This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/1mHwjPse8dBa3mTY0ngPxZy2fF4.roa File: 1mHwjPse8dBa3mTY0ngPxZy2fF4.roa (raw, json) Hash identifier: 0jWnXLeeExEdfigqwPsBPDCzZxgAjAQtznk6zQvb5Zk= Subject key identifier: D6:61:F0:8C:FB:1E:F1:D0:5A:DE:64:D8:D2:78:0F:C5:9C:B6:7C:5E Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Certificate serial: 019B7F13F62A715BAA0B7D01622FE7706A50 Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/1mHwjPse8dBa3mTY0ngPxZy2fF4.roa Signing time: Fri 02 Jan 2026 14:19:33 +0000 ROA not before: Fri 02 Jan 2026 14:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50543 IP address blocks: 2a02:2698:7000::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.mft rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 23:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:f6:2a:71:5b:aa:0b:7d:01:62:2f:e7:70:6a:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Validity Not Before: Jan 2 14:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d661f08cfb1ef1d05ade64d8d2780fc59cb67c5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7f:fb:01:c4:c6:8d:86:35:6b:62:a0:b6:04: d4:bf:44:6c:27:40:8f:62:45:4a:4d:b4:ce:88:e1: a5:7c:a6:3f:7e:59:9d:0f:21:74:88:e9:d4:20:fd: 2c:70:a3:63:1e:2b:68:c4:fb:f5:a6:d9:25:6d:04: 40:32:af:45:6c:bb:ce:f8:2b:01:4d:8a:34:18:fa: f2:f3:5c:df:2c:fa:68:d3:64:ac:4b:17:1c:61:30: e4:40:f3:f7:ca:c3:c9:99:8a:b8:b3:e2:31:13:b7: b1:22:45:66:dc:ee:b3:36:a8:3c:3c:35:7b:ad:db: 6d:04:1e:c7:fb:bb:1f:d0:82:47:10:e7:fe:c7:8a: bf:df:2d:a6:50:74:2f:84:46:7d:28:60:c1:24:fb: 47:2f:86:a8:4e:11:3b:bf:a1:bc:36:91:1e:2d:ad: 49:3c:ab:32:ab:ee:48:c9:5a:34:28:9f:84:d0:f4: 85:31:8a:e7:14:2e:93:ad:51:df:a6:87:9e:45:48: 61:f3:59:92:04:b4:e2:ad:40:e4:94:65:bc:41:91: 43:68:84:10:9a:d5:e2:14:96:b7:be:28:98:29:bd: 33:9d:d4:4c:93:bd:99:1c:b5:61:3f:a5:80:f8:e3: 06:7e:5e:a2:1a:42:5e:72:96:17:05:28:7e:1e:51: 4c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:61:F0:8C:FB:1E:F1:D0:5A:DE:64:D8:D2:78:0F:C5:9C:B6:7C:5E X509v3 Authority Key Identifier: keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/1mHwjPse8dBa3mTY0ngPxZy2fF4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:2698:7000::/38 Signature Algorithm: sha256WithRSAEncryption c6:76:ca:48:c9:17:ec:41:d7:c7:6b:ab:de:ad:9e:40:95:70: 26:5c:d9:34:08:86:a4:38:d5:21:bb:88:4f:55:d7:0e:5b:75: fa:11:b0:26:62:4c:d4:e5:53:29:82:e9:36:da:7b:e3:04:3b: 4d:a8:8a:da:6a:75:4a:7a:09:49:80:cc:dd:80:79:d1:1e:29: 1b:e5:19:01:39:f6:94:53:61:90:3d:bd:46:33:c6:04:90:dd: 50:67:e2:59:24:78:6a:7a:79:dc:b3:32:c4:70:97:0b:4a:e0: ad:20:3d:0f:68:7e:4d:34:a9:4e:7f:a3:93:19:ba:9f:b1:01: 9d:5c:ed:81:7a:c8:34:b9:9a:b2:b2:82:65:be:e0:4c:91:35: 05:e1:03:c3:52:21:bc:66:27:05:8e:c8:f4:88:0b:53:37:51: 6a:c5:32:e6:af:80:81:ff:ed:9c:14:5c:d0:58:5c:82:74:96: f7:e5:ae:98:f4:f1:22:92:ad:9f:eb:8f:1a:5d:ca:10:ed:8a: 98:00:d9:d8:5b:63:4e:30:cc:45:57:bf:b6:74:f8:41:74:a7: d2:78:74:4d:c8:f0:ce:ae:db:39:1f:40:f2:fa:52:a2:6b:83: 01:7d:59:2d:50:67:08:72:49:7a:9c:0f:29:00:d8:91:d3:c2: 4a:5b:0b:a0 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt/E/YqcVuqC30BYi/ncGpQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MDJiOTVjZTYyMzlkNTI2YzM1YWU3YThlMmNlYjQ4YWVi ODJiNWYwHhcNMjYwMTAyMTQxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNjYxZjA4Y2ZiMWVmMWQwNWFkZTY0ZDhkMjc4MGZjNTljYjY3YzVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApX/7AcTGjYY1a2KgtgTUv0RsJ0CP YkVKTbTOiOGlfKY/flmdDyF0iOnUIP0scKNjHitoxPv1ptklbQRAMq9FbLvO+CsB TYo0GPry81zfLPpo02SsSxccYTDkQPP3ysPJmYq4s+IxE7exIkVm3O6zNqg8PDV7 rdttBB7H+7sf0IJHEOf+x4q/3y2mUHQvhEZ9KGDBJPtHL4aoThE7v6G8NpEeLa1J PKsyq+5IyVo0KJ+E0PSFMYrnFC6TrVHfpoeeRUhh81mSBLTirUDklGW8QZFDaIQQ mtXiFJa3viiYKb0zndRMk72ZHLVhP6WA+OMGfl6iGkJecpYXBSh+HlFMcQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFNZh8Iz7HvHQWt5k2NJ4D8WctnxeMB8GA1UdIwQY MBaAFAgCuVzmI51SbDWueo4s60iuuCtfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDIt Y2YwYWEzZWNhZDI4LzEvMW1Id2pQc2U4ZEJhM21UWTBuZ1B4WnkyZkY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDItY2YwYWEzZWNhZDI4 LzEvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCKgImmHAw DQYJKoZIhvcNAQELBQADggEBAMZ2ykjJF+xB18drq96tnkCVcCZc2TQIhqQ41SG7 iE9V1w5bdfoRsCZiTNTlUymC6Tbae+MEO02oitpqdUp6CUmAzN2AedEeKRvlGQE5 9pRTYZA9vUYzxgSQ3VBn4lkkeGp6edyzMsRwlwtK4K0gPQ9ofk00qU5/o5MZup+x AZ1c7YF6yDS5mrKygmW+4EyRNQXhA8NSIbxmJwWOyPSIC1M3UWrFMuavgIH/7ZwU XNBYXIJ0lvflrpj08SKSrZ/rjxpdyhDtipgA2dhbY04wzEVXv7Z0+EF0p9J4dE3I 8M6u2zkfQPL6UqJrgwF9WS1QZwhySXqcDykA2JHTwkpbC6A= -----END CERTIFICATE-----Generated at Thu Feb 5 05:53:45 2026 by rpki-client