This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/e3ud1Qbf9h5VOxUBmzJPzjaCNhQ.roa File: e3ud1Qbf9h5VOxUBmzJPzjaCNhQ.roa (raw, json) Hash identifier: UOnhx0qRhRcQan+FObpUMluJ/EkyriEp1ZvUMCzOdfo= Subject key identifier: 7B:7B:9D:D5:06:DF:F6:1E:55:3B:15:01:9B:32:4F:CE:36:82:36:14 Certificate issuer: /CN=57c670c8db32dd748df797c5c93013d8c91fa839 Certificate serial: 019B09E2FDB21FAE0F288CABE5872AD1AF07 Authority key identifier: 57:C6:70:C8:DB:32:DD:74:8D:F7:97:C5:C9:30:13:D8:C9:1F:A8:39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V8ZwyNsy3XSN95fFyTAT2MkfqDk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/e3ud1Qbf9h5VOxUBmzJPzjaCNhQ.roa Signing time: Wed 10 Dec 2025 20:10:29 +0000 ROA not before: Wed 10 Dec 2025 20:10:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 44812 IP address blocks: 2a0c:f643::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/V8ZwyNsy3XSN95fFyTAT2MkfqDk.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/V8ZwyNsy3XSN95fFyTAT2MkfqDk.mft rsync://rpki.ripe.net/repository/DEFAULT/V8ZwyNsy3XSN95fFyTAT2MkfqDk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 14:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:09:e2:fd:b2:1f:ae:0f:28:8c:ab:e5:87:2a:d1:af:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57c670c8db32dd748df797c5c93013d8c91fa839 Validity Not Before: Dec 10 20:10:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=7b7b9dd506dff61e553b15019b324fce36823614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9e:1a:d7:0a:1a:07:53:63:cc:77:93:5e:33: 4b:54:d2:37:6f:60:91:a1:5e:c1:02:23:11:4e:d4: 8f:ce:5f:f2:53:6d:36:72:91:55:84:01:84:cc:88: 50:eb:98:2b:80:e1:5f:c4:b8:57:6c:bb:0f:5b:de: 1a:ef:e4:95:21:51:fe:d4:f5:98:5c:4a:c7:e5:52: af:25:80:65:cd:23:27:f8:93:5d:26:08:7b:a4:e8: a2:5a:56:18:e9:37:6b:35:8f:77:93:d2:1f:54:f7: 45:cd:e5:b7:1d:b9:f8:61:fa:cc:07:2e:ae:da:1e: f4:d0:02:84:d4:68:15:2d:70:0f:53:4c:1b:2a:8f: 48:d0:fd:31:00:55:d6:36:80:ac:ff:23:cc:73:f2: fb:55:a7:69:93:19:50:eb:ad:fc:34:3d:03:cc:98: 98:d8:67:b2:8b:6b:fc:a3:6a:2d:f0:f4:c4:4a:e2: 77:30:0f:b5:44:f0:3b:0f:c8:9c:f2:23:08:ba:f6: 80:bc:3b:7b:66:35:5a:e7:14:a7:3d:5a:7c:fb:f7: f9:31:14:28:51:14:0a:04:d3:be:56:1e:63:66:48: 9c:76:c0:f5:4a:98:31:18:19:ca:c3:c1:99:bf:b7: 29:0a:67:19:9d:05:0a:92:d0:91:c6:95:d6:33:50: 2d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:7B:9D:D5:06:DF:F6:1E:55:3B:15:01:9B:32:4F:CE:36:82:36:14 X509v3 Authority Key Identifier: keyid:57:C6:70:C8:DB:32:DD:74:8D:F7:97:C5:C9:30:13:D8:C9:1F:A8:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V8ZwyNsy3XSN95fFyTAT2MkfqDk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/e3ud1Qbf9h5VOxUBmzJPzjaCNhQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/V8ZwyNsy3XSN95fFyTAT2MkfqDk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:f643::/32 Signature Algorithm: sha256WithRSAEncryption aa:69:ba:c9:77:dd:22:dd:87:96:1f:87:0e:73:b8:7c:ce:66: 04:50:f8:a3:b6:00:be:a2:25:5b:eb:5f:6c:af:13:7e:85:26: 21:18:7b:8d:6d:a9:17:5a:75:48:47:7d:00:ab:59:fb:ae:1d: c4:22:02:20:15:a0:c1:5c:0f:5a:87:d4:9a:c0:d2:c2:08:fc: 0f:97:e0:2d:79:c6:26:ad:59:82:60:86:9f:19:53:99:09:9f: 63:1f:95:b6:f6:c6:31:56:68:48:cf:ee:57:04:2d:0b:f8:ce: f9:4b:2d:31:9f:10:83:c4:0d:bc:4d:ee:d7:99:07:df:4c:6a: 96:64:f1:59:fb:8a:07:03:0f:59:ff:2f:1f:e3:06:71:9a:79: 89:94:7b:1b:c9:f4:b9:de:54:c3:eb:d9:4e:f9:23:ec:69:b6: 96:3c:e5:50:75:87:ab:a7:be:94:38:9e:6d:75:e7:d1:4c:99: 37:cf:31:2e:7f:96:f9:82:b7:38:ce:2e:68:0a:90:e9:5e:a4: 72:f5:cb:cb:a6:57:d7:0d:6d:d5:25:e6:89:35:1e:3c:87:67: f7:7b:dd:89:e6:26:04:ff:7b:3f:52:ec:61:5d:b0:40:56:97: 6d:77:1c:9c:ec:6a:0d:ed:9a:91:1e:71:22:8f:da:45:2d:a9: f5:9e:37:0f -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZsJ4v2yH64PKIyr5Ycq0a8HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3YzY3MGM4ZGIzMmRkNzQ4ZGY3OTdjNWM5MzAxM2Q4Yzkx ZmE4MzkwHhcNMjUxMjEwMjAxMDI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YjdiOWRkNTA2ZGZmNjFlNTUzYjE1MDE5YjMyNGZjZTM2ODIzNjE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo54a1woaB1NjzHeTXjNLVNI3b2CR oV7BAiMRTtSPzl/yU202cpFVhAGEzIhQ65grgOFfxLhXbLsPW94a7+SVIVH+1PWY XErH5VKvJYBlzSMn+JNdJgh7pOiiWlYY6TdrNY93k9IfVPdFzeW3Hbn4YfrMBy6u 2h700AKE1GgVLXAPU0wbKo9I0P0xAFXWNoCs/yPMc/L7VadpkxlQ6638ND0DzJiY 2Geyi2v8o2ot8PTESuJ3MA+1RPA7D8ic8iMIuvaAvDt7ZjVa5xSnPVp8+/f5MRQo URQKBNO+Vh5jZkicdsD1SpgxGBnKw8GZv7cpCmcZnQUKktCRxpXWM1AtkQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFHt7ndUG3/YeVTsVAZsyT842gjYUMB8GA1UdIwQY MBaAFFfGcMjbMt10jfeXxckwE9jJH6g5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVjhad3lOc3kzWFNOOTVmRnlUQVQyTWtmcURrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC81YTZmZGEtNzg5Ni00YzUwLWFmZmQt MzA0OTVmNDAzNzg0LzEvZTN1ZDFRYmY5aDVWT3hVQm16SlB6amFDTmhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC81YTZmZGEtNzg5Ni00YzUwLWFmZmQtMzA0OTVmNDAzNzg0 LzEvVjhad3lOc3kzWFNOOTVmRnlUQVQyTWtmcURrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgz2QzAN BgkqhkiG9w0BAQsFAAOCAQEAqmm6yXfdIt2Hlh+HDnO4fM5mBFD4o7YAvqIlW+tf bK8TfoUmIRh7jW2pF1p1SEd9AKtZ+64dxCICIBWgwVwPWofUmsDSwgj8D5fgLXnG Jq1ZgmCGnxlTmQmfYx+VtvbGMVZoSM/uVwQtC/jO+UstMZ8Qg8QNvE3u15kH30xq lmTxWfuKBwMPWf8vH+MGcZp5iZR7G8n0ud5Uw+vZTvkj7Gm2ljzlUHWHq6e+lDie bXXn0UyZN88xLn+W+YK3OM4uaAqQ6V6kcvXLy6ZX1w1t1SXmiTUePIdn93vdieYm BP97P1LsYV2wQFaXbXccnOxqDe2akR5xIo/aRS2p9Z43Dw== -----END CERTIFICATE-----Generated at Wed Dec 17 23:26:08 2025 by rpki-client