This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/96dDSS3_XkJdE42tPgTQFeNVDec.roa File: 96dDSS3_XkJdE42tPgTQFeNVDec.roa (raw, json) Hash identifier: dwHN2EcjJrtCZAcPzokJT4sxYyyBsiYHG30Cc+Xp5Yo= Subject key identifier: F7:A7:43:49:2D:FF:5E:42:5D:13:8D:AD:3E:04:D0:15:E3:55:0D:E7 Certificate issuer: /CN=a7a4e23482268475c1b935637d0002c2fd2993b8 Certificate serial: 019ADE6A1FA3F93F3B8F2BED081C3D06A81E Authority key identifier: A7:A4:E2:34:82:26:84:75:C1:B9:35:63:7D:00:02:C2:FD:29:93:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/96dDSS3_XkJdE42tPgTQFeNVDec.roa Signing time: Tue 02 Dec 2025 09:34:48 +0000 ROA not before: Tue 02 Dec 2025 09:34:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 209990 IP address blocks: 2a14:ae00:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.mft rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:de:6a:1f:a3:f9:3f:3b:8f:2b:ed:08:1c:3d:06:a8:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7a4e23482268475c1b935637d0002c2fd2993b8 Validity Not Before: Dec 2 09:34:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=f7a743492dff5e425d138dad3e04d015e3550de7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e2:73:f1:16:5e:80:82:e6:ca:97:cd:40:68: a4:b5:a2:5e:24:6f:9c:66:1b:e0:37:93:6c:e4:79: 2c:4b:9c:98:92:93:4a:d8:99:8d:43:ae:57:45:11: 9f:6d:50:c7:d6:05:d6:3d:cf:1c:12:ed:63:70:ef: 7e:99:19:6f:29:07:2a:ae:07:e7:e0:3c:24:c6:8e: 88:10:4d:c2:36:a6:d8:26:59:a8:b5:24:74:44:d0: f5:f7:f6:b7:b1:eb:d1:2e:9f:8e:4e:9c:43:8c:50: 3d:9b:1c:59:83:77:f8:a8:d4:f7:aa:3c:f8:79:0b: 02:71:48:e8:45:da:1a:d1:b1:2b:c3:63:52:6f:bf: 40:10:6d:c5:8c:73:7e:2c:2a:54:61:78:44:7d:c0: c4:21:09:11:0e:b7:0f:04:78:6a:7a:39:03:3b:c2: 5a:ea:04:66:ac:7d:48:11:c4:d4:fc:65:92:ca:9f: e8:52:9c:da:b8:67:78:f5:34:8c:22:90:b5:36:3f: 5f:1a:4d:62:04:c9:12:59:f8:a5:a4:8a:3e:96:29: 4b:08:08:de:18:be:4c:de:04:98:7a:43:27:0b:7e: da:46:e1:9e:a8:36:75:ea:fc:5c:01:b6:1b:aa:de: 9a:f6:11:d9:97:37:92:dd:3d:ef:c3:a7:d9:95:5e: 47:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A7:43:49:2D:FF:5E:42:5D:13:8D:AD:3E:04:D0:15:E3:55:0D:E7 X509v3 Authority Key Identifier: keyid:A7:A4:E2:34:82:26:84:75:C1:B9:35:63:7D:00:02:C2:FD:29:93:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/96dDSS3_XkJdE42tPgTQFeNVDec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:ae00:8::/48 Signature Algorithm: sha256WithRSAEncryption 73:f6:56:aa:2a:19:82:48:db:46:5c:5b:4d:2d:c8:56:ce:24: d3:2d:12:f3:b1:70:d9:4f:11:47:10:27:6f:4b:01:28:09:f2: 87:ab:5f:a3:62:77:44:17:99:71:e1:a1:1d:b1:70:39:24:55: 33:51:3b:1f:ab:67:c3:b9:f8:e0:53:da:6b:99:97:34:f0:be: 91:27:40:9a:06:be:3b:c7:52:41:d8:12:b5:0c:c6:00:21:e6: 6e:8b:fb:b8:e6:ab:a9:78:b0:2f:7e:fa:8e:b2:87:97:ff:8f: f3:03:a3:b3:41:a2:75:b7:eb:c6:9b:e6:4e:6f:52:31:7b:ce: 6d:d4:8b:67:8b:31:d4:25:0b:d8:a2:14:a2:74:18:e8:89:cf: 2d:8f:f9:5b:c8:e6:fb:c8:96:15:45:7c:1c:42:2d:bb:21:c9: ad:e0:41:81:d2:e4:db:27:dc:01:82:d7:38:ce:05:c1:6b:6d: 74:32:03:31:41:97:70:a9:c6:50:cb:71:39:58:8b:4e:13:15: f5:cc:1b:82:59:2d:07:d8:67:cb:b6:bc:d7:c0:d5:f8:ac:b8: ad:44:7f:b2:ca:2f:c5:d0:20:1b:2c:2c:c5:6e:b6:12:34:7f: 9c:55:6e:68:74:25:a6:39:36:76:03:47:30:8b:00:fe:c6:4b: c8:4d:c8:fe -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZreah+j+T87jyvtCBw9BqgeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3YTRlMjM0ODIyNjg0NzVjMWI5MzU2MzdkMDAwMmMyZmQy OTkzYjgwHhcNMjUxMjAyMDkzNDQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmN2E3NDM0OTJkZmY1ZTQyNWQxMzhkYWQzZTA0ZDAxNWUzNTUwZGU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOJz8RZegILmypfNQGiktaJeJG+c ZhvgN5Ns5HksS5yYkpNK2JmNQ65XRRGfbVDH1gXWPc8cEu1jcO9+mRlvKQcqrgfn 4Dwkxo6IEE3CNqbYJlmotSR0RND19/a3sevRLp+OTpxDjFA9mxxZg3f4qNT3qjz4 eQsCcUjoRdoa0bErw2NSb79AEG3FjHN+LCpUYXhEfcDEIQkRDrcPBHhqejkDO8Ja 6gRmrH1IEcTU/GWSyp/oUpzauGd49TSMIpC1Nj9fGk1iBMkSWfilpIo+lilLCAje GL5M3gSYekMnC37aRuGeqDZ16vxcAbYbqt6a9hHZlzeS3T3vw6fZlV5HlwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFPenQ0kt/15CXRONrT4E0BXjVQ3nMB8GA1UdIwQY MBaAFKek4jSCJoR1wbk1Y30AAsL9KZO4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDZUaU5JSW1oSFhCdVRWamZRQUN3djBwazdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8wN2Y2MjMtMTRmYi00YTgwLTlmNDYt MjMzMzFiNjQ5MTZjLzEvOTZkRFNTM19Ya0pkRTQydFBnVFFGZU5WRGVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy8wN2Y2MjMtMTRmYi00YTgwLTlmNDYtMjMzMzFiNjQ5MTZj LzEvcDZUaU5JSW1oSFhCdVRWamZRQUN3djBwazdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhSuAAAI MA0GCSqGSIb3DQEBCwUAA4IBAQBz9laqKhmCSNtGXFtNLchWziTTLRLzsXDZTxFH ECdvSwEoCfKHq1+jYndEF5lx4aEdsXA5JFUzUTsfq2fDufjgU9prmZc08L6RJ0Ca Br47x1JB2BK1DMYAIeZui/u45qupeLAvfvqOsoeX/4/zA6OzQaJ1t+vGm+ZOb1Ix e85t1ItnizHUJQvYohSidBjoic8tj/lbyOb7yJYVRXwcQi27Icmt4EGB0uTbJ9wB gtc4zgXBa210MgMxQZdwqcZQy3E5WItOExX1zBuCWS0H2GfLtrzXwNX4rLitRH+y yi/F0CAbLCzFbrYSNH+cVW5odCWmOTZ2A0cwiwD+xkvITcj+ -----END CERTIFICATE-----Generated at Sat Dec 6 21:52:09 2025 by rpki-client