This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/Jvf2IZISpfE1HPuhNsWiXU8_fSU.roa File: Jvf2IZISpfE1HPuhNsWiXU8_fSU.roa (raw, json) Hash identifier: /BO/n0BAcoPwjMyxg78QY8w+wqirVwYtyUM1n22IH2E= Subject key identifier: 26:F7:F6:21:92:12:A5:F1:35:1C:FB:A1:36:C5:A2:5D:4F:3F:7D:25 Certificate issuer: /CN=f2a253cdf507a03e1f579d202d8df11d68f5c3d7 Certificate serial: 019B2E0BE3DCD9B925B0A7CABD4F37E82607 Authority key identifier: F2:A2:53:CD:F5:07:A0:3E:1F:57:9D:20:2D:8D:F1:1D:68:F5:C3:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8qJTzfUHoD4fV50gLY3xHWj1w9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/Jvf2IZISpfE1HPuhNsWiXU8_fSU.roa Signing time: Wed 17 Dec 2025 20:41:29 +0000 ROA not before: Wed 17 Dec 2025 20:41:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 41095 IP address blocks: 2001:3500::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/8qJTzfUHoD4fV50gLY3xHWj1w9c.crl rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/8qJTzfUHoD4fV50gLY3xHWj1w9c.mft rsync://rpki.ripe.net/repository/DEFAULT/8qJTzfUHoD4fV50gLY3xHWj1w9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:0b:e3:dc:d9:b9:25:b0:a7:ca:bd:4f:37:e8:26:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f2a253cdf507a03e1f579d202d8df11d68f5c3d7 Validity Not Before: Dec 17 20:41:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=26f7f6219212a5f1351cfba136c5a25d4f3f7d25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:52:1a:14:b6:2c:6c:d3:f7:9c:ef:5a:74:21: 19:1f:9f:ed:1e:8d:e3:18:05:12:d3:15:09:f4:a6: 99:6e:0c:7b:e6:22:e6:5e:08:e1:b8:66:99:f1:07: a7:a2:0b:6c:e7:68:42:c3:09:e3:d7:af:5e:0d:48: e1:c2:31:f9:1a:8e:d8:6e:eb:38:d1:09:ae:14:4c: a9:ef:d4:e1:ab:27:5e:a8:a9:df:6a:f5:41:53:0d: e4:73:cc:0f:43:af:39:d8:e2:c5:a0:1f:b7:24:da: f9:fb:47:6c:40:32:95:89:44:18:f1:31:2c:87:9c: 8c:a1:f2:d3:53:15:d6:1c:3f:a0:dc:71:4c:85:4d: fc:9f:43:13:60:e2:f0:b6:50:0d:3f:13:55:56:ea: f6:45:94:14:4c:8e:b8:7e:9d:21:8e:b3:d9:6c:de: a2:62:47:d3:d5:2c:8f:ad:af:a3:70:06:3d:40:00: bc:d1:b7:8f:1a:a9:13:63:b8:dd:02:19:4b:3e:ae: 27:2e:21:af:f0:f5:78:8a:04:36:a6:92:19:4d:05: 7e:27:ab:9e:e2:42:c6:bd:cd:99:46:19:64:ad:cf: d1:79:ad:00:62:d9:f8:87:9a:b9:29:58:fe:9b:3c: 66:86:57:0c:e4:0d:b8:ee:38:ed:d5:b3:b0:4b:79: 0c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:F7:F6:21:92:12:A5:F1:35:1C:FB:A1:36:C5:A2:5D:4F:3F:7D:25 X509v3 Authority Key Identifier: keyid:F2:A2:53:CD:F5:07:A0:3E:1F:57:9D:20:2D:8D:F1:1D:68:F5:C3:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8qJTzfUHoD4fV50gLY3xHWj1w9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/Jvf2IZISpfE1HPuhNsWiXU8_fSU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/8qJTzfUHoD4fV50gLY3xHWj1w9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3500::/29 Signature Algorithm: sha256WithRSAEncryption 23:0c:97:02:59:1b:3d:89:56:3a:f0:a0:d9:ab:31:aa:7b:52: 99:5e:bb:26:48:fd:37:22:3c:54:68:76:9a:b5:86:ff:85:d9: 61:43:c9:09:43:d5:32:4a:7d:5e:41:bf:9a:b8:bd:a2:15:d1: d3:f2:b4:8b:b4:72:fb:3a:a6:80:f7:1b:58:dd:1c:d7:80:9b: cb:7e:a1:31:d4:02:6d:cc:d6:93:7b:85:9e:af:3d:09:45:00: ee:a0:10:ec:43:bc:dd:e6:bc:d7:33:37:04:9b:f8:42:7d:1e: cd:0a:33:9a:25:72:8d:0d:d3:d3:b3:0a:b1:f0:22:69:23:b4: b5:01:30:a7:a8:31:5c:39:71:c1:2c:08:2c:1a:1f:fb:46:26: 03:91:db:0a:10:e2:38:22:27:5e:e3:9b:9f:6c:a0:74:6a:e2: 29:a3:2d:29:4a:1f:98:86:56:d7:87:ba:57:b3:71:83:b6:c2: 9e:83:5d:d1:95:ee:3c:9d:69:1d:93:3d:d1:0f:d6:65:f5:4c: 17:b7:ee:6e:2b:c8:59:08:fd:ee:4b:58:11:96:f6:5a:57:ab: b0:fd:a5:be:3a:43:0b:2e:6e:69:42:fe:6f:b9:99:d5:d8:87: 85:61:2b:3b:e0:79:a0:2e:cd:d4:00:90:a8:3d:fd:99:8b:b9: a1:fa:22:5d -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZsuC+Pc2bklsKfKvU836CYHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyYTI1M2NkZjUwN2EwM2UxZjU3OWQyMDJkOGRmMTFkNjhm NWMzZDcwHhcNMjUxMjE3MjA0MTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNmY3ZjYyMTkyMTJhNWYxMzUxY2ZiYTEzNmM1YTI1ZDRmM2Y3ZDI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFIaFLYsbNP3nO9adCEZH5/tHo3j GAUS0xUJ9KaZbgx75iLmXgjhuGaZ8Qenogts52hCwwnj169eDUjhwjH5Go7Ybus4 0QmuFEyp79ThqydeqKnfavVBUw3kc8wPQ6852OLFoB+3JNr5+0dsQDKViUQY8TEs h5yMofLTUxXWHD+g3HFMhU38n0MTYOLwtlANPxNVVur2RZQUTI64fp0hjrPZbN6i YkfT1SyPra+jcAY9QAC80bePGqkTY7jdAhlLPq4nLiGv8PV4igQ2ppIZTQV+J6ue 4kLGvc2ZRhlkrc/Rea0AYtn4h5q5KVj+mzxmhlcM5A247jjt1bOwS3kMBQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFCb39iGSEqXxNRz7oTbFol1PP30lMB8GA1UdIwQY MBaAFPKiU831B6A+H1edIC2N8R1o9cPXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHFKVHpmVUhvRDRmVjUwZ0xZM3hIV2oxdzljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8xMGViZWMtMjc4NC00ZGFhLThkZjct YmU0ZDVkMDlkNzEwLzEvSnZmMklaSVNwZkUxSFB1aE5zV2lYVThfZlNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS8xMGViZWMtMjc4NC00ZGFhLThkZjctYmU0ZDVkMDlkNzEw LzEvOHFKVHpmVUhvRDRmVjUwZ0xZM3hIV2oxdzljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDIAE1ADAN BgkqhkiG9w0BAQsFAAOCAQEAIwyXAlkbPYlWOvCg2asxqntSmV67Jkj9NyI8VGh2 mrWG/4XZYUPJCUPVMkp9XkG/mri9ohXR0/K0i7Ry+zqmgPcbWN0c14Cby36hMdQC bczWk3uFnq89CUUA7qAQ7EO83ea81zM3BJv4Qn0ezQozmiVyjQ3T07MKsfAiaSO0 tQEwp6gxXDlxwSwILBof+0YmA5HbChDiOCInXuObn2ygdGriKaMtKUofmIZW14e6 V7Nxg7bCnoNd0ZXuPJ1pHZM90Q/WZfVMF7fubivIWQj97ktYEZb2WlersP2lvjpD Cy5uaUL+b7mZ1diHhWErO+B5oC7N1ACQqD39mYu5ofoiXQ== -----END CERTIFICATE-----Generated at Sat Dec 20 12:46:50 2025 by rpki-client