This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/72Y0w9pV82pI3wLwx96KwjAs5oU.roa File: 72Y0w9pV82pI3wLwx96KwjAs5oU.roa (raw, json) Hash identifier: c5hQXuvcKRBmbu9AlA38sraM6CQffUtGwob8NZ7WzZo= Subject key identifier: EF:66:34:C3:DA:55:F3:6A:48:DF:02:F0:C7:DE:8A:C2:30:2C:E6:85 Certificate issuer: /CN=e616c7b20195607f27b13d88f92bf1d0eb38e60f Certificate serial: 019B7F15A59B1EB7CA4F9F8D0A1002624771 Authority key identifier: E6:16:C7:B2:01:95:60:7F:27:B1:3D:88:F9:2B:F1:D0:EB:38:E6:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/72Y0w9pV82pI3wLwx96KwjAs5oU.roa Signing time: Fri 02 Jan 2026 14:21:23 +0000 ROA not before: Fri 02 Jan 2026 14:21:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205017 IP address blocks: 2001:678:9b8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.crl rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:a5:9b:1e:b7:ca:4f:9f:8d:0a:10:02:62:47:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e616c7b20195607f27b13d88f92bf1d0eb38e60f Validity Not Before: Jan 2 14:21:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ef6634c3da55f36a48df02f0c7de8ac2302ce685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ec:93:3b:f7:66:09:58:0a:db:47:e9:b8:e9: 0b:a4:15:b5:29:1e:24:fb:53:a9:3b:65:30:de:e1: ca:17:0d:9f:13:46:34:42:b1:b7:b2:fa:9a:a0:89: cd:fc:33:54:36:06:4d:bf:19:65:a5:0d:80:97:4a: a7:90:84:9c:4a:1f:69:47:ed:38:11:d5:1b:3c:c9: 11:2c:bc:66:3f:01:8c:c9:a1:ef:0b:e2:14:ae:00: 1e:d3:45:74:00:b1:70:8c:10:a8:1a:ab:4f:d2:67: b1:9b:f9:82:5e:2e:1c:bc:4d:d2:50:cb:50:11:bf: 4c:c5:e9:3e:e3:dd:4d:97:7d:2b:8b:78:42:de:a6: 3a:17:8d:4a:8f:12:2e:a1:63:05:cc:09:cd:af:5c: 8a:1d:7e:b6:e3:20:ea:57:9e:ae:76:f4:05:dc:b6: 94:95:43:b6:bc:9b:dd:bb:62:c6:0b:7e:39:10:19: 69:82:5b:83:f5:a9:9a:6a:c3:8d:1c:2c:cd:3f:05: 59:e6:81:8f:91:6a:6a:18:ad:46:43:2a:d2:7c:56: a6:20:c5:c9:a7:cf:2a:a3:1f:fe:35:5c:8e:2d:10: 03:c0:2e:ae:22:95:97:ca:26:dc:6c:d1:a3:6d:62: c9:58:bf:0c:9f:ee:79:e0:8d:ef:49:37:e7:3d:a3: b6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:66:34:C3:DA:55:F3:6A:48:DF:02:F0:C7:DE:8A:C2:30:2C:E6:85 X509v3 Authority Key Identifier: keyid:E6:16:C7:B2:01:95:60:7F:27:B1:3D:88:F9:2B:F1:D0:EB:38:E6:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/72Y0w9pV82pI3wLwx96KwjAs5oU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:9b8::/48 Signature Algorithm: sha256WithRSAEncryption 3a:14:0e:64:8e:1b:b4:be:34:48:63:7b:f8:41:ab:49:44:db: e1:f0:9a:6d:6e:3a:dd:fa:7d:a3:71:a7:5d:d6:7d:4e:a5:72: 67:15:80:a6:6f:c3:b4:9e:cc:df:00:32:ee:4e:66:2b:9e:a1: 58:a2:d4:ab:35:33:66:29:dc:06:1c:ff:41:a2:de:d9:f6:6a: e6:a0:94:fb:71:50:fd:01:76:88:27:fb:5f:0d:8e:35:64:0b: 29:be:59:b2:61:89:a7:3b:55:bf:ca:9e:e6:e3:10:25:7b:f5: f4:6e:d8:dc:04:63:9d:2c:12:bb:78:d1:15:43:4c:c9:96:5e: 7f:2f:e3:f6:04:c8:c0:e6:18:1c:37:cb:1a:cc:dc:30:61:6f: f4:90:08:29:00:b1:93:6c:35:f5:e8:ee:eb:92:6a:72:64:0b: 14:00:fc:57:df:ec:68:c7:b0:19:19:99:5e:52:79:3c:c7:af: 78:8a:00:db:f5:90:f6:fa:e4:ae:f8:70:63:b9:77:be:84:5c: 99:c5:37:8f:e4:87:3b:1b:98:d3:16:71:3e:d9:5c:40:08:2a: e9:5f:88:d7:80:aa:f9:20:c8:9c:3c:f9:9c:d9:ad:a6:44:4b: ee:30:e5:4e:ee:83:b5:a4:16:7c:0e:21:15:dc:e2:16:e7:80: d3:bb:a9:79 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/FaWbHrfKT5+NChACYkdxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2MTZjN2IyMDE5NTYwN2YyN2IxM2Q4OGY5MmJmMWQwZWIz OGU2MGYwHhcNMjYwMTAyMTQyMTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZjY2MzRjM2RhNTVmMzZhNDhkZjAyZjBjN2RlOGFjMjMwMmNlNjg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn+yTO/dmCVgK20fpuOkLpBW1KR4k +1OpO2Uw3uHKFw2fE0Y0QrG3svqaoInN/DNUNgZNvxllpQ2Al0qnkIScSh9pR+04 EdUbPMkRLLxmPwGMyaHvC+IUrgAe00V0ALFwjBCoGqtP0mexm/mCXi4cvE3SUMtQ Eb9Mxek+491Nl30ri3hC3qY6F41KjxIuoWMFzAnNr1yKHX624yDqV56udvQF3LaU lUO2vJvdu2LGC345EBlpgluD9amaasONHCzNPwVZ5oGPkWpqGK1GQyrSfFamIMXJ p88qox/+NVyOLRADwC6uIpWXyibcbNGjbWLJWL8Mn+554I3vSTfnPaO2jQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFO9mNMPaVfNqSN8C8MfeisIwLOaFMB8GA1UdIwQY MBaAFOYWx7IBlWB/J7E9iPkr8dDrOOYPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWhiSHNnR1ZZSDhuc1QySS1TdngwT3M0NWc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8wMzYzODAtN2ZiZS00NDQ0LTg0ZDkt NWNkMDA0ZDZlMzY2LzEvNzJZMHc5cFY4MnBJM3dMd3g5Nkt3akFzNW9VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8wMzYzODAtN2ZiZS00NDQ0LTg0ZDktNWNkMDA0ZDZlMzY2 LzEvNWhiSHNnR1ZZSDhuc1QySS1TdngwT3M0NWc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAm4 MA0GCSqGSIb3DQEBCwUAA4IBAQA6FA5kjhu0vjRIY3v4QatJRNvh8Jptbjrd+n2j cadd1n1OpXJnFYCmb8O0nszfADLuTmYrnqFYotSrNTNmKdwGHP9Bot7Z9mrmoJT7 cVD9AXaIJ/tfDY41ZAspvlmyYYmnO1W/yp7m4xAle/X0btjcBGOdLBK7eNEVQ0zJ ll5/L+P2BMjA5hgcN8sazNwwYW/0kAgpALGTbDX16O7rkmpyZAsUAPxX3+xox7AZ GZleUnk8x694igDb9ZD2+uSu+HBjuXe+hFyZxTeP5Ic7G5jTFnE+2VxACCrpX4jX gKr5IMicPPmc2a2mREvuMOVO7oO1pBZ8DiEV3OIW54DTu6l5 -----END CERTIFICATE-----Generated at Mon Jan 12 01:21:45 2026 by rpki-client