This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/7aa04e-4807-4988-9103-842397e30643/1/dnXyH3vZjdJd8T6MD3l1oA-JYEE.roa File: dnXyH3vZjdJd8T6MD3l1oA-JYEE.roa (raw, json) Hash identifier: xs3AEKZ6AnA/WEhDya53kTTaCVsu33jeAdkrvd9mk2w= Subject key identifier: 76:75:F2:1F:7B:D9:8D:D2:5D:F1:3E:8C:0F:79:75:A0:0F:89:60:41 Certificate issuer: /CN=7f249b9544620683f94b388a7551a68a6493ed12 Certificate serial: 019B7C128052505D84358045A5824A1C3430 Authority key identifier: 7F:24:9B:95:44:62:06:83:F9:4B:38:8A:75:51:A6:8A:64:93:ED:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fySblURiBoP5SziKdVGmimST7RI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/7aa04e-4807-4988-9103-842397e30643/1/dnXyH3vZjdJd8T6MD3l1oA-JYEE.roa Signing time: Fri 02 Jan 2026 00:19:05 +0000 ROA not before: Fri 02 Jan 2026 00:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213665 IP address blocks: 2a14:ee00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/7aa04e-4807-4988-9103-842397e30643/1/fySblURiBoP5SziKdVGmimST7RI.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/7aa04e-4807-4988-9103-842397e30643/1/fySblURiBoP5SziKdVGmimST7RI.mft rsync://rpki.ripe.net/repository/DEFAULT/fySblURiBoP5SziKdVGmimST7RI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:80:52:50:5d:84:35:80:45:a5:82:4a:1c:34:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f249b9544620683f94b388a7551a68a6493ed12 Validity Not Before: Jan 2 00:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7675f21f7bd98dd25df13e8c0f7975a00f896041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:28:3e:4a:c6:52:e4:34:fb:4b:93:8a:e2:18: 59:24:2f:40:c1:91:93:f1:95:c4:3c:06:4d:10:29: 8a:cc:68:d3:f6:38:84:92:e8:e1:9a:03:32:7c:f5: 90:d7:76:41:09:83:38:e4:04:54:af:d9:da:59:74: 7d:75:f0:73:f0:f3:f7:8e:8e:16:6e:77:f4:de:33: 38:b8:49:d1:e9:f7:69:d4:54:0e:49:a0:17:e3:fd: 02:00:cc:ac:2b:2b:8a:04:0d:0e:83:e0:3d:25:c5: c1:b6:fe:9e:c4:e0:ba:f5:55:d1:5b:eb:eb:39:8b: 74:ce:4d:38:a6:bf:68:be:8d:6e:40:9c:9c:dd:53: d0:c4:50:3b:74:c3:8c:75:e0:13:66:3f:be:da:f1: 9c:19:77:73:5b:88:9d:4b:13:21:86:d4:06:c2:31: 33:3f:6f:25:54:af:8f:aa:d3:74:5b:3f:27:3a:d8: 21:2f:c2:a9:5b:86:1d:65:8a:7b:92:b4:c4:1e:1e: 57:6a:2d:71:38:dc:57:59:9a:e5:45:42:a0:4f:fc: 32:57:89:94:81:b6:81:31:d8:e2:b7:9b:4a:09:f5: d1:50:0b:be:fa:fa:69:54:8f:52:0a:68:73:86:a8: a8:cb:98:a3:2f:b1:b6:4d:c1:d5:25:3b:3e:9f:62: b3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:75:F2:1F:7B:D9:8D:D2:5D:F1:3E:8C:0F:79:75:A0:0F:89:60:41 X509v3 Authority Key Identifier: keyid:7F:24:9B:95:44:62:06:83:F9:4B:38:8A:75:51:A6:8A:64:93:ED:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fySblURiBoP5SziKdVGmimST7RI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/7aa04e-4807-4988-9103-842397e30643/1/dnXyH3vZjdJd8T6MD3l1oA-JYEE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/7aa04e-4807-4988-9103-842397e30643/1/fySblURiBoP5SziKdVGmimST7RI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:ee00::/29 Signature Algorithm: sha256WithRSAEncryption c1:88:34:d7:1e:ad:51:0c:eb:07:9a:fb:e6:66:18:2b:5c:4d: cc:69:38:fa:0f:6b:08:35:0b:eb:44:c1:ff:b3:05:de:93:a9: b5:bb:07:4c:35:42:8a:5e:1c:6e:96:76:73:8a:10:93:22:d0: 6e:73:e3:f2:17:45:27:36:c9:2d:15:85:c2:dd:4e:01:cc:65: e2:9b:29:b0:d7:70:11:2b:b1:ff:fd:dc:46:9b:b4:42:27:de: eb:31:64:4a:07:2a:0c:4a:71:fe:37:c7:f1:33:ce:7a:13:5e: 25:f2:e8:c3:c9:44:ae:be:b2:1f:26:da:92:41:06:e4:d2:65: 00:65:fa:46:a0:b9:a7:32:8b:7c:3a:00:0c:5d:65:50:af:3e: cd:fe:67:5b:0e:2f:13:84:1c:e5:10:6b:1b:5b:82:17:e4:51: 4e:bf:3f:9c:db:ce:d0:6f:1d:dc:88:f3:f3:be:43:30:c4:16: 20:d5:bf:64:8d:16:aa:e9:c6:0d:e2:70:08:25:12:9c:3b:79: a4:2f:56:31:59:f3:6f:24:78:d0:46:41:69:8a:18:ac:3e:b0: 81:af:46:bf:45:73:1c:23:df:04:c3:81:d3:41:ed:7d:b3:f6: 56:57:b9:39:78:3a:75:16:54:5e:99:89:2e:ed:5b:54:70:72: a8:b2:f0:d1 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt8EoBSUF2ENYBFpYJKHDQwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdmMjQ5Yjk1NDQ2MjA2ODNmOTRiMzg4YTc1NTFhNjhhNjQ5 M2VkMTIwHhcNMjYwMTAyMDAxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Njc1ZjIxZjdiZDk4ZGQyNWRmMTNlOGMwZjc5NzVhMDBmODk2MDQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlig+SsZS5DT7S5OK4hhZJC9AwZGT 8ZXEPAZNECmKzGjT9jiEkujhmgMyfPWQ13ZBCYM45ARUr9naWXR9dfBz8PP3jo4W bnf03jM4uEnR6fdp1FQOSaAX4/0CAMysKyuKBA0Og+A9JcXBtv6exOC69VXRW+vr OYt0zk04pr9ovo1uQJyc3VPQxFA7dMOMdeATZj++2vGcGXdzW4idSxMhhtQGwjEz P28lVK+PqtN0Wz8nOtghL8KpW4YdZYp7krTEHh5Xai1xONxXWZrlRUKgT/wyV4mU gbaBMdjit5tKCfXRUAu++vppVI9SCmhzhqioy5ijL7G2TcHVJTs+n2KzHwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFHZ18h972Y3SXfE+jA95daAPiWBBMB8GA1UdIwQY MBaAFH8km5VEYgaD+Us4inVRpopkk+0SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZnlTYmxVUmlCb1A1U3ppS2RWR21pbVNUN1JJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi83YWEwNGUtNDgwNy00OTg4LTkxMDMt ODQyMzk3ZTMwNjQzLzEvZG5YeUgzdlpqZEpkOFQ2TUQzbDFvQS1KWUVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi83YWEwNGUtNDgwNy00OTg4LTkxMDMtODQyMzk3ZTMwNjQz LzEvZnlTYmxVUmlCb1A1U3ppS2RWR21pbVNUN1JJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhTuADAN BgkqhkiG9w0BAQsFAAOCAQEAwYg01x6tUQzrB5r75mYYK1xNzGk4+g9rCDUL60TB /7MF3pOptbsHTDVCil4cbpZ2c4oQkyLQbnPj8hdFJzbJLRWFwt1OAcxl4pspsNdw ESux//3cRpu0Qife6zFkSgcqDEpx/jfH8TPOehNeJfLow8lErr6yHybakkEG5NJl AGX6RqC5pzKLfDoADF1lUK8+zf5nWw4vE4Qc5RBrG1uCF+RRTr8/nNvO0G8d3Ijz 875DMMQWINW/ZI0WqunGDeJwCCUSnDt5pC9WMVnzbyR40EZBaYoYrD6wga9Gv0Vz HCPfBMOB00HtfbP2Vle5OXg6dRZUXpmJLu1bVHByqLLw0Q== -----END CERTIFICATE-----Generated at Mon Jan 26 08:58:23 2026 by rpki-client