This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/vV0qDwSrPXXKJNdzheO4awadrKU.roa File: vV0qDwSrPXXKJNdzheO4awadrKU.roa (raw, json) Hash identifier: dmNCFV+VBXDyD5e9EAH4QfJp5RXpCk85PB743UMAoGM= Subject key identifier: BD:5D:2A:0F:04:AB:3D:75:CA:24:D7:73:85:E3:B8:6B:06:9D:AC:A5 Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Certificate serial: 019B7B358EE15BA374DB388314D2DFD89AC7 Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/vV0qDwSrPXXKJNdzheO4awadrKU.roa Signing time: Thu 01 Jan 2026 20:17:46 +0000 ROA not before: Thu 01 Jan 2026 20:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213809 IP address blocks: 2a14:67c1:50::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:8e:e1:5b:a3:74:db:38:83:14:d2:df:d8:9a:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0 Validity Not Before: Jan 1 20:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bd5d2a0f04ab3d75ca24d77385e3b86b069daca5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:90:55:6d:f9:28:ec:25:68:be:85:0c:20:bb: e0:e4:53:63:8b:23:bb:ec:77:fb:fb:94:9e:58:ec: 3d:5e:52:a9:76:cd:74:41:c1:9f:36:6e:ed:85:b7: c6:e1:e4:1b:ed:28:78:ad:ce:18:ed:d4:6d:89:91: e7:cd:46:c8:72:48:e3:06:1c:43:bd:30:be:5f:3a: ab:be:4b:9a:5b:94:7e:fe:2b:cc:96:9f:03:29:dc: 85:5c:85:1c:67:10:69:57:fd:ed:03:0c:fa:78:0a: 80:37:e1:40:d9:07:56:b4:0e:31:6d:fb:f2:fa:24: a7:f9:6e:b5:bd:37:65:b7:11:5d:11:cf:51:15:ba: 18:d4:ef:53:ad:61:77:15:d9:e5:d1:9d:73:95:5e: c9:ea:30:e6:c9:99:97:69:9f:f0:af:0e:59:81:f7: 3d:fd:9b:35:66:a5:dd:80:44:7f:fa:71:c1:d2:81: 5a:61:8b:f5:38:3a:cf:fe:8d:19:0e:33:e5:ac:c9: ad:25:01:4b:e2:a9:39:20:73:3e:e9:2f:e6:4c:64: a0:78:dc:0a:8a:de:b5:79:d9:a5:b1:c7:6f:55:65: f3:24:18:75:1f:76:e4:06:f5:b4:17:66:c9:21:0a: 70:3a:72:2f:a8:0c:92:0f:5c:9f:a7:33:7c:c9:51: 86:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:5D:2A:0F:04:AB:3D:75:CA:24:D7:73:85:E3:B8:6B:06:9D:AC:A5 X509v3 Authority Key Identifier: keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/vV0qDwSrPXXKJNdzheO4awadrKU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:67c1:50::/44 Signature Algorithm: sha256WithRSAEncryption 32:59:6d:d0:32:f7:e0:4e:1b:e0:85:86:0c:a2:b1:0d:25:89: 3e:54:b4:74:7a:7e:8a:07:bf:84:0f:aa:d2:64:d6:e8:61:7a: d3:ad:3e:7d:e5:b7:b2:94:bc:86:50:57:3f:2b:a7:ac:e3:81: bb:aa:31:6d:db:95:32:36:c4:72:f8:5a:12:18:38:a5:d5:59: 2a:95:ba:99:8a:c0:80:eb:f3:51:65:14:2d:dc:20:e0:fe:f4: 10:a5:aa:e4:11:f2:39:2a:2d:e8:a8:79:1d:2f:32:f4:0c:93: 68:18:29:0d:3f:d5:81:85:b6:da:e3:3c:e4:93:b7:ff:94:2e: fa:bf:ef:2f:c7:ee:c4:a2:88:ef:6c:c8:2f:7a:38:84:d0:73: ee:3f:e2:1a:17:72:cf:ff:18:34:c9:57:b5:8a:98:78:dc:bf: f2:a7:7b:ca:d5:d7:28:d8:d9:db:15:85:30:f8:b5:6d:cf:19: a0:89:6f:fd:a9:96:de:9e:7a:ab:77:11:4e:82:39:ba:0d:61: 1d:d2:fd:9e:8e:83:5e:72:69:e9:3f:65:30:e7:78:01:00:c2: 69:86:33:02:30:45:07:b2:f2:29:e0:55:43:1e:f0:83:63:a4: 81:86:55:a7:de:65:98:16:ff:eb:5a:d4:ac:14:53:2b:b2:d1: 49:2c:28:08 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7NY7hW6N02ziDFNLf2JrHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll NGUwZTAwHhcNMjYwMTAxMjAxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZDVkMmEwZjA0YWIzZDc1Y2EyNGQ3NzM4NWUzYjg2YjA2OWRhY2E1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA15BVbfko7CVovoUMILvg5FNjiyO7 7Hf7+5SeWOw9XlKpds10QcGfNm7thbfG4eQb7Sh4rc4Y7dRtiZHnzUbIckjjBhxD vTC+XzqrvkuaW5R+/ivMlp8DKdyFXIUcZxBpV/3tAwz6eAqAN+FA2QdWtA4xbfvy +iSn+W61vTdltxFdEc9RFboY1O9TrWF3Fdnl0Z1zlV7J6jDmyZmXaZ/wrw5Zgfc9 /Zs1ZqXdgER/+nHB0oFaYYv1ODrP/o0ZDjPlrMmtJQFL4qk5IHM+6S/mTGSgeNwK it61edmlscdvVWXzJBh1H3bkBvW0F2bJIQpwOnIvqAySD1yfpzN8yVGGBwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFL1dKg8Eqz11yiTXc4XjuGsGnaylMB8GA1UdIwQY MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt ZjZjYzRlZjBmN2RmLzEvdlYwcUR3U3JQWFhLSk5kemhlTzRhd2FkcktVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhRnwQBQ MA0GCSqGSIb3DQEBCwUAA4IBAQAyWW3QMvfgThvghYYMorENJYk+VLR0en6KB7+E D6rSZNboYXrTrT595beylLyGUFc/K6es44G7qjFt25UyNsRy+FoSGDil1VkqlbqZ isCA6/NRZRQt3CDg/vQQparkEfI5Ki3oqHkdLzL0DJNoGCkNP9WBhbba4zzkk7f/ lC76v+8vx+7EoojvbMgvejiE0HPuP+IaF3LP/xg0yVe1iph43L/yp3vK1dco2Nnb FYUw+LVtzxmgiW/9qZbennqrdxFOgjm6DWEd0v2ejoNecmnpP2Uw53gBAMJphjMC MEUHsvIp4FVDHvCDY6SBhlWn3mWYFv/rWtSsFFMrstFJLCgI -----END CERTIFICATE-----Generated at Sun Jan 25 12:05:47 2026 by rpki-client