This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/Rhl0f-43kt1rZL6oBFlhICOCXww.roa File: Rhl0f-43kt1rZL6oBFlhICOCXww.roa (raw, json) Hash identifier: oqIehI83H7qVpwn2xZX81tjueP4BOGW59AlC4Ouq8H0= Subject key identifier: 46:19:74:7F:EE:37:92:DD:6B:64:BE:A8:04:59:61:20:23:82:5F:0C Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Certificate serial: 019B7EA70F06EFE1DB2DE97155FE384BF9BE Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/Rhl0f-43kt1rZL6oBFlhICOCXww.roa Signing time: Fri 02 Jan 2026 12:20:36 +0000 ROA not before: Fri 02 Jan 2026 12:20:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215120 IP address blocks: 2a0c:9a40:8570::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 02:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:0f:06:ef:e1:db:2d:e9:71:55:fe:38:4b:f9:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Validity Not Before: Jan 2 12:20:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4619747fee3792dd6b64bea80459612023825f0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3e:e2:eb:00:fe:4f:28:45:03:dc:85:b3:47: e5:f8:8e:89:7a:bf:c2:42:ce:d0:54:ed:c8:d4:12: 90:17:0f:d6:76:7d:2c:79:05:99:aa:67:20:05:5f: d5:e7:2b:03:c2:fd:ed:9b:93:97:d2:72:a2:04:55: b2:e9:b0:67:53:42:f0:57:5a:d9:f8:ea:ef:58:76: 3d:8b:00:e7:0d:ca:74:ab:9b:93:84:f4:ee:7b:01: 07:2e:eb:ef:66:45:05:99:14:38:88:44:d9:6f:70: 16:4f:fb:65:ab:0d:7a:55:27:be:c8:08:97:50:ce: df:76:0a:fa:83:a9:0b:de:68:fd:0d:c0:e8:02:49: 2b:e7:b1:3a:a9:16:10:16:06:57:94:02:7d:aa:e1: f5:e9:51:3c:5f:de:47:81:ba:22:ed:e2:57:45:29: 7a:b3:34:9d:0d:62:ee:d7:d7:a2:5e:20:5d:12:39: 58:a8:15:40:dd:95:8d:3b:87:77:70:63:3d:30:e3: 2a:70:8b:bb:ff:da:59:91:33:61:7c:62:f4:59:93: c5:ff:6c:df:5d:49:2c:f8:9f:90:f4:c5:68:c6:68: 30:e8:88:32:64:d6:8a:25:d5:e0:11:bf:db:f4:3e: d3:66:0d:ef:8c:5c:7c:31:42:fa:9b:fc:10:01:22: 4e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:19:74:7F:EE:37:92:DD:6B:64:BE:A8:04:59:61:20:23:82:5F:0C X509v3 Authority Key Identifier: keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/Rhl0f-43kt1rZL6oBFlhICOCXww.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:9a40:8570::/48 Signature Algorithm: sha256WithRSAEncryption 78:d3:35:55:2b:de:e6:03:17:4e:4d:b0:43:88:e6:87:e6:99: bc:95:1f:03:d0:4b:5b:fb:ac:34:15:5b:89:f4:ee:96:9b:f6: 77:bf:b3:a7:5c:0d:52:53:3c:f7:c2:09:92:a2:22:ab:70:bb: b5:c6:e1:e8:71:e5:d3:55:6a:1f:6d:41:57:0f:03:58:51:43: 54:41:f5:da:9f:12:b9:31:c4:27:a2:53:05:19:24:dd:8e:59: 08:e3:33:40:83:37:ab:20:3b:d4:15:0c:b2:8d:d3:19:f4:c3: 52:23:1e:b7:1c:c4:48:46:6c:8a:09:b5:76:1c:f1:07:f8:60: c8:5f:30:11:e7:98:2e:78:71:63:a7:ef:3d:10:36:c2:4f:af: 28:e7:7d:44:94:6b:8f:9e:81:2b:74:9b:31:7d:69:05:ff:0c: f8:e0:b2:5d:3a:36:ad:f7:60:78:b7:17:39:36:25:00:91:02: 1f:a6:f8:e0:8c:5c:bf:fa:13:a9:d1:a4:9a:a4:b9:db:a0:42: cf:cf:d3:23:61:83:aa:4f:c6:8a:45:c8:2c:08:11:06:62:6a: 10:5a:10:19:20:67:a9:9a:e2:b5:ad:38:55:10:a7:97:83:84: 46:02:d8:64:c8:f0:84:41:3b:a1:69:32:d0:b3:61:73:65:1a: 75:d4:1c:34 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+pw8G7+HbLelxVf44S/m+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl NDgwMDgwHhcNMjYwMTAyMTIyMDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NjE5NzQ3ZmVlMzc5MmRkNmI2NGJlYTgwNDU5NjEyMDIzODI1ZjBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmz7i6wD+TyhFA9yFs0fl+I6Jer/C Qs7QVO3I1BKQFw/Wdn0seQWZqmcgBV/V5ysDwv3tm5OX0nKiBFWy6bBnU0LwV1rZ +OrvWHY9iwDnDcp0q5uThPTuewEHLuvvZkUFmRQ4iETZb3AWT/tlqw16VSe+yAiX UM7fdgr6g6kL3mj9DcDoAkkr57E6qRYQFgZXlAJ9quH16VE8X95Hgboi7eJXRSl6 szSdDWLu19eiXiBdEjlYqBVA3ZWNO4d3cGM9MOMqcIu7/9pZkTNhfGL0WZPF/2zf XUks+J+Q9MVoxmgw6IgyZNaKJdXgEb/b9D7TZg3vjFx8MUL6m/wQASJOtQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFEYZdH/uN5Lda2S+qARZYSAjgl8MMB8GA1UdIwQY MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt YmY0ZTUyN2I5ZmE4LzEvUmhsMGYtNDNrdDFyWkw2b0JGbGhJQ09DWHd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4 LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgyaQIVw MA0GCSqGSIb3DQEBCwUAA4IBAQB40zVVK97mAxdOTbBDiOaH5pm8lR8D0Etb+6w0 FVuJ9O6Wm/Z3v7OnXA1SUzz3wgmSoiKrcLu1xuHoceXTVWofbUFXDwNYUUNUQfXa nxK5McQnolMFGSTdjlkI4zNAgzerIDvUFQyyjdMZ9MNSIx63HMRIRmyKCbV2HPEH +GDIXzAR55gueHFjp+89EDbCT68o531ElGuPnoErdJsxfWkF/wz44LJdOjat92B4 txc5NiUAkQIfpvjgjFy/+hOp0aSapLnboELPz9MjYYOqT8aKRcgsCBEGYmoQWhAZ IGepmuK1rThVEKeXg4RGAthkyPCEQTuhaTLQs2FzZRp11Bw0 -----END CERTIFICATE-----Generated at Tue Jan 20 09:05:19 2026 by rpki-client