This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/d6bf5e-4812-430e-9a13-e5947614ef3f/1/I-K9nqaL8isdaQPATdz15jV472A.roa File: I-K9nqaL8isdaQPATdz15jV472A.roa (raw, json) Hash identifier: IzWVmalHZuVa9srOGb7K8LfnsGA4gkEh+RLBEqMh0oM= Subject key identifier: 23:E2:BD:9E:A6:8B:F2:2B:1D:69:03:C0:4D:DC:F5:E6:35:78:EF:60 Certificate issuer: /CN=5c746e9f12c2c0e5459fe4e3d413c1c89de6db0e Certificate serial: 019B7CEDF2BC51658A8A2C25E25F72B95AA2 Authority key identifier: 5C:74:6E:9F:12:C2:C0:E5:45:9F:E4:E3:D4:13:C1:C8:9D:E6:DB:0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHRunxLCwOVFn-Tj1BPByJ3m2w4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/d6bf5e-4812-430e-9a13-e5947614ef3f/1/I-K9nqaL8isdaQPATdz15jV472A.roa Signing time: Fri 02 Jan 2026 04:18:47 +0000 ROA not before: Fri 02 Jan 2026 04:18:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8434 IP address blocks: 2a02:7720::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/d6bf5e-4812-430e-9a13-e5947614ef3f/1/XHRunxLCwOVFn-Tj1BPByJ3m2w4.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/d6bf5e-4812-430e-9a13-e5947614ef3f/1/XHRunxLCwOVFn-Tj1BPByJ3m2w4.mft rsync://rpki.ripe.net/repository/DEFAULT/XHRunxLCwOVFn-Tj1BPByJ3m2w4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:f2:bc:51:65:8a:8a:2c:25:e2:5f:72:b9:5a:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c746e9f12c2c0e5459fe4e3d413c1c89de6db0e Validity Not Before: Jan 2 04:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=23e2bd9ea68bf22b1d6903c04ddcf5e63578ef60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:bf:93:c5:7e:63:e6:a8:3a:bf:09:7c:2f:ed: 6d:4b:a1:b5:9a:3d:9a:74:3c:a8:61:88:bf:8e:58: 8a:67:8a:7b:f8:19:bf:8c:e6:04:74:0b:b5:e0:00: 1c:59:d3:92:c5:cc:21:10:1f:68:2a:a8:5d:91:23: b0:e3:29:71:d2:d2:81:49:f8:11:8b:32:1d:8a:3a: e9:31:bf:36:12:a7:51:5c:10:d8:4f:29:d3:f8:02: 16:61:44:70:20:5d:83:94:f0:1f:13:86:fb:c2:2f: e2:e6:c6:1d:f8:74:b2:92:5e:f9:76:db:f2:15:31: 8b:bd:a2:55:12:52:b2:6f:f3:dd:ec:92:b9:e4:32: b7:99:4d:d5:c8:eb:00:45:89:d7:10:bd:e9:eb:e0: f6:98:a9:38:e0:c3:1e:02:97:4e:53:48:f6:67:be: 24:62:bb:5c:d0:20:54:f6:d6:e5:61:5a:9a:ee:f0: b7:e8:91:56:7d:a9:bf:c2:14:1f:e1:d6:35:77:28: 2a:b9:78:f9:4d:a1:17:a2:7b:67:9b:ac:d0:59:80: 4c:5c:db:b9:7f:5b:30:c2:6e:4b:60:61:0a:3f:85: 29:d4:0a:61:3c:1b:e2:c1:c3:89:fa:30:51:a7:2f: 8a:77:f1:a3:5d:ad:24:79:01:50:e2:de:8e:e5:58: ba:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:E2:BD:9E:A6:8B:F2:2B:1D:69:03:C0:4D:DC:F5:E6:35:78:EF:60 X509v3 Authority Key Identifier: keyid:5C:74:6E:9F:12:C2:C0:E5:45:9F:E4:E3:D4:13:C1:C8:9D:E6:DB:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHRunxLCwOVFn-Tj1BPByJ3m2w4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/d6bf5e-4812-430e-9a13-e5947614ef3f/1/I-K9nqaL8isdaQPATdz15jV472A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/d6bf5e-4812-430e-9a13-e5947614ef3f/1/XHRunxLCwOVFn-Tj1BPByJ3m2w4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:7720::/32 Signature Algorithm: sha256WithRSAEncryption 17:df:5c:47:98:b6:eb:10:8c:f9:07:f2:f5:24:1e:a9:8e:08: c3:d3:50:c3:3a:80:d0:13:53:3b:13:74:6e:74:c7:05:af:d2: 90:5a:93:76:66:76:16:16:fb:a6:3e:49:26:0c:1d:6d:a0:7d: 3a:ac:6e:ab:d4:d1:b1:12:e4:c5:43:cf:fb:17:2c:97:bc:0b: 0f:6f:77:04:9b:d9:9c:7f:19:43:22:5f:60:1c:50:ce:12:d4: c3:3a:a1:e1:7f:f1:0f:6f:c3:c1:2a:2b:9a:7f:12:42:b5:10: 08:16:4a:ca:8d:59:92:fb:78:e8:89:77:84:53:4d:19:7d:7f: a8:bc:65:b0:91:22:47:34:59:46:85:f5:f8:82:bc:0e:7f:d0: b4:da:a0:60:67:69:79:b2:1c:88:bf:2b:ea:8a:16:b3:d4:84: cd:5d:04:ad:6e:95:af:41:40:f8:7b:43:b6:e5:e6:60:6a:f3: 48:77:7b:b7:5c:27:0e:b9:c2:91:3f:73:bc:0d:27:9b:13:cf: 42:a7:ff:24:e2:2f:06:d1:d3:20:6d:af:ff:f9:a2:b6:39:e3: 19:1e:5d:36:4f:73:cc:a2:d2:8b:4b:70:67:c9:34:5c:73:6b: 1e:03:e7:fd:e1:e8:dc:1f:94:08:56:b5:b0:f5:41:21:b3:97: 26:71:4d:71 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt87fK8UWWKiiwl4l9yuVqiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNzQ2ZTlmMTJjMmMwZTU0NTlmZTRlM2Q0MTNjMWM4OWRl NmRiMGUwHhcNMjYwMTAyMDQxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyM2UyYmQ5ZWE2OGJmMjJiMWQ2OTAzYzA0ZGRjZjVlNjM1NzhlZjYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmr+TxX5j5qg6vwl8L+1tS6G1mj2a dDyoYYi/jliKZ4p7+Bm/jOYEdAu14AAcWdOSxcwhEB9oKqhdkSOw4ylx0tKBSfgR izIdijrpMb82EqdRXBDYTynT+AIWYURwIF2DlPAfE4b7wi/i5sYd+HSykl75dtvy FTGLvaJVElKyb/Pd7JK55DK3mU3VyOsARYnXEL3p6+D2mKk44MMeApdOU0j2Z74k Yrtc0CBU9tblYVqa7vC36JFWfam/whQf4dY1dygquXj5TaEXontnm6zQWYBMXNu5 f1swwm5LYGEKP4Up1AphPBviwcOJ+jBRpy+Kd/GjXa0keQFQ4t6O5Vi62QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFCPivZ6mi/IrHWkDwE3c9eY1eO9gMB8GA1UdIwQY MBaAFFx0bp8SwsDlRZ/k49QTwcid5tsOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEhSdW54TEN3T1ZGbi1UajFCUEJ5SjNtMnc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9kNmJmNWUtNDgxMi00MzBlLTlhMTMt ZTU5NDc2MTRlZjNmLzEvSS1LOW5xYUw4aXNkYVFQQVRkejE1alY0NzJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy9kNmJmNWUtNDgxMi00MzBlLTlhMTMtZTU5NDc2MTRlZjNm LzEvWEhSdW54TEN3T1ZGbi1UajFCUEJ5SjNtMnc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgJ3IDAN BgkqhkiG9w0BAQsFAAOCAQEAF99cR5i26xCM+Qfy9SQeqY4Iw9NQwzqA0BNTOxN0 bnTHBa/SkFqTdmZ2Fhb7pj5JJgwdbaB9Oqxuq9TRsRLkxUPP+xcsl7wLD293BJvZ nH8ZQyJfYBxQzhLUwzqh4X/xD2/DwSormn8SQrUQCBZKyo1Zkvt46Il3hFNNGX1/ qLxlsJEiRzRZRoX1+IK8Dn/QtNqgYGdpebIciL8r6ooWs9SEzV0ErW6Vr0FA+HtD tuXmYGrzSHd7t1wnDrnCkT9zvA0nmxPPQqf/JOIvBtHTIG2v//mitjnjGR5dNk9z zKLSi0twZ8k0XHNrHgPn/eHo3B+UCFa1sPVBIbOXJnFNcQ== -----END CERTIFICATE-----Generated at Mon Jan 26 03:56:48 2026 by rpki-client