This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/92JgNy2UniVvWNA6kvsz4sovFIA.roa File: 92JgNy2UniVvWNA6kvsz4sovFIA.roa (raw, json) Hash identifier: lAqICp0tk9GujbZHx2/6RHqqJpx7oSWIDsAW5NqmUFs= Subject key identifier: F7:62:60:37:2D:94:9E:25:6F:58:D0:3A:92:FB:33:E2:CA:2F:14:80 Certificate issuer: /CN=53c912a0411bb0174507092d0ca35a91ad79905c Certificate serial: 019B7E39286808E87AAB13327E668D58A941 Authority key identifier: 53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/92JgNy2UniVvWNA6kvsz4sovFIA.roa Signing time: Fri 02 Jan 2026 10:20:33 +0000 ROA not before: Fri 02 Jan 2026 10:20:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28878 IP address blocks: 2a07:cb82::/32 maxlen: 32 2a07:cb84::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:28:68:08:e8:7a:ab:13:32:7e:66:8d:58:a9:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53c912a0411bb0174507092d0ca35a91ad79905c Validity Not Before: Jan 2 10:20:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f76260372d949e256f58d03a92fb33e2ca2f1480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7a:87:aa:94:25:4d:7b:ce:54:39:f9:34:74: d7:b0:83:0d:e7:3e:6f:61:9f:8a:72:6b:a0:db:9c: 31:03:a5:77:fe:03:de:23:48:77:a0:ea:78:92:28: ca:19:78:bd:ea:9d:cc:2e:f3:6e:e1:22:11:3c:90: 4a:7c:0b:98:f0:9c:56:2c:a3:73:e7:2a:b8:78:b0: a5:20:e2:48:e5:d0:fe:0f:de:23:15:cf:c0:70:b3: 0d:1c:9c:aa:ea:4f:4e:15:09:e2:1c:d5:9f:a6:96: 9a:4c:56:66:ad:bc:c7:0a:76:60:95:dc:0f:4f:c1: dc:f7:aa:5b:df:eb:4e:5e:bd:5f:8b:6c:20:99:95: 87:ff:06:6c:52:42:2e:7a:73:11:51:a7:c9:27:b1: b6:2e:06:b2:67:1c:06:21:09:a5:c4:8e:1b:45:b1: 2a:f7:e7:47:bf:df:cf:69:70:2e:a8:a9:f4:53:0e: bb:d4:34:d1:fa:8e:64:65:74:cd:43:7c:46:88:80: 17:7a:08:2b:45:36:cb:d0:3e:20:c6:45:ad:cc:85: 26:aa:dc:76:ed:85:3a:48:8c:0d:8d:28:01:a7:e0: d1:04:bb:15:3e:94:21:8d:9c:7b:a3:b1:d2:a9:66: a3:e1:db:9e:30:7f:0e:0c:39:53:1f:c1:89:b2:95: af:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:62:60:37:2D:94:9E:25:6F:58:D0:3A:92:FB:33:E2:CA:2F:14:80 X509v3 Authority Key Identifier: keyid:53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/92JgNy2UniVvWNA6kvsz4sovFIA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:cb82::/32 2a07:cb84::/32 Signature Algorithm: sha256WithRSAEncryption 28:7e:9d:9f:f8:3e:e3:86:52:88:f7:6d:8d:da:f5:ce:0a:e3: 71:d7:75:eb:29:c9:86:3a:e8:47:13:5d:b3:dc:66:d7:1e:20: 6a:84:c9:86:af:00:ba:90:50:e7:5c:8e:19:79:ec:3c:c4:bd: bb:77:61:80:d6:b3:8f:7a:93:80:75:4e:02:5f:41:0c:ea:99: 08:73:81:b1:4f:14:8e:6e:02:26:19:de:c2:ea:5d:62:fe:e9: ed:62:7e:47:78:39:13:36:9e:34:42:85:bd:3e:7a:e4:15:f5: c7:91:82:62:e3:b6:95:cd:6d:53:dc:35:63:02:4e:4b:8f:43: 18:60:35:1b:d9:dc:94:ec:f2:a4:93:f7:44:e9:55:fd:31:a6: cc:38:12:08:a9:3c:70:6d:41:04:05:b6:d8:95:70:d3:a0:94: 19:09:7a:e3:91:03:7b:db:99:de:ab:2d:91:a8:f3:0c:b8:1d: e2:9a:8e:2a:c4:36:06:29:d7:1b:1c:09:68:fa:c7:59:de:f9: 32:e0:15:bb:70:89:02:77:49:c8:8a:1f:ab:be:ef:16:a9:fa: 1f:47:d4:95:bc:bd:a0:20:94:68:35:21:a1:11:5d:de:83:58: c8:10:1a:4e:9e:16:86:43:45:c6:83:15:e9:f2:a9:c2:83:00: e4:f8:37:8c -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt+OShoCOh6qxMyfmaNWKlBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYzkxMmEwNDExYmIwMTc0NTA3MDkyZDBjYTM1YTkxYWQ3 OTkwNWMwHhcNMjYwMTAyMTAyMDMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNzYyNjAzNzJkOTQ5ZTI1NmY1OGQwM2E5MmZiMzNlMmNhMmYxNDgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2XqHqpQlTXvOVDn5NHTXsIMN5z5v YZ+Kcmug25wxA6V3/gPeI0h3oOp4kijKGXi96p3MLvNu4SIRPJBKfAuY8JxWLKNz 5yq4eLClIOJI5dD+D94jFc/AcLMNHJyq6k9OFQniHNWfppaaTFZmrbzHCnZgldwP T8Hc96pb3+tOXr1fi2wgmZWH/wZsUkIuenMRUafJJ7G2LgayZxwGIQmlxI4bRbEq 9+dHv9/PaXAuqKn0Uw671DTR+o5kZXTNQ3xGiIAXeggrRTbL0D4gxkWtzIUmqtx2 7YU6SIwNjSgBp+DRBLsVPpQhjZx7o7HSqWaj4dueMH8ODDlTH8GJspWvgQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFPdiYDctlJ4lb1jQOpL7M+LKLxSAMB8GA1UdIwQY MBaAFFPJEqBBG7AXRQcJLQyjWpGteZBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVThrU29FRWJzQmRGQndrdERLTmFrYTE1a0Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9kNzdlNjAtODkxNi00Zjk2LThlZDAt ZTIxYzQzNmI2MmVmLzEvOTJKZ055MlVuaVZ2V05BNmt2c3o0c292RklBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi9kNzdlNjAtODkxNi00Zjk2LThlZDAtZTIxYzQzNmI2MmVm LzEvVThrU29FRWJzQmRGQndrdERLTmFrYTE1a0Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUAKgfLggMF ACoHy4QwDQYJKoZIhvcNAQELBQADggEBACh+nZ/4PuOGUoj3bY3a9c4K43HXdesp yYY66EcTXbPcZtceIGqEyYavALqQUOdcjhl57DzEvbt3YYDWs496k4B1TgJfQQzq mQhzgbFPFI5uAiYZ3sLqXWL+6e1ifkd4ORM2njRChb0+euQV9ceRgmLjtpXNbVPc NWMCTkuPQxhgNRvZ3JTs8qST90TpVf0xpsw4EgipPHBtQQQFttiVcNOglBkJeuOR A3vbmd6rLZGo8wy4HeKajirENgYp1xscCWj6x1ne+TLgFbtwiQJ3SciKH6u+7xap +h9H1JW8vaAglGg1IaERXd6DWMgQGk6eFoZDRcaDFenyqcKDAOT4N4w= -----END CERTIFICATE-----Generated at Sun Jan 25 18:05:30 2026 by rpki-client