This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/73ca57-4eee-4c29-814a-81790f61e794/1/o07AL4hoPWhIQ_PilCKmUZTA81o.roa File: o07AL4hoPWhIQ_PilCKmUZTA81o.roa (raw, json) Hash identifier: dz2qz7xDuDCVAKsXdQvYhNbSC2RVScmT9UhnlSmU23E= Subject key identifier: A3:4E:C0:2F:88:68:3D:68:48:43:F3:E2:94:22:A6:51:94:C0:F3:5A Certificate issuer: /CN=9788de1b757eaaab5e76b196e178b60b5e6c240c Certificate serial: 019B7EA645EDCD8DC9444128F93020667AA3 Authority key identifier: 97:88:DE:1B:75:7E:AA:AB:5E:76:B1:96:E1:78:B6:0B:5E:6C:24:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l4jeG3V-qqtedrGW4Xi2C15sJAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/73ca57-4eee-4c29-814a-81790f61e794/1/o07AL4hoPWhIQ_PilCKmUZTA81o.roa Signing time: Fri 02 Jan 2026 12:19:44 +0000 ROA not before: Fri 02 Jan 2026 12:19:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3257 IP address blocks: 2a14:4340::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/73ca57-4eee-4c29-814a-81790f61e794/1/l4jeG3V-qqtedrGW4Xi2C15sJAw.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/73ca57-4eee-4c29-814a-81790f61e794/1/l4jeG3V-qqtedrGW4Xi2C15sJAw.mft rsync://rpki.ripe.net/repository/DEFAULT/l4jeG3V-qqtedrGW4Xi2C15sJAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:45:ed:cd:8d:c9:44:41:28:f9:30:20:66:7a:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9788de1b757eaaab5e76b196e178b60b5e6c240c Validity Not Before: Jan 2 12:19:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a34ec02f88683d684843f3e29422a65194c0f35a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:65:91:48:73:86:51:61:9e:36:43:7b:2d:a2: 18:25:74:9f:26:bf:1f:07:f2:9a:99:4d:89:28:2f: 54:60:4c:84:10:9e:bb:dd:ba:3b:bf:c3:fe:0c:92: 44:68:48:9b:e2:0e:f9:2b:22:c4:ae:76:c6:d2:64: 85:4d:3f:7a:e1:9c:5c:0c:73:9a:74:87:59:e0:0a: 7b:46:1d:35:32:49:69:d8:1d:19:0e:5e:9d:cd:74: a3:10:31:b6:86:96:02:77:dc:af:a3:c5:f5:fe:f9: a8:09:f5:cb:fe:30:7a:d3:23:4b:b8:53:cc:cc:33: 94:2b:94:7e:1c:5c:ec:90:c0:2e:cf:c4:77:b4:3c: 7d:6a:4c:2f:b1:2a:2d:d4:6f:73:3f:69:b6:a5:14: b6:92:3c:02:28:d8:be:fe:2b:09:ff:6f:d4:5c:8c: 6c:b0:8b:3a:bd:c0:b8:38:80:22:3f:ba:21:8e:00: 03:d3:e8:fe:05:86:b2:60:22:00:84:bb:b9:5b:69: 96:94:02:fb:44:23:20:c2:a3:95:a6:71:5e:34:e3: ad:7b:c2:7e:64:8d:53:c2:64:0e:91:6d:98:22:b6: ed:a1:4c:61:9a:81:bb:59:60:65:ed:b0:fd:ce:e6: e3:40:0e:01:4e:be:d0:3b:62:01:46:9e:4c:0f:2e: cf:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:4E:C0:2F:88:68:3D:68:48:43:F3:E2:94:22:A6:51:94:C0:F3:5A X509v3 Authority Key Identifier: keyid:97:88:DE:1B:75:7E:AA:AB:5E:76:B1:96:E1:78:B6:0B:5E:6C:24:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l4jeG3V-qqtedrGW4Xi2C15sJAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/73ca57-4eee-4c29-814a-81790f61e794/1/o07AL4hoPWhIQ_PilCKmUZTA81o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/73ca57-4eee-4c29-814a-81790f61e794/1/l4jeG3V-qqtedrGW4Xi2C15sJAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:4340::/29 Signature Algorithm: sha256WithRSAEncryption 70:47:f2:7c:df:ff:27:2f:2f:c2:15:a7:9d:e0:bf:13:f6:23: 65:a9:a8:bc:f3:90:46:b8:1e:01:b5:34:9d:08:e9:76:73:6e: 17:f4:35:e3:5d:4f:8c:38:6a:9b:b7:bf:37:e3:6a:c3:7c:a7: fe:34:44:22:3d:7d:c0:17:39:f0:dc:d4:dc:bd:72:fc:b1:6c: 25:25:d7:6b:73:20:3e:c6:d0:b2:99:0e:1c:a6:15:55:0c:28: 7b:bd:8e:f3:4e:51:22:8e:e6:79:29:71:55:4d:ef:82:5b:eb: e0:11:89:4c:00:3c:4e:49:38:09:bf:9a:f1:1e:64:7f:db:ca: 10:ba:c8:ee:a2:15:29:02:3b:54:d4:59:06:f4:34:f7:57:0f: 46:5a:dd:4a:0f:17:33:bc:f5:2a:b6:aa:33:91:8b:a3:de:1e: 17:45:e8:8d:91:da:ae:2d:28:7c:d5:1b:82:91:b7:73:75:7e: 8b:65:49:73:8e:9c:38:e8:3d:b3:2a:b3:d2:a0:39:73:78:e0: 59:00:36:fd:e2:f1:b8:dc:36:7a:b6:bf:64:f8:22:21:75:6f: e4:e7:12:d0:20:c4:0b:62:0e:82:70:74:ae:3c:65:3d:38:23: af:95:42:3f:00:56:ab:10:be:ea:b3:35:e6:57:94:5e:9e:26: 44:3a:26:bf -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt+pkXtzY3JREEo+TAgZnqjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3ODhkZTFiNzU3ZWFhYWI1ZTc2YjE5NmUxNzhiNjBiNWU2 YzI0MGMwHhcNMjYwMTAyMTIxOTQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMzRlYzAyZjg4NjgzZDY4NDg0M2YzZTI5NDIyYTY1MTk0YzBmMzVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz2WRSHOGUWGeNkN7LaIYJXSfJr8f B/KamU2JKC9UYEyEEJ673bo7v8P+DJJEaEib4g75KyLErnbG0mSFTT964ZxcDHOa dIdZ4Ap7Rh01Mklp2B0ZDl6dzXSjEDG2hpYCd9yvo8X1/vmoCfXL/jB60yNLuFPM zDOUK5R+HFzskMAuz8R3tDx9akwvsSot1G9zP2m2pRS2kjwCKNi+/isJ/2/UXIxs sIs6vcC4OIAiP7ohjgAD0+j+BYayYCIAhLu5W2mWlAL7RCMgwqOVpnFeNOOte8J+ ZI1TwmQOkW2YIrbtoUxhmoG7WWBl7bD9zubjQA4BTr7QO2IBRp5MDy7PXwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFKNOwC+IaD1oSEPz4pQiplGUwPNaMB8GA1UdIwQY MBaAFJeI3ht1fqqrXnaxluF4tgtebCQMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDRqZUczVi1xcXRlZHJHVzRYaTJDMTVzSkF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy83M2NhNTctNGVlZS00YzI5LTgxNGEt ODE3OTBmNjFlNzk0LzEvbzA3QUw0aG9QV2hJUV9QaWxDS21VWlRBODFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy83M2NhNTctNGVlZS00YzI5LTgxNGEtODE3OTBmNjFlNzk0 LzEvbDRqZUczVi1xcXRlZHJHVzRYaTJDMTVzSkF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhRDQDAN BgkqhkiG9w0BAQsFAAOCAQEAcEfyfN//Jy8vwhWnneC/E/YjZamovPOQRrgeAbU0 nQjpdnNuF/Q1411PjDhqm7e/N+Nqw3yn/jREIj19wBc58NzU3L1y/LFsJSXXa3Mg PsbQspkOHKYVVQwoe72O805RIo7meSlxVU3vglvr4BGJTAA8Tkk4Cb+a8R5kf9vK ELrI7qIVKQI7VNRZBvQ091cPRlrdSg8XM7z1KraqM5GLo94eF0XojZHari0ofNUb gpG3c3V+i2VJc46cOOg9syqz0qA5c3jgWQA2/eLxuNw2era/ZPgiIXVv5OcS0CDE C2IOgnB0rjxlPTgjr5VCPwBWqxC+6rM15leUXp4mRDomvw== -----END CERTIFICATE-----Generated at Fri Jan 2 16:24:31 2026 by rpki-client