This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/76SUa31tX84MMYV-5pJtl_RzfBs.roa File: 76SUa31tX84MMYV-5pJtl_RzfBs.roa (raw, json) Hash identifier: VLwC/xTHEJsdM4oEbJXYgc2X6KgnqYrx1To2cyFfsks= Subject key identifier: EF:A4:94:6B:7D:6D:5F:CE:0C:31:85:7E:E6:92:6D:97:F4:73:7C:1B Certificate issuer: /CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2 Certificate serial: 019B7C804DD86182A9E43612C56BD8B24551 Authority key identifier: AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/76SUa31tX84MMYV-5pJtl_RzfBs.roa Signing time: Fri 02 Jan 2026 02:19:01 +0000 ROA not before: Fri 02 Jan 2026 02:19:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 196952 IP address blocks: 2a10:d181::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.mft rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:4d:d8:61:82:a9:e4:36:12:c5:6b:d8:b2:45:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2 Validity Not Before: Jan 2 02:19:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=efa4946b7d6d5fce0c31857ee6926d97f4737c1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c6:e7:ae:f8:cd:22:af:1c:e0:8b:5a:c1:5f: d1:c8:f3:30:e5:9a:8f:18:72:b9:22:c3:e4:a9:b2: 22:2e:1d:05:f1:0a:a1:7f:34:9e:ef:f2:be:99:f8: 46:c6:f3:7f:a7:fa:d9:18:bc:e9:73:d4:cf:bc:dc: cf:db:99:dd:1e:34:44:13:2c:ec:18:cf:e4:0a:7e: 47:fb:04:d7:5c:29:6d:30:5c:ce:91:ac:87:0e:a0: a5:08:7c:61:cf:35:5d:09:6b:84:27:00:5c:3e:23: 7b:0d:3c:62:0a:7b:ca:55:b1:2c:21:a5:52:ef:e9: cf:c1:58:b5:38:59:e2:dd:a8:22:27:50:24:40:39: e1:9f:c1:56:2f:c2:7a:11:54:e1:0a:fb:ac:0d:95: 26:56:a2:19:5a:e7:fa:5c:df:88:5d:4e:ea:ed:3a: d9:37:f7:78:4c:46:d9:41:a2:f8:be:db:80:3e:06: 02:a2:05:ee:53:ff:43:f6:2e:ca:79:8d:10:7a:b2: 07:7c:5b:24:2f:2f:52:fc:39:59:65:63:59:a0:c1: fc:88:f4:c0:89:da:8f:08:bf:da:bf:45:17:65:8f: 13:73:10:c0:2d:ef:82:43:39:3a:67:94:c2:7b:47: c0:78:69:ef:57:b1:15:4d:f4:6b:28:40:26:d8:75: 1c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A4:94:6B:7D:6D:5F:CE:0C:31:85:7E:E6:92:6D:97:F4:73:7C:1B X509v3 Authority Key Identifier: keyid:AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/76SUa31tX84MMYV-5pJtl_RzfBs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:d181::/32 Signature Algorithm: sha256WithRSAEncryption 1e:d4:f7:36:87:02:f2:dc:43:05:3a:c0:11:e0:40:18:08:34: 3a:90:bd:40:c5:5e:6b:12:cd:d0:99:9a:b9:ea:a9:05:24:4c: 24:55:c9:d1:f3:93:35:fe:ce:96:6c:e7:9d:78:a9:d5:dd:51: b8:c6:3f:f2:fa:ce:96:80:f9:e3:a5:bb:c8:b9:fc:73:fa:e0: 72:49:f1:11:49:4f:84:6f:64:e2:a1:3e:47:9a:ed:30:8c:15: fa:18:af:73:4e:5a:9f:32:59:5f:41:9f:2b:29:b3:f3:d5:d6: 81:87:33:86:ae:02:15:91:5d:11:1a:e4:50:20:77:3f:3d:8b: 52:ee:ec:94:a5:b2:45:35:69:71:d4:ed:c6:88:e1:7d:db:2b: 44:52:45:18:71:44:df:1b:62:63:dc:8a:6e:a0:e3:69:7a:ef: 32:28:9e:f1:03:e3:fb:28:91:85:9e:34:fd:41:3c:49:98:2a: f1:8d:ec:39:0f:de:43:97:50:b5:f7:5c:b4:38:49:92:29:2c: 89:d5:ef:32:af:e5:3c:b5:08:b2:89:01:94:2d:dd:4e:b1:ea: 0a:e0:ff:be:42:b0:54:f2:15:6e:0f:7f:73:12:cb:7f:c1:81: 92:46:83:89:d6:5b:e0:58:88:bc:e3:13:ca:6d:58:27:d7:f4: a0:64:3a:6e -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt8gE3YYYKp5DYSxWvYskVRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmNWU5M2Y5MDIzNTRjZTQ4MDRiNGNiMDQ5Y2Y2OGIyMGY3 NmFlYjIwHhcNMjYwMTAyMDIxOTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZmE0OTQ2YjdkNmQ1ZmNlMGMzMTg1N2VlNjkyNmQ5N2Y0NzM3YzFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7MbnrvjNIq8c4ItawV/RyPMw5ZqP GHK5IsPkqbIiLh0F8QqhfzSe7/K+mfhGxvN/p/rZGLzpc9TPvNzP25ndHjREEyzs GM/kCn5H+wTXXCltMFzOkayHDqClCHxhzzVdCWuEJwBcPiN7DTxiCnvKVbEsIaVS 7+nPwVi1OFni3agiJ1AkQDnhn8FWL8J6EVThCvusDZUmVqIZWuf6XN+IXU7q7TrZ N/d4TEbZQaL4vtuAPgYCogXuU/9D9i7KeY0QerIHfFskLy9S/DlZZWNZoMH8iPTA idqPCL/av0UXZY8TcxDALe+CQzk6Z5TCe0fAeGnvV7EVTfRrKEAm2HUcEQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFO+klGt9bV/ODDGFfuaSbZf0c3wbMB8GA1UdIwQY MBaAFK9ek/kCNUzkgEtMsEnPaLIPdq6yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjE2VC1RSTFUT1NBUzB5d1NjOW9zZzkycnJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9mNDAwNGItZDYwMi00NzVkLTkzMWIt N2UwNWFkMDE5MGNlLzEvNzZTVWEzMXRYODRNTVlWLTVwSnRsX1J6ZkJzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi9mNDAwNGItZDYwMi00NzVkLTkzMWItN2UwNWFkMDE5MGNl LzEvcjE2VC1RSTFUT1NBUzB5d1NjOW9zZzkycnJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhDRgTAN BgkqhkiG9w0BAQsFAAOCAQEAHtT3NocC8txDBTrAEeBAGAg0OpC9QMVeaxLN0Jma ueqpBSRMJFXJ0fOTNf7OlmznnXip1d1RuMY/8vrOloD546W7yLn8c/rgcknxEUlP hG9k4qE+R5rtMIwV+hivc05anzJZX0GfKymz89XWgYczhq4CFZFdERrkUCB3Pz2L Uu7slKWyRTVpcdTtxojhfdsrRFJFGHFE3xtiY9yKbqDjaXrvMiie8QPj+yiRhZ40 /UE8SZgq8Y3sOQ/eQ5dQtfdctDhJkiksidXvMq/lPLUIsokBlC3dTrHqCuD/vkKw VPIVbg9/cxLLf8GBkkaDidZb4FiIvOMTym1YJ9f0oGQ6bg== -----END CERTIFICATE-----Generated at Sun Jan 25 22:14:03 2026 by rpki-client