This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/00xI0DtCAFHWBOE_bejIQNTJW6M.roa File: 00xI0DtCAFHWBOE_bejIQNTJW6M.roa (raw, json) Hash identifier: sfs0yal7NGV6TxNOqMPsIoLdmjrSnjF4P2BuDUW5yfw= Subject key identifier: D3:4C:48:D0:3B:42:00:51:D6:04:E1:3F:6D:E8:C8:40:D4:C9:5B:A3 Certificate issuer: /CN=a7a4e23482268475c1b935637d0002c2fd2993b8 Certificate serial: 019A9D602E5F11DB8743F5689E814F7BC08F Authority key identifier: A7:A4:E2:34:82:26:84:75:C1:B9:35:63:7D:00:02:C2:FD:29:93:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/00xI0DtCAFHWBOE_bejIQNTJW6M.roa Signing time: Wed 19 Nov 2025 18:28:37 +0000 ROA not before: Wed 19 Nov 2025 18:28:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 203626 IP address blocks: 2a14:ae00:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.mft rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:9d:60:2e:5f:11:db:87:43:f5:68:9e:81:4f:7b:c0:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7a4e23482268475c1b935637d0002c2fd2993b8 Validity Not Before: Nov 19 18:28:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=d34c48d03b420051d604e13f6de8c840d4c95ba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bd:ef:6f:f0:69:dd:79:c4:f0:19:3b:a2:a6: 1a:be:30:09:94:44:b6:60:73:09:9b:6a:6b:6e:9b: 8c:1a:e0:eb:21:52:72:17:ff:59:17:d9:4d:ae:28: f7:34:0b:8a:4e:da:f7:22:6c:83:0f:5c:a3:66:b3: f1:a1:8e:a8:f9:89:3a:79:1f:93:1a:b2:2f:2f:70: da:ed:33:d1:7b:ff:c1:a4:94:87:0e:6e:91:5c:03: 30:86:ea:76:60:37:7f:bf:d7:2b:c9:6f:4d:91:d5: 31:e0:d3:72:4a:e6:98:b4:36:39:f6:e9:ca:7f:0e: 64:ba:e0:b5:35:63:1a:89:9c:8b:20:83:2a:59:ff: 13:e6:e7:d7:c2:cc:69:87:a2:6b:cb:da:38:84:a7: b6:17:41:9d:b6:c6:d3:11:8f:25:b7:e9:f2:d4:17: f7:cd:b9:03:e7:0a:e1:33:4b:1b:6f:84:ef:77:12: c4:12:40:3e:0b:21:06:03:9e:02:f8:74:73:75:9c: 04:f0:8f:25:01:2f:be:94:a9:25:6e:ad:88:08:18: 31:be:49:c8:96:ac:e1:42:8b:6b:c5:b5:4d:9c:b6: f4:ca:b5:2e:ec:55:76:cd:04:58:3c:4a:a0:45:9b: 32:82:2e:94:b2:3b:56:bf:30:58:64:a3:e2:75:45: 9a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:4C:48:D0:3B:42:00:51:D6:04:E1:3F:6D:E8:C8:40:D4:C9:5B:A3 X509v3 Authority Key Identifier: keyid:A7:A4:E2:34:82:26:84:75:C1:B9:35:63:7D:00:02:C2:FD:29:93:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/00xI0DtCAFHWBOE_bejIQNTJW6M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:ae00:7::/48 Signature Algorithm: sha256WithRSAEncryption 0a:69:31:10:52:46:82:0e:a1:5b:18:8d:ae:78:d7:2e:13:65: 8e:e7:7f:8b:81:75:cd:c4:5a:5e:4d:39:be:07:8f:96:39:ef: 50:c2:30:b7:bd:8d:cf:f2:91:89:3b:ab:cd:c8:95:bf:fd:3a: 15:38:ef:e0:88:8d:fd:50:e2:96:83:52:08:a1:ad:e2:fa:09: 27:3b:24:00:d9:ed:94:bd:4c:eb:c1:d9:0c:3e:f8:9d:b7:80: 1a:f7:84:ac:c8:51:32:20:ed:9a:ae:35:2e:22:20:e9:bb:fa: dc:c3:ac:fa:44:69:db:98:87:cd:30:22:18:fb:0d:d2:64:74: c1:70:5d:a7:38:cf:15:fd:3c:79:06:ee:e2:36:f1:d7:ba:63: a1:1d:45:04:89:48:54:27:a0:36:ca:2a:1d:b4:98:64:69:6f: e1:a5:61:85:52:5c:0a:fd:9c:7c:02:ae:f6:fa:99:56:01:77: 36:ef:95:f8:c2:7b:d1:ec:32:1f:ba:4a:e0:f9:b7:48:a5:04: fb:25:dd:a1:4a:68:08:13:4b:b1:23:d8:2e:87:db:15:71:62: ed:3e:37:24:16:e4:04:84:c0:5f:df:7a:a0:65:88:8e:f5:bd: 95:81:e6:9d:e0:ea:dd:42:83:b0:ef:8d:bb:94:42:80:88:8a: d1:57:8b:28 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZqdYC5fEduHQ/VonoFPe8CPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3YTRlMjM0ODIyNjg0NzVjMWI5MzU2MzdkMDAwMmMyZmQy OTkzYjgwHhcNMjUxMTE5MTgyODM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzRjNDhkMDNiNDIwMDUxZDYwNGUxM2Y2ZGU4Yzg0MGQ0Yzk1YmEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxb3vb/Bp3XnE8Bk7oqYavjAJlES2 YHMJm2prbpuMGuDrIVJyF/9ZF9lNrij3NAuKTtr3ImyDD1yjZrPxoY6o+Yk6eR+T GrIvL3Da7TPRe//BpJSHDm6RXAMwhup2YDd/v9cryW9NkdUx4NNySuaYtDY59unK fw5kuuC1NWMaiZyLIIMqWf8T5ufXwsxph6Jry9o4hKe2F0GdtsbTEY8lt+ny1Bf3 zbkD5wrhM0sbb4TvdxLEEkA+CyEGA54C+HRzdZwE8I8lAS++lKklbq2ICBgxvknI lqzhQotrxbVNnLb0yrUu7FV2zQRYPEqgRZsygi6UsjtWvzBYZKPidUWaXwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNNMSNA7QgBR1gThP23oyEDUyVujMB8GA1UdIwQY MBaAFKek4jSCJoR1wbk1Y30AAsL9KZO4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDZUaU5JSW1oSFhCdVRWamZRQUN3djBwazdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8wN2Y2MjMtMTRmYi00YTgwLTlmNDYt MjMzMzFiNjQ5MTZjLzEvMDB4STBEdENBRkhXQk9FX2JlaklRTlRKVzZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy8wN2Y2MjMtMTRmYi00YTgwLTlmNDYtMjMzMzFiNjQ5MTZj LzEvcDZUaU5JSW1oSFhCdVRWamZRQUN3djBwazdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhSuAAAH MA0GCSqGSIb3DQEBCwUAA4IBAQAKaTEQUkaCDqFbGI2ueNcuE2WO53+LgXXNxFpe TTm+B4+WOe9QwjC3vY3P8pGJO6vNyJW//ToVOO/giI39UOKWg1IIoa3i+gknOyQA 2e2UvUzrwdkMPvidt4Aa94SsyFEyIO2arjUuIiDpu/rcw6z6RGnbmIfNMCIY+w3S ZHTBcF2nOM8V/Tx5Bu7iNvHXumOhHUUEiUhUJ6A2yiodtJhkaW/hpWGFUlwK/Zx8 Aq72+plWAXc275X4wnvR7DIfukrg+bdIpQT7Jd2hSmgIE0uxI9guh9sVcWLtPjck FuQEhMBf33qgZYiO9b2Vgead4OrdQoOw7427lEKAiIrRV4so -----END CERTIFICATE-----Generated at Sat Dec 6 23:19:32 2025 by rpki-client