This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/H_ZqL6RkECdFkORWPkQHZkQLmTw.roa File: H_ZqL6RkECdFkORWPkQHZkQLmTw.roa (raw, json) Hash identifier: iJ7KZIZmr4InzppQ2C7K5GIf14/i+7a4DnEB+2Vcn7s= Subject key identifier: 1F:F6:6A:2F:A4:64:10:27:45:90:E4:56:3E:44:07:66:44:0B:99:3C Certificate issuer: /CN=3a0b05f40a6916394782302d1b5660737257a48b Certificate serial: 019B7CEE55F612A13107A5C7A7332A5E27A0 Authority key identifier: 3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/H_ZqL6RkECdFkORWPkQHZkQLmTw.roa Signing time: Fri 02 Jan 2026 04:19:12 +0000 ROA not before: Fri 02 Jan 2026 04:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209474 IP address blocks: 2a0f:6580:108::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/OgsF9AppFjlHgjAtG1Zgc3JXpIs.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/OgsF9AppFjlHgjAtG1Zgc3JXpIs.mft rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 07:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:55:f6:12:a1:31:07:a5:c7:a7:33:2a:5e:27:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a0b05f40a6916394782302d1b5660737257a48b Validity Not Before: Jan 2 04:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ff66a2fa46410274590e4563e440766440b993c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7c:b9:10:f2:a8:cf:ce:de:df:15:0e:ff:21: 57:70:e0:67:c8:25:5c:c0:53:46:c9:ae:78:10:87: 60:46:ca:dd:f8:70:e1:fe:8d:7a:fc:b6:61:77:51: d0:3e:23:25:c5:4d:34:9a:b3:5c:a1:91:a4:23:b5: e7:32:38:00:27:d8:4a:2f:42:d7:e0:8a:3c:20:8b: 43:4b:36:e5:fe:eb:f3:4f:98:ef:d6:c1:6a:11:cc: 2f:d3:d7:c5:d1:98:f4:58:cf:8a:a6:50:be:2d:5f: 66:f2:09:8c:40:db:8e:f2:43:25:03:83:be:3b:0e: 11:a8:a3:b4:fa:8c:2d:b7:8b:c7:6e:5c:37:a7:1a: 3d:ef:78:63:2a:d6:af:b6:b4:a0:85:bf:06:c0:d6: 04:08:7a:ac:eb:61:49:70:85:08:93:9e:99:16:9d: 3c:43:ce:8f:99:3b:38:c0:a8:f2:d3:a4:29:94:0b: 06:b0:6b:fa:25:e3:02:17:c4:af:9d:64:a3:88:1d: cf:1c:be:96:a7:19:14:b8:a5:43:77:c3:1e:bb:cc: e7:75:ea:fb:de:f8:df:7a:17:ac:2e:11:ab:d7:5c: df:97:57:6c:b0:64:01:ed:9e:46:40:d9:c6:93:7a: ac:8e:32:d4:7b:4c:59:79:84:8d:d8:83:e1:66:c8: 07:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F6:6A:2F:A4:64:10:27:45:90:E4:56:3E:44:07:66:44:0B:99:3C X509v3 Authority Key Identifier: keyid:3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/H_ZqL6RkECdFkORWPkQHZkQLmTw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/OgsF9AppFjlHgjAtG1Zgc3JXpIs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6580:108::/48 Signature Algorithm: sha256WithRSAEncryption 51:1f:d1:fe:0c:9c:93:c0:2b:31:1e:45:53:db:3f:7a:ee:87: 98:2f:c5:e8:5f:d4:26:82:94:af:e3:0f:ee:d4:63:39:ed:85: 72:5f:33:12:bf:2e:90:15:90:6d:fe:be:71:fb:4d:9a:2f:0f: 70:9f:a8:5c:07:7d:2b:b8:2e:51:c7:10:bd:a6:10:cb:0e:be: 0d:be:bc:10:87:8d:57:2e:da:1f:fd:1d:61:29:21:78:90:e4: 08:6b:11:ef:b2:f2:99:dd:4c:71:5c:65:83:74:21:64:5e:7e: 21:d6:09:64:3d:99:06:4f:a0:cb:f5:d8:5f:c3:a0:14:76:58: 5a:15:50:10:b3:1d:57:6f:d9:80:ca:d6:b3:a1:8a:19:64:5a: 60:86:78:0e:ee:cc:33:cc:db:46:9e:ec:1e:c4:af:a8:bb:35: 00:27:f1:be:d7:75:36:8d:b4:7d:1a:c1:bc:c3:ec:b5:ec:e1: 6d:1c:4c:5f:1f:4b:19:e3:4a:32:c5:5f:f0:a8:72:a8:d9:aa: 6f:c7:60:df:4f:cc:2c:cf:20:a0:44:16:a1:49:64:61:28:87: 02:08:51:48:40:03:ab:a2:08:97:cd:af:ec:a4:5c:10:53:60: eb:b8:4d:54:27:fb:a8:82:a2:aa:08:14:cd:58:2e:b4:ef:2f: df:1c:96:45 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt87lX2EqExB6XHpzMqXiegMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhMGIwNWY0MGE2OTE2Mzk0NzgyMzAyZDFiNTY2MDczNzI1 N2E0OGIwHhcNMjYwMTAyMDQxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZmY2NmEyZmE0NjQxMDI3NDU5MGU0NTYzZTQ0MDc2NjQ0MGI5OTNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHy5EPKoz87e3xUO/yFXcOBnyCVc wFNGya54EIdgRsrd+HDh/o16/LZhd1HQPiMlxU00mrNcoZGkI7XnMjgAJ9hKL0LX 4Io8IItDSzbl/uvzT5jv1sFqEcwv09fF0Zj0WM+KplC+LV9m8gmMQNuO8kMlA4O+ Ow4RqKO0+owtt4vHblw3pxo973hjKtavtrSghb8GwNYECHqs62FJcIUIk56ZFp08 Q86PmTs4wKjy06QplAsGsGv6JeMCF8SvnWSjiB3PHL6WpxkUuKVDd8Meu8znder7 3vjfehesLhGr11zfl1dssGQB7Z5GQNnGk3qsjjLUe0xZeYSN2IPhZsgHEQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFB/2ai+kZBAnRZDkVj5EB2ZEC5k8MB8GA1UdIwQY MBaAFDoLBfQKaRY5R4IwLRtWYHNyV6SLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2dzRjlBcHBGamxIZ2pBdEcxWmdjM0pYcElzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC83NTgzY2ItZDMxZS00ZTAzLWIxNGIt YjIwZTI4ZjUxODhmLzEvSF9acUw2UmtFQ2RGa09SV1BrUUhaa1FMbVR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC83NTgzY2ItZDMxZS00ZTAzLWIxNGItYjIwZTI4ZjUxODhm LzEvT2dzRjlBcHBGamxIZ2pBdEcxWmdjM0pYcElzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9lgAEI MA0GCSqGSIb3DQEBCwUAA4IBAQBRH9H+DJyTwCsxHkVT2z967oeYL8XoX9QmgpSv 4w/u1GM57YVyXzMSvy6QFZBt/r5x+02aLw9wn6hcB30ruC5RxxC9phDLDr4NvrwQ h41XLtof/R1hKSF4kOQIaxHvsvKZ3UxxXGWDdCFkXn4h1glkPZkGT6DL9dhfw6AU dlhaFVAQsx1Xb9mAytazoYoZZFpghngO7swzzNtGnuwexK+ouzUAJ/G+13U2jbR9 GsG8w+y17OFtHExfH0sZ40oyxV/wqHKo2apvx2DfT8wszyCgRBahSWRhKIcCCFFI QAOrogiXza/spFwQU2DruE1UJ/uogqKqCBTNWC607y/fHJZF -----END CERTIFICATE-----Generated at Wed Jan 21 16:57:01 2026 by rpki-client