This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/t9TnppNQWW-UysJ_h9yJ2UOPpRo.roa File: t9TnppNQWW-UysJ_h9yJ2UOPpRo.roa (raw, json) Hash identifier: xvYGfyteu5ejGxv9eeXcWJoTfpHXdcJ4D5vXHhff4wY= Subject key identifier: B7:D4:E7:A6:93:50:59:6F:94:CA:C2:7F:87:DC:89:D9:43:8F:A5:1A Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019B7B358D82F62DC825A1AEA6E03A55AE9C Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/t9TnppNQWW-UysJ_h9yJ2UOPpRo.roa Signing time: Thu 01 Jan 2026 20:17:45 +0000 ROA not before: Thu 01 Jan 2026 20:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213774 IP address blocks: 2a14:67c1:c900::/40 maxlen: 48 2a14:67c1:d100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:8d:82:f6:2d:c8:25:a1:ae:a6:e0:3a:55:ae:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Jan 1 20:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b7d4e7a69350596f94cac27f87dc89d9438fa51a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:32:ee:08:7b:3d:7b:df:cc:94:d1:b8:ab:5e: 9e:9a:ab:2f:1f:8c:62:5e:2b:c9:d8:04:8f:cf:88: 54:0a:43:84:82:7a:29:30:0d:4d:e3:5f:27:d0:fa: 0c:b0:78:c7:e9:2e:27:bd:6b:e6:b2:6c:29:f9:3a: 89:0d:87:c5:c1:af:91:33:2b:ab:ae:9b:84:eb:c6: 14:c1:3a:dd:93:be:b3:99:9c:08:18:03:1b:3f:f4: 2c:58:bf:48:5d:41:53:4e:fb:49:89:12:4d:a9:13: 60:44:d8:6c:8e:f6:64:fd:97:ac:75:a3:b0:6c:75: 30:da:bd:1f:06:e9:0f:66:89:da:cc:17:56:74:d9: 73:67:ee:62:bc:55:b3:ad:9a:20:83:ef:78:cc:99: cf:e1:69:6b:de:54:97:38:71:a0:26:4c:d7:89:80: a7:22:7d:9c:16:dc:75:77:07:53:67:5c:89:36:c1: aa:16:35:5e:30:96:66:18:a8:6c:2a:6e:c3:d5:41: c7:6f:ba:74:50:2f:ba:24:15:22:a9:d4:52:4c:5c: b2:5b:e0:51:c2:aa:50:25:25:70:33:c0:c4:9e:51: 6d:1e:8d:ec:08:d9:8d:30:34:4a:6b:d5:5b:44:54: 92:03:5d:a6:53:fd:83:1b:b1:99:31:d7:df:4b:aa: 50:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D4:E7:A6:93:50:59:6F:94:CA:C2:7F:87:DC:89:D9:43:8F:A5:1A X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/t9TnppNQWW-UysJ_h9yJ2UOPpRo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:67c1:c900::/40 2a14:67c1:d100::/40 Signature Algorithm: sha256WithRSAEncryption 6f:41:62:62:40:1d:a5:05:00:8b:20:d0:db:5b:52:ac:b4:36: b5:ce:83:4c:a8:94:b3:69:7d:15:62:c6:c5:47:70:88:1b:7b: ff:ea:99:08:da:fd:42:c0:68:16:5e:41:89:3b:0b:39:07:99: 05:e5:8f:b2:58:a7:ef:22:9b:15:3f:35:48:f2:ab:34:5a:80: 22:d1:d2:92:5b:3a:94:7f:68:af:66:2f:f0:1d:d7:4c:9b:77: f3:0f:b2:55:13:f5:a4:37:bc:7d:21:4c:7e:45:e9:67:3c:60: 90:96:00:09:2b:62:e5:d8:a9:83:34:1b:48:d4:1f:fc:45:b7: 80:f0:6a:88:bc:cf:a4:10:10:97:81:1e:b3:ab:d2:96:96:b1: 54:e1:64:7f:44:2e:06:26:5e:4e:8f:ee:b9:53:d9:0b:60:70: 02:ae:d7:11:3c:16:e5:ab:27:17:75:2b:73:8e:bf:c0:94:90: 28:ce:9b:8e:f9:97:1c:4b:29:96:a6:bf:50:7c:36:56:2e:fc: 29:6b:18:e2:47:98:c3:00:04:fa:15:bb:6e:82:2b:e8:81:3e: 7f:28:11:9c:45:d9:b0:9d:d5:e3:97:57:f2:18:6a:5d:fe:0a: b7:dd:c8:ef:54:93:3f:8b:15:49:4e:65:a0:9c:a6:15:26:84: 5f:ac:f7:6f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZt7NY2C9i3IJaGupuA6Va6cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjYwMTAxMjAxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiN2Q0ZTdhNjkzNTA1OTZmOTRjYWMyN2Y4N2RjODlkOTQzOGZhNTFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDLuCHs9e9/MlNG4q16emqsvH4xi XivJ2ASPz4hUCkOEgnopMA1N418n0PoMsHjH6S4nvWvmsmwp+TqJDYfFwa+RMyur rpuE68YUwTrdk76zmZwIGAMbP/QsWL9IXUFTTvtJiRJNqRNgRNhsjvZk/ZesdaOw bHUw2r0fBukPZonazBdWdNlzZ+5ivFWzrZogg+94zJnP4Wlr3lSXOHGgJkzXiYCn In2cFtx1dwdTZ1yJNsGqFjVeMJZmGKhsKm7D1UHHb7p0UC+6JBUiqdRSTFyyW+BR wqpQJSVwM8DEnlFtHo3sCNmNMDRKa9VbRFSSA12mU/2DG7GZMdffS6pQGQIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFLfU56aTUFlvlMrCf4fcidlDj6UaMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEvdDlUbnBwTlFXVy1VeXNKX2g5eUoyVU9QcFJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYAKhRnwckD BgAqFGfB0TANBgkqhkiG9w0BAQsFAAOCAQEAb0FiYkAdpQUAiyDQ21tSrLQ2tc6D TKiUs2l9FWLGxUdwiBt7/+qZCNr9QsBoFl5BiTsLOQeZBeWPslin7yKbFT81SPKr NFqAItHSkls6lH9or2Yv8B3XTJt38w+yVRP1pDe8fSFMfkXpZzxgkJYACSti5dip gzQbSNQf/EW3gPBqiLzPpBAQl4Ees6vSlpaxVOFkf0QuBiZeTo/uuVPZC2BwAq7X ETwW5asnF3Urc46/wJSQKM6bjvmXHEsplqa/UHw2Vi78KWsY4keYwwAE+hW7boIr 6IE+fygRnEXZsJ3V45dX8hhqXf4Kt93I71STP4sVSU5loJymFSaEX6z3bw== -----END CERTIFICATE-----Generated at Sun Jan 25 13:43:47 2026 by rpki-client