This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/aNNxwXM4RLWcgiojbyE7ayki1ds.roa File: aNNxwXM4RLWcgiojbyE7ayki1ds.roa (raw, json) Hash identifier: aXD5NXX15GN3LeS7Ev04287erJQ10IqS/qwsHUN++xk= Subject key identifier: 68:D3:71:C1:73:38:44:B5:9C:82:2A:23:6F:21:3B:6B:29:22:D5:DB Certificate issuer: /CN=a7a4e23482268475c1b935637d0002c2fd2993b8 Certificate serial: 019B7CEE72C66A0F51308965D6A588DC7B01 Authority key identifier: A7:A4:E2:34:82:26:84:75:C1:B9:35:63:7D:00:02:C2:FD:29:93:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/aNNxwXM4RLWcgiojbyE7ayki1ds.roa Signing time: Fri 02 Jan 2026 04:19:20 +0000 ROA not before: Fri 02 Jan 2026 04:19:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216283 IP address blocks: 2a14:ae00:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.mft rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:72:c6:6a:0f:51:30:89:65:d6:a5:88:dc:7b:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7a4e23482268475c1b935637d0002c2fd2993b8 Validity Not Before: Jan 2 04:19:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=68d371c1733844b59c822a236f213b6b2922d5db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:75:cb:16:9d:c0:86:29:23:b9:e0:cb:ef:7c: 7d:c0:a5:b3:f8:22:3b:63:80:d4:c0:b4:84:73:0c: d9:39:b5:1b:7f:9e:a7:d4:47:e0:6f:b3:45:7b:ab: a9:2e:2d:36:4d:5e:b9:0f:5b:ff:a1:2e:71:f9:ac: 4c:ab:db:fd:aa:33:c6:1d:f5:29:36:d7:48:0c:74: 37:7b:4e:84:3d:46:b9:59:5c:98:24:82:6f:4f:b0: f8:b9:f5:f4:de:18:8f:b6:52:9f:3e:46:a8:54:76: cc:92:e0:11:25:b0:7a:8a:ce:e8:41:15:20:09:3e: b3:97:3a:db:81:12:94:12:d7:07:dd:37:8e:c7:3d: ad:0b:f1:79:08:c5:07:88:2a:a7:f7:b0:ec:d1:c2: 12:d9:c0:90:8a:eb:65:0a:0e:f8:80:aa:3b:4f:35: 23:34:67:0d:fa:81:6b:2d:45:7a:42:ff:ba:08:5b: 5b:f7:06:23:e9:04:82:2d:e3:c3:1d:bc:c8:05:1a: e2:4e:a3:4a:fe:be:d2:5d:6b:dc:d5:f4:e0:f2:38: c7:55:ba:35:12:34:66:99:e4:d4:66:26:e5:1a:11: 91:02:c7:b0:6d:d5:57:4d:47:dc:a8:fa:0c:78:b5: 42:c9:e1:9d:2f:79:f5:b5:ba:d7:ff:12:50:76:b4: 55:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D3:71:C1:73:38:44:B5:9C:82:2A:23:6F:21:3B:6B:29:22:D5:DB X509v3 Authority Key Identifier: keyid:A7:A4:E2:34:82:26:84:75:C1:B9:35:63:7D:00:02:C2:FD:29:93:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/aNNxwXM4RLWcgiojbyE7ayki1ds.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:ae00:a::/48 Signature Algorithm: sha256WithRSAEncryption 0a:09:4f:1e:f9:7e:2f:94:1b:7c:bb:6d:aa:aa:b9:32:de:2b: cc:9a:dc:43:f0:80:73:9b:c3:4f:fc:1a:cc:67:6f:e5:e0:5f: 22:59:f7:1e:74:79:7d:e8:97:8c:df:50:ab:f0:26:61:19:43: 51:a3:98:5b:a8:0c:e6:91:4b:17:c4:41:5d:45:ad:ec:4f:d7: b1:90:9f:e7:17:45:25:99:c1:a9:12:88:b5:c0:c4:a1:be:45: 03:d7:b7:77:a9:55:26:77:72:fd:b7:f5:71:27:b8:75:82:1d: c4:4e:d0:41:f2:77:e2:cc:48:79:3e:ee:08:87:60:29:69:2f: d8:8e:2a:4b:4c:99:37:7a:43:3c:b5:c8:de:f7:de:a6:26:a1: 61:d9:b0:42:5d:37:7f:79:d6:20:fc:01:52:bd:8b:c7:ee:58: 9c:1c:1b:f4:f7:40:c8:1b:07:cb:46:12:93:18:71:8a:c2:3f: 69:a7:93:03:08:6c:3b:20:26:89:94:a8:8b:13:1b:3d:7f:54: 4f:d1:80:89:65:45:b2:34:90:28:49:4f:25:28:9f:7a:62:07: 0a:27:97:5e:99:52:50:ce:71:f2:11:ee:f2:4e:02:67:8b:1e: 02:fc:7e:f6:42:09:cc:cf:f1:ff:83:4a:e4:b5:eb:d8:46:f3: ef:73:fa:5e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt87nLGag9RMIll1qWI3HsBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3YTRlMjM0ODIyNjg0NzVjMWI5MzU2MzdkMDAwMmMyZmQy OTkzYjgwHhcNMjYwMTAyMDQxOTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OGQzNzFjMTczMzg0NGI1OWM4MjJhMjM2ZjIxM2I2YjI5MjJkNWRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynXLFp3AhikjueDL73x9wKWz+CI7 Y4DUwLSEcwzZObUbf56n1Efgb7NFe6upLi02TV65D1v/oS5x+axMq9v9qjPGHfUp NtdIDHQ3e06EPUa5WVyYJIJvT7D4ufX03hiPtlKfPkaoVHbMkuARJbB6is7oQRUg CT6zlzrbgRKUEtcH3TeOxz2tC/F5CMUHiCqn97Ds0cIS2cCQiutlCg74gKo7TzUj NGcN+oFrLUV6Qv+6CFtb9wYj6QSCLePDHbzIBRriTqNK/r7SXWvc1fTg8jjHVbo1 EjRmmeTUZiblGhGRAsewbdVXTUfcqPoMeLVCyeGdL3n1tbrX/xJQdrRVDQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFGjTccFzOES1nIIqI28hO2spItXbMB8GA1UdIwQY MBaAFKek4jSCJoR1wbk1Y30AAsL9KZO4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDZUaU5JSW1oSFhCdVRWamZRQUN3djBwazdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8wN2Y2MjMtMTRmYi00YTgwLTlmNDYt MjMzMzFiNjQ5MTZjLzEvYU5OeHdYTTRSTFdjZ2lvamJ5RTdheWtpMWRzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy8wN2Y2MjMtMTRmYi00YTgwLTlmNDYtMjMzMzFiNjQ5MTZj LzEvcDZUaU5JSW1oSFhCdVRWamZRQUN3djBwazdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhSuAAAK MA0GCSqGSIb3DQEBCwUAA4IBAQAKCU8e+X4vlBt8u22qqrky3ivMmtxD8IBzm8NP /BrMZ2/l4F8iWfcedHl96JeM31Cr8CZhGUNRo5hbqAzmkUsXxEFdRa3sT9exkJ/n F0UlmcGpEoi1wMShvkUD17d3qVUmd3L9t/VxJ7h1gh3ETtBB8nfizEh5Pu4Ih2Ap aS/YjipLTJk3ekM8tcje996mJqFh2bBCXTd/edYg/AFSvYvH7licHBv090DIGwfL RhKTGHGKwj9pp5MDCGw7ICaJlKiLExs9f1RP0YCJZUWyNJAoSU8lKJ96YgcKJ5de mVJQznHyEe7yTgJnix4C/H72QgnMz/H/g0rktevYRvPvc/pe -----END CERTIFICATE-----Generated at Sun Jan 25 17:44:59 2026 by rpki-client