This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/hJs7BwdPJtFYLQq0bVGZUKpU10g.roa File: hJs7BwdPJtFYLQq0bVGZUKpU10g.roa (raw, json) Hash identifier: udLU5+3hl1CSeTq17eAwjiTh21Pv9BRH7rPLD09ftTY= Subject key identifier: 84:9B:3B:07:07:4F:26:D1:58:2D:0A:B4:6D:51:99:50:AA:54:D7:48 Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3 Certificate serial: 019B3602C5D842DCA5FBC6EAD10D01E0B0C5 Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/hJs7BwdPJtFYLQq0bVGZUKpU10g.roa Signing time: Fri 19 Dec 2025 09:48:29 +0000 ROA not before: Fri 19 Dec 2025 09:48:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 216435 IP address blocks: 2a06:cac0::/29 maxlen: 48 2a11:f140::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.mft rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:02:c5:d8:42:dc:a5:fb:c6:ea:d1:0d:01:e0:b0:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3 Validity Not Before: Dec 19 09:48:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=849b3b07074f26d1582d0ab46d519950aa54d748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:96:a9:d7:78:5e:35:07:12:68:55:c6:5d:e7: 53:f0:53:36:46:32:92:0b:b1:50:96:8a:ef:84:ef: e9:a4:5d:1b:66:3c:a8:f2:3e:c8:dd:9e:93:9d:b6: a8:be:1d:98:f7:05:2d:2f:6e:b9:58:3d:75:a2:e5: f7:86:84:21:e7:aa:a2:60:98:18:db:c4:74:8a:d9: e6:6c:5c:50:39:af:c0:af:01:75:f5:43:0c:a7:11: f6:e9:6f:5a:53:49:73:69:3e:90:8d:f1:65:6e:13: aa:23:39:90:74:dd:8c:d5:36:fc:4a:33:bf:24:f6: dd:8f:ef:2a:09:04:0e:e8:eb:e5:d5:7f:74:64:92: e6:81:69:62:7a:24:bf:5e:3f:71:68:86:b4:58:23: 5b:4c:21:53:32:b1:c0:bb:a0:6e:b9:7b:c4:51:1b: be:17:3f:59:7a:01:59:cd:27:39:21:da:52:d6:64: aa:ed:21:ee:9d:5e:0d:26:9a:fc:94:11:75:7f:79: b9:8c:c7:9a:76:43:30:66:0f:fb:70:f5:03:2a:72: b6:87:b7:d8:ed:6a:80:75:2c:8b:89:7f:01:d5:e6: 59:a0:0c:ba:35:6b:9d:24:7b:21:38:79:39:2a:8f: e4:82:57:d7:0a:f5:03:43:cb:a8:b1:13:e4:b8:f1: 9d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:9B:3B:07:07:4F:26:D1:58:2D:0A:B4:6D:51:99:50:AA:54:D7:48 X509v3 Authority Key Identifier: keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/hJs7BwdPJtFYLQq0bVGZUKpU10g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:cac0::/29 2a11:f140::/29 Signature Algorithm: sha256WithRSAEncryption 8f:70:04:7f:5a:24:7d:ad:c3:56:8f:8a:85:5a:29:dd:8e:8d: 9e:75:39:56:21:78:40:78:04:f6:7d:cf:70:59:fa:78:c1:ea: e9:88:c7:7a:e0:c4:b0:30:6e:75:2f:c1:29:93:1c:0a:3c:02: 2e:cb:ca:57:97:41:f9:cb:18:02:e0:c9:a5:77:1e:bf:57:ce: 31:f7:0b:d1:7a:0e:84:33:83:90:17:c0:be:f4:c8:5c:3c:7f: f0:f9:a8:b6:f1:19:e3:32:62:84:a0:1e:01:6f:1b:fa:ba:24: 6e:78:78:d3:20:45:38:ea:f7:36:b0:92:c0:86:03:03:53:06: cb:2b:a2:c9:61:16:07:c8:d7:99:7d:d7:29:53:a3:bd:c7:50: 65:b5:8d:4e:58:dc:fd:f3:44:4b:74:4f:3d:e0:4a:65:79:23: 20:c9:ce:02:6c:c4:08:1c:14:14:bf:fc:12:39:99:22:06:57: 4d:53:f7:4b:e9:85:d5:a9:2e:11:04:2e:90:16:c4:ce:86:94: 31:01:26:e0:9d:f7:4e:c9:2b:f4:55:4b:f6:eb:37:86:49:f5: d9:63:12:a4:1a:14:5f:86:5d:25:37:d5:59:ee:70:c0:53:5f: 73:ea:32:46:98:f3:89:cf:15:84:e0:4a:82:68:41:45:06:e7: 20:55:19:9b -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZs2AsXYQtyl+8bq0Q0B4LDFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz Mjc2ZTMwHhcNMjUxMjE5MDk0ODI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NDliM2IwNzA3NGYyNmQxNTgyZDBhYjQ2ZDUxOTk1MGFhNTRkNzQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA15ap13heNQcSaFXGXedT8FM2RjKS C7FQlorvhO/ppF0bZjyo8j7I3Z6Tnbaovh2Y9wUtL265WD11ouX3hoQh56qiYJgY 28R0itnmbFxQOa/ArwF19UMMpxH26W9aU0lzaT6QjfFlbhOqIzmQdN2M1Tb8SjO/ JPbdj+8qCQQO6Ovl1X90ZJLmgWlieiS/Xj9xaIa0WCNbTCFTMrHAu6BuuXvEURu+ Fz9ZegFZzSc5IdpS1mSq7SHunV4NJpr8lBF1f3m5jMeadkMwZg/7cPUDKnK2h7fY 7WqAdSyLiX8B1eZZoAy6NWudJHshOHk5Ko/kglfXCvUDQ8uosRPkuPGdOQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFISbOwcHTybRWC0KtG1RmVCqVNdIMB8GA1UdIwQY MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt YTJhNGM2YTYyMWNkLzEvaEpzN0J3ZFBKdEZZTFFxMGJWR1pVS3BVMTBnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUDKgbKwAMF AyoR8UAwDQYJKoZIhvcNAQELBQADggEBAI9wBH9aJH2tw1aPioVaKd2OjZ51OVYh eEB4BPZ9z3BZ+njB6umIx3rgxLAwbnUvwSmTHAo8Ai7LyleXQfnLGALgyaV3Hr9X zjH3C9F6DoQzg5AXwL70yFw8f/D5qLbxGeMyYoSgHgFvG/q6JG54eNMgRTjq9zaw ksCGAwNTBssroslhFgfI15l91ylTo73HUGW1jU5Y3P3zREt0Tz3gSmV5IyDJzgJs xAgcFBS//BI5mSIGV01T90vphdWpLhEELpAWxM6GlDEBJuCd907JK/RVS/brN4ZJ 9dljEqQaFF+GXSU31VnucMBTX3PqMkaY84nPFYTgSoJoQUUG5yBVGZs= -----END CERTIFICATE-----Generated at Fri Dec 19 23:36:01 2025 by rpki-client