This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/X52pcbjfgYr8nnx8E3zf_eGkSeE.roa File: X52pcbjfgYr8nnx8E3zf_eGkSeE.roa (raw, json) Hash identifier: Cy4T2p4Uga3qbKI6fJaussEwqR0yDxM0A5j2mhQrkLc= Subject key identifier: 5F:9D:A9:71:B8:DF:81:8A:FC:9E:7C:7C:13:7C:DF:FD:E1:A4:49:E1 Certificate issuer: /CN=9502d8b8269c6b07f814acf0c7ed729b3f4b5984 Certificate serial: 019B775918F7946CD9AFA565B83C743A01CB Authority key identifier: 95:02:D8:B8:26:9C:6B:07:F8:14:AC:F0:C7:ED:72:9B:3F:4B:59:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQLYuCacawf4FKzwx-1ymz9LWYQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/X52pcbjfgYr8nnx8E3zf_eGkSeE.roa Signing time: Thu 01 Jan 2026 02:18:06 +0000 ROA not before: Thu 01 Jan 2026 02:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62240 IP address blocks: 2a03:efc0:4900::/40 maxlen: 40 2a03:efc0:4920::/43 maxlen: 43 2a03:efc0:4940::/43 maxlen: 43 2a03:efc0:4960::/43 maxlen: 43 2a03:efc0:4980::/43 maxlen: 43 2a03:efc0:49a0::/43 maxlen: 43 2a03:efc0:49c0::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/lQLYuCacawf4FKzwx-1ymz9LWYQ.crl rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/lQLYuCacawf4FKzwx-1ymz9LWYQ.mft rsync://rpki.ripe.net/repository/DEFAULT/lQLYuCacawf4FKzwx-1ymz9LWYQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:18:f7:94:6c:d9:af:a5:65:b8:3c:74:3a:01:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9502d8b8269c6b07f814acf0c7ed729b3f4b5984 Validity Not Before: Jan 1 02:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f9da971b8df818afc9e7c7c137cdffde1a449e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a4:4b:79:52:c3:f1:37:4c:c5:e0:68:39:f1: 41:b5:aa:06:84:d5:a5:c5:12:59:b0:65:8b:a8:23: 50:af:4a:75:b5:60:c6:c6:a0:fd:39:53:5c:b2:15: 3b:5e:ac:5b:ba:2e:b4:db:f9:0c:3f:a4:83:aa:a9: 50:75:0e:50:62:5e:85:54:98:d4:b8:8f:65:a2:dd: 31:c1:f0:d2:96:3e:77:10:d1:f7:17:c1:88:15:a6: 7f:3c:fe:48:17:42:1a:0b:4b:22:ec:a5:29:86:fe: 19:0f:ad:1c:59:8a:76:11:e0:77:c4:74:4e:75:bc: 47:3c:29:bd:5d:61:dd:93:de:0a:6c:9f:39:1e:5c: 07:95:8e:d0:61:7c:0a:69:57:68:cb:3e:4e:dd:bf: 47:62:19:e7:cd:90:f9:50:51:0c:d3:75:be:b4:84: a0:b1:dc:7d:73:8d:4f:ca:7a:12:df:64:c2:15:0c: f1:36:12:c4:77:b0:97:45:fe:28:db:c9:96:c7:c1: 86:8e:6b:a4:86:5e:21:44:d3:8a:72:68:2e:aa:7f: 9e:2d:97:7d:79:1a:75:55:7c:56:7c:25:87:fa:d0: ad:9d:94:ec:4d:58:e9:1c:93:56:fd:9f:f1:36:93: 05:fa:7e:b0:eb:28:f5:bd:28:62:dd:4c:51:71:6a: 87:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:9D:A9:71:B8:DF:81:8A:FC:9E:7C:7C:13:7C:DF:FD:E1:A4:49:E1 X509v3 Authority Key Identifier: keyid:95:02:D8:B8:26:9C:6B:07:F8:14:AC:F0:C7:ED:72:9B:3F:4B:59:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQLYuCacawf4FKzwx-1ymz9LWYQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/X52pcbjfgYr8nnx8E3zf_eGkSeE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/lQLYuCacawf4FKzwx-1ymz9LWYQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:efc0:4900::/40 Signature Algorithm: sha256WithRSAEncryption 09:01:e8:e7:c9:0f:fb:6c:8c:76:82:e6:91:dc:37:34:01:64: 53:48:31:55:41:ba:08:6a:22:c3:09:21:08:3d:1d:4f:af:1d: fe:86:6e:ec:0d:e8:2b:d5:ab:2e:08:44:8c:0e:1f:30:31:8e: d4:e1:6f:5e:52:7a:66:b4:94:63:cc:cc:5b:fd:cb:a0:7d:01: 0a:da:fc:3c:dc:e3:5b:b0:6c:9c:56:62:b1:8a:e4:37:60:a8: 9a:6c:50:ad:c6:e6:af:ea:c8:5a:1c:83:39:90:9b:10:40:dc: 83:88:9b:a5:87:68:7f:1f:22:a1:10:00:45:19:14:5d:5f:65: 25:6d:b3:6a:dd:55:e7:f9:d2:02:e3:15:8b:d9:fc:1e:be:dc: 1c:fc:d9:32:50:28:8e:63:25:c5:e9:7a:04:76:fe:80:41:53: d2:4a:e5:05:70:73:de:40:ad:61:01:71:90:e5:b5:7e:fa:3f: a7:a0:ee:92:d8:fe:1b:b1:c0:bb:32:2c:0e:d8:52:8d:e0:99: 62:90:aa:00:49:14:08:b8:9a:38:ca:dc:79:f7:d1:66:9b:f4: 77:77:65:ba:4d:bf:e1:a8:16:c4:de:80:2d:93:b2:f3:79:71: 16:87:90:b7:6a:21:ba:d5:41:5b:41:0e:08:b2:42:83:70:84: 84:e3:86:b9 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt3WRj3lGzZr6VluDx0OgHLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1MDJkOGI4MjY5YzZiMDdmODE0YWNmMGM3ZWQ3MjliM2Y0 YjU5ODQwHhcNMjYwMTAxMDIxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjlkYTk3MWI4ZGY4MThhZmM5ZTdjN2MxMzdjZGZmZGUxYTQ0OWUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvKRLeVLD8TdMxeBoOfFBtaoGhNWl xRJZsGWLqCNQr0p1tWDGxqD9OVNcshU7Xqxbui602/kMP6SDqqlQdQ5QYl6FVJjU uI9lot0xwfDSlj53ENH3F8GIFaZ/PP5IF0IaC0si7KUphv4ZD60cWYp2EeB3xHRO dbxHPCm9XWHdk94KbJ85HlwHlY7QYXwKaVdoyz5O3b9HYhnnzZD5UFEM03W+tISg sdx9c41PynoS32TCFQzxNhLEd7CXRf4o28mWx8GGjmukhl4hRNOKcmguqn+eLZd9 eRp1VXxWfCWH+tCtnZTsTVjpHJNW/Z/xNpMF+n6w6yj1vShi3UxRcWqHYQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFF+dqXG434GK/J58fBN83/3hpEnhMB8GA1UdIwQY MBaAFJUC2LgmnGsH+BSs8Mftcps/S1mEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFFMWXVDYWNhd2Y0Rkt6d3gtMXltejlMV1lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS85ZGVjYWYtNDdlYi00MzQ5LTllODYt MDFiOGJiNmFkOTBhLzEvWDUycGNiamZnWXI4bm54OEUzemZfZUdrU2VFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZS85ZGVjYWYtNDdlYi00MzQ5LTllODYtMDFiOGJiNmFkOTBh LzEvbFFMWXVDYWNhd2Y0Rkt6d3gtMXltejlMV1lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgPvwEkw DQYJKoZIhvcNAQELBQADggEBAAkB6OfJD/tsjHaC5pHcNzQBZFNIMVVBughqIsMJ IQg9HU+vHf6GbuwN6CvVqy4IRIwOHzAxjtThb15Sema0lGPMzFv9y6B9AQra/Dzc 41uwbJxWYrGK5DdgqJpsUK3G5q/qyFocgzmQmxBA3IOIm6WHaH8fIqEQAEUZFF1f ZSVts2rdVef50gLjFYvZ/B6+3Bz82TJQKI5jJcXpegR2/oBBU9JK5QVwc95ArWEB cZDltX76P6eg7pLY/huxwLsyLA7YUo3gmWKQqgBJFAi4mjjK3Hn30Wab9Hd3ZbpN v+GoFsTegC2TsvN5cRaHkLdqIbrVQVtBDgiyQoNwhITjhrk= -----END CERTIFICATE-----Generated at Sun Jan 25 13:00:58 2026 by rpki-client