This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/mQTuSY2x5CKBWsPaZZtWYjaRGWI.roa File: mQTuSY2x5CKBWsPaZZtWYjaRGWI.roa (raw, json) Hash identifier: xutilQwXiIVAVZnaTeEu4IF/4uAPPmxI7yXm2niZ8Vs= Subject key identifier: 99:04:EE:49:8D:B1:E4:22:81:5A:C3:DA:65:9B:56:62:36:91:19:62 Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a Certificate serial: 019B668D390B965CF25F83C6E3264F39F9A0 Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/mQTuSY2x5CKBWsPaZZtWYjaRGWI.roa Signing time: Sun 28 Dec 2025 20:01:29 +0000 ROA not before: Sun 28 Dec 2025 20:01:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 214387 IP address blocks: 2a03:5840:11f::/48 maxlen: 48 2a03:5840:139::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.mft rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 09:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:66:8d:39:0b:96:5c:f2:5f:83:c6:e3:26:4f:39:f9:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a Validity Not Before: Dec 28 20:01:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=9904ee498db1e422815ac3da659b566236911962 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4c:8a:32:8f:44:bc:74:43:8b:0d:03:53:96: 7d:0c:46:9d:a6:bd:10:62:f7:77:f7:37:8c:6d:f3: fc:93:8b:2e:28:86:ec:27:8a:7f:6c:c3:45:71:ee: 52:d1:0f:4e:88:f7:0b:33:8b:92:7c:f8:e1:60:ac: b3:96:e8:0d:9d:7a:71:b3:e7:f0:d3:a9:3e:97:95: 09:f5:97:02:e3:b9:6a:3b:e8:6b:d0:79:a3:c0:6c: 01:ff:55:34:ae:37:28:f4:83:af:94:16:e5:a0:54: a1:ef:e9:8e:ec:fe:37:9c:ab:79:d5:e8:a1:c7:cf: b6:53:24:7b:77:fa:a4:7c:8c:51:95:45:80:e6:97: 50:3c:ea:24:f8:57:05:a3:51:34:2d:72:59:0b:1b: 82:72:69:68:92:2d:9a:a3:19:70:62:c3:ec:2e:c2: c4:c1:57:f4:57:f8:89:b9:70:e0:32:e6:10:12:c2: 25:f4:81:69:13:8b:d3:8c:75:a9:0e:c8:1a:dd:34: 17:fc:69:df:13:26:8d:7f:8f:f7:b5:4f:23:be:43: dd:b2:29:4a:c1:69:5c:da:77:0f:1f:a8:31:94:20: 16:51:32:65:06:4c:f3:c3:26:36:0e:5f:f9:10:d6: 58:52:e4:2c:98:4b:a6:30:e5:e3:1f:97:9d:8d:3d: d0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:04:EE:49:8D:B1:E4:22:81:5A:C3:DA:65:9B:56:62:36:91:19:62 X509v3 Authority Key Identifier: keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/mQTuSY2x5CKBWsPaZZtWYjaRGWI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:5840:11f::/48 2a03:5840:139::/48 Signature Algorithm: sha256WithRSAEncryption aa:a1:05:05:47:3f:f6:a1:65:d9:ef:26:0b:9c:51:a8:03:e8: 8f:ff:42:0c:5b:ba:44:25:d2:7e:93:67:a5:04:8d:28:c0:f2: c8:64:f9:e8:fe:6e:f6:8b:05:c0:77:b0:70:ad:49:6f:34:d9: eb:26:cf:08:48:2b:83:79:2d:07:c9:ba:73:3b:62:9b:ce:39: 56:b1:f4:a7:5f:06:f7:a5:c5:8a:b9:21:e2:37:58:13:9e:c3: 40:04:d0:b0:46:1a:a2:6b:80:3a:ae:fb:03:bc:c5:d7:3a:e4: 28:50:c2:c2:94:82:67:0f:f8:99:14:e6:55:4c:f0:26:97:ea: 46:de:ea:86:aa:95:f4:f1:90:c0:0e:25:2e:3d:6a:91:ff:18: 76:92:a2:5f:5e:33:68:b1:5a:ef:04:64:d4:c2:ed:f7:9a:68: 1a:7e:f4:e5:69:ec:42:58:c9:1b:28:71:ad:4c:35:b0:fc:7c: 8e:4c:80:3d:1e:51:37:46:30:b4:c9:04:ef:10:3b:8b:ce:30: 78:eb:25:61:f2:b6:83:03:b7:88:7b:30:96:e4:42:6f:45:1a: ad:fd:f8:8c:73:26:c4:f2:d8:d9:82:97:3a:f5:bb:ad:8c:0d: a9:ef:f3:20:82:dc:e6:8f:4b:44:38:a7:06:34:76:4f:4a:a3: 0a:fb:86:97 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZtmjTkLllzyX4PG4yZPOfmgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3NzcwNWU4OWJiNjViNDcyZTRlMDE4NGQ2ZmU5YmZiOGM1 ODYzNWEwHhcNMjUxMjI4MjAwMTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OTA0ZWU0OThkYjFlNDIyODE1YWMzZGE2NTliNTY2MjM2OTExOTYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEyKMo9EvHRDiw0DU5Z9DEadpr0Q Yvd39zeMbfP8k4suKIbsJ4p/bMNFce5S0Q9OiPcLM4uSfPjhYKyzlugNnXpxs+fw 06k+l5UJ9ZcC47lqO+hr0HmjwGwB/1U0rjco9IOvlBbloFSh7+mO7P43nKt51eih x8+2UyR7d/qkfIxRlUWA5pdQPOok+FcFo1E0LXJZCxuCcmloki2aoxlwYsPsLsLE wVf0V/iJuXDgMuYQEsIl9IFpE4vTjHWpDsga3TQX/GnfEyaNf4/3tU8jvkPdsilK wWlc2ncPH6gxlCAWUTJlBkzzwyY2Dl/5ENZYUuQsmEumMOXjH5edjT3QUwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFJkE7kmNseQigVrD2mWbVmI2kRliMB8GA1UdIwQY MBaAFPd3BeibtltHLk4BhNb+m/uMWGNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYt NmNiODk3OTFkN2ZkLzEvbVFUdVNZMng1Q0tCV3NQYVpadFdZamFSR1dJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYtNmNiODk3OTFkN2Zk LzEvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgNYQAEf AwcAKgNYQAE5MA0GCSqGSIb3DQEBCwUAA4IBAQCqoQUFRz/2oWXZ7yYLnFGoA+iP /0IMW7pEJdJ+k2elBI0owPLIZPno/m72iwXAd7BwrUlvNNnrJs8ISCuDeS0Hybpz O2KbzjlWsfSnXwb3pcWKuSHiN1gTnsNABNCwRhqia4A6rvsDvMXXOuQoUMLClIJn D/iZFOZVTPAml+pG3uqGqpX08ZDADiUuPWqR/xh2kqJfXjNosVrvBGTUwu33mmga fvTlaexCWMkbKHGtTDWw/HyOTIA9HlE3RjC0yQTvEDuLzjB46yVh8raDA7eIezCW 5EJvRRqt/fiMcybE8tjZgpc69butjA2p7/Mggtzmj0tEOKcGNHZPSqMK+4aX -----END CERTIFICATE-----Generated at Wed Dec 31 12:12:01 2025 by rpki-client