This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/c33905-ecc5-44b7-8146-e91ff5fe6c26/1/sohnlsGgCKHLAm9KP5jtzcQ4zgc.roa File: sohnlsGgCKHLAm9KP5jtzcQ4zgc.roa (raw, json) Hash identifier: A8SuN+TdWXRmsPs52vkKLZkMKVRrAI+hpLud4HRnOAA= Subject key identifier: B2:88:67:96:C1:A0:08:A1:CB:02:6F:4A:3F:98:ED:CD:C4:38:CE:07 Certificate issuer: /CN=89c3c92a4e1d4fe88572bfa68c985c31e3368c82 Certificate serial: 019B7F15B0959A1E515B8B06DF1C16E8B845 Authority key identifier: 89:C3:C9:2A:4E:1D:4F:E8:85:72:BF:A6:8C:98:5C:31:E3:36:8C:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/icPJKk4dT-iFcr-mjJhcMeM2jII.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/c33905-ecc5-44b7-8146-e91ff5fe6c26/1/sohnlsGgCKHLAm9KP5jtzcQ4zgc.roa Signing time: Fri 02 Jan 2026 14:21:26 +0000 ROA not before: Fri 02 Jan 2026 14:21:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199302 IP address blocks: 2001:67c:150c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/c33905-ecc5-44b7-8146-e91ff5fe6c26/1/icPJKk4dT-iFcr-mjJhcMeM2jII.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/c33905-ecc5-44b7-8146-e91ff5fe6c26/1/icPJKk4dT-iFcr-mjJhcMeM2jII.mft rsync://rpki.ripe.net/repository/DEFAULT/icPJKk4dT-iFcr-mjJhcMeM2jII.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:b0:95:9a:1e:51:5b:8b:06:df:1c:16:e8:b8:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89c3c92a4e1d4fe88572bfa68c985c31e3368c82 Validity Not Before: Jan 2 14:21:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b2886796c1a008a1cb026f4a3f98edcdc438ce07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:be:fe:20:16:23:b9:f9:c2:10:fa:ec:57:5f: 74:97:24:46:4e:4a:4c:5d:7e:e6:3c:dd:36:a7:75: ce:0e:58:20:4c:41:d2:64:a9:16:33:c4:ed:0e:98: 77:22:05:0a:83:b0:30:ee:b9:bd:3a:59:a6:0f:92: fe:f4:5e:d9:f8:33:fb:b6:b5:34:5e:50:15:e3:96: ad:b9:8b:46:69:5e:fb:bc:e2:7e:00:43:a3:34:5f: fb:75:62:92:5e:9d:a7:8f:11:2a:f6:c0:5c:e8:aa: 2b:cf:82:7d:af:61:ac:33:dc:f0:bc:59:8e:1a:4c: 23:6e:3d:1a:da:33:cd:94:e2:b9:12:29:b4:f4:72: 8f:d2:2a:1f:5d:52:a2:29:a6:23:75:74:08:57:64: fb:80:9b:f4:f3:72:13:c7:7e:af:12:42:1e:2d:89: 61:e9:a8:d8:a1:b9:4f:c1:b8:21:bd:51:2c:44:a2: 51:f9:8d:01:6e:81:a6:a4:39:d4:89:8a:29:c7:af: fa:0a:c6:07:a1:9f:64:3e:26:2a:bd:b8:15:0a:59: 9c:a2:ce:65:ba:83:d5:64:ed:bd:d1:e7:b9:f7:67: 9b:9a:31:e9:49:80:fa:53:5e:4d:6a:41:6a:a5:0f: c5:6b:7c:09:f9:21:59:8b:37:6f:4e:77:94:df:b6: ff:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:88:67:96:C1:A0:08:A1:CB:02:6F:4A:3F:98:ED:CD:C4:38:CE:07 X509v3 Authority Key Identifier: keyid:89:C3:C9:2A:4E:1D:4F:E8:85:72:BF:A6:8C:98:5C:31:E3:36:8C:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/icPJKk4dT-iFcr-mjJhcMeM2jII.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/c33905-ecc5-44b7-8146-e91ff5fe6c26/1/sohnlsGgCKHLAm9KP5jtzcQ4zgc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/c33905-ecc5-44b7-8146-e91ff5fe6c26/1/icPJKk4dT-iFcr-mjJhcMeM2jII.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:150c::/48 Signature Algorithm: sha256WithRSAEncryption 2c:28:32:3a:c3:36:a8:4b:cb:10:59:92:ad:9c:5a:f8:40:69: 92:6e:74:58:03:51:f0:aa:a2:3d:32:31:72:d4:c9:d0:6e:3f: df:58:c2:ed:59:70:9f:50:94:29:70:69:9f:40:f8:cc:cf:c3: 82:41:e3:c8:a5:8b:f9:dc:00:71:44:78:df:9c:55:97:a7:1a: c4:da:14:00:d1:de:97:3c:47:f7:82:d6:b1:16:bb:8e:50:5d: 42:68:28:3d:e6:1d:24:42:44:3d:49:13:12:f6:60:05:d4:7b: 39:c0:d2:1a:44:fe:53:6c:5e:ec:06:36:9d:8a:d0:6e:a9:75: 1f:d5:6f:8a:6f:1d:b7:89:41:2a:db:0b:38:cc:94:72:1b:2f: ef:8b:87:2e:35:a8:b5:f7:b6:49:1d:7c:97:48:ee:c9:9c:91: e9:0e:ef:0b:7e:48:42:d5:c0:31:89:f0:27:95:d8:ca:c0:13: d3:c9:f0:14:48:1c:b4:44:bd:de:68:cf:43:a1:a9:72:13:d2: ca:00:9f:48:eb:e4:c6:8e:38:40:93:02:a1:a5:d6:7b:58:45: 88:16:cf:12:2f:8c:3c:53:85:fc:f1:5c:e0:ba:36:d1:40:c4: f8:b5:79:e0:6b:0b:55:94:2b:82:6f:99:2a:54:ec:fb:bd:04: 4b:13:e9:5b -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/FbCVmh5RW4sG3xwW6LhFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YzNjOTJhNGUxZDRmZTg4NTcyYmZhNjhjOTg1YzMxZTMz NjhjODIwHhcNMjYwMTAyMTQyMTI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMjg4Njc5NmMxYTAwOGExY2IwMjZmNGEzZjk4ZWRjZGM0MzhjZTA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsr7+IBYjufnCEPrsV190lyRGTkpM XX7mPN02p3XODlggTEHSZKkWM8TtDph3IgUKg7Aw7rm9OlmmD5L+9F7Z+DP7trU0 XlAV45atuYtGaV77vOJ+AEOjNF/7dWKSXp2njxEq9sBc6Korz4J9r2GsM9zwvFmO Gkwjbj0a2jPNlOK5Eim09HKP0iofXVKiKaYjdXQIV2T7gJv083ITx36vEkIeLYlh 6ajYoblPwbghvVEsRKJR+Y0BboGmpDnUiYopx6/6CsYHoZ9kPiYqvbgVClmcos5l uoPVZO290ee592ebmjHpSYD6U15NakFqpQ/Fa3wJ+SFZizdvTneU37b/zQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLKIZ5bBoAihywJvSj+Y7c3EOM4HMB8GA1UdIwQY MBaAFInDySpOHU/ohXK/poyYXDHjNoyCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWNQSktrNGRULWlGY3ItbWpKaGNNZU0yaklJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9jMzM5MDUtZWNjNS00NGI3LTgxNDYt ZTkxZmY1ZmU2YzI2LzEvc29obmxzR2dDS0hMQW05S1A1anR6Y1E0emdjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS9jMzM5MDUtZWNjNS00NGI3LTgxNDYtZTkxZmY1ZmU2YzI2 LzEvaWNQSktrNGRULWlGY3ItbWpKaGNNZU0yaklJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBUM MA0GCSqGSIb3DQEBCwUAA4IBAQAsKDI6wzaoS8sQWZKtnFr4QGmSbnRYA1HwqqI9 MjFy1MnQbj/fWMLtWXCfUJQpcGmfQPjMz8OCQePIpYv53ABxRHjfnFWXpxrE2hQA 0d6XPEf3gtaxFruOUF1CaCg95h0kQkQ9SRMS9mAF1Hs5wNIaRP5TbF7sBjaditBu qXUf1W+Kbx23iUEq2ws4zJRyGy/vi4cuNai197ZJHXyXSO7JnJHpDu8LfkhC1cAx ifAnldjKwBPTyfAUSBy0RL3eaM9DoalyE9LKAJ9I6+TGjjhAkwKhpdZ7WEWIFs8S L4w8U4X88VzgujbRQMT4tXngawtVlCuCb5kqVOz7vQRLE+lb -----END CERTIFICATE-----Generated at Mon Feb 9 21:01:26 2026 by rpki-client