This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/v8SeWykxnCkXQyOZscP2MgpOyZg.roa File: v8SeWykxnCkXQyOZscP2MgpOyZg.roa (raw, json) Hash identifier: O93SDzFlSIJjhC2CFme+MFhBi83g9A1lij8xh+MsV5Q= Subject key identifier: BF:C4:9E:5B:29:31:9C:29:17:43:23:99:B1:C3:F6:32:0A:4E:C9:98 Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d Certificate serial: 019B7F84401B3C1D1B388DF7B9E555FB60F1 Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/v8SeWykxnCkXQyOZscP2MgpOyZg.roa Signing time: Fri 02 Jan 2026 16:22:12 +0000 ROA not before: Fri 02 Jan 2026 16:22:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1239 IP address blocks: 2a0b:3c40:10::/48 maxlen: 48 2a0c:9e06::/32 maxlen: 32 2a0e:a944::/32 maxlen: 32 2a0e:a945::/32 maxlen: 32 2a0e:a946::/32 maxlen: 32 2a0e:a947::/32 maxlen: 32 2a0f:3b80::/32 maxlen: 32 2a0f:3b81::/32 maxlen: 32 2a0f:3b82::/32 maxlen: 32 2a0f:3b83::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.mft rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:40:1b:3c:1d:1b:38:8d:f7:b9:e5:55:fb:60:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d Validity Not Before: Jan 2 16:22:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bfc49e5b29319c2917432399b1c3f6320a4ec998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8d:03:9b:ee:80:be:2a:60:a0:44:5e:55:87: 52:1e:d2:fa:4d:4d:ac:5a:d2:a2:38:17:73:ee:d5: 23:14:92:f8:b4:06:9a:12:70:a2:ba:50:b1:f8:86: 3e:10:82:2d:5e:23:18:5f:c4:9c:67:75:7f:18:45: 6b:ef:3e:7b:ab:56:03:05:d3:06:6e:0e:55:b5:a3: 34:fe:48:fa:a1:61:80:2e:85:d9:15:ef:5c:f0:d6: 9b:35:9f:d6:e2:53:a6:be:90:d8:47:a0:69:a5:55: 39:8e:b2:c3:7a:d3:28:c4:5e:83:17:2c:aa:9f:e6: 1f:62:b5:3d:27:96:81:f5:41:ee:1d:3e:d2:e2:01: 8d:aa:c0:00:92:f9:7e:ec:47:bf:a9:d2:4a:de:c3: 84:94:d4:12:2b:91:e9:43:82:63:88:31:ba:b8:88: 14:4a:60:99:a0:b1:8a:61:50:00:08:49:97:d1:7a: 69:74:0a:3b:c0:40:1d:16:86:12:6a:a5:79:4b:33: 39:99:54:00:eb:2d:21:e1:ba:ed:09:a3:a6:9b:b9: 94:af:f6:49:68:19:f3:ab:ee:d6:43:a9:82:b3:35: 3a:58:8b:1a:44:45:1c:65:73:d3:9e:0d:ac:fc:44: 7b:37:4c:5d:71:2f:ad:e8:da:a2:71:13:16:be:97: 3e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C4:9E:5B:29:31:9C:29:17:43:23:99:B1:C3:F6:32:0A:4E:C9:98 X509v3 Authority Key Identifier: keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/v8SeWykxnCkXQyOZscP2MgpOyZg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:3c40:10::/48 2a0c:9e06::/32 2a0e:a944::/30 2a0f:3b80::/30 Signature Algorithm: sha256WithRSAEncryption 1f:21:82:c4:41:d3:e9:46:c7:30:a2:e7:68:f3:b8:9c:91:ec: 74:c4:ca:fb:90:af:30:30:94:06:a3:45:06:5d:00:e7:61:24: a8:16:4a:dd:9a:c9:aa:98:76:4f:b3:7d:3c:06:71:2b:73:d3: 6b:2a:30:e0:73:02:76:56:2a:25:c2:c5:45:5b:49:91:ce:50: 07:8d:21:43:6f:0b:31:a7:82:71:a4:fb:f1:66:c7:54:6c:0b: 9f:6b:43:84:f4:0a:33:bc:d2:b5:31:93:4f:73:b5:19:7e:c2: 9d:ef:a9:0b:7b:64:f3:c4:a4:a6:17:29:f3:db:d7:27:e7:80: 29:c6:58:69:ab:6f:da:af:c3:a4:a8:ed:df:ea:36:e0:3c:9d: 5c:19:d6:8c:59:f3:68:89:c4:5d:35:72:f0:d6:a2:a7:cf:69: 45:3d:f5:22:20:c3:aa:83:1b:d1:6e:3a:14:34:94:6d:2b:80: c2:6c:4c:1b:90:7f:de:2a:43:fb:39:e9:90:f2:46:d0:8a:78: 79:c7:0a:b3:b0:e3:e5:0e:cb:70:59:48:d5:a5:ee:3c:20:89: c7:94:54:f0:41:39:81:ee:62:c7:16:09:12:8a:ac:f6:24:d5: 59:06:b2:8f:dd:2c:21:01:f6:9b:93:b8:58:b1:7d:0c:37:ba: 66:9e:b1:50 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt/hEAbPB0bOI33ueVV+2DxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw MTRiOGQwHhcNMjYwMTAyMTYyMjEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZmM0OWU1YjI5MzE5YzI5MTc0MzIzOTliMWMzZjYzMjBhNGVjOTk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0o0Dm+6AvipgoEReVYdSHtL6TU2s WtKiOBdz7tUjFJL4tAaaEnCiulCx+IY+EIItXiMYX8ScZ3V/GEVr7z57q1YDBdMG bg5VtaM0/kj6oWGALoXZFe9c8NabNZ/W4lOmvpDYR6BppVU5jrLDetMoxF6DFyyq n+YfYrU9J5aB9UHuHT7S4gGNqsAAkvl+7Ee/qdJK3sOElNQSK5HpQ4JjiDG6uIgU SmCZoLGKYVAACEmX0XppdAo7wEAdFoYSaqV5SzM5mVQA6y0h4brtCaOmm7mUr/ZJ aBnzq+7WQ6mCszU6WIsaREUcZXPTng2s/ER7N0xdcS+t6NqicRMWvpc+VQIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFL/EnlspMZwpF0MjmbHD9jIKTsmYMB8GA1UdIwQY MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt NmJjNzU1NzhiNGMzLzEvdjhTZVd5a3huQ2tYUXlPWnNjUDJNZ3BPeVpnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAAjAeAwcAKgs8QAAQ AwUAKgyeBgMFAioOqUQDBQIqDzuAMA0GCSqGSIb3DQEBCwUAA4IBAQAfIYLEQdPp Rscwoudo87ickex0xMr7kK8wMJQGo0UGXQDnYSSoFkrdmsmqmHZPs308BnErc9Nr KjDgcwJ2ViolwsVFW0mRzlAHjSFDbwsxp4JxpPvxZsdUbAufa0OE9AozvNK1MZNP c7UZfsKd76kLe2TzxKSmFynz29cn54Apxlhpq2/ar8OkqO3f6jbgPJ1cGdaMWfNo icRdNXLw1qKnz2lFPfUiIMOqgxvRbjoUNJRtK4DCbEwbkH/eKkP7OemQ8kbQinh5 xwqzsOPlDstwWUjVpe48IInHlFTwQTmB7mLHFgkSiqz2JNVZBrKP3SwhAfabk7hY sX0MN7pmnrFQ -----END CERTIFICATE-----Generated at Wed Jan 21 16:59:19 2026 by rpki-client