This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/wOUhGVesCisY2HnfnAjl6Jnr-xg.roa File: wOUhGVesCisY2HnfnAjl6Jnr-xg.roa (raw, json) Hash identifier: M8DXDaBoO3oUhqazgEAtDmfaFAvLdpC11jKkFsNS9mI= Subject key identifier: C0:E5:21:19:57:AC:0A:2B:18:D8:79:DF:9C:08:E5:E8:99:EB:FB:18 Certificate issuer: /CN=87210b34ce002e30a0a54fabfa2bcac46dfa7228 Certificate serial: 019B7758F3EF4B67B4E55504F66EA9709820 Authority key identifier: 87:21:0B:34:CE:00:2E:30:A0:A5:4F:AB:FA:2B:CA:C4:6D:FA:72:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/wOUhGVesCisY2HnfnAjl6Jnr-xg.roa Signing time: Thu 01 Jan 2026 02:17:56 +0000 ROA not before: Thu 01 Jan 2026 02:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50304 IP address blocks: 2a05:a00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 14:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:f3:ef:4b:67:b4:e5:55:04:f6:6e:a9:70:98:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87210b34ce002e30a0a54fabfa2bcac46dfa7228 Validity Not Before: Jan 1 02:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c0e5211957ac0a2b18d879df9c08e5e899ebfb18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:52:2a:71:7e:9a:4f:4e:35:44:8d:38:9b:87: 09:00:2a:d2:51:b8:67:11:57:c7:03:c4:69:33:1c: e4:8d:d1:5e:87:1b:96:ca:52:4e:7d:fa:78:95:d9: 21:b0:01:97:38:2d:52:bf:bd:7f:7f:3d:d5:f9:32: cf:3b:56:c4:5b:77:27:b5:47:aa:07:bd:69:f8:c4: 92:76:45:d0:d2:55:62:34:8c:ae:e8:49:82:7a:15: cf:92:14:40:64:a0:5c:37:6e:63:40:37:e2:85:6c: ea:77:72:e1:fa:e6:e4:4b:34:bf:78:ed:55:33:f3: 2a:43:dd:9a:11:40:62:8d:35:9a:ce:b9:0e:7d:41: 6c:18:44:ac:5a:0f:f4:8d:16:f1:50:76:e2:1f:7f: d4:53:40:77:c3:03:d9:43:39:5d:68:e8:9c:d7:15: 3f:03:cd:00:3a:db:23:8f:80:13:bc:44:d8:74:88: b8:54:7f:1d:44:17:cb:4b:22:1c:23:07:64:5d:ec: 25:27:de:a8:e2:3b:26:fc:89:a8:0d:74:26:cf:1c: b3:89:bc:ea:20:59:a1:a6:4c:cf:55:03:34:7f:9b: 13:49:b9:f8:25:4a:80:06:cc:6a:cd:cd:1c:e0:77: 15:9a:88:56:26:ed:88:f6:37:68:24:8b:0c:81:e7: e9:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E5:21:19:57:AC:0A:2B:18:D8:79:DF:9C:08:E5:E8:99:EB:FB:18 X509v3 Authority Key Identifier: keyid:87:21:0B:34:CE:00:2E:30:A0:A5:4F:AB:FA:2B:CA:C4:6D:FA:72:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/wOUhGVesCisY2HnfnAjl6Jnr-xg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:a00::/32 Signature Algorithm: sha256WithRSAEncryption 5d:aa:07:14:49:82:a4:45:12:8e:d8:36:85:06:ba:f8:6f:5b: 05:e5:34:a7:8f:4f:24:c7:0a:ce:58:e1:35:bd:9f:7e:02:98: b9:c9:72:08:e9:1f:f8:5a:05:d1:11:c6:51:4a:2d:f2:8d:1d: d9:01:36:bf:2c:55:f7:87:03:9d:24:e2:3e:f6:88:0f:0f:72: 74:2f:15:99:1f:d0:86:ee:54:95:86:35:f1:7b:ba:a4:b0:06: 40:56:e3:53:47:14:30:4d:d0:9b:31:10:1f:21:58:b4:c5:8c: 55:84:4f:55:74:cc:e9:0b:30:57:d6:da:1d:5b:34:81:81:64: a5:a2:64:43:ba:56:ee:26:32:59:c0:fd:79:95:70:9d:52:5b: e6:6c:ca:78:08:cb:ef:ee:fb:ba:fb:7d:52:21:01:77:06:ce: a8:b6:28:2e:a9:a6:a3:ee:ba:f8:da:61:04:45:43:4f:be:b8: e3:64:31:20:4a:65:af:94:d4:a6:51:3d:27:2e:98:d8:3c:2f: 4e:50:6a:66:c6:8a:29:9b:b5:c2:8b:43:94:14:74:4f:15:04: dc:4e:6d:cd:10:7f:fd:fa:d7:71:bc:fe:ef:99:c2:9c:b4:5d: 30:71:6f:5e:8b:de:82:73:16:ce:e8:f7:f9:b4:b3:aa:e6:33: 70:44:cb:a9 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt3WPPvS2e05VUE9m6pcJggMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3MjEwYjM0Y2UwMDJlMzBhMGE1NGZhYmZhMmJjYWM0NmRm YTcyMjgwHhcNMjYwMTAxMDIxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMGU1MjExOTU3YWMwYTJiMThkODc5ZGY5YzA4ZTVlODk5ZWJmYjE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2FIqcX6aT041RI04m4cJACrSUbhn EVfHA8RpMxzkjdFehxuWylJOffp4ldkhsAGXOC1Sv71/fz3V+TLPO1bEW3cntUeq B71p+MSSdkXQ0lViNIyu6EmCehXPkhRAZKBcN25jQDfihWzqd3Lh+ubkSzS/eO1V M/MqQ92aEUBijTWazrkOfUFsGESsWg/0jRbxUHbiH3/UU0B3wwPZQzldaOic1xU/ A80AOtsjj4ATvETYdIi4VH8dRBfLSyIcIwdkXewlJ96o4jsm/ImoDXQmzxyzibzq IFmhpkzPVQM0f5sTSbn4JUqABsxqzc0c4HcVmohWJu2I9jdoJIsMgefpIwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFMDlIRlXrAorGNh535wI5eiZ6/sYMB8GA1UdIwQY MBaAFIchCzTOAC4woKVPq/orysRt+nIoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHlFTE5NNEFMakNncFUtci1pdkt4RzM2Y2lnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS8yOWEwZGMtMjBhZi00MzdlLTk4NzAt MzY2OWQxYjU2OWQ2LzEvd09VaEdWZXNDaXNZMkhuZm5Bamw2Sm5yLXhnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS8yOWEwZGMtMjBhZi00MzdlLTk4NzAtMzY2OWQxYjU2OWQ2 LzEvaHlFTE5NNEFMakNncFUtci1pdkt4RzM2Y2lnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgUKADAN BgkqhkiG9w0BAQsFAAOCAQEAXaoHFEmCpEUSjtg2hQa6+G9bBeU0p49PJMcKzljh Nb2ffgKYuclyCOkf+FoF0RHGUUot8o0d2QE2vyxV94cDnSTiPvaIDw9ydC8VmR/Q hu5UlYY18Xu6pLAGQFbjU0cUME3QmzEQHyFYtMWMVYRPVXTM6QswV9baHVs0gYFk paJkQ7pW7iYyWcD9eZVwnVJb5mzKeAjL7+77uvt9UiEBdwbOqLYoLqmmo+66+Nph BEVDT76442QxIEplr5TUplE9Jy6Y2DwvTlBqZsaKKZu1wotDlBR0TxUE3E5tzRB/ /frXcbz+75nCnLRdMHFvXovegnMWzuj3+bSzquYzcETLqQ== -----END CERTIFICATE-----Generated at Fri Jan 23 21:40:54 2026 by rpki-client