This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/7ksTJ_jFitxF4bukC24j3eo_mx0.roa File: 7ksTJ_jFitxF4bukC24j3eo_mx0.roa (raw, json) Hash identifier: P5sZaUJcRIlYxIsN9061EjjltvsNE9PdjoK/NkSXYrQ= Subject key identifier: EE:4B:13:27:F8:C5:8A:DC:45:E1:BB:A4:0B:6E:23:DD:EA:3F:9B:1D Certificate issuer: /CN=34dd4026d290f3201d28ef684d3c5ac13c96ec6d Certificate serial: 019B76EB230156F498768B816D6CBE8B3A0B Authority key identifier: 34:DD:40:26:D2:90:F3:20:1D:28:EF:68:4D:3C:5A:C1:3C:96:EC:6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/7ksTJ_jFitxF4bukC24j3eo_mx0.roa Signing time: Thu 01 Jan 2026 00:17:59 +0000 ROA not before: Thu 01 Jan 2026 00:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60115 IP address blocks: 5.102.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 09:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:23:01:56:f4:98:76:8b:81:6d:6c:be:8b:3a:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34dd4026d290f3201d28ef684d3c5ac13c96ec6d Validity Not Before: Jan 1 00:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ee4b1327f8c58adc45e1bba40b6e23ddea3f9b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d2:39:02:15:0f:a6:f5:4f:6d:bc:41:ed:3c: 5b:e1:67:59:03:a8:99:46:c7:36:d2:85:09:52:93: 1a:b8:cc:eb:0a:f2:3f:72:fb:24:82:5e:d1:67:22: 4b:44:07:9a:60:0b:ba:16:e7:a9:9d:66:4c:3c:46: 02:ac:a9:83:5f:a0:47:5e:86:7a:9b:ae:a6:4e:b0: 93:30:73:e9:b0:8d:50:2d:a9:2e:db:24:03:ae:1f: 6b:6f:d8:4e:fa:06:a6:0b:59:90:f7:f5:69:19:dc: 15:31:9f:f4:35:ef:38:57:68:a9:ad:f9:b2:6d:1e: b5:a4:cd:ae:9c:0a:72:1c:85:ae:48:bc:a4:94:ae: 90:01:c9:48:27:d5:57:f5:46:5c:8b:c1:9f:8d:8f: ea:eb:ee:92:69:2f:13:87:03:33:38:f4:01:8f:f8: 98:46:3d:56:8a:4e:45:d8:96:7c:5f:c2:9d:fc:ba: 01:aa:68:25:97:e3:fc:fb:9e:81:fc:25:16:3b:06: 50:64:97:2b:34:a0:9b:7e:d5:f9:57:07:c4:9b:11: 97:66:c9:84:24:52:7f:7d:a1:81:ee:a4:7e:32:23: f6:a2:15:d1:71:1f:68:36:03:06:dd:0a:ec:56:5c: 65:eb:6c:32:21:2c:09:f3:e8:c0:0f:f2:ab:c8:09: 2b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:4B:13:27:F8:C5:8A:DC:45:E1:BB:A4:0B:6E:23:DD:EA:3F:9B:1D X509v3 Authority Key Identifier: keyid:34:DD:40:26:D2:90:F3:20:1D:28:EF:68:4D:3C:5A:C1:3C:96:EC:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/7ksTJ_jFitxF4bukC24j3eo_mx0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.102.32.0/22 Signature Algorithm: sha256WithRSAEncryption 47:ae:18:9e:ef:20:e8:7c:8c:66:e5:e5:98:b4:58:e0:ec:8a: d5:90:c2:3d:23:d7:a3:6f:cd:00:c2:23:82:82:0b:18:e5:56: 49:c6:8b:02:87:0a:03:ca:82:65:0c:e8:35:2f:2c:d6:8a:53: 6e:2d:3d:3f:2f:4d:b9:90:26:9b:e9:6d:b6:6b:64:49:e8:78: e0:31:eb:c0:40:1a:c7:86:58:19:13:73:5e:bc:77:f9:82:38: 96:9b:fd:af:ed:d3:22:38:dc:e1:9b:89:45:87:82:97:78:19: a1:a1:84:78:88:93:41:a9:16:31:4c:d2:2f:70:bb:7c:02:c7: 11:65:47:d9:27:38:2d:28:a9:89:b9:08:6a:3a:bc:e1:48:60: 58:52:f4:6e:7b:74:bf:d2:79:c8:7d:1a:28:b3:28:89:4f:23: 79:36:32:c7:63:e1:8a:21:f3:69:0c:fe:17:8c:ca:6e:83:d2: 26:b8:32:f0:a4:3f:16:24:3e:f4:70:c4:37:e3:57:32:55:03: b2:a2:e0:43:6f:ad:6e:d5:07:cb:98:24:47:2c:09:86:99:6a: 4f:f2:f2:03:53:fc:69:59:b3:bc:21:bb:b7:e7:97:11:40:52: f2:91:00:50:3e:6a:25:7b:f0:34:f8:09:b2:05:30:8d:fc:8e: 35:bb:2a:bb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26yMBVvSYdouBbWy+izoLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0ZGQ0MDI2ZDI5MGYzMjAxZDI4ZWY2ODRkM2M1YWMxM2M5 NmVjNmQwHhcNMjYwMTAxMDAxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZTRiMTMyN2Y4YzU4YWRjNDVlMWJiYTQwYjZlMjNkZGVhM2Y5YjFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwdI5AhUPpvVPbbxB7Txb4WdZA6iZ Rsc20oUJUpMauMzrCvI/cvskgl7RZyJLRAeaYAu6FuepnWZMPEYCrKmDX6BHXoZ6 m66mTrCTMHPpsI1QLaku2yQDrh9rb9hO+gamC1mQ9/VpGdwVMZ/0Ne84V2iprfmy bR61pM2unApyHIWuSLyklK6QAclIJ9VX9UZci8GfjY/q6+6SaS8ThwMzOPQBj/iY Rj1Wik5F2JZ8X8Kd/LoBqmgll+P8+56B/CUWOwZQZJcrNKCbftX5VwfEmxGXZsmE JFJ/faGB7qR+MiP2ohXRcR9oNgMG3QrsVlxl62wyISwJ8+jAD/KryAkrqwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFO5LEyf4xYrcReG7pAtuI93qP5sdMB8GA1UdIwQY MBaAFDTdQCbSkPMgHSjvaE08WsE8luxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTk4xQUp0S1E4eUFkS085b1RUeGF3VHlXN0cwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy83MmE0MDUtMTU5OC00MDMzLThlMmIt ODc4NTA3ZWQ0NmY3LzEvN2tzVEpfakZpdHhGNGJ1a0MyNGozZW9fbXgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy83MmE0MDUtMTU5OC00MDMzLThlMmItODc4NTA3ZWQ0NmY3 LzEvTk4xQUp0S1E4eUFkS085b1RUeGF3VHlXN0cwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBWYgMA0G CSqGSIb3DQEBCwUAA4IBAQBHrhie7yDofIxm5eWYtFjg7IrVkMI9I9ejb80AwiOC ggsY5VZJxosChwoDyoJlDOg1LyzWilNuLT0/L025kCab6W22a2RJ6HjgMevAQBrH hlgZE3NevHf5gjiWm/2v7dMiONzhm4lFh4KXeBmhoYR4iJNBqRYxTNIvcLt8AscR ZUfZJzgtKKmJuQhqOrzhSGBYUvRue3S/0nnIfRoosyiJTyN5NjLHY+GKIfNpDP4X jMpug9ImuDLwpD8WJD70cMQ341cyVQOyouBDb61u1QfLmCRHLAmGmWpP8vIDU/xp WbO8Ibu355cRQFLykQBQPmole/A0+AmyBTCN/I41uyq7 -----END CERTIFICATE-----Generated at Sun Jan 11 18:13:07 2026 by rpki-client