This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/7b0a85-9677-4d03-afb6-a9faf6a26426/1/7ae8tk0pU6530a5zvLjXOVWqT9A.roa File: 7ae8tk0pU6530a5zvLjXOVWqT9A.roa (raw, json) Hash identifier: Le7f9gD0/D1c+veukkepeDsMrYncp4PB6LJ2FQIfqPg= Subject key identifier: ED:A7:BC:B6:4D:29:53:AE:77:D1:AE:73:BC:B8:D7:39:55:AA:4F:D0 Certificate issuer: /CN=f2807f280da99569eca24346babe9dc85ac13240 Certificate serial: 019B7758D665CD095DBB7E0CE1CB6C43A031 Authority key identifier: F2:80:7F:28:0D:A9:95:69:EC:A2:43:46:BA:BE:9D:C8:5A:C1:32:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8oB_KA2plWnsokNGur6dyFrBMkA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/7b0a85-9677-4d03-afb6-a9faf6a26426/1/7ae8tk0pU6530a5zvLjXOVWqT9A.roa Signing time: Thu 01 Jan 2026 02:17:49 +0000 ROA not before: Thu 01 Jan 2026 02:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14616 IP address blocks: 2a02:e38:8100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/7b0a85-9677-4d03-afb6-a9faf6a26426/1/8oB_KA2plWnsokNGur6dyFrBMkA.crl rsync://rpki.ripe.net/repository/DEFAULT/03/7b0a85-9677-4d03-afb6-a9faf6a26426/1/8oB_KA2plWnsokNGur6dyFrBMkA.mft rsync://rpki.ripe.net/repository/DEFAULT/8oB_KA2plWnsokNGur6dyFrBMkA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:d6:65:cd:09:5d:bb:7e:0c:e1:cb:6c:43:a0:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f2807f280da99569eca24346babe9dc85ac13240 Validity Not Before: Jan 1 02:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eda7bcb64d2953ae77d1ae73bcb8d73955aa4fd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:43:f0:96:e7:af:f8:6a:b4:e6:4d:6d:f1:04: 42:fd:15:65:36:ac:2d:b3:6e:22:7a:80:6f:e0:23: bf:27:93:38:4d:c6:2d:7b:e8:57:db:08:25:c4:a8: df:f3:27:3b:1f:6f:d9:07:4d:8a:4d:3d:a5:36:f5: fc:5c:00:ce:39:fa:29:b9:a9:f9:d6:88:81:09:f4: 46:a0:3f:93:43:54:f9:e3:6b:da:96:83:8d:87:dd: 6b:30:0a:a1:2f:03:8a:48:0e:d1:45:fd:bf:d9:ce: 5d:d9:0b:bc:65:e2:f6:d6:7c:f1:cf:ff:2d:34:ae: 82:08:93:12:ba:d2:d0:63:fd:49:a6:50:c0:d6:66: ca:02:f6:54:7a:e4:1e:e2:d1:42:e7:75:e7:0b:52: 68:4c:9d:8d:71:f0:8c:91:9b:c6:f4:d9:52:83:eb: 62:ee:8e:0e:30:8e:b1:aa:26:eb:d2:3b:76:61:c2: ab:23:6c:0a:85:7d:ee:63:47:ff:e1:be:12:12:87: ee:fe:ae:b1:28:2b:5a:5a:9c:05:be:3d:a0:70:b8: d3:94:70:1f:fd:c1:1e:6f:a3:53:90:3f:f7:03:2d: 9d:2e:e9:34:19:12:2b:22:74:41:28:4f:97:b2:38: 99:c2:5c:d0:2f:71:4b:3f:5e:87:75:bc:8f:cf:21: 43:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:A7:BC:B6:4D:29:53:AE:77:D1:AE:73:BC:B8:D7:39:55:AA:4F:D0 X509v3 Authority Key Identifier: keyid:F2:80:7F:28:0D:A9:95:69:EC:A2:43:46:BA:BE:9D:C8:5A:C1:32:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8oB_KA2plWnsokNGur6dyFrBMkA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/7b0a85-9677-4d03-afb6-a9faf6a26426/1/7ae8tk0pU6530a5zvLjXOVWqT9A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/7b0a85-9677-4d03-afb6-a9faf6a26426/1/8oB_KA2plWnsokNGur6dyFrBMkA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:e38:8100::/40 Signature Algorithm: sha256WithRSAEncryption 68:e7:48:17:83:49:f8:31:e0:08:aa:2b:e3:b7:3f:03:ce:4f: 99:62:4f:46:2e:f7:05:38:94:76:23:de:ca:b8:e1:46:e5:4a: 4a:7a:41:56:4d:2e:72:81:cd:80:e1:3c:4a:5e:be:e1:14:28: 15:be:36:42:cb:64:95:37:35:a0:7a:4d:c5:3d:4f:a1:d0:23: ce:ff:89:06:22:92:91:de:f8:59:11:78:cc:e6:2c:a9:97:7b: 08:36:e2:3c:48:2e:28:6f:7a:87:3b:25:d6:d8:0c:9a:d2:7f: 3b:65:69:4a:b1:1d:31:f7:b1:7f:4b:b1:98:7f:d1:84:55:a0: 41:57:48:da:51:1e:d0:da:95:de:8a:e5:2d:f3:00:57:52:fb: c0:cd:d1:9e:9d:1f:3a:25:b7:d6:6d:77:78:04:a0:2c:6f:d3: ef:ff:d0:40:8e:d8:cb:52:fc:6a:97:81:2c:6a:42:e3:f4:3e: 15:f4:eb:1c:ac:1a:ed:65:05:e7:55:98:71:cd:29:af:d0:55: 58:f0:d5:40:3a:3c:ba:39:27:b6:94:0b:62:05:04:fa:ca:ba: 96:85:c1:b0:a5:52:c8:49:61:41:f0:45:04:fd:22:3c:73:37: fa:cc:8f:7f:e7:d8:7d:26:0d:72:7e:1f:96:14:9c:46:40:f7: dd:c7:ed:2a -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt3WNZlzQldu34M4ctsQ6AxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyODA3ZjI4MGRhOTk1NjllY2EyNDM0NmJhYmU5ZGM4NWFj MTMyNDAwHhcNMjYwMTAxMDIxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZGE3YmNiNjRkMjk1M2FlNzdkMWFlNzNiY2I4ZDczOTU1YWE0ZmQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEPwluev+Gq05k1t8QRC/RVlNqwt s24ieoBv4CO/J5M4TcYte+hX2wglxKjf8yc7H2/ZB02KTT2lNvX8XADOOfopuan5 1oiBCfRGoD+TQ1T542valoONh91rMAqhLwOKSA7RRf2/2c5d2Qu8ZeL21nzxz/8t NK6CCJMSutLQY/1JplDA1mbKAvZUeuQe4tFC53XnC1JoTJ2NcfCMkZvG9NlSg+ti 7o4OMI6xqibr0jt2YcKrI2wKhX3uY0f/4b4SEofu/q6xKCtaWpwFvj2gcLjTlHAf /cEeb6NTkD/3Ay2dLuk0GRIrInRBKE+XsjiZwlzQL3FLP16HdbyPzyFDSwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFO2nvLZNKVOud9Guc7y41zlVqk/QMB8GA1UdIwQY MBaAFPKAfygNqZVp7KJDRrq+nchawTJAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOG9CX0tBMnBsV25zb2tOR3VyNmR5RnJCTWtBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy83YjBhODUtOTY3Ny00ZDAzLWFmYjYt YTlmYWY2YTI2NDI2LzEvN2FlOHRrMHBVNjUzMGE1enZMalhPVldxVDlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy83YjBhODUtOTY3Ny00ZDAzLWFmYjYtYTlmYWY2YTI2NDI2 LzEvOG9CX0tBMnBsV25zb2tOR3VyNmR5RnJCTWtBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgIOOIEw DQYJKoZIhvcNAQELBQADggEBAGjnSBeDSfgx4AiqK+O3PwPOT5liT0Yu9wU4lHYj 3sq44UblSkp6QVZNLnKBzYDhPEpevuEUKBW+NkLLZJU3NaB6TcU9T6HQI87/iQYi kpHe+FkReMzmLKmXewg24jxILihveoc7JdbYDJrSfztlaUqxHTH3sX9LsZh/0YRV oEFXSNpRHtDald6K5S3zAFdS+8DN0Z6dHzolt9Ztd3gEoCxv0+//0ECO2MtS/GqX gSxqQuP0PhX06xysGu1lBedVmHHNKa/QVVjw1UA6PLo5J7aUC2IFBPrKupaFwbCl UshJYUHwRQT9IjxzN/rMj3/n2H0mDXJ+H5YUnEZA993H7So= -----END CERTIFICATE-----Generated at Sun Jan 25 13:04:44 2026 by rpki-client