This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/OuUgPMDiVgWEYNd2BtOVpNrZ6hY.roa File: OuUgPMDiVgWEYNd2BtOVpNrZ6hY.roa (raw, json) Hash identifier: P5f1XjiYANfvf96nSn3cE35oeXR7m62v2srju0CYx4k= Subject key identifier: 3A:E5:20:3C:C0:E2:56:05:84:60:D7:76:06:D3:95:A4:DA:D9:EA:16 Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Certificate serial: 019B7F13ECFF46AB47C9C5D0EFA9CA08DE68 Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/OuUgPMDiVgWEYNd2BtOVpNrZ6hY.roa Signing time: Fri 02 Jan 2026 14:19:30 +0000 ROA not before: Fri 02 Jan 2026 14:19:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41786 IP address blocks: 2a02:2698:2400::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.mft rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 23:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:ec:ff:46:ab:47:c9:c5:d0:ef:a9:ca:08:de:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Validity Not Before: Jan 2 14:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3ae5203cc0e256058460d77606d395a4dad9ea16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:2a:db:53:3d:ec:05:f3:f9:da:08:a0:f3:c7: 19:e7:9f:fb:37:8b:3b:68:7f:da:bc:59:65:75:69: c1:43:64:30:8c:10:cb:d1:a4:f3:b8:e4:fb:14:c1: f7:59:e6:37:5f:c5:46:25:7b:b2:b8:21:05:d2:e3: 29:7c:91:1a:1a:b5:e8:ed:d5:22:93:ac:c1:bb:5f: 15:fe:e0:41:0c:c3:7f:21:8d:9f:92:11:75:81:80: 4d:f8:55:c8:b6:b3:49:eb:81:86:da:9f:05:bd:3f: 93:9e:a0:d3:b4:af:f9:76:21:02:75:95:d8:d8:00: c4:d1:a9:7f:73:0b:6f:3d:e6:54:c3:29:c0:69:dd: ff:1d:ee:05:64:24:93:5c:41:4a:51:a2:63:94:cf: 97:2a:f3:ea:6c:67:55:27:e5:52:7a:c5:f5:7a:4c: 38:e4:d1:18:9a:38:5a:bb:31:c9:4d:a1:02:86:c7: 95:b0:1a:44:24:f6:b0:96:f1:c7:3c:44:f3:a8:05: 32:80:cd:43:a0:e3:5a:6a:41:7b:be:e8:b4:25:78: 1d:d9:4a:5e:c5:0a:ad:48:d0:f8:5d:24:f6:a0:6d: a5:32:ac:67:a0:60:d4:66:7d:d4:24:bb:fe:c9:df: f7:fc:be:c4:bd:25:bf:45:ff:57:c4:83:6a:bb:4d: 11:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E5:20:3C:C0:E2:56:05:84:60:D7:76:06:D3:95:A4:DA:D9:EA:16 X509v3 Authority Key Identifier: keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/OuUgPMDiVgWEYNd2BtOVpNrZ6hY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:2698:2400::/38 Signature Algorithm: sha256WithRSAEncryption 14:62:e8:2b:e5:c9:ce:89:e2:50:7c:f6:50:03:1f:04:6b:d6: 8a:f7:39:66:23:ad:64:0e:97:a7:e3:ca:15:6d:43:08:ea:b2: a7:30:34:0e:89:62:38:09:10:54:3a:be:85:47:65:18:24:ae: 1c:cb:62:70:27:38:ec:f7:8a:dd:c3:37:7a:ce:54:ab:f8:f5: f5:33:e3:55:64:fd:f7:4a:47:70:97:f3:6b:e1:66:31:0a:74: 27:95:8d:89:95:2b:97:f3:3f:2b:74:2b:1c:d3:d8:1a:9e:9f: 15:41:a1:4a:1b:f8:b9:df:68:84:bf:93:f1:a1:09:4d:7f:f8: 2b:d5:39:ab:02:09:8a:49:7c:25:71:89:3b:18:11:c3:ef:30: 95:bc:66:12:33:2e:2b:ea:26:e0:b0:04:79:bd:6d:2f:75:72: 54:a9:03:22:95:78:3d:f4:f4:82:db:3f:ad:b6:30:3b:82:ed: cb:82:a5:1b:66:ff:72:d4:a0:32:ef:66:be:a7:72:81:55:1e: f2:80:f2:2a:73:59:e2:a9:c5:1f:05:7c:38:e1:d2:66:76:6c: 9b:50:b0:ce:64:c9:e2:ed:b9:0e:e0:e4:7f:3e:36:77:96:ca: ce:bd:6e:8c:6d:17:32:62:18:75:1e:58:33:cb:3d:7b:2b:16: 40:e7:c3:fa -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt/E+z/RqtHycXQ76nKCN5oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MDJiOTVjZTYyMzlkNTI2YzM1YWU3YThlMmNlYjQ4YWVi ODJiNWYwHhcNMjYwMTAyMTQxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYWU1MjAzY2MwZTI1NjA1ODQ2MGQ3NzYwNmQzOTVhNGRhZDllYTE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiirbUz3sBfP52gig88cZ55/7N4s7 aH/avFlldWnBQ2QwjBDL0aTzuOT7FMH3WeY3X8VGJXuyuCEF0uMpfJEaGrXo7dUi k6zBu18V/uBBDMN/IY2fkhF1gYBN+FXItrNJ64GG2p8FvT+TnqDTtK/5diECdZXY 2ADE0al/cwtvPeZUwynAad3/He4FZCSTXEFKUaJjlM+XKvPqbGdVJ+VSesX1ekw4 5NEYmjhauzHJTaEChseVsBpEJPawlvHHPETzqAUygM1DoONaakF7vui0JXgd2Upe xQqtSND4XST2oG2lMqxnoGDUZn3UJLv+yd/3/L7EvSW/Rf9XxINqu00R9wIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFDrlIDzA4lYFhGDXdgbTlaTa2eoWMB8GA1UdIwQY MBaAFAgCuVzmI51SbDWueo4s60iuuCtfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDIt Y2YwYWEzZWNhZDI4LzEvT3VVZ1BNRGlWZ1dFWU5kMkJ0T1ZwTnJaNmhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDItY2YwYWEzZWNhZDI4 LzEvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCKgImmCQw DQYJKoZIhvcNAQELBQADggEBABRi6Cvlyc6J4lB89lADHwRr1or3OWYjrWQOl6fj yhVtQwjqsqcwNA6JYjgJEFQ6voVHZRgkrhzLYnAnOOz3it3DN3rOVKv49fUz41Vk /fdKR3CX82vhZjEKdCeVjYmVK5fzPyt0KxzT2BqenxVBoUob+LnfaIS/k/GhCU1/ +CvVOasCCYpJfCVxiTsYEcPvMJW8ZhIzLivqJuCwBHm9bS91clSpAyKVeD309ILb P622MDuC7cuCpRtm/3LUoDLvZr6ncoFVHvKA8ipzWeKpxR8FfDjh0mZ2bJtQsM5k yeLtuQ7g5H8+NneWys69boxtFzJiGHUeWDPLPXsrFkDnw/o= -----END CERTIFICATE-----Generated at Thu Feb 5 06:00:16 2026 by rpki-client