This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/0MBPo0RH_31QdQ2cJCX54aRkrfE.roa File: 0MBPo0RH_31QdQ2cJCX54aRkrfE.roa (raw, json) Hash identifier: w0TAdM2i6qWsUXjEl8h4iG5VGit64FKI8yyZd1z7wjc= Subject key identifier: D0:C0:4F:A3:44:47:FF:7D:50:75:0D:9C:24:25:F9:E1:A4:64:AD:F1 Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A3009ED392F7E9E28A066589C9ADF9 Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/0MBPo0RH_31QdQ2cJCX54aRkrfE.roa Signing time: Thu 01 Jan 2026 08:18:26 +0000 ROA not before: Thu 01 Jan 2026 08:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47748 IP address blocks: 2a00:1728:19::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:00:9e:d3:92:f7:e9:e2:8a:06:65:89:c9:ad:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0c04fa34447ff7d50750d9c2425f9e1a464adf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:4b:87:ad:a5:98:6d:b4:8b:35:d6:b6:00:a0: 5d:29:32:da:ec:37:3f:ac:49:0b:69:bf:e4:3e:f6: 66:18:cc:e3:8a:f7:87:0f:ab:39:60:d4:42:c3:f9: e3:a3:93:87:b6:a8:bf:50:bd:21:6d:8e:9e:20:7e: 21:c8:81:d8:73:a6:e7:3b:7b:29:af:60:88:23:32: 29:64:61:95:37:02:43:aa:76:4a:19:d7:19:4b:11: bf:d3:1c:e7:15:a1:62:84:bf:aa:6c:e0:53:9e:7a: 90:e2:0f:6d:20:98:0c:e6:25:0a:56:29:f1:02:ef: e7:57:15:92:d0:5d:77:3a:de:2f:48:97:81:7c:9e: ec:d6:cf:cf:80:0b:f0:97:70:c6:ea:3e:fc:67:fd: 03:47:69:0f:e8:07:32:aa:b9:54:34:2d:21:66:7e: ad:a0:0c:c6:ec:df:cc:3c:f1:ac:cb:ee:6f:4f:e0: 51:6a:79:e3:c7:b8:af:fe:e6:d4:6b:9f:2c:a2:bd: f3:2a:7d:6a:59:2a:68:50:e1:25:cf:51:56:a0:52: 0e:e7:59:bb:0e:58:a9:77:65:a4:db:8b:a7:e2:8b: 8a:c8:85:30:c9:6f:6d:26:9b:be:6d:15:92:93:6e: b1:ff:0b:4e:cb:de:e4:92:d6:0f:f6:69:59:65:bc: 7e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C0:4F:A3:44:47:FF:7D:50:75:0D:9C:24:25:F9:E1:A4:64:AD:F1 X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/0MBPo0RH_31QdQ2cJCX54aRkrfE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:1728:19::/48 Signature Algorithm: sha256WithRSAEncryption 4c:80:84:9c:92:da:40:fa:76:cf:8b:8e:7a:7e:13:9e:56:cf: 3c:ef:e3:f9:71:c0:e8:28:10:bf:68:27:41:d6:0a:ba:ed:b9: 61:8a:f0:fe:04:7a:45:6e:37:4b:18:10:de:54:22:35:0e:13: 34:ea:b4:93:4b:97:f4:8d:6b:43:6e:39:98:af:cd:3f:8a:d1: 4a:a7:9b:d3:31:6b:37:0b:ba:ab:9a:18:8b:20:1b:cd:68:52: b2:54:e0:d7:5b:e0:1c:10:63:3f:a9:de:a6:95:55:cf:e3:a8: 0c:eb:78:64:db:f1:aa:75:71:1d:02:14:aa:5c:c3:68:63:37: 7c:88:2b:0c:25:dc:39:3a:1f:62:1e:7c:2a:35:d0:5c:97:2c: 75:ab:12:39:29:0b:63:6b:e3:3a:33:75:12:4b:e9:b4:45:37: cc:9a:87:e4:f6:c6:ae:13:a1:b8:9e:38:41:13:02:b8:db:04: 9a:af:4d:06:8d:c7:c3:37:61:f0:d6:8d:77:9a:6e:03:1b:87: 94:e1:14:d9:3a:11:9d:80:e8:83:78:85:0c:f9:22:2e:f3:e9: 72:0c:9b:80:78:70:7c:f1:31:5c:2e:3b:ee:55:6e:23:e5:dd: fd:b7:79:3a:c1:31:69:86:4e:0a:44:44:eb:4e:98:40:9a:45: cc:1e:b0:e7 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt4owCe05L36eKKBmWJya35MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMGMwNGZhMzQ0NDdmZjdkNTA3NTBkOWMyNDI1ZjllMWE0NjRhZGYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmkuHraWYbbSLNda2AKBdKTLa7Dc/ rEkLab/kPvZmGMzjiveHD6s5YNRCw/njo5OHtqi/UL0hbY6eIH4hyIHYc6bnO3sp r2CIIzIpZGGVNwJDqnZKGdcZSxG/0xznFaFihL+qbOBTnnqQ4g9tIJgM5iUKVinx Au/nVxWS0F13Ot4vSJeBfJ7s1s/PgAvwl3DG6j78Z/0DR2kP6AcyqrlUNC0hZn6t oAzG7N/MPPGsy+5vT+BRannjx7iv/ubUa58sor3zKn1qWSpoUOElz1FWoFIO51m7 Dlipd2Wk24un4ouKyIUwyW9tJpu+bRWSk26x/wtOy97kktYP9mlZZbx+HQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNDAT6NER/99UHUNnCQl+eGkZK3xMB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvME1CUG8wUkhfMzFRZFEyY0pDWDU0YVJrcmZFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgAXKAAZ MA0GCSqGSIb3DQEBCwUAA4IBAQBMgIScktpA+nbPi456fhOeVs887+P5ccDoKBC/ aCdB1gq67blhivD+BHpFbjdLGBDeVCI1DhM06rSTS5f0jWtDbjmYr80/itFKp5vT MWs3C7qrmhiLIBvNaFKyVODXW+AcEGM/qd6mlVXP46gM63hk2/GqdXEdAhSqXMNo Yzd8iCsMJdw5Oh9iHnwqNdBclyx1qxI5KQtja+M6M3USS+m0RTfMmofk9sauE6G4 njhBEwK42wSar00GjcfDN2Hw1o13mm4DG4eU4RTZOhGdgOiDeIUM+SIu8+lyDJuA eHB88TFcLjvuVW4j5d39t3k6wTFphk4KRETrTphAmkXMHrDn -----END CERTIFICATE-----Generated at Fri Jan 2 12:03:03 2026 by rpki-client