This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/72j9UM3LXjCFPP6Y_2ZgAqwTREY.roa File: 72j9UM3LXjCFPP6Y_2ZgAqwTREY.roa (raw, json) Hash identifier: N2Nn7s7i9pgTHuzGawuw6JZZrdYkd6R3j3FM4YpNB0A= Subject key identifier: EF:68:FD:50:CD:CB:5E:30:85:3C:FE:98:FF:66:60:02:AC:13:44:46 Certificate issuer: /CN=57c670c8db32dd748df797c5c93013d8c91fa839 Certificate serial: 019B7C807E6D6BF72CBD8B5B55CA05BCA470 Authority key identifier: 57:C6:70:C8:DB:32:DD:74:8D:F7:97:C5:C9:30:13:D8:C9:1F:A8:39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V8ZwyNsy3XSN95fFyTAT2MkfqDk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/72j9UM3LXjCFPP6Y_2ZgAqwTREY.roa Signing time: Fri 02 Jan 2026 02:19:14 +0000 ROA not before: Fri 02 Jan 2026 02:19:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44812 IP address blocks: 2a0c:f643::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/V8ZwyNsy3XSN95fFyTAT2MkfqDk.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/V8ZwyNsy3XSN95fFyTAT2MkfqDk.mft rsync://rpki.ripe.net/repository/DEFAULT/V8ZwyNsy3XSN95fFyTAT2MkfqDk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:7e:6d:6b:f7:2c:bd:8b:5b:55:ca:05:bc:a4:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57c670c8db32dd748df797c5c93013d8c91fa839 Validity Not Before: Jan 2 02:19:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ef68fd50cdcb5e30853cfe98ff666002ac134446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:70:61:7a:95:64:dd:43:cb:f0:97:e5:bb:d4: cb:04:f2:e7:53:7e:ec:a9:c8:0c:63:8f:46:6b:22: 51:e2:38:86:20:ec:b8:1e:17:97:1f:72:aa:31:6e: 78:a4:8b:70:00:92:df:56:63:04:25:02:89:c6:c1: 99:29:f9:cd:80:d5:3e:6c:2d:42:69:b6:9c:38:ee: 6e:88:89:77:90:6e:f4:87:a4:96:0a:e7:e6:90:16: 73:b7:29:54:09:62:ac:5a:a8:10:78:4c:d4:7b:3f: f6:dc:7c:68:9f:69:02:c3:e7:2f:47:a2:5a:89:b9: 44:f9:a4:06:3a:ee:49:a8:0f:14:2f:d8:c2:63:fb: da:e9:bf:5e:9b:19:a7:b8:43:ba:53:90:7c:0c:56: d2:6e:4e:9c:e3:c5:bb:ac:d8:59:2b:28:4e:61:2d: 15:ac:28:b8:75:fe:ac:23:c3:f3:14:f5:56:86:c5: 40:b7:e0:cb:5f:c9:b0:08:f9:1c:c3:94:1b:1c:a4: 8e:94:c1:c3:8c:37:0f:4e:1c:be:5d:31:2e:ad:65: ab:40:b2:92:22:8b:2f:78:0d:30:37:ce:4b:92:25: 6a:c2:3e:dc:ca:7d:39:61:01:8d:56:3f:53:14:87: e6:3e:b5:91:5f:19:ca:1b:08:83:00:61:ce:bd:9f: d0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:68:FD:50:CD:CB:5E:30:85:3C:FE:98:FF:66:60:02:AC:13:44:46 X509v3 Authority Key Identifier: keyid:57:C6:70:C8:DB:32:DD:74:8D:F7:97:C5:C9:30:13:D8:C9:1F:A8:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V8ZwyNsy3XSN95fFyTAT2MkfqDk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/72j9UM3LXjCFPP6Y_2ZgAqwTREY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/V8ZwyNsy3XSN95fFyTAT2MkfqDk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:f643::/32 Signature Algorithm: sha256WithRSAEncryption 44:a1:30:04:69:a3:5c:6c:10:b7:a4:b8:5d:81:be:00:c1:bb: be:cb:81:e8:b1:9a:c6:9e:13:d0:a8:79:c9:67:ab:fc:b9:5f: 84:bc:51:4b:ab:63:83:5d:e8:e8:39:1e:28:a3:7e:ec:72:cb: 56:72:85:b4:16:9f:f0:46:47:a2:fe:51:86:7e:ea:aa:a5:01: 88:c3:2b:a9:e3:1c:36:59:d5:c2:15:c4:4c:6e:37:20:4f:06: c9:ce:9b:ff:6b:b0:89:a9:52:95:e9:55:be:5e:f6:14:c7:cd: 7b:6a:22:5d:b2:80:a6:a0:44:02:40:da:48:c0:49:fc:6d:47: e2:12:34:d7:d2:9c:45:20:bb:de:9e:65:04:3b:2f:b4:e6:4f: 1b:32:70:15:be:84:94:eb:47:48:1d:2b:a2:f8:14:10:4f:7c: bd:61:54:c0:25:dd:ee:3c:95:70:70:67:5d:f2:03:9b:da:b5: bc:36:fd:ca:c2:34:27:cd:4f:82:84:9b:a2:c5:23:51:62:cf: aa:48:0b:4d:db:80:f3:f2:7a:9f:cf:aa:10:65:5d:5d:04:2f: a9:d9:7f:fa:73:22:e8:e7:cb:f2:fb:62:5d:ca:6b:80:6f:db: ba:16:3d:c4:a1:6a:b6:9c:69:df:68:3e:1f:94:56:89:3c:c2: 7a:ca:db:35 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt8gH5ta/csvYtbVcoFvKRwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3YzY3MGM4ZGIzMmRkNzQ4ZGY3OTdjNWM5MzAxM2Q4Yzkx ZmE4MzkwHhcNMjYwMTAyMDIxOTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZjY4ZmQ1MGNkY2I1ZTMwODUzY2ZlOThmZjY2NjAwMmFjMTM0NDQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3BhepVk3UPL8Jflu9TLBPLnU37s qcgMY49GayJR4jiGIOy4HheXH3KqMW54pItwAJLfVmMEJQKJxsGZKfnNgNU+bC1C abacOO5uiIl3kG70h6SWCufmkBZztylUCWKsWqgQeEzUez/23Hxon2kCw+cvR6Ja iblE+aQGOu5JqA8UL9jCY/va6b9emxmnuEO6U5B8DFbSbk6c48W7rNhZKyhOYS0V rCi4df6sI8PzFPVWhsVAt+DLX8mwCPkcw5QbHKSOlMHDjDcPThy+XTEurWWrQLKS IosveA0wN85LkiVqwj7cyn05YQGNVj9TFIfmPrWRXxnKGwiDAGHOvZ/QMQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFO9o/VDNy14whTz+mP9mYAKsE0RGMB8GA1UdIwQY MBaAFFfGcMjbMt10jfeXxckwE9jJH6g5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVjhad3lOc3kzWFNOOTVmRnlUQVQyTWtmcURrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC81YTZmZGEtNzg5Ni00YzUwLWFmZmQt MzA0OTVmNDAzNzg0LzEvNzJqOVVNM0xYakNGUFA2WV8yWmdBcXdUUkVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC81YTZmZGEtNzg5Ni00YzUwLWFmZmQtMzA0OTVmNDAzNzg0 LzEvVjhad3lOc3kzWFNOOTVmRnlUQVQyTWtmcURrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgz2QzAN BgkqhkiG9w0BAQsFAAOCAQEARKEwBGmjXGwQt6S4XYG+AMG7vsuB6LGaxp4T0Kh5 yWer/LlfhLxRS6tjg13o6DkeKKN+7HLLVnKFtBaf8EZHov5Rhn7qqqUBiMMrqeMc NlnVwhXETG43IE8Gyc6b/2uwialSlelVvl72FMfNe2oiXbKApqBEAkDaSMBJ/G1H 4hI019KcRSC73p5lBDsvtOZPGzJwFb6ElOtHSB0rovgUEE98vWFUwCXd7jyVcHBn XfIDm9q1vDb9ysI0J81PgoSbosUjUWLPqkgLTduA8/J6n8+qEGVdXQQvqdl/+nMi 6OfL8vtiXcprgG/buhY9xKFqtpxp32g+H5RWiTzCesrbNQ== -----END CERTIFICATE-----Generated at Wed Jan 21 08:05:19 2026 by rpki-client