This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e684f6-24ef-4099-bf96-1c63dacabde9/1/esJRIVKiV99xgmszXdUIvBUcR4c.roa File: esJRIVKiV99xgmszXdUIvBUcR4c.roa (raw, json) Hash identifier: oiCTzvqGfHuD5NTI//w9jSaRVTcBCrOg8Oov3qUBvS0= Subject key identifier: 7A:C2:51:21:52:A2:57:DF:71:82:6B:33:5D:D5:08:BC:15:1C:47:87 Certificate issuer: /CN=3ad5d7c7be912650d71423cd3c2516da9409edb6 Certificate serial: 019B78A2AC7521532BF5C6C3705F5352078B Authority key identifier: 3A:D5:D7:C7:BE:91:26:50:D7:14:23:CD:3C:25:16:DA:94:09:ED:B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtXXx76RJlDXFCPNPCUW2pQJ7bY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e684f6-24ef-4099-bf96-1c63dacabde9/1/esJRIVKiV99xgmszXdUIvBUcR4c.roa Signing time: Thu 01 Jan 2026 08:18:05 +0000 ROA not before: Thu 01 Jan 2026 08:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214706 IP address blocks: 2a12:6c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/e684f6-24ef-4099-bf96-1c63dacabde9/1/OtXXx76RJlDXFCPNPCUW2pQJ7bY.crl rsync://rpki.ripe.net/repository/DEFAULT/61/e684f6-24ef-4099-bf96-1c63dacabde9/1/OtXXx76RJlDXFCPNPCUW2pQJ7bY.mft rsync://rpki.ripe.net/repository/DEFAULT/OtXXx76RJlDXFCPNPCUW2pQJ7bY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:ac:75:21:53:2b:f5:c6:c3:70:5f:53:52:07:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ad5d7c7be912650d71423cd3c2516da9409edb6 Validity Not Before: Jan 1 08:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7ac2512152a257df71826b335dd508bc151c4787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7c:76:42:51:50:24:14:ea:f0:97:1a:71:c4: 55:b1:ed:db:49:d9:fb:4f:34:cd:c4:fd:fd:ae:38: 04:5f:f0:b8:56:6f:19:c8:7d:16:58:fa:f2:ad:16: 80:9b:8d:6c:70:73:fe:86:a3:74:f1:1b:9b:45:c5: d5:0d:4c:d6:37:db:76:ad:20:c0:54:aa:84:1d:53: 1e:ec:c0:ff:a0:cd:07:25:68:60:a6:45:78:7d:ee: 17:b0:eb:00:d5:11:e3:81:ee:cb:5e:5d:15:60:e7: e4:95:c6:8b:1c:1f:6c:83:df:73:8d:dd:9e:09:39: c6:35:60:70:be:bb:5c:9b:da:9e:ee:38:9e:b3:19: 86:d7:5a:51:6d:fc:14:4f:e2:c9:91:fd:d5:da:8c: 76:3b:8f:f3:c6:0b:37:f6:b3:cc:73:bb:51:5c:36: a5:cf:8a:d5:d7:66:cc:1f:92:01:4d:62:4a:9f:4e: 25:84:2a:0a:11:a1:29:0b:1a:7c:5b:d6:be:03:ea: 92:3e:e4:d5:e5:75:f2:b0:7d:a0:3e:0c:3f:c1:5c: e4:9e:78:a9:84:34:68:e9:b4:fc:af:5b:0f:95:3b: b4:30:d7:3e:da:b9:ab:f5:53:fd:bb:91:9e:8b:be: fd:8f:04:c3:9f:2c:a4:09:af:1a:cb:f7:32:66:a9: 50:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:C2:51:21:52:A2:57:DF:71:82:6B:33:5D:D5:08:BC:15:1C:47:87 X509v3 Authority Key Identifier: keyid:3A:D5:D7:C7:BE:91:26:50:D7:14:23:CD:3C:25:16:DA:94:09:ED:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtXXx76RJlDXFCPNPCUW2pQJ7bY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e684f6-24ef-4099-bf96-1c63dacabde9/1/esJRIVKiV99xgmszXdUIvBUcR4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e684f6-24ef-4099-bf96-1c63dacabde9/1/OtXXx76RJlDXFCPNPCUW2pQJ7bY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:6c0::/29 Signature Algorithm: sha256WithRSAEncryption 82:ed:8e:48:e7:1f:f4:c0:77:a2:c4:af:54:7a:1b:d7:a7:17: db:f1:a7:b6:16:d3:f4:68:92:97:07:e4:f1:d6:10:2e:60:9a: 41:b9:ca:81:9d:ee:11:74:3a:21:cd:1b:13:a3:63:3d:7e:9a: a8:64:14:c8:9e:e4:8d:3e:01:55:5d:0e:fe:c0:ae:2e:aa:b9: e3:f7:8c:80:cb:13:05:5e:42:f2:e4:7a:30:5d:a9:a3:9d:78: 72:20:58:8f:32:c0:fb:71:4a:45:86:7a:c1:98:6e:a5:10:42: e7:e8:5e:ca:f3:4d:7e:31:72:74:84:fc:60:e5:63:8b:5d:81: 98:99:4a:e3:67:c8:c3:5f:40:e1:40:9d:08:1d:f7:ce:27:9e: cb:1f:96:29:7e:b4:5a:12:c5:ab:e4:c4:31:bc:c5:f8:9b:15: 79:ce:f2:a1:41:72:81:3d:6f:5a:55:fb:12:1c:1d:c4:d8:85: 92:b6:de:67:98:6c:bc:e3:62:d0:4e:7a:bf:fa:99:83:08:4c: 43:db:28:94:ad:b8:97:89:f6:fa:75:e5:5b:68:e9:e9:72:1c: 3c:83:0c:95:22:6a:04:b5:4e:36:2d:b9:f4:c4:28:15:1c:25: 6c:58:5d:43:a4:cb:bb:74:92:b7:cf:e9:b3:d8:8a:4f:fb:b9: ac:85:44:ad -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt4oqx1IVMr9cbDcF9TUgeLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZDVkN2M3YmU5MTI2NTBkNzE0MjNjZDNjMjUxNmRhOTQw OWVkYjYwHhcNMjYwMTAxMDgxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YWMyNTEyMTUyYTI1N2RmNzE4MjZiMzM1ZGQ1MDhiYzE1MWM0Nzg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3x2QlFQJBTq8JcaccRVse3bSdn7 TzTNxP39rjgEX/C4Vm8ZyH0WWPryrRaAm41scHP+hqN08RubRcXVDUzWN9t2rSDA VKqEHVMe7MD/oM0HJWhgpkV4fe4XsOsA1RHjge7LXl0VYOfklcaLHB9sg99zjd2e CTnGNWBwvrtcm9qe7jiesxmG11pRbfwUT+LJkf3V2ox2O4/zxgs39rPMc7tRXDal z4rV12bMH5IBTWJKn04lhCoKEaEpCxp8W9a+A+qSPuTV5XXysH2gPgw/wVzknnip hDRo6bT8r1sPlTu0MNc+2rmr9VP9u5Gei779jwTDnyykCa8ay/cyZqlQ1QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFHrCUSFSolffcYJrM13VCLwVHEeHMB8GA1UdIwQY MBaAFDrV18e+kSZQ1xQjzTwlFtqUCe22MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3RYWHg3NlJKbERYRkNQTlBDVVcycFFKN2JZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9lNjg0ZjYtMjRlZi00MDk5LWJmOTYt MWM2M2RhY2FiZGU5LzEvZXNKUklWS2lWOTl4Z21zelhkVUl2QlVjUjRjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9lNjg0ZjYtMjRlZi00MDk5LWJmOTYtMWM2M2RhY2FiZGU5 LzEvT3RYWHg3NlJKbERYRkNQTlBDVVcycFFKN2JZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhIGwDAN BgkqhkiG9w0BAQsFAAOCAQEAgu2OSOcf9MB3osSvVHob16cX2/GnthbT9GiSlwfk 8dYQLmCaQbnKgZ3uEXQ6Ic0bE6NjPX6aqGQUyJ7kjT4BVV0O/sCuLqq54/eMgMsT BV5C8uR6MF2po514ciBYjzLA+3FKRYZ6wZhupRBC5+heyvNNfjFydIT8YOVji12B mJlK42fIw19A4UCdCB33zieeyx+WKX60WhLFq+TEMbzF+JsVec7yoUFygT1vWlX7 EhwdxNiFkrbeZ5hsvONi0E56v/qZgwhMQ9solK24l4n2+nXlW2jp6XIcPIMMlSJq BLVONi259MQoFRwlbFhdQ6TLu3SSt8/ps9iKT/u5rIVErQ== -----END CERTIFICATE-----Generated at Mon Jan 26 01:00:22 2026 by rpki-client