This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/7_hKJNCWOqs8t2EHuZj_d2dqY80.roa File: 7_hKJNCWOqs8t2EHuZj_d2dqY80.roa (raw, json) Hash identifier: oy0SSTc3SuINToqj7/oP07vHJ6DF+ESaKkvhl2mG+rc= Subject key identifier: EF:F8:4A:24:D0:96:3A:AB:3C:B7:61:07:B9:98:FF:77:67:6A:63:CD Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b Certificate serial: 019B7F841BE2952947BF755033A248AD4267 Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/7_hKJNCWOqs8t2EHuZj_d2dqY80.roa Signing time: Fri 02 Jan 2026 16:22:02 +0000 ROA not before: Fri 02 Jan 2026 16:22:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 398102 IP address blocks: 2a01:488:bb05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.mft rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:1b:e2:95:29:47:bf:75:50:33:a2:48:ad:42:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b Validity Not Before: Jan 2 16:22:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eff84a24d0963aab3cb76107b998ff77676a63cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:0b:49:2b:f3:03:a3:38:b8:b2:47:a1:a1:2a: d7:7e:6b:cd:a3:01:52:9b:04:72:11:db:68:d1:cc: 4e:0b:df:67:85:1a:85:77:f5:0a:7e:8c:57:12:88: 6b:e0:8e:a3:32:b9:98:e4:20:e3:cc:9b:60:48:b0: ce:5b:33:9b:4c:0e:c7:9f:44:33:93:8c:73:56:4a: b5:41:5a:b2:29:ec:47:62:40:9e:03:3d:15:75:95: 62:e9:4f:63:35:2f:7e:f5:62:a5:88:b7:03:a6:48: 87:1c:df:b1:09:b5:09:10:04:7b:ae:a1:bb:d3:85: c3:52:f0:24:fa:9e:31:39:f4:3a:d8:17:72:b0:fa: 8b:e0:f1:2b:32:62:0c:73:7a:ee:d2:4c:5c:27:9b: 83:81:e2:60:89:59:df:42:18:5b:31:2f:12:0a:77: 96:2b:ff:62:2d:4b:e6:21:e6:57:a4:9f:41:65:d8: 4e:28:2e:52:3f:af:42:dd:d6:f1:89:48:91:4f:e5: 7d:b7:b1:a8:b8:7b:6d:5f:79:12:ba:c1:32:f4:1f: 06:01:94:e7:6b:0d:f9:f7:4b:75:eb:4b:84:1a:a6: aa:e7:3c:0e:42:68:23:12:2f:26:dc:fc:d1:d3:d1: 6c:39:08:53:f8:58:16:c6:6f:ae:20:16:76:77:c7: 0c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:F8:4A:24:D0:96:3A:AB:3C:B7:61:07:B9:98:FF:77:67:6A:63:CD X509v3 Authority Key Identifier: keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/7_hKJNCWOqs8t2EHuZj_d2dqY80.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:488:bb05::/48 Signature Algorithm: sha256WithRSAEncryption b9:01:cc:9e:3a:9f:86:90:2a:e8:c1:bf:df:d9:86:21:60:1d: 76:70:f9:03:fb:87:d5:63:a5:72:1c:7f:37:c1:04:2d:a7:53: 6c:a2:ac:77:f6:bb:2c:5b:f9:ed:77:a1:57:76:5c:7d:2d:4b: 8d:fc:9c:bf:14:58:73:48:44:7e:44:05:c8:44:40:be:c4:dc: 79:82:86:01:b3:af:aa:49:95:57:7c:97:6c:56:b5:d2:96:16: 87:c5:49:70:7f:36:48:6c:24:41:62:f0:c6:ba:88:02:bd:93: e7:89:a2:ad:ff:9e:85:b0:e8:8b:0a:df:6b:e0:95:6a:18:55: 12:84:31:b7:2b:cd:2f:aa:a8:5b:a5:1b:c1:e6:75:90:77:43: 8a:3a:01:1c:d8:bb:b6:ae:f2:10:53:bd:05:61:e2:23:f1:e2: d8:f8:2d:d4:d4:bf:40:88:61:90:65:7e:88:20:31:e1:fd:37: 66:9c:67:ef:25:d6:33:67:91:65:4c:00:b8:e4:da:73:c0:4a: da:ce:63:20:e7:f2:2b:fa:fb:4c:c1:2c:0f:78:8a:ed:bb:f8: fa:90:92:20:88:78:0b:37:de:bd:90:b7:ff:76:a6:6a:a4:9b: d1:f2:fa:09:37:42:ae:22:24:2a:ef:ad:63:55:68:64:3d:36: 3e:78:3a:ff -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/hBvilSlHv3VQM6JIrUJnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNmVkMGZiN2IzMjA4MzJhYzE1ODA1MzRjN2IyNjNmMzA0 ZTk4MWIwHhcNMjYwMTAyMTYyMjAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZmY4NGEyNGQwOTYzYWFiM2NiNzYxMDdiOTk4ZmY3NzY3NmE2M2NkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApAtJK/MDozi4skehoSrXfmvNowFS mwRyEdto0cxOC99nhRqFd/UKfoxXEohr4I6jMrmY5CDjzJtgSLDOWzObTA7Hn0Qz k4xzVkq1QVqyKexHYkCeAz0VdZVi6U9jNS9+9WKliLcDpkiHHN+xCbUJEAR7rqG7 04XDUvAk+p4xOfQ62BdysPqL4PErMmIMc3ru0kxcJ5uDgeJgiVnfQhhbMS8SCneW K/9iLUvmIeZXpJ9BZdhOKC5SP69C3dbxiUiRT+V9t7GouHttX3kSusEy9B8GAZTn aw3590t160uEGqaq5zwOQmgjEi8m3PzR09FsOQhT+FgWxm+uIBZ2d8cMKQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFO/4SiTQljqrPLdhB7mY/3dnamPNMB8GA1UdIwQY MBaAFLpu0Pt7MggyrBWAU0x7Jj8wTpgbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQt MTYxZjM0MjM4N2QxLzEvN19oS0pOQ1dPcXM4dDJFSHVaal9kMmRxWTgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQtMTYxZjM0MjM4N2Qx LzEvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgEEiLsF MA0GCSqGSIb3DQEBCwUAA4IBAQC5AcyeOp+GkCrowb/f2YYhYB12cPkD+4fVY6Vy HH83wQQtp1Nsoqx39rssW/ntd6FXdlx9LUuN/Jy/FFhzSER+RAXIREC+xNx5goYB s6+qSZVXfJdsVrXSlhaHxUlwfzZIbCRBYvDGuogCvZPniaKt/56FsOiLCt9r4JVq GFUShDG3K80vqqhbpRvB5nWQd0OKOgEc2Lu2rvIQU70FYeIj8eLY+C3U1L9AiGGQ ZX6IIDHh/TdmnGfvJdYzZ5FlTAC45NpzwErazmMg5/Ir+vtMwSwPeIrtu/j6kJIg iHgLN969kLf/dqZqpJvR8voJN0KuIiQq761jVWhkPTY+eDr/ -----END CERTIFICATE-----Generated at Sun Jan 25 14:19:10 2026 by rpki-client