This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/NRjE2ub-qyO1bTuX03Zvfc6I9B4.roa File: NRjE2ub-qyO1bTuX03Zvfc6I9B4.roa (raw, json) Hash identifier: T1iZTA7aq3lUr9C6VWAbrTX5NRDe5+H29lpTIjZMGkc= Subject key identifier: 35:18:C4:DA:E6:FE:AB:23:B5:6D:3B:97:D3:76:6F:7D:CE:88:F4:1E Certificate issuer: /CN=5053c7da9c8fffea5ced97a7990200d4beee4177 Certificate serial: 019B7BA461AD365C2FF996CDE2514ABFCE8B Authority key identifier: 50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/NRjE2ub-qyO1bTuX03Zvfc6I9B4.roa Signing time: Thu 01 Jan 2026 22:18:49 +0000 ROA not before: Thu 01 Jan 2026 22:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25417 IP address blocks: 2001:67c:266c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:61:ad:36:5c:2f:f9:96:cd:e2:51:4a:bf:ce:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5053c7da9c8fffea5ced97a7990200d4beee4177 Validity Not Before: Jan 1 22:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3518c4dae6feab23b56d3b97d3766f7dce88f41e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:88:7d:68:69:1d:e6:cd:c1:6b:c8:d0:19:57: 00:42:12:9c:82:07:15:1c:48:50:92:37:4f:bd:9c: 8f:24:ce:4b:5c:0a:64:83:6e:5f:9d:2c:2a:89:a6: 88:92:4d:2e:a3:34:11:df:23:df:3a:c6:2e:dd:a6: 6e:a7:f0:52:61:5b:e3:81:50:07:e4:28:27:4d:5b: 5d:d6:64:ab:9e:d2:1c:d0:61:15:4f:b8:af:6b:4b: bc:5f:9d:01:4d:05:1c:27:ca:ea:21:d1:a1:de:32: 2e:ef:be:42:92:86:9b:6a:69:3d:01:42:eb:a8:8c: b8:cc:88:ab:2d:3e:dd:88:99:a7:c2:d8:07:80:02: e0:cf:5a:d3:a5:63:21:3f:08:07:a1:e9:49:b0:68: 17:6d:29:0b:ea:84:8d:72:1c:45:db:ae:b0:00:6e: 23:9d:9f:c3:ed:a4:90:66:fb:ec:52:76:b2:64:e9: 00:3e:b6:ab:02:9a:20:8e:28:e3:46:e4:73:3e:c0: 35:df:3c:9b:57:c6:ee:2b:ee:60:79:c7:6f:38:52: 7a:e8:4e:90:c3:53:f7:09:b7:86:41:f8:8b:2b:58: 81:74:93:1a:fd:f6:2e:31:c6:ca:0e:fd:fd:39:c9: 3c:ac:2c:f5:69:2a:6f:5d:06:33:95:e8:86:93:57: 85:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:18:C4:DA:E6:FE:AB:23:B5:6D:3B:97:D3:76:6F:7D:CE:88:F4:1E X509v3 Authority Key Identifier: keyid:50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/NRjE2ub-qyO1bTuX03Zvfc6I9B4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:266c::/48 Signature Algorithm: sha256WithRSAEncryption 9c:78:be:f6:94:77:fe:7d:36:5c:f7:33:17:b9:fa:49:07:63: b5:0f:44:15:34:58:d5:4b:b7:4d:52:01:81:6a:8b:20:9b:84: 40:c7:44:79:01:d9:09:b8:80:28:f6:1b:d7:b8:0f:03:10:92: 84:90:cb:3f:1e:58:a3:fa:62:10:7f:8e:bc:a1:5d:3c:c7:c2: e1:be:e8:a2:1d:4e:ea:1d:32:66:18:29:db:cc:e1:38:0d:b0: 72:bc:17:69:d6:33:c6:68:c6:b8:12:95:35:8a:9a:d7:13:8f: 1c:66:0b:ac:c6:39:30:79:b0:74:cb:f9:6c:4d:bf:49:32:16: 88:f8:64:3d:96:52:fa:55:69:b8:40:a9:53:2e:b2:13:46:c9: d9:e5:62:a6:04:99:08:f9:ed:eb:5a:46:a7:45:c3:a0:ee:7e: 68:cf:68:9a:b4:3d:2c:f0:a8:86:23:44:15:3c:35:1c:0e:c4: 65:ca:56:89:87:ec:72:b1:72:f2:71:f9:ab:4f:6d:0b:6f:12: 5d:c5:68:3d:95:b2:ee:4b:fe:6e:65:15:72:ff:85:65:14:24: d9:15:64:21:ec:b0:ca:b5:96:90:7d:f4:08:0b:c6:0d:74:03: 2b:48:1a:38:24:4f:b4:bb:f9:62:38:6c:13:84:8c:a2:d8:8c: 6f:3d:e8:f3 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7pGGtNlwv+ZbN4lFKv86LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNTNjN2RhOWM4ZmZmZWE1Y2VkOTdhNzk5MDIwMGQ0YmVl ZTQxNzcwHhcNMjYwMTAxMjIxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNTE4YzRkYWU2ZmVhYjIzYjU2ZDNiOTdkMzc2NmY3ZGNlODhmNDFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6oh9aGkd5s3Ba8jQGVcAQhKcggcV HEhQkjdPvZyPJM5LXApkg25fnSwqiaaIkk0uozQR3yPfOsYu3aZup/BSYVvjgVAH 5CgnTVtd1mSrntIc0GEVT7iva0u8X50BTQUcJ8rqIdGh3jIu775Ckoabamk9AULr qIy4zIirLT7diJmnwtgHgALgz1rTpWMhPwgHoelJsGgXbSkL6oSNchxF266wAG4j nZ/D7aSQZvvsUnayZOkAPrarApogjijjRuRzPsA13zybV8buK+5gecdvOFJ66E6Q w1P3CbeGQfiLK1iBdJMa/fYuMcbKDv39Ock8rCz1aSpvXQYzleiGk1eF5QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDUYxNrm/qsjtW07l9N2b33OiPQeMB8GA1UdIwQY MBaAFFBTx9qcj//qXO2Xp5kCANS+7kF3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUZQSDJweVBfLXBjN1plbm1RSUExTDd1UVhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy8wZjhjZTctY2E5Ni00MzViLTg1NzQt YWM2MjBkYTJmODdlLzEvTlJqRTJ1Yi1xeU8xYlR1WDAzWnZmYzZJOUI0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy8wZjhjZTctY2E5Ni00MzViLTg1NzQtYWM2MjBkYTJmODdl LzEvVUZQSDJweVBfLXBjN1plbm1RSUExTDd1UVhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCZs MA0GCSqGSIb3DQEBCwUAA4IBAQCceL72lHf+fTZc9zMXufpJB2O1D0QVNFjVS7dN UgGBaosgm4RAx0R5AdkJuIAo9hvXuA8DEJKEkMs/Hlij+mIQf468oV08x8Lhvuii HU7qHTJmGCnbzOE4DbByvBdp1jPGaMa4EpU1iprXE48cZgusxjkwebB0y/lsTb9J MhaI+GQ9llL6VWm4QKlTLrITRsnZ5WKmBJkI+e3rWkanRcOg7n5oz2iatD0s8KiG I0QVPDUcDsRlylaJh+xysXLycfmrT20LbxJdxWg9lbLuS/5uZRVy/4VlFCTZFWQh 7LDKtZaQffQIC8YNdAMrSBo4JE+0u/liOGwThIyi2IxvPejz -----END CERTIFICATE-----Generated at Sun Jan 25 19:59:45 2026 by rpki-client