This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/144YKZFeHUoWAh6egSqndWusFOM.roa File: 144YKZFeHUoWAh6egSqndWusFOM.roa (raw, json) Hash identifier: JebAk5xxUlwF25bt/7wgP5P3eQrs43nqDPNiHs8sVDE= Subject key identifier: D7:8E:18:29:91:5E:1D:4A:16:02:1E:9E:81:2A:A7:75:6B:AC:14:E3 Certificate issuer: /CN=69dbe1e7d9e87d68701a4035a76c51bfecd88d81 Certificate serial: 019B7EA6CBEC4D22BDB4E906A768876553A4 Authority key identifier: 69:DB:E1:E7:D9:E8:7D:68:70:1A:40:35:A7:6C:51:BF:EC:D8:8D:81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/advh59nofWhwGkA1p2xRv-zYjYE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/144YKZFeHUoWAh6egSqndWusFOM.roa Signing time: Fri 02 Jan 2026 12:20:18 +0000 ROA not before: Fri 02 Jan 2026 12:20:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203062 IP address blocks: 2a01:e281:b400::/40 maxlen: 48 2a01:e286::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/advh59nofWhwGkA1p2xRv-zYjYE.crl rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/advh59nofWhwGkA1p2xRv-zYjYE.mft rsync://rpki.ripe.net/repository/DEFAULT/advh59nofWhwGkA1p2xRv-zYjYE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:cb:ec:4d:22:bd:b4:e9:06:a7:68:87:65:53:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69dbe1e7d9e87d68701a4035a76c51bfecd88d81 Validity Not Before: Jan 2 12:20:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d78e1829915e1d4a16021e9e812aa7756bac14e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:45:5a:51:37:85:85:4b:a3:7b:04:dc:af:ce: 88:f0:03:dd:dd:01:fd:cd:8b:c1:2c:79:b4:f2:4a: 86:f7:8a:f8:8a:5e:24:9a:b9:4e:71:1f:23:ef:a6: 17:ba:6d:c1:ea:8d:44:fd:43:55:9a:39:86:68:0e: 97:1f:fb:2d:80:f4:57:d9:d8:3c:0c:97:91:af:3e: c0:b7:87:46:3e:52:90:53:32:e4:ac:3f:fc:51:4b: 49:8e:9b:53:f1:a2:33:d3:75:84:e7:d9:5d:fa:6c: 56:e1:79:06:06:9a:05:ec:0c:29:34:fb:cf:4e:e2: cf:b0:91:0b:f5:f0:36:ad:34:c5:5e:b3:fb:20:ed: ee:0c:55:b2:b7:13:51:23:b6:78:8a:a3:78:cd:6c: 87:c3:d1:af:c9:77:82:9f:f6:d0:56:2f:cc:17:20: 28:68:6f:0b:5e:74:0d:91:7d:5b:e1:c6:b8:e8:3d: 90:ac:4f:71:ce:61:f1:c9:00:34:12:dc:24:b0:9a: ae:50:dc:fe:cd:9d:13:fd:f8:86:35:1c:58:b1:13: b4:2c:75:43:98:7f:f2:a9:d6:4f:a5:f1:cf:8b:0a: f6:98:f0:7e:1b:22:c8:0a:12:9a:ef:70:ec:5a:22: ac:80:3d:3c:7b:eb:4b:1f:3a:51:3e:3e:fa:4a:15: d1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:8E:18:29:91:5E:1D:4A:16:02:1E:9E:81:2A:A7:75:6B:AC:14:E3 X509v3 Authority Key Identifier: keyid:69:DB:E1:E7:D9:E8:7D:68:70:1A:40:35:A7:6C:51:BF:EC:D8:8D:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/advh59nofWhwGkA1p2xRv-zYjYE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/144YKZFeHUoWAh6egSqndWusFOM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/advh59nofWhwGkA1p2xRv-zYjYE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:e281:b400::/40 2a01:e286::/32 Signature Algorithm: sha256WithRSAEncryption 94:3d:20:e4:07:4e:4a:c6:6b:88:0c:de:0e:4b:4f:f0:32:15: 11:45:28:7d:b4:b9:9a:7b:99:41:86:42:b1:44:80:18:13:b7: 10:4b:df:c6:2b:76:48:75:ce:b1:ae:56:fe:04:8a:f6:ef:74: 5d:42:9a:1f:35:3b:c9:7d:00:bf:4e:d2:3d:ca:a5:af:f5:d3: 98:c8:bd:c0:a8:bc:08:73:a0:d2:85:a1:31:07:16:16:5f:fa: 51:c4:66:bf:38:fa:f9:20:16:5f:24:89:70:8a:de:8a:63:03: c1:bf:29:07:04:9a:0e:53:ff:aa:70:74:a8:4b:8d:18:da:f2: b8:e6:34:24:1f:62:91:de:ba:33:19:af:b6:f1:8d:d1:23:7f: d3:d8:27:09:c3:5f:ec:ef:cb:13:91:4a:dd:e7:a1:1b:9e:bb: 89:e3:b6:17:65:24:95:80:bb:d3:ca:c3:a8:75:bb:cf:bb:a9: c4:bc:c2:c4:0e:55:41:be:58:0e:dc:18:9a:49:c4:fb:a8:a8: 0a:a8:77:46:05:dc:0a:93:a4:17:57:75:25:2c:fe:cd:32:5f: e1:a5:62:3a:bc:3f:ad:0c:a1:2e:cf:8f:fe:dc:94:99:2a:71: e0:21:ed:60:95:93:7d:12:37:1f:0c:db:00:72:ce:24:ed:ce: 6e:4a:d6:8d -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgISAZt+psvsTSK9tOkGp2iHZVOkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZGJlMWU3ZDllODdkNjg3MDFhNDAzNWE3NmM1MWJmZWNk ODhkODEwHhcNMjYwMTAyMTIyMDE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNzhlMTgyOTkxNWUxZDRhMTYwMjFlOWU4MTJhYTc3NTZiYWMxNGUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkVaUTeFhUujewTcr86I8APd3QH9 zYvBLHm08kqG94r4il4kmrlOcR8j76YXum3B6o1E/UNVmjmGaA6XH/stgPRX2dg8 DJeRrz7At4dGPlKQUzLkrD/8UUtJjptT8aIz03WE59ld+mxW4XkGBpoF7AwpNPvP TuLPsJEL9fA2rTTFXrP7IO3uDFWytxNRI7Z4iqN4zWyHw9GvyXeCn/bQVi/MFyAo aG8LXnQNkX1b4ca46D2QrE9xzmHxyQA0EtwksJquUNz+zZ0T/fiGNRxYsRO0LHVD mH/yqdZPpfHPiwr2mPB+GyLIChKa73DsWiKsgD08e+tLHzpRPj76ShXRrwIDAQAB o4ICEjCCAg4wHQYDVR0OBBYEFNeOGCmRXh1KFgIenoEqp3VrrBTjMB8GA1UdIwQY MBaAFGnb4efZ6H1ocBpANadsUb/s2I2BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWR2aDU5bm9mV2h3R2tBMXAyeFJ2LXpZallFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC83MjcwMTUtZTE0ZS00ZDQxLWIwNWIt OGQ5NDU1M2I3NWUxLzEvMTQ0WUtaRmVIVW9XQWg2ZWdTcW5kV3VzRk9NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC83MjcwMTUtZTE0ZS00ZDQxLWIwNWItOGQ5NDU1M2I3NWUx LzEvYWR2aDU5bm9mV2h3R2tBMXAyeFJ2LXpZallFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCgGCCsGAQUFBwEHAQH/BBkwFzAVBAIAAjAPAwYAKgHigbQD BQAqAeKGMA0GCSqGSIb3DQEBCwUAA4IBAQCUPSDkB05KxmuIDN4OS0/wMhURRSh9 tLmae5lBhkKxRIAYE7cQS9/GK3ZIdc6xrlb+BIr273RdQpofNTvJfQC/TtI9yqWv 9dOYyL3AqLwIc6DShaExBxYWX/pRxGa/OPr5IBZfJIlwit6KYwPBvykHBJoOU/+q cHSoS40Y2vK45jQkH2KR3rozGa+28Y3RI3/T2CcJw1/s78sTkUrd56EbnruJ47YX ZSSVgLvTysOodbvPu6nEvMLEDlVBvlgO3BiaScT7qKgKqHdGBdwKk6QXV3UlLP7N Ml/hpWI6vD+tDKEuz4/+3JSZKnHgIe1glZN9EjcfDNsAcs4k7c5uStaN -----END CERTIFICATE-----Generated at Sun Jan 25 20:46:15 2026 by rpki-client