This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/_CFbTUX76fNe5IBcq3MPcZlEtZQ.roa File: _CFbTUX76fNe5IBcq3MPcZlEtZQ.roa (raw, json) Hash identifier: h74Tfn8ZJCfINzx1IshDwodGNgfiv419Rx5j9paQnPM= Subject key identifier: FC:21:5B:4D:45:FB:E9:F3:5E:E4:80:5C:AB:73:0F:71:99:44:B5:94 Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Certificate serial: 019B7F13E6A060D0D6C630FAC6056D2A388A Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/_CFbTUX76fNe5IBcq3MPcZlEtZQ.roa Signing time: Fri 02 Jan 2026 14:19:29 +0000 ROA not before: Fri 02 Jan 2026 14:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34533 IP address blocks: 2a02:2698:6800::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.mft rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 23:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:e6:a0:60:d0:d6:c6:30:fa:c6:05:6d:2a:38:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Validity Not Before: Jan 2 14:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fc215b4d45fbe9f35ee4805cab730f719944b594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:99:eb:34:52:74:9e:e8:bb:3a:3a:e3:27:80: 41:c1:3c:a9:34:55:4f:ea:1b:2d:26:20:bb:78:3a: 61:d3:3c:e5:77:d5:70:c1:22:5e:fd:a1:af:16:08: e5:9d:a5:4c:e3:3e:4d:c9:4f:ef:64:ae:60:e5:14: 17:a7:28:52:7d:f4:de:5f:57:86:e8:16:ee:11:c8: 3f:6e:4e:e9:ee:9d:ab:48:1b:ed:04:1a:80:ca:82: 2d:25:dd:64:fd:04:62:6b:11:0b:ff:5b:3d:53:ca: 7a:61:84:27:ac:6f:82:dc:66:2e:a8:97:61:a9:f1: 7a:ff:b0:fc:9c:f7:5e:e3:4e:18:48:ee:be:9b:1b: e3:9d:de:68:fb:5b:c6:e6:a3:6d:04:80:76:15:e8: 3b:46:a7:af:58:35:16:78:2c:88:e3:2b:01:73:a0: 25:da:21:bf:ef:fa:f3:a0:9c:ee:10:81:74:fe:bc: 05:16:81:c3:ce:3e:4c:74:af:b0:47:35:7f:6a:c8: 1c:08:5f:fb:ac:96:68:c9:cf:45:96:d1:fa:84:fb: 86:62:f8:92:36:23:63:ee:32:98:8c:17:ad:05:ea: 7a:cc:05:61:ce:96:f2:ff:86:fb:6c:74:41:14:36: 08:30:5b:ee:73:49:94:a6:49:79:45:ec:70:42:7d: 6e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:21:5B:4D:45:FB:E9:F3:5E:E4:80:5C:AB:73:0F:71:99:44:B5:94 X509v3 Authority Key Identifier: keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/_CFbTUX76fNe5IBcq3MPcZlEtZQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:2698:6800::/38 Signature Algorithm: sha256WithRSAEncryption b9:4a:99:14:99:46:d0:df:c5:31:f7:47:e2:fd:07:a8:6f:83: e9:11:67:b3:52:6e:c0:6f:4e:80:77:a7:d5:76:b0:23:31:44: cc:35:d2:c3:4c:c8:54:85:ca:87:37:12:12:d7:c7:c6:40:00: 32:61:3f:b1:a5:8b:20:d9:01:8f:77:79:ef:63:08:d0:a5:09: e4:b3:ff:36:1b:4a:4a:3b:7e:7a:ff:f0:bd:ae:5c:6e:8a:3e: 65:36:8c:aa:9b:21:64:05:8d:f5:e7:27:b5:fc:b8:fb:84:90: 98:41:f3:74:6f:49:30:a4:c3:1e:ff:eb:d9:75:9e:aa:be:e8: 95:f0:70:6d:c3:1a:ce:5e:a7:37:24:97:49:21:f6:57:61:83: 6a:94:37:39:01:c2:39:cb:71:c0:8c:ef:70:05:77:cf:c1:fb: af:7a:87:a8:b9:32:80:e4:90:ef:4a:fc:77:0c:72:22:03:30: 6d:4f:1e:b8:56:9d:c3:34:61:86:98:9f:e5:2f:7e:57:8f:ca: c7:27:9e:03:60:99:77:84:a5:41:0f:82:ec:95:66:f8:87:dc: 34:7e:53:1b:c8:5b:57:6c:38:55:b2:27:50:7b:e1:d4:08:3a: 71:4c:20:ee:28:b4:01:5e:3b:5b:67:9e:d3:05:0a:ee:d6:52: 1e:c7:a1:93 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt/E+agYNDWxjD6xgVtKjiKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MDJiOTVjZTYyMzlkNTI2YzM1YWU3YThlMmNlYjQ4YWVi ODJiNWYwHhcNMjYwMTAyMTQxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYzIxNWI0ZDQ1ZmJlOWYzNWVlNDgwNWNhYjczMGY3MTk5NDRiNTk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJnrNFJ0nui7OjrjJ4BBwTypNFVP 6hstJiC7eDph0zzld9VwwSJe/aGvFgjlnaVM4z5NyU/vZK5g5RQXpyhSffTeX1eG 6BbuEcg/bk7p7p2rSBvtBBqAyoItJd1k/QRiaxEL/1s9U8p6YYQnrG+C3GYuqJdh qfF6/7D8nPde404YSO6+mxvjnd5o+1vG5qNtBIB2Feg7RqevWDUWeCyI4ysBc6Al 2iG/7/rzoJzuEIF0/rwFFoHDzj5MdK+wRzV/asgcCF/7rJZoyc9FltH6hPuGYviS NiNj7jKYjBetBep6zAVhzpby/4b7bHRBFDYIMFvuc0mUpkl5RexwQn1urQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFPwhW01F++nzXuSAXKtzD3GZRLWUMB8GA1UdIwQY MBaAFAgCuVzmI51SbDWueo4s60iuuCtfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDIt Y2YwYWEzZWNhZDI4LzEvX0NGYlRVWDc2Zk5lNUlCY3EzTVBjWmxFdFpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDItY2YwYWEzZWNhZDI4 LzEvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCKgImmGgw DQYJKoZIhvcNAQELBQADggEBALlKmRSZRtDfxTH3R+L9B6hvg+kRZ7NSbsBvToB3 p9V2sCMxRMw10sNMyFSFyoc3EhLXx8ZAADJhP7GliyDZAY93ee9jCNClCeSz/zYb Sko7fnr/8L2uXG6KPmU2jKqbIWQFjfXnJ7X8uPuEkJhB83RvSTCkwx7/69l1nqq+ 6JXwcG3DGs5epzckl0kh9ldhg2qUNzkBwjnLccCM73AFd8/B+696h6i5MoDkkO9K /HcMciIDMG1PHrhWncM0YYaYn+UvflePyscnngNgmXeEpUEPguyVZviH3DR+UxvI W1dsOFWyJ1B74dQIOnFMIO4otAFeO1tnntMFCu7WUh7HoZM= -----END CERTIFICATE-----Generated at Thu Feb 5 05:53:05 2026 by rpki-client