This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/NB4xnTAn1RNn-vKgoloy8gS60eg.roa File: NB4xnTAn1RNn-vKgoloy8gS60eg.roa (raw, json) Hash identifier: EZrWgvp/yuFOGkdGh7Bk3VNJiuUHm1vRc0weE8SV8LA= Subject key identifier: 34:1E:31:9D:30:27:D5:13:67:FA:F2:A0:A2:5A:32:F2:04:BA:D1:E8 Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Certificate serial: 019B7F13F7A50423922DF63D3B496467FFDB Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/NB4xnTAn1RNn-vKgoloy8gS60eg.roa Signing time: Fri 02 Jan 2026 14:19:33 +0000 ROA not before: Fri 02 Jan 2026 14:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51604 IP address blocks: 2a02:2698:1800::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.mft rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 23:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:f7:a5:04:23:92:2d:f6:3d:3b:49:64:67:ff:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Validity Not Before: Jan 2 14:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=341e319d3027d51367faf2a0a25a32f204bad1e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9b:32:04:d1:ed:25:5c:b3:99:f7:0d:9e:6d: 91:f2:29:9c:56:d4:f0:7e:20:05:d8:49:3e:ca:4f: f8:72:8a:da:f6:41:c5:89:96:f8:1c:60:59:91:d8: 17:97:cc:d9:a1:d7:fd:40:5c:60:b8:3b:d5:28:53: 82:ba:fb:6c:b9:ec:ef:28:30:b8:06:f9:10:71:bc: c7:0e:ae:fd:f3:39:6a:b0:36:dd:d2:d5:a7:2e:c5: 6c:54:f2:56:fa:9a:b5:a7:d6:a0:06:78:75:aa:99: 4c:70:f4:6d:d1:4b:bb:21:20:15:8c:e1:02:9e:10: c1:17:3b:58:66:52:29:4c:7b:ef:04:e0:67:dc:1f: c3:84:53:1f:d0:0d:cd:20:4c:4a:11:46:80:50:3d: 85:35:03:fb:25:c8:68:4a:3a:07:9a:51:97:08:30: 11:90:1c:24:85:12:47:82:12:49:a5:2c:5b:45:50: 9c:de:2b:f8:89:0f:5f:6d:b3:54:0b:1a:87:7f:cb: 2c:fb:37:9f:80:e0:9b:57:44:5b:22:c5:fd:fd:4b: ee:d3:b9:f9:32:a8:40:2d:96:6c:d6:f4:6f:8f:47: ab:18:c6:bf:c3:b2:db:61:cb:dd:1b:95:02:0b:08: 7f:71:b9:22:75:5c:0f:58:c2:78:47:15:23:f7:7d: 6f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:1E:31:9D:30:27:D5:13:67:FA:F2:A0:A2:5A:32:F2:04:BA:D1:E8 X509v3 Authority Key Identifier: keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/NB4xnTAn1RNn-vKgoloy8gS60eg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:2698:1800::/38 Signature Algorithm: sha256WithRSAEncryption 65:87:e5:66:46:72:45:46:ce:48:a3:31:1f:bb:6b:c5:3e:56: 16:bb:af:30:ae:86:58:6d:7c:2c:be:0b:41:34:fd:2f:c7:55: cb:b4:11:24:34:1d:39:9c:61:8f:a6:71:0b:ab:df:44:c2:76: df:15:84:f2:8f:15:74:fd:f7:0e:82:0f:18:02:f1:44:b0:62: 76:ef:35:3a:29:d3:04:72:46:7a:c5:78:e6:a8:50:93:be:f0: 24:b7:ab:72:c4:97:59:ab:51:d2:7e:63:7d:75:10:13:80:c0: 60:fa:cd:5c:59:dc:d5:cf:a2:a0:5b:e0:7b:11:16:c6:17:56: fe:91:7a:9b:18:2d:9f:cf:1c:71:d0:ac:8d:43:ca:1e:c6:43: eb:29:46:df:ed:40:ad:b2:81:23:a7:43:04:19:32:fc:4b:6e: aa:b7:81:41:71:1c:46:5f:c3:f3:ff:52:b1:8e:04:9c:14:4b: 22:fb:b0:3b:69:85:18:62:85:5b:46:46:bb:a6:c3:c5:9c:04: b5:73:07:34:e7:ad:25:91:2e:64:09:ff:97:01:3f:3f:36:43: 71:62:af:9b:14:2c:f4:cb:77:4a:25:1a:1c:44:0d:4f:7f:5d: 19:46:37:dd:dd:83:fe:6d:f7:e5:35:de:64:d8:c0:a5:23:dd: 52:46:2b:69 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt/E/elBCOSLfY9O0lkZ//bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MDJiOTVjZTYyMzlkNTI2YzM1YWU3YThlMmNlYjQ4YWVi ODJiNWYwHhcNMjYwMTAyMTQxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNDFlMzE5ZDMwMjdkNTEzNjdmYWYyYTBhMjVhMzJmMjA0YmFkMWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJsyBNHtJVyzmfcNnm2R8imcVtTw fiAF2Ek+yk/4cora9kHFiZb4HGBZkdgXl8zZodf9QFxguDvVKFOCuvtsuezvKDC4 BvkQcbzHDq798zlqsDbd0tWnLsVsVPJW+pq1p9agBnh1qplMcPRt0Uu7ISAVjOEC nhDBFztYZlIpTHvvBOBn3B/DhFMf0A3NIExKEUaAUD2FNQP7JchoSjoHmlGXCDAR kBwkhRJHghJJpSxbRVCc3iv4iQ9fbbNUCxqHf8ss+zefgOCbV0RbIsX9/Uvu07n5 MqhALZZs1vRvj0erGMa/w7LbYcvdG5UCCwh/cbkidVwPWMJ4RxUj931vLwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFDQeMZ0wJ9UTZ/ryoKJaMvIEutHoMB8GA1UdIwQY MBaAFAgCuVzmI51SbDWueo4s60iuuCtfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDIt Y2YwYWEzZWNhZDI4LzEvTkI0eG5UQW4xUk5uLXZLZ29sb3k4Z1M2MGVnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDItY2YwYWEzZWNhZDI4 LzEvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCKgImmBgw DQYJKoZIhvcNAQELBQADggEBAGWH5WZGckVGzkijMR+7a8U+Vha7rzCuhlhtfCy+ C0E0/S/HVcu0ESQ0HTmcYY+mcQur30TCdt8VhPKPFXT99w6CDxgC8USwYnbvNTop 0wRyRnrFeOaoUJO+8CS3q3LEl1mrUdJ+Y311EBOAwGD6zVxZ3NXPoqBb4HsRFsYX Vv6RepsYLZ/PHHHQrI1Dyh7GQ+spRt/tQK2ygSOnQwQZMvxLbqq3gUFxHEZfw/P/ UrGOBJwUSyL7sDtphRhihVtGRrumw8WcBLVzBzTnrSWRLmQJ/5cBPz82Q3Fir5sU LPTLd0olGhxEDU9/XRlGN93dg/5t9+U13mTYwKUj3VJGK2k= -----END CERTIFICATE-----Generated at Thu Feb 5 06:00:17 2026 by rpki-client