This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/cf130d-efd4-4dfb-a1a3-a2bf0a18cddc/1/p44ZTLaNJwPrOIP5p5pZUGavoYE.roa File: p44ZTLaNJwPrOIP5p5pZUGavoYE.roa (raw, json) Hash identifier: B8cHOO2fu5FxQlQTcxJxtbQRyHkAMsxsU+Gd1QwUliA= Subject key identifier: A7:8E:19:4C:B6:8D:27:03:EB:38:83:F9:A7:9A:59:50:66:AF:A1:81 Certificate issuer: /CN=8b93e567af198a94e1fcf05fe0fe7c921095a84a Certificate serial: 019B7758CDE101ACBD8B2A77C0D20723D5E9 Authority key identifier: 8B:93:E5:67:AF:19:8A:94:E1:FC:F0:5F:E0:FE:7C:92:10:95:A8:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5PlZ68ZipTh_PBf4P58khCVqEo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/cf130d-efd4-4dfb-a1a3-a2bf0a18cddc/1/p44ZTLaNJwPrOIP5p5pZUGavoYE.roa Signing time: Thu 01 Jan 2026 02:17:47 +0000 ROA not before: Thu 01 Jan 2026 02:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58010 IP address blocks: 2001:67c:1bf4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/cf130d-efd4-4dfb-a1a3-a2bf0a18cddc/1/i5PlZ68ZipTh_PBf4P58khCVqEo.crl rsync://rpki.ripe.net/repository/DEFAULT/70/cf130d-efd4-4dfb-a1a3-a2bf0a18cddc/1/i5PlZ68ZipTh_PBf4P58khCVqEo.mft rsync://rpki.ripe.net/repository/DEFAULT/i5PlZ68ZipTh_PBf4P58khCVqEo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:cd:e1:01:ac:bd:8b:2a:77:c0:d2:07:23:d5:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b93e567af198a94e1fcf05fe0fe7c921095a84a Validity Not Before: Jan 1 02:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a78e194cb68d2703eb3883f9a79a595066afa181 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:60:b3:71:5f:59:b8:7b:37:8a:ba:8b:8b:0f: 17:b8:9b:59:b8:1c:65:7c:5b:67:b8:b0:1d:27:cc: 7a:05:01:03:d0:c7:62:b3:49:e2:e9:ab:51:c6:30: 6e:ba:d0:8b:89:e4:ea:20:4d:83:7d:7f:fb:1b:10: 51:6e:b7:65:e0:77:c0:03:ac:9d:00:6d:a8:fe:73: e9:47:64:a8:e5:22:f4:91:f3:96:65:4b:f5:81:72: 36:0c:90:b6:ac:bb:73:6a:80:bc:36:2a:c9:33:9a: 17:24:4f:7c:8e:9a:4d:26:d3:31:3a:d8:ba:a4:c1: 14:3b:5b:62:ab:c3:24:db:0f:53:b8:2d:dd:5a:74: ef:d4:6b:86:9f:fb:d4:21:43:ec:ae:b2:4a:74:46: ed:77:4a:9d:83:04:c3:2d:60:07:6d:61:a7:72:e2: 24:66:6c:9f:67:0c:04:cb:bd:28:46:8d:08:f4:db: 76:6a:fe:fd:1b:ae:69:75:45:8a:78:cf:c3:0f:11: 18:e7:0f:86:9e:28:99:8a:86:ec:eb:d6:93:52:57: b4:46:07:6d:f6:ff:03:76:75:25:12:ba:71:89:05: cf:78:51:36:9e:15:15:be:57:ad:fd:39:c0:6f:25: f5:ef:92:6d:2f:ed:35:1b:b3:69:8e:25:e6:28:7d: a6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:8E:19:4C:B6:8D:27:03:EB:38:83:F9:A7:9A:59:50:66:AF:A1:81 X509v3 Authority Key Identifier: keyid:8B:93:E5:67:AF:19:8A:94:E1:FC:F0:5F:E0:FE:7C:92:10:95:A8:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5PlZ68ZipTh_PBf4P58khCVqEo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/cf130d-efd4-4dfb-a1a3-a2bf0a18cddc/1/p44ZTLaNJwPrOIP5p5pZUGavoYE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/cf130d-efd4-4dfb-a1a3-a2bf0a18cddc/1/i5PlZ68ZipTh_PBf4P58khCVqEo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:1bf4::/48 Signature Algorithm: sha256WithRSAEncryption 66:8b:e2:2b:3c:6c:8b:fb:0e:9c:af:13:e8:68:05:41:a8:46: 75:31:01:d5:95:c2:1a:a4:d3:f0:4b:66:0c:0b:0a:af:3f:6f: b0:f2:f8:54:dd:bc:f6:a4:18:13:ad:d0:3c:19:66:49:37:4d: 89:c5:03:14:bb:e8:e5:53:00:53:4b:13:e6:a6:87:e3:f8:00: af:6f:a6:b0:86:29:d6:ac:f4:98:7b:b2:e8:f9:8f:6c:bd:29: 25:1d:94:58:7c:50:5d:33:bd:1d:cf:72:5f:2b:88:bc:55:87: f9:85:d9:35:81:6d:e7:84:6c:a8:94:28:14:f3:f3:9b:a6:3b: 1b:b2:d9:72:ff:d4:e0:4d:81:ae:88:db:83:79:5d:c5:ec:b4: 97:f1:30:34:d5:f3:66:f5:3f:cf:79:9c:70:89:d7:ee:b3:bd: 2f:be:cb:ba:26:49:ed:30:e8:ca:74:c4:e9:b4:a7:19:44:0c: a6:4a:42:d2:23:e3:a9:db:ef:16:3f:37:2d:73:b3:04:bb:ec: f3:10:57:ff:69:47:0e:18:ca:ff:33:37:87:68:a0:7b:c2:ee: 89:bf:37:f2:e6:9a:1d:a8:4f:0d:24:c6:43:67:83:1b:ba:5d: b8:2a:b3:69:71:aa:9a:ed:19:d9:25:12:33:69:a4:b6:6e:b3: 7b:92:cd:c0 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3WM3hAay9iyp3wNIHI9XpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiOTNlNTY3YWYxOThhOTRlMWZjZjA1ZmUwZmU3YzkyMTA5 NWE4NGEwHhcNMjYwMTAxMDIxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNzhlMTk0Y2I2OGQyNzAzZWIzODgzZjlhNzlhNTk1MDY2YWZhMTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8GCzcV9ZuHs3irqLiw8XuJtZuBxl fFtnuLAdJ8x6BQED0Mdis0ni6atRxjBuutCLieTqIE2DfX/7GxBRbrdl4HfAA6yd AG2o/nPpR2So5SL0kfOWZUv1gXI2DJC2rLtzaoC8NirJM5oXJE98jppNJtMxOti6 pMEUO1tiq8Mk2w9TuC3dWnTv1GuGn/vUIUPsrrJKdEbtd0qdgwTDLWAHbWGncuIk ZmyfZwwEy70oRo0I9Nt2av79G65pdUWKeM/DDxEY5w+GniiZiobs69aTUle0Rgdt 9v8DdnUlErpxiQXPeFE2nhUVvlet/TnAbyX175JtL+01G7NpjiXmKH2mfQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKeOGUy2jScD6ziD+aeaWVBmr6GBMB8GA1UdIwQY MBaAFIuT5WevGYqU4fzwX+D+fJIQlahKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTVQbFo2OFppcFRoX1BCZjRQNThraENWcUVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC9jZjEzMGQtZWZkNC00ZGZiLWExYTMt YTJiZjBhMThjZGRjLzEvcDQ0WlRMYU5Kd1ByT0lQNXA1cFpVR2F2b1lFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC9jZjEzMGQtZWZkNC00ZGZiLWExYTMtYTJiZjBhMThjZGRj LzEvaTVQbFo2OFppcFRoX1BCZjRQNThraENWcUVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBv0 MA0GCSqGSIb3DQEBCwUAA4IBAQBmi+IrPGyL+w6crxPoaAVBqEZ1MQHVlcIapNPw S2YMCwqvP2+w8vhU3bz2pBgTrdA8GWZJN02JxQMUu+jlUwBTSxPmpofj+ACvb6aw hinWrPSYe7Lo+Y9svSklHZRYfFBdM70dz3JfK4i8VYf5hdk1gW3nhGyolCgU8/Ob pjsbstly/9TgTYGuiNuDeV3F7LSX8TA01fNm9T/PeZxwidfus70vvsu6JkntMOjK dMTptKcZRAymSkLSI+Op2+8WPzctc7MEu+zzEFf/aUcOGMr/MzeHaKB7wu6Jvzfy 5podqE8NJMZDZ4Mbul24KrNpcaqa7RnZJRIzaaS2brN7ks3A -----END CERTIFICATE-----Generated at Mon Jan 26 01:01:47 2026 by rpki-client