This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/B7nfsbI7vpYat2Veoezdf_TcIy8.roa File: B7nfsbI7vpYat2Veoezdf_TcIy8.roa (raw, json) Hash identifier: ZifWcufC5UurQhjWI81wwKVDTfPl5QEDU7f59ef2yA4= Subject key identifier: 07:B9:DF:B1:B2:3B:BE:96:1A:B7:65:5E:A1:EC:DD:7F:F4:DC:23:2F Certificate issuer: /CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1 Certificate serial: 019B775898F894C6821E838383A546EC8693 Authority key identifier: DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/B7nfsbI7vpYat2Veoezdf_TcIy8.roa Signing time: Thu 01 Jan 2026 02:17:33 +0000 ROA not before: Thu 01 Jan 2026 02:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207616 IP address blocks: 2a0f:ca83::/40 maxlen: 48 2a0f:ca85::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.mft rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:98:f8:94:c6:82:1e:83:83:83:a5:46:ec:86:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1 Validity Not Before: Jan 1 02:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=07b9dfb1b23bbe961ab7655ea1ecdd7ff4dc232f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:35:fc:07:70:9d:bb:cb:7c:a8:48:2e:de:dd: 2d:31:3d:a4:0f:f1:97:c0:13:65:8d:c8:96:18:ad: 3b:4a:83:bb:3c:fb:10:88:8d:20:2a:0d:69:4a:7c: 38:5a:3b:22:1a:2e:2a:bd:cd:bd:aa:47:1c:ff:67: d7:1f:92:d5:11:d3:93:a0:7f:68:7b:69:18:2f:f0: 2c:6b:af:32:a2:66:db:2f:ca:f5:82:9e:9e:97:44: a5:9f:c8:68:41:4d:a3:5a:5d:74:61:6b:6c:33:7c: 57:d4:7d:28:9e:f0:90:0e:9f:17:71:77:99:f2:6a: fd:1c:db:4e:6d:9e:26:c3:d5:2a:a1:48:92:34:83: ae:55:1c:00:a7:3e:2b:72:86:a5:ad:a8:5b:51:12: b4:05:7b:23:e4:5b:ca:be:5a:85:94:95:4f:25:24: db:40:d5:e4:7f:41:f2:6f:c4:5e:23:fd:5f:09:72: e0:1e:21:70:d1:8c:d4:aa:06:eb:01:31:7c:9e:43: 56:3d:e5:5d:bf:90:e8:63:5a:cd:63:db:5d:bf:58: 4c:00:da:82:8f:0e:25:19:21:ae:86:c6:32:a6:8b: 11:e4:93:17:78:08:0d:e0:58:d9:6a:1c:01:03:83: fc:0c:ec:fa:77:55:f3:15:2f:6e:6e:f6:26:25:66: 3c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B9:DF:B1:B2:3B:BE:96:1A:B7:65:5E:A1:EC:DD:7F:F4:DC:23:2F X509v3 Authority Key Identifier: keyid:DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/B7nfsbI7vpYat2Veoezdf_TcIy8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:ca83::/40 2a0f:ca85::/48 Signature Algorithm: sha256WithRSAEncryption 1c:ae:37:5e:f2:ac:8a:ab:ae:58:0c:d5:9f:b2:2e:54:ab:db: 64:db:a9:4b:8e:ad:6c:1f:70:51:a6:d7:01:a4:86:f9:8d:d7: 84:d4:64:87:58:af:d7:93:6e:80:21:d1:9f:ed:d9:3f:43:43: 80:c5:9c:d9:69:b1:b8:a6:ba:f3:04:ca:b7:60:fb:ea:26:e3: 00:f3:1b:df:b0:ad:9c:a9:a5:c0:c1:f2:70:eb:a4:48:ad:46: 86:04:3b:08:18:6a:f3:bf:1c:8c:85:68:c1:72:22:5c:74:54: 97:36:5e:d8:6c:34:db:52:7c:33:18:c2:f5:fb:18:65:4c:d7: 3c:c7:c6:f3:8e:14:55:7e:e0:35:79:5d:53:34:40:5c:67:06: 91:da:fe:8e:0f:f4:ee:18:73:b0:ff:aa:f0:d2:34:e7:d7:95: 54:15:f6:88:3f:2b:a0:81:c8:ba:fd:44:98:b6:be:d6:b3:10: d4:40:e1:26:c8:94:eb:e2:f7:e1:93:ea:b0:7c:2a:68:5f:56: 15:25:21:35:92:60:a0:1f:03:7e:88:e7:3b:c2:58:70:0f:5d: 90:29:3e:91:1e:e4:00:78:02:83:1a:2c:ed:a6:1e:02:fd:8e: e3:f2:4a:5b:db:42:31:a3:4c:8b:e2:2d:5c:1b:18:b1:47:76: 74:e3:65:8e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgISAZt3WJj4lMaCHoODg6VG7IaTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiZTZhYjhlMGM0NmU4NDFiNDRkMmI5YzZiMDNiYjY1ZjU2 MjFkYjEwHhcNMjYwMTAxMDIxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwN2I5ZGZiMWIyM2JiZTk2MWFiNzY1NWVhMWVjZGQ3ZmY0ZGMyMzJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjX8B3Cdu8t8qEgu3t0tMT2kD/GX wBNljciWGK07SoO7PPsQiI0gKg1pSnw4WjsiGi4qvc29qkcc/2fXH5LVEdOToH9o e2kYL/Asa68yombbL8r1gp6el0Sln8hoQU2jWl10YWtsM3xX1H0onvCQDp8XcXeZ 8mr9HNtObZ4mw9UqoUiSNIOuVRwApz4rcoalrahbURK0BXsj5FvKvlqFlJVPJSTb QNXkf0Hyb8ReI/1fCXLgHiFw0YzUqgbrATF8nkNWPeVdv5DoY1rNY9tdv1hMANqC jw4lGSGuhsYyposR5JMXeAgN4FjZahwBA4P8DOz6d1XzFS9ubvYmJWY8+wIDAQAB o4ICFDCCAhAwHQYDVR0OBBYEFAe537GyO76WGrdlXqHs3X/03CMvMB8GA1UdIwQY MBaAFNvmq44MRuhBtE0rnGsDu2X1Yh2xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMi1hcmpneEc2RUcwVFN1Y2F3TzdaZlZpSGJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS85NjQzNmMtZjZmYS00MGJhLWEyN2Mt ZmIxMDMwNjUxMDY3LzEvQjduZnNiSTd2cFlhdDJWZW9lemRmX1RjSXk4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS85NjQzNmMtZjZmYS00MGJhLWEyN2MtZmIxMDMwNjUxMDY3 LzEvMi1hcmpneEc2RUcwVFN1Y2F3TzdaZlZpSGJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwYAKg/KgwAD BwAqD8qFAAAwDQYJKoZIhvcNAQELBQADggEBAByuN17yrIqrrlgM1Z+yLlSr22Tb qUuOrWwfcFGm1wGkhvmN14TUZIdYr9eTboAh0Z/t2T9DQ4DFnNlpsbimuvMEyrdg ++om4wDzG9+wrZyppcDB8nDrpEitRoYEOwgYavO/HIyFaMFyIlx0VJc2XthsNNtS fDMYwvX7GGVM1zzHxvOOFFV+4DV5XVM0QFxnBpHa/o4P9O4Yc7D/qvDSNOfXlVQV 9og/K6CByLr9RJi2vtazENRA4SbIlOvi9+GT6rB8KmhfVhUlITWSYKAfA36I5zvC WHAPXZApPpEe5AB4AoMaLO2mHgL9juPySlvbQjGjTIviLVwbGLFHdnTjZY4= -----END CERTIFICATE-----Generated at Sun Jan 25 16:28:35 2026 by rpki-client