This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/jK0B1Odx-DON8kFCWSliovgRtnw.roa File: jK0B1Odx-DON8kFCWSliovgRtnw.roa (raw, json) Hash identifier: CRAL0nVC/AWRKZs3Mefu2T0wlgwV3ReA6cAR1onshxY= Subject key identifier: 8C:AD:01:D4:E7:71:F8:33:8D:F2:41:42:59:29:62:A2:F8:11:B6:7C Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Certificate serial: 019B7F13E918FCBB06D38413CEA000F16543 Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/jK0B1Odx-DON8kFCWSliovgRtnw.roa Signing time: Fri 02 Jan 2026 14:19:29 +0000 ROA not before: Fri 02 Jan 2026 14:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41661 IP address blocks: 2a02:2698:9000::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.mft rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 23:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:e9:18:fc:bb:06:d3:84:13:ce:a0:00:f1:65:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Validity Not Before: Jan 2 14:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8cad01d4e771f8338df24142592962a2f811b67c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f9:17:38:38:9f:a9:a8:0a:9a:84:27:fb:8d: 50:37:46:7a:a8:cb:1f:51:09:1b:e2:1d:0b:bc:a6: ee:c3:5c:1c:77:c6:32:61:dd:b1:81:eb:ba:9c:01: 36:4c:64:7c:24:6e:3a:57:14:85:44:86:8f:cb:ad: 28:01:03:90:31:f9:8f:69:66:f5:9e:b2:b4:3b:cf: 42:ea:1c:a9:43:50:93:e5:49:57:2a:6b:f7:28:34: b6:69:df:aa:f7:64:8f:8c:16:79:e6:55:6e:8c:bf: d0:54:67:51:18:16:af:37:62:a5:f0:a6:46:d9:e8: 8a:04:f9:29:1c:6e:ec:cc:66:af:72:e9:5c:0d:d6: 81:04:4b:bd:70:53:27:17:a6:b6:77:ae:9a:4e:ce: 43:da:7a:1b:c6:5e:21:a5:c3:c8:14:b5:b5:2b:ec: 22:c4:f7:1b:91:6a:c5:8a:11:8b:d8:6d:f1:c4:9b: 48:17:cf:37:1a:98:eb:54:4f:aa:8e:99:ba:2d:35: 17:ce:bf:fb:82:f0:7e:f3:1e:b3:39:1e:a6:46:51: 39:0b:11:d0:6f:55:eb:5b:9f:be:c6:23:f5:6c:fa: b7:b1:97:a6:f4:02:80:3f:c5:79:11:78:9e:4a:c6: 65:a5:c6:5b:2b:d8:db:63:cb:eb:c3:f4:bf:2c:59: c6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:AD:01:D4:E7:71:F8:33:8D:F2:41:42:59:29:62:A2:F8:11:B6:7C X509v3 Authority Key Identifier: keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/jK0B1Odx-DON8kFCWSliovgRtnw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:2698:9000::/38 Signature Algorithm: sha256WithRSAEncryption 5f:3d:6a:ff:ae:c1:00:1c:c6:ba:2f:50:d4:b0:16:43:4b:82: e0:ee:11:08:a9:0f:ec:8c:8e:db:21:28:3b:3f:cb:27:57:1a: 34:fe:3c:b3:d7:aa:84:5a:9b:ea:42:fe:d3:71:13:50:59:7f: 57:a9:06:e2:83:b1:41:28:60:25:b4:a4:fd:b3:d5:f0:c2:c0: 9c:90:08:59:d3:39:77:a3:b7:59:e1:7c:2e:a3:df:63:c7:9e: cb:03:8b:62:b2:1b:a8:70:36:9c:c1:78:53:45:de:99:a0:95: e4:0a:0e:2b:dc:bf:b4:e7:57:f4:75:94:d3:91:df:bc:31:3a: e0:99:68:c0:64:02:63:d6:d0:1e:26:e5:98:35:aa:eb:b6:f1: 82:0c:ff:e6:5a:22:f6:bf:dc:28:a7:81:57:c0:8c:4d:c9:2c: 6e:db:eb:02:b1:93:fa:84:2f:88:be:fd:6e:da:ec:59:11:ca: ea:8a:d8:b7:7c:c8:fc:dd:7e:a6:53:a0:33:94:88:31:d5:fc: d5:f8:f4:7d:cb:0d:d3:49:31:47:11:ed:07:89:19:b2:ca:e3: 4a:85:fb:d6:4b:e9:8b:b4:c6:0a:26:02:53:67:e2:0c:f2:e0: 7a:ad:d0:a6:5b:4b:f9:6c:86:88:1c:7e:b7:18:29:1d:7d:4f: e9:f0:ae:36 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt/E+kY/LsG04QTzqAA8WVDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MDJiOTVjZTYyMzlkNTI2YzM1YWU3YThlMmNlYjQ4YWVi ODJiNWYwHhcNMjYwMTAyMTQxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Y2FkMDFkNGU3NzFmODMzOGRmMjQxNDI1OTI5NjJhMmY4MTFiNjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfkXODifqagKmoQn+41QN0Z6qMsf UQkb4h0LvKbuw1wcd8YyYd2xgeu6nAE2TGR8JG46VxSFRIaPy60oAQOQMfmPaWb1 nrK0O89C6hypQ1CT5UlXKmv3KDS2ad+q92SPjBZ55lVujL/QVGdRGBavN2Kl8KZG 2eiKBPkpHG7szGavculcDdaBBEu9cFMnF6a2d66aTs5D2nobxl4hpcPIFLW1K+wi xPcbkWrFihGL2G3xxJtIF883GpjrVE+qjpm6LTUXzr/7gvB+8x6zOR6mRlE5CxHQ b1XrW5++xiP1bPq3sZem9AKAP8V5EXieSsZlpcZbK9jbY8vrw/S/LFnG7QIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFIytAdTncfgzjfJBQlkpYqL4EbZ8MB8GA1UdIwQY MBaAFAgCuVzmI51SbDWueo4s60iuuCtfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDIt Y2YwYWEzZWNhZDI4LzEvakswQjFPZHgtRE9OOGtGQ1dTbGlvdmdSdG53LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDItY2YwYWEzZWNhZDI4 LzEvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCKgImmJAw DQYJKoZIhvcNAQELBQADggEBAF89av+uwQAcxrovUNSwFkNLguDuEQipD+yMjtsh KDs/yydXGjT+PLPXqoRam+pC/tNxE1BZf1epBuKDsUEoYCW0pP2z1fDCwJyQCFnT OXejt1nhfC6j32PHnssDi2KyG6hwNpzBeFNF3pmgleQKDivcv7TnV/R1lNOR37wx OuCZaMBkAmPW0B4m5Zg1quu28YIM/+ZaIva/3CingVfAjE3JLG7b6wKxk/qEL4i+ /W7a7FkRyuqK2Ld8yPzdfqZToDOUiDHV/NX49H3LDdNJMUcR7QeJGbLK40qF+9ZL 6Yu0xgomAlNn4gzy4Hqt0KZbS/lshogcfrcYKR19T+nwrjY= -----END CERTIFICATE-----Generated at Thu Feb 5 05:55:56 2026 by rpki-client