This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/U7cI_SrzScRidOTBY3ztaaku1h0.roa File: U7cI_SrzScRidOTBY3ztaaku1h0.roa (raw, json) Hash identifier: li7r7ttvs4O9sjwxP5XbMk/7oP/32w47y+Ge9YiYJWo= Subject key identifier: 53:B7:08:FD:2A:F3:49:C4:62:74:E4:C1:63:7C:ED:69:A9:2E:D6:1D Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019B7B357E56606186C46236FF84617E3412 Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/U7cI_SrzScRidOTBY3ztaaku1h0.roa Signing time: Thu 01 Jan 2026 20:17:41 +0000 ROA not before: Thu 01 Jan 2026 20:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198025 IP address blocks: 2a14:67c1:b000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:7e:56:60:61:86:c4:62:36:ff:84:61:7e:34:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Jan 1 20:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=53b708fd2af349c46274e4c1637ced69a92ed61d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:52:54:1d:ac:a1:56:57:aa:28:35:c9:8a:5a: 23:7a:a6:14:27:9d:48:3f:49:34:65:3b:42:93:0e: 0e:db:8e:66:f0:79:36:82:16:bb:f5:56:03:20:9c: ec:52:0c:f8:58:a8:0b:76:67:58:ac:b2:e2:cd:ac: af:98:52:7f:7a:4b:be:03:59:1f:aa:2c:8f:97:47: ef:dc:35:10:c3:ad:5c:2c:e7:e9:e5:d1:6c:b4:cd: 7b:24:c5:74:9a:6c:32:e6:0d:fe:c4:55:65:83:5e: d0:4f:ae:c5:d8:b4:40:f8:c7:8c:13:50:67:17:d8: ee:55:05:af:0e:3d:73:4c:d1:20:e7:ed:96:30:69: d9:ae:8d:fe:4d:6c:5c:36:de:7f:20:ca:5c:1f:b5: 19:c7:76:06:71:8b:9a:10:c6:7c:c4:d4:fe:66:ea: 47:a0:9e:54:02:6f:08:2b:aa:78:fd:91:e6:fb:90: 33:fd:73:33:50:a4:5c:ee:0d:fd:27:6d:4a:89:a0: b1:36:16:b6:81:e5:d1:b7:b5:9e:82:9e:a2:46:88: e5:db:42:36:a9:fe:77:77:82:a5:bd:c0:34:07:dd: 3a:c5:8d:93:34:2f:c3:e5:ec:92:7b:ac:8e:6a:8f: 7b:41:04:75:35:e2:10:81:22:b1:57:47:df:a0:36: 15:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:B7:08:FD:2A:F3:49:C4:62:74:E4:C1:63:7C:ED:69:A9:2E:D6:1D X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/U7cI_SrzScRidOTBY3ztaaku1h0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:67c1:b000::/48 Signature Algorithm: sha256WithRSAEncryption 5a:58:ba:b2:9b:d1:71:03:02:76:d8:78:5f:2c:cd:87:46:b3: 71:b6:07:64:e8:65:d2:fc:14:5c:57:e2:98:9b:a3:f8:fd:e2: 4e:e4:e1:78:f8:5c:63:b2:53:44:dc:62:38:24:e1:cd:21:a4: 65:47:c6:bc:c6:5c:8b:39:65:e1:37:d5:da:7b:61:e7:0d:16: 02:ab:04:7e:9a:e9:5b:bd:4c:91:af:0f:8a:d7:7b:a6:d9:fc: 50:42:cd:20:f7:c6:26:d2:c9:2d:a7:a2:61:13:93:37:5f:69: 8e:7b:28:61:f4:c5:3c:7d:b4:be:e3:b1:fc:34:cd:fd:61:ac: 58:dc:a8:b7:7d:d0:39:57:c9:40:a3:6b:6f:36:07:99:2f:bd: a7:98:13:8f:fb:4b:7c:e1:7c:ff:8e:c7:79:1b:0a:0a:0c:ab: 6c:8c:59:54:e6:2c:c6:e0:38:2f:83:35:75:bf:02:9b:ab:52: 39:d5:c5:82:c9:3a:f0:0f:1d:cc:c3:c0:4c:eb:59:68:78:a6: f7:e0:dc:09:b5:55:7d:4e:8e:13:b1:86:77:53:dd:f9:8a:bb: 60:39:f2:da:a3:1c:b5:ce:b5:b7:f9:55:8e:d6:e0:13:88:e6: 8c:cd:c7:52:6f:8d:d5:19:d0:3f:05:db:c0:d5:6e:5a:08:fd: d1:7c:08:1c -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7NX5WYGGGxGI2/4RhfjQSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjYwMTAxMjAxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1M2I3MDhmZDJhZjM0OWM0NjI3NGU0YzE2MzdjZWQ2OWE5MmVkNjFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1lJUHayhVleqKDXJilojeqYUJ51I P0k0ZTtCkw4O245m8Hk2gha79VYDIJzsUgz4WKgLdmdYrLLizayvmFJ/eku+A1kf qiyPl0fv3DUQw61cLOfp5dFstM17JMV0mmwy5g3+xFVlg17QT67F2LRA+MeME1Bn F9juVQWvDj1zTNEg5+2WMGnZro3+TWxcNt5/IMpcH7UZx3YGcYuaEMZ8xNT+ZupH oJ5UAm8IK6p4/ZHm+5Az/XMzUKRc7g39J21KiaCxNha2geXRt7Wegp6iRojl20I2 qf53d4KlvcA0B906xY2TNC/D5eySe6yOao97QQR1NeIQgSKxV0ffoDYViwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFO3CP0q80nEYnTkwWN87WmpLtYdMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEvVTdjSV9TcnpTY1JpZE9UQlkzenRhYWt1MWgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhRnwbAA MA0GCSqGSIb3DQEBCwUAA4IBAQBaWLqym9FxAwJ22HhfLM2HRrNxtgdk6GXS/BRc V+KYm6P4/eJO5OF4+FxjslNE3GI4JOHNIaRlR8a8xlyLOWXhN9Xae2HnDRYCqwR+ mulbvUyRrw+K13um2fxQQs0g98Ym0sktp6JhE5M3X2mOeyhh9MU8fbS+47H8NM39 YaxY3Ki3fdA5V8lAo2tvNgeZL72nmBOP+0t84Xz/jsd5GwoKDKtsjFlU5izG4Dgv gzV1vwKbq1I51cWCyTrwDx3Mw8BM61loeKb34NwJtVV9To4TsYZ3U935irtgOfLa oxy1zrW3+VWO1uATiOaMzcdSb43VGdA/BdvA1W5aCP3RfAgc -----END CERTIFICATE-----Generated at Sun Jan 25 12:05:57 2026 by rpki-client