This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/DF7ZMArr7YQkP6JCvTXnJ48GG1g.roa File: DF7ZMArr7YQkP6JCvTXnJ48GG1g.roa (raw, json) Hash identifier: h0YoBkA2Ma+7OTVVfQXFtJdLdFlpvKYuPy7+Y+Jklhw= Subject key identifier: 0C:5E:D9:30:0A:EB:ED:84:24:3F:A2:42:BD:35:E7:27:8F:06:1B:58 Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140 Certificate serial: 019B7CEDBE34695BD6FBE28E31211AF8FA25 Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/DF7ZMArr7YQkP6JCvTXnJ48GG1g.roa Signing time: Fri 02 Jan 2026 04:18:34 +0000 ROA not before: Fri 02 Jan 2026 04:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43067 IP address blocks: 2a04:a900:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.mft rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:be:34:69:5b:d6:fb:e2:8e:31:21:1a:f8:fa:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140 Validity Not Before: Jan 2 04:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0c5ed9300aebed84243fa242bd35e7278f061b58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:78:36:2c:8b:65:fc:0a:f9:12:d6:f9:e2:cf: f8:80:29:4b:00:74:87:e0:d2:02:0e:1a:35:d7:aa: 91:12:3b:9f:18:ce:6e:0f:66:ba:0d:e3:e6:a8:7a: ce:98:2f:b5:32:f4:3b:b1:43:66:7d:04:11:a9:ee: 21:01:ee:bf:d9:7f:7b:0f:4c:0d:ce:a3:2e:41:00: ae:f1:44:02:c4:87:4c:12:35:60:fd:b3:95:a5:80: 25:48:ba:04:b4:84:51:3b:e8:ca:f6:ef:fa:71:87: 50:15:b2:28:16:f3:5b:05:3e:26:51:fa:bd:8f:c9: 10:70:71:9c:84:f8:83:a0:1a:4e:43:49:48:31:09: 9c:1b:b0:61:05:11:63:8a:12:f7:45:85:60:97:6b: a8:42:d6:86:17:53:93:2d:7e:42:a9:59:7c:19:54: 4f:b0:7b:ec:2d:56:56:15:c4:36:c0:6f:d0:3c:ac: 82:76:74:02:fe:5f:df:29:82:63:88:68:7e:47:c5: 26:9c:f1:3e:d2:31:4e:22:6d:b6:bd:93:04:a9:0d: ad:4c:ae:11:a7:3e:13:e6:25:2c:00:92:6b:2f:00: 4f:73:ed:67:8c:fb:94:80:1b:1d:4f:c1:32:ea:3c: 8e:4b:65:78:70:28:67:53:81:cb:5b:4d:a1:6d:f8: 31:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:5E:D9:30:0A:EB:ED:84:24:3F:A2:42:BD:35:E7:27:8F:06:1B:58 X509v3 Authority Key Identifier: keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/DF7ZMArr7YQkP6JCvTXnJ48GG1g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a04:a900:2::/48 Signature Algorithm: sha256WithRSAEncryption 32:9c:b4:5e:2d:7b:98:28:e2:cf:d2:53:f1:2c:f2:f7:89:6f: 12:77:91:8e:b6:aa:06:32:f2:fc:8b:36:2d:2f:c4:fe:0a:b0: 53:38:53:42:61:d0:18:99:a2:ad:37:cf:a0:34:27:2e:bd:43: ea:c5:b1:c3:7d:53:c0:e7:f8:2a:95:51:64:a7:b3:90:18:18: 08:f1:73:b3:bf:65:3a:d1:f7:5c:ea:05:81:a1:13:c8:00:9e: ac:f1:94:78:0f:3e:67:65:12:11:0c:8d:dc:11:17:fa:5a:9a: 0e:5b:16:08:2f:e2:2e:7d:2d:c6:db:d6:89:86:50:a5:54:60: 86:af:2e:17:48:a5:73:30:60:3e:2e:6b:41:56:b7:26:f8:f4: 20:20:0f:3d:f9:3f:79:a5:49:04:d8:cb:f3:ad:09:4a:a7:bf: be:c7:9e:49:61:da:45:96:5e:0b:4a:30:7d:fe:eb:2f:c4:0c: d5:54:2b:0f:56:ca:00:dc:2c:f3:67:1a:34:3a:3d:63:68:db: c0:c3:3d:50:27:17:fa:91:97:77:a0:2d:cd:d8:3f:b3:49:63: 16:76:97:a0:84:16:d4:d8:32:68:56:54:41:12:7b:d3:bd:f4: 43:bb:fd:7d:0b:36:59:70:c4:c9:4d:68:4c:4a:51:37:8b:2f: 5a:94:00:e3 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt87b40aVvW++KOMSEa+PolMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiYzhkYmU1MjA4M2FkMzM1YzlmMWZkZTYwMTZlYzhiNDky OTMxNDAwHhcNMjYwMTAyMDQxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYzVlZDkzMDBhZWJlZDg0MjQzZmEyNDJiZDM1ZTcyNzhmMDYxYjU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAung2LItl/Ar5Etb54s/4gClLAHSH 4NICDho116qREjufGM5uD2a6DePmqHrOmC+1MvQ7sUNmfQQRqe4hAe6/2X97D0wN zqMuQQCu8UQCxIdMEjVg/bOVpYAlSLoEtIRRO+jK9u/6cYdQFbIoFvNbBT4mUfq9 j8kQcHGchPiDoBpOQ0lIMQmcG7BhBRFjihL3RYVgl2uoQtaGF1OTLX5CqVl8GVRP sHvsLVZWFcQ2wG/QPKyCdnQC/l/fKYJjiGh+R8UmnPE+0jFOIm22vZMEqQ2tTK4R pz4T5iUsAJJrLwBPc+1njPuUgBsdT8Ey6jyOS2V4cChnU4HLW02hbfgxAwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFAxe2TAK6+2EJD+iQr015yePBhtYMB8GA1UdIwQY MBaAFKvI2+Ugg60zXJ8f3mAW7ItJKTFAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcThqYjVTQ0RyVE5jbnhfZVlCYnNpMGtwTVVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9jZTZjY2ItMjVjZi00OTE3LWIzY2Qt MzA1NmFmOWEzMzVlLzEvREY3Wk1BcnI3WVFrUDZKQ3ZUWG5KNDhHRzFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZS9jZTZjY2ItMjVjZi00OTE3LWIzY2QtMzA1NmFmOWEzMzVl LzEvcThqYjVTQ0RyVE5jbnhfZVlCYnNpMGtwTVVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgSpAAAC MA0GCSqGSIb3DQEBCwUAA4IBAQAynLReLXuYKOLP0lPxLPL3iW8Sd5GOtqoGMvL8 izYtL8T+CrBTOFNCYdAYmaKtN8+gNCcuvUPqxbHDfVPA5/gqlVFkp7OQGBgI8XOz v2U60fdc6gWBoRPIAJ6s8ZR4Dz5nZRIRDI3cERf6WpoOWxYIL+IufS3G29aJhlCl VGCGry4XSKVzMGA+LmtBVrcm+PQgIA89+T95pUkE2MvzrQlKp7++x55JYdpFll4L SjB9/usvxAzVVCsPVsoA3CzzZxo0Oj1jaNvAwz1QJxf6kZd3oC3N2D+zSWMWdpeg hBbU2DJoVlRBEnvTvfRDu/19CzZZcMTJTWhMSlE3iy9alADj -----END CERTIFICATE-----Generated at Sun Jan 25 16:54:31 2026 by rpki-client