This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/KHg4o_qYiFjIj1z7MMn1-JjQ0Ws.roa File: KHg4o_qYiFjIj1z7MMn1-JjQ0Ws.roa (raw, json) Hash identifier: p0GS7gC/hvGTse2L+VAI4dc9d7pLdHRfk34pCCnPCNQ= Subject key identifier: 28:78:38:A3:FA:98:88:58:C8:8F:5C:FB:30:C9:F5:F8:98:D0:D1:6B Certificate issuer: /CN=375a064f301026bc3cf87666d6a820128212a811 Certificate serial: 019B7D5C53E29433EA3C6E8B0AFACD7DD038 Authority key identifier: 37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/KHg4o_qYiFjIj1z7MMn1-JjQ0Ws.roa Signing time: Fri 02 Jan 2026 06:19:21 +0000 ROA not before: Fri 02 Jan 2026 06:19:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7922 IP address blocks: 2a03:2880:d001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.mft rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:53:e2:94:33:ea:3c:6e:8b:0a:fa:cd:7d:d0:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=375a064f301026bc3cf87666d6a820128212a811 Validity Not Before: Jan 2 06:19:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=287838a3fa988858c88f5cfb30c9f5f898d0d16b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e4:71:ad:4a:71:d3:ed:41:05:1e:e1:fe:96: f0:ea:22:50:8f:2a:f0:ca:d1:7f:3a:d1:11:c2:ad: 93:e9:ee:5c:cf:75:0d:61:60:6e:2a:dc:1b:59:53: 7a:d6:fd:eb:c1:0c:db:c8:22:34:1f:98:50:30:5b: b7:c9:41:58:fe:c7:96:5b:45:d1:f6:c9:e6:fe:94: 03:b5:ee:96:99:21:76:68:c5:aa:59:f8:d6:a2:a4: c1:7f:5e:c0:b1:33:01:62:58:59:5f:5f:42:4c:eb: 53:65:46:ae:a9:ac:be:a2:46:a0:1b:bd:ca:f1:ff: 28:f3:40:b3:bf:70:a9:06:dd:be:ce:bf:5e:5c:94: af:70:d1:dd:bf:56:bb:53:f1:ff:3e:ef:48:94:8d: 2b:ea:5b:fa:aa:86:f5:e3:11:cb:c6:8a:d2:b3:6a: 76:5d:f7:4d:89:e2:08:f4:e4:cc:49:80:de:d6:db: 0b:ec:ff:91:80:ab:93:5c:ed:ba:9c:ec:72:2d:16: c6:e3:fb:9d:57:e8:de:4f:5f:1e:a4:b4:5d:78:45: cf:6c:61:f8:ba:8d:e4:d6:d2:1e:da:45:1f:c8:06: e5:9c:f1:0c:52:5f:86:d2:6f:2c:22:ce:6c:58:53: 36:ba:b0:e9:4b:b4:ef:d3:d7:74:25:01:db:c5:3e: 7c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:78:38:A3:FA:98:88:58:C8:8F:5C:FB:30:C9:F5:F8:98:D0:D1:6B X509v3 Authority Key Identifier: keyid:37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/KHg4o_qYiFjIj1z7MMn1-JjQ0Ws.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:2880:d001::/48 Signature Algorithm: sha256WithRSAEncryption 5d:4b:a4:a1:8d:9e:1a:2e:ce:44:66:18:06:aa:56:22:7e:0f: fb:82:2f:8a:e8:b1:c5:df:c8:af:46:5b:a9:0d:11:a7:7c:b5: ef:cd:51:5b:28:95:1a:1e:0b:23:89:f6:99:22:e7:fc:8d:08: bd:85:43:7f:56:0c:b9:55:e9:de:68:e3:48:48:14:52:26:85: ca:7d:c3:40:bc:68:3c:d3:56:cf:40:85:36:c5:26:b8:e6:85: 03:af:fe:96:4c:5c:25:c6:62:ae:62:c9:ce:96:0e:84:74:bb: b9:4a:f9:ca:41:6a:44:2f:24:e1:2e:77:d3:67:cf:92:bb:bf: 67:ce:83:4b:23:9d:c3:59:7f:5c:4b:15:83:36:a2:a0:30:c3: 35:84:9d:f8:6c:30:32:25:7a:8b:9b:8f:c2:ae:d0:da:09:07: c6:14:6e:95:4d:b5:4a:81:42:ea:84:13:f8:92:c5:ab:db:88: 5f:78:34:25:66:6c:18:2c:a7:17:84:19:fd:50:5e:67:2b:00: ae:04:83:dc:8f:51:91:25:2a:65:fa:7c:ba:a8:f6:96:1b:61: 7c:02:8e:95:91:1b:c8:45:cf:bf:ea:c5:31:4e:05:3a:cf:49: 5a:aa:a2:8a:b8:ed:2e:01:2b:87:71:af:72:e9:56:69:77:0a: 81:23:b5:36 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9XFPilDPqPG6LCvrNfdA4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3NWEwNjRmMzAxMDI2YmMzY2Y4NzY2NmQ2YTgyMDEyODIx MmE4MTEwHhcNMjYwMTAyMDYxOTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyODc4MzhhM2ZhOTg4ODU4Yzg4ZjVjZmIzMGM5ZjVmODk4ZDBkMTZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtORxrUpx0+1BBR7h/pbw6iJQjyrw ytF/OtERwq2T6e5cz3UNYWBuKtwbWVN61v3rwQzbyCI0H5hQMFu3yUFY/seWW0XR 9snm/pQDte6WmSF2aMWqWfjWoqTBf17AsTMBYlhZX19CTOtTZUauqay+okagG73K 8f8o80Czv3CpBt2+zr9eXJSvcNHdv1a7U/H/Pu9IlI0r6lv6qob14xHLxorSs2p2 XfdNieII9OTMSYDe1tsL7P+RgKuTXO26nOxyLRbG4/udV+jeT18epLRdeEXPbGH4 uo3k1tIe2kUfyAblnPEMUl+G0m8sIs5sWFM2urDpS7Tv09d0JQHbxT58fQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFCh4OKP6mIhYyI9c+zDJ9fiY0NFrMB8GA1UdIwQY MBaAFDdaBk8wECa8PPh2ZtaoIBKCEqgRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjFvR1R6QVFKcnc4LUhabTFxZ2dFb0lTcUJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9kYzU4ODEtMzYzMi00NWFmLWJmNTkt ZjQ0YTU3Y2VkNzNkLzEvS0hnNG9fcVlpRmpJajF6N01NbjEtSmpRMFdzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS9kYzU4ODEtMzYzMi00NWFmLWJmNTktZjQ0YTU3Y2VkNzNk LzEvTjFvR1R6QVFKcnc4LUhabTFxZ2dFb0lTcUJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgMogNAB MA0GCSqGSIb3DQEBCwUAA4IBAQBdS6ShjZ4aLs5EZhgGqlYifg/7gi+K6LHF38iv RlupDRGnfLXvzVFbKJUaHgsjifaZIuf8jQi9hUN/Vgy5VeneaONISBRSJoXKfcNA vGg801bPQIU2xSa45oUDr/6WTFwlxmKuYsnOlg6EdLu5SvnKQWpELyThLnfTZ8+S u79nzoNLI53DWX9cSxWDNqKgMMM1hJ34bDAyJXqLm4/CrtDaCQfGFG6VTbVKgULq hBP4ksWr24hfeDQlZmwYLKcXhBn9UF5nKwCuBIPcj1GRJSpl+ny6qPaWG2F8Ao6V kRvIRc+/6sUxTgU6z0laqqKKuO0uASuHca9y6VZpdwqBI7U2 -----END CERTIFICATE-----Generated at Fri Jan 9 12:06:35 2026 by rpki-client