This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/017eef-c49e-47a7-9ed3-098db3a24ff0/1/3JReEfB8vDZDhVmFGx7qHuZC4_I.roa File: 3JReEfB8vDZDhVmFGx7qHuZC4_I.roa (raw, json) Hash identifier: BOMcjcqO+0uN5QzTy8MJXHiL/r6F//uZrnyFxSsji/w= Subject key identifier: DC:94:5E:11:F0:7C:BC:36:43:85:59:85:1B:1E:EA:1E:E6:42:E3:F2 Certificate issuer: /CN=8faccbac71477b940e5cd4103e3eee61db615915 Certificate serial: 019B7F15C4B6A9A921FC944300F6F7802B24 Authority key identifier: 8F:AC:CB:AC:71:47:7B:94:0E:5C:D4:10:3E:3E:EE:61:DB:61:59:15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j6zLrHFHe5QOXNQQPj7uYdthWRU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/017eef-c49e-47a7-9ed3-098db3a24ff0/1/3JReEfB8vDZDhVmFGx7qHuZC4_I.roa Signing time: Fri 02 Jan 2026 14:21:31 +0000 ROA not before: Fri 02 Jan 2026 14:21:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214618 IP address blocks: 2a14:7240:a10::/48 maxlen: 48 2a14:7240:e02::/48 maxlen: 48 2a14:7240:e03::/48 maxlen: 48 2a14:7240:a01c::/48 maxlen: 48 2a14:7240:dead::/48 maxlen: 48 2a14:7240:e01c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/017eef-c49e-47a7-9ed3-098db3a24ff0/1/j6zLrHFHe5QOXNQQPj7uYdthWRU.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/017eef-c49e-47a7-9ed3-098db3a24ff0/1/j6zLrHFHe5QOXNQQPj7uYdthWRU.mft rsync://rpki.ripe.net/repository/DEFAULT/j6zLrHFHe5QOXNQQPj7uYdthWRU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:c4:b6:a9:a9:21:fc:94:43:00:f6:f7:80:2b:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8faccbac71477b940e5cd4103e3eee61db615915 Validity Not Before: Jan 2 14:21:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dc945e11f07cbc36438559851b1eea1ee642e3f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:12:85:38:de:15:65:24:39:d0:60:69:70:30: e7:69:7f:20:6c:bd:48:ee:d4:8d:37:26:dd:4a:25: 96:36:be:80:f4:51:17:43:30:58:a9:bf:ae:fa:d0: 3b:35:f6:85:ca:8e:c1:49:fa:6d:94:66:f7:18:b8: e5:6a:61:94:87:7b:36:f9:aa:b1:65:9c:c4:49:f2: 3c:c0:3d:5d:e2:90:85:46:2b:b5:03:1b:24:1a:23: 34:26:73:4c:4d:5d:bb:22:e4:6f:e3:f8:87:19:90: b4:e7:4a:86:73:0f:4c:e7:e3:81:b1:b3:03:cc:63: 32:f1:82:af:ad:41:44:cb:f5:f2:bb:a7:05:79:66: 79:01:74:d0:a0:d0:fd:5f:12:50:4e:41:54:d7:df: af:dc:b3:53:6a:b3:c7:5c:5b:5c:23:8c:e1:1d:aa: 0f:e2:2b:c2:8d:a9:66:42:cd:a5:15:e5:58:92:e3: cf:b3:98:6d:1f:e8:c5:25:d0:aa:18:8c:a4:d7:63: bc:b5:90:ad:16:59:7c:b2:de:89:58:64:17:7c:58: 2a:71:29:6f:ca:d4:3c:22:de:20:74:ce:46:6f:f1: b1:01:be:49:80:a3:10:2c:74:b4:a0:db:06:97:2f: 32:91:84:a4:8a:08:56:c6:85:4b:18:71:ef:54:27: c4:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:94:5E:11:F0:7C:BC:36:43:85:59:85:1B:1E:EA:1E:E6:42:E3:F2 X509v3 Authority Key Identifier: keyid:8F:AC:CB:AC:71:47:7B:94:0E:5C:D4:10:3E:3E:EE:61:DB:61:59:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j6zLrHFHe5QOXNQQPj7uYdthWRU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/017eef-c49e-47a7-9ed3-098db3a24ff0/1/3JReEfB8vDZDhVmFGx7qHuZC4_I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/017eef-c49e-47a7-9ed3-098db3a24ff0/1/j6zLrHFHe5QOXNQQPj7uYdthWRU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7240:a10::/48 2a14:7240:e02::/47 2a14:7240:a01c::/48 2a14:7240:dead::/48 2a14:7240:e01c::/48 Signature Algorithm: sha256WithRSAEncryption 0b:6e:d0:83:d6:21:bb:4b:4e:42:3f:0d:05:aa:35:fd:64:98: d0:06:4e:ab:34:e9:79:4f:6f:ba:d3:9d:e4:0f:9e:fd:43:85: 8e:64:fc:42:0f:b7:38:b2:bc:89:ad:90:d9:05:92:33:f5:4e: 75:47:77:ec:73:54:26:5d:ff:67:87:62:69:fc:b3:df:d2:98: 61:3e:9a:97:b9:39:df:30:15:9f:2f:77:a2:63:d4:52:6b:13: 44:05:0a:d3:b5:98:6f:a2:74:d7:58:1d:e7:72:cf:4b:fb:ef: e1:f6:cf:30:08:d2:da:e5:a9:e7:4b:82:02:11:69:d0:d0:48: 42:ec:6c:b2:91:7a:3b:3c:8c:11:1a:d3:d4:40:2b:9a:28:78: a5:df:db:6b:e7:5f:7e:e5:3b:9e:3f:cd:ba:01:55:5f:b5:8b: e3:13:27:e3:bb:ab:ea:a3:f7:92:11:09:ba:2b:43:ef:02:a1: ea:38:d2:1b:1d:53:d0:36:c4:4e:aa:5d:d6:7d:e6:55:96:d5: cd:20:9e:e4:18:01:a0:1b:03:6f:42:a2:3e:1a:34:c4:0d:47: e5:82:ae:9f:74:3f:50:38:26:23:a1:03:d9:eb:ae:a8:59:ec: 88:53:8c:df:67:38:2a:7e:ec:f9:fd:bb:b5:71:98:8c:e4:00: f2:1b:ad:f2 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt/FcS2qakh/JRDAPb3gCskMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmYWNjYmFjNzE0NzdiOTQwZTVjZDQxMDNlM2VlZTYxZGI2 MTU5MTUwHhcNMjYwMTAyMTQyMTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYzk0NWUxMWYwN2NiYzM2NDM4NTU5ODUxYjFlZWExZWU2NDJlM2YyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnhKFON4VZSQ50GBpcDDnaX8gbL1I 7tSNNybdSiWWNr6A9FEXQzBYqb+u+tA7NfaFyo7BSfptlGb3GLjlamGUh3s2+aqx ZZzESfI8wD1d4pCFRiu1AxskGiM0JnNMTV27IuRv4/iHGZC050qGcw9M5+OBsbMD zGMy8YKvrUFEy/Xyu6cFeWZ5AXTQoND9XxJQTkFU19+v3LNTarPHXFtcI4zhHaoP 4ivCjalmQs2lFeVYkuPPs5htH+jFJdCqGIyk12O8tZCtFll8st6JWGQXfFgqcSlv ytQ8It4gdM5Gb/GxAb5JgKMQLHS0oNsGly8ykYSkighWxoVLGHHvVCfE2wIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFNyUXhHwfLw2Q4VZhRse6h7mQuPyMB8GA1UdIwQY MBaAFI+sy6xxR3uUDlzUED4+7mHbYVkVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvajZ6THJIRkhlNVFPWE5RUVBqN3VZZHRoV1JVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS8wMTdlZWYtYzQ5ZS00N2E3LTllZDMt MDk4ZGIzYTI0ZmYwLzEvM0pSZUVmQjh2RFpEaFZtRkd4N3FIdVpDNF9JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS8wMTdlZWYtYzQ5ZS00N2E3LTllZDMtMDk4ZGIzYTI0ZmYw LzEvajZ6THJIRkhlNVFPWE5RUVBqN3VZZHRoV1JVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAzBAIAAjAtAwcAKhRyQAoQ AwcBKhRyQA4CAwcAKhRyQKAcAwcAKhRyQN6tAwcAKhRyQOAcMA0GCSqGSIb3DQEB CwUAA4IBAQALbtCD1iG7S05CPw0FqjX9ZJjQBk6rNOl5T2+6053kD579Q4WOZPxC D7c4sryJrZDZBZIz9U51R3fsc1QmXf9nh2Jp/LPf0phhPpqXuTnfMBWfL3eiY9RS axNEBQrTtZhvonTXWB3ncs9L++/h9s8wCNLa5annS4ICEWnQ0EhC7GyykXo7PIwR GtPUQCuaKHil39tr519+5TueP826AVVftYvjEyfju6vqo/eSEQm6K0PvAqHqONIb HVPQNsROql3WfeZVltXNIJ7kGAGgGwNvQqI+GjTEDUflgq6fdD9QOCYjoQPZ666o WeyIU4zfZzgqfuz5/bu1cZiM5ADyG63y -----END CERTIFICATE-----Generated at Sun Jan 25 14:36:39 2026 by rpki-client