:1f:ef:4d:38:6f:5f:62:f2:81:0a:41: 21:4c:d4:b9 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+N3fTmgwdYNbOCyxQkYr/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhZTdmYTc3ZjcyNGJiNDY3MzI1YWQ1OWQ3ZGJmYzYzMzk5 YzZlNzkwHhcNMjYwMTAyMTAxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTllMDAwYzBiNWI1MDA5ZDQ1MzA5OTE1ZWFkMDI0NTExM2ZjNWVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0/z6A0lDAfEMpT1sUtxKVOr2Dmen +Z721BwSyj6Dwkfhg90+O3heOuFxiCCttkDtUUdYlVq5OBApm99+6stUUEPxdtO0 Q11dDL4HrJ8GvOJcN0tboiIe+BIojTgoEBM6F0Eb/2scK18FpXjVkLHp71Geu2hQ HM2EfRyQ3gTXSKqGBeZJaaPIR4Z7a7Y6fh8fCAxnTBbs2gHgjhKLXhyXoPhSdsIu 3dzaBOGUt+VUPxbPGyWHpS3o+7hJEi+C5/vBRwCinDjPxaENU2dJ1PUCrLfA/iUv 2PNYxdnmLj4UBNXr2je3hpwEVtN1MZjFMaUAkEL0A5Z8Zlf3oVQFk9SvzwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFC6eAAwLW1AJ1FMJkV6tAkURP8XuMB8GA1UdIwQY MBaAFLrn+nf3JLtGcyWtWdfb/GM5nG55MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXVmNmRfY2t1MFp6SmExWjE5djhZem1jYm5rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi83Nzc3NGEtZmMwNy00MDAyLTk0Zjkt MTJkYzk0ZGRlZGNkLzEvTHA0QURBdGJVQW5VVXdtUlhxMENSUkVfeGU0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi83Nzc3NGEtZmMwNy00MDAyLTk0ZjktMTJkYzk0ZGRlZGNk LzEvdXVmNmRfY2t1MFp6SmExWjE5djhZem1jYm5rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAzM MA0GCSqGSIb3DQEBCwUAA4IBAQChLL7iRtiOFOG7xnjH5XrLWLyvECbieC+Ei5ro yS7X2PW3b/9DkDljpBBJcxSlBlMO6ttzb9autkpJz6Lc3Uvb4fiV4ctKEbvT16Dl gn7Qj5gNbiq2HiBvVAn3WmVH0oGb7T0ZgBgYdpGPfsXKQajaA1ILGkHUOzhSekWf Wb01CjFFK8F00niu+zOqlg5LvF0dOmTo2mxXbVQK8EGWFWPQ9gxqGdEYn8kXJMnF bKAvZSBztQExDwARn+eiZhXnWWJnkTwYW2UeSlI7clTXObYZr4aPJNxbRWvN/MxJ bM5OFXZjj19dpOq7074LCPN9I4PVH+9NOG9fYvKBCkEhTNS5 -----END CERTIFICATE-----Generated at Mon Feb 9 21:00:08 2026 by rpki-client