This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/DmU8o07KrwKlfZjxzpvBg6x72ZY.roa File: DmU8o07KrwKlfZjxzpvBg6x72ZY.roa (raw, json) Hash identifier: 3AMqkIfoYm6vv+fu6hG8uecuB7Lsik/odD+5DGMuI/Y= Subject key identifier: 0E:65:3C:A3:4E:CA:AF:02:A5:7D:98:F1:CE:9B:C1:83:AC:7B:D9:96 Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019ACECED5C8641288EA62A9532D166F8A6D Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/DmU8o07KrwKlfZjxzpvBg6x72ZY.roa Signing time: Sat 29 Nov 2025 08:50:52 +0000 ROA not before: Sat 29 Nov 2025 08:50:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 216299 IP address blocks: 2a14:67c2:a00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ce:ce:d5:c8:64:12:88:ea:62:a9:53:2d:16:6f:8a:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Nov 29 08:50:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=0e653ca34ecaaf02a57d98f1ce9bc183ac7bd996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8e:71:a5:42:8c:65:4f:94:8a:a4:f8:13:16: b1:2a:ad:bb:0f:7d:00:b5:2c:37:fa:d5:1b:5a:e7: 82:c5:41:74:bd:7a:4c:1b:14:9b:8c:49:db:8e:40: 22:11:b4:39:68:d6:b0:3c:ae:4b:1f:02:7a:fe:b9: fd:96:ee:69:83:90:7d:94:d9:4f:e9:0f:98:87:47: 96:1f:ca:fd:8b:e9:1c:da:3e:4d:a5:50:49:93:03: 99:79:98:d8:13:db:9e:2f:e9:ee:62:64:ca:70:55: a3:e9:58:c1:88:46:61:a6:9f:17:cd:25:9c:de:66: 1b:1e:74:3a:81:4b:41:55:11:bf:e0:54:59:89:eb: 65:30:9d:80:ba:5d:d3:25:a6:b4:01:e3:45:79:1f: b7:bd:0d:72:b9:04:75:8d:de:4a:57:4e:86:df:b9: 40:e5:c7:1f:cf:90:f2:5e:18:cc:27:8a:97:81:93: c3:51:19:73:27:d4:2a:7f:55:6e:20:ab:63:69:e9: e3:d8:33:e9:3e:4f:a5:fe:65:fe:dd:2d:7d:ef:94: ae:3b:29:cd:00:78:98:ce:b7:5c:7a:0e:36:14:71: c0:52:57:5e:2b:a2:26:52:89:5e:01:8b:62:e5:6f: 36:1e:85:b9:fe:c7:9a:ea:9d:dd:2f:b4:34:15:7e: 45:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:65:3C:A3:4E:CA:AF:02:A5:7D:98:F1:CE:9B:C1:83:AC:7B:D9:96 X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/DmU8o07KrwKlfZjxzpvBg6x72ZY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:67c2:a00::/40 Signature Algorithm: sha256WithRSAEncryption 9b:2f:d5:f4:b1:75:77:8c:82:6c:61:0a:c5:e9:37:05:a6:df: 7b:b2:0d:9d:ef:cd:38:f8:b3:b0:24:3e:8f:db:95:cc:0f:4a: 2c:a8:32:6d:17:67:50:0e:99:b8:b7:2d:d7:09:57:a5:8b:ef: 96:b2:d1:74:ce:de:b9:cf:59:cb:18:d3:bf:99:98:76:13:2b: d0:2c:2f:47:50:c8:7d:01:3a:3a:a8:f6:05:72:7d:c0:b5:84: a5:f0:08:b1:9b:f2:04:67:45:ef:27:ea:78:06:01:aa:51:a1: d0:9d:4a:6e:9b:58:5d:71:9d:d7:1e:b2:d5:52:7a:7f:31:3f: e5:07:35:b9:1f:5d:1a:a0:38:62:f2:a7:ad:f0:f5:98:e8:b2: 38:c0:16:e5:de:e1:57:49:32:bd:4c:23:cc:62:f7:a7:d5:de: 1f:de:e3:9d:2c:b4:5a:b9:2e:d5:1c:ec:fa:62:be:9f:55:a5: 2c:01:5c:e2:1e:b5:32:4e:05:e9:74:61:97:2a:e7:41:a5:b4: 76:0b:b7:4c:77:23:d2:28:14:3f:53:be:20:3c:9f:8a:d7:a9: 95:21:46:d1:e5:af:0d:fd:ea:55:f4:00:7c:5a:7f:d7:79:94: ef:00:a1:4a:1f:8d:48:db:12:52:42:f3:be:7d:d2:83:f0:48: 89:e6:98:2c -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZrOztXIZBKI6mKpUy0Wb4ptMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjUxMTI5MDg1MDUyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZTY1M2NhMzRlY2FhZjAyYTU3ZDk4ZjFjZTliYzE4M2FjN2JkOTk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Y5xpUKMZU+UiqT4ExaxKq27D30A tSw3+tUbWueCxUF0vXpMGxSbjEnbjkAiEbQ5aNawPK5LHwJ6/rn9lu5pg5B9lNlP 6Q+Yh0eWH8r9i+kc2j5NpVBJkwOZeZjYE9ueL+nuYmTKcFWj6VjBiEZhpp8XzSWc 3mYbHnQ6gUtBVRG/4FRZietlMJ2Aul3TJaa0AeNFeR+3vQ1yuQR1jd5KV06G37lA 5ccfz5DyXhjMJ4qXgZPDURlzJ9Qqf1VuIKtjaenj2DPpPk+l/mX+3S1975SuOynN AHiYzrdceg42FHHAUldeK6ImUoleAYti5W82HoW5/sea6p3dL7Q0FX5F0QIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFA5lPKNOyq8CpX2Y8c6bwYOse9mWMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEvRG1VOG8wN0tyd0tsZlpqeHpwdkJnNng3MlpZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhRnwgow DQYJKoZIhvcNAQELBQADggEBAJsv1fSxdXeMgmxhCsXpNwWm33uyDZ3vzTj4s7Ak Po/blcwPSiyoMm0XZ1AOmbi3LdcJV6WL75ay0XTO3rnPWcsY07+ZmHYTK9AsL0dQ yH0BOjqo9gVyfcC1hKXwCLGb8gRnRe8n6ngGAapRodCdSm6bWF1xndcestVSen8x P+UHNbkfXRqgOGLyp63w9ZjosjjAFuXe4VdJMr1MI8xi96fV3h/e450stFq5LtUc 7Ppivp9VpSwBXOIetTJOBel0YZcq50GltHYLt0x3I9IoFD9TviA8n4rXqZUhRtHl rw396lX0AHxaf9d5lO8AoUofjUjbElJC87590oPwSInmmCw= -----END CERTIFICATE-----Generated at Sat Dec 6 08:55:46 2025 by rpki-client