This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/rEm_zkT8RkXOo6rrSI9S5ochz18.roa File: rEm_zkT8RkXOo6rrSI9S5ochz18.roa (raw, json) Hash identifier: rmCUxRvddsYBO6Xa4X/4nPN4nbj09KJMyqWyGAgYBBo= Subject key identifier: AC:49:BF:CE:44:FC:46:45:CE:A3:AA:EB:48:8F:52:E6:87:21:CF:5F Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Certificate serial: 019B7F13F3517ACAF54EAF2120FDB060AA2E Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/rEm_zkT8RkXOo6rrSI9S5ochz18.roa Signing time: Fri 02 Jan 2026 14:19:32 +0000 ROA not before: Fri 02 Jan 2026 14:19:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49048 IP address blocks: 2a02:2698:7400::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.mft rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 23:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:f3:51:7a:ca:f5:4e:af:21:20:fd:b0:60:aa:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Validity Not Before: Jan 2 14:19:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ac49bfce44fc4645cea3aaeb488f52e68721cf5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7b:08:0c:48:ff:79:94:63:ab:22:4d:16:c8: f5:38:db:92:d3:13:01:c9:4d:d5:75:f6:30:35:d3: d5:d2:40:d6:58:92:2f:2c:94:db:e7:ca:e2:e9:b8: 38:e5:17:a9:df:30:04:ce:14:6e:93:97:d9:95:32: 01:d0:2b:08:b6:7c:5c:81:a9:cb:56:4b:df:db:7b: 58:94:73:62:7c:5c:9e:49:73:9c:84:f5:5c:b8:69: 79:eb:f0:15:e9:11:e5:4f:40:36:c6:45:13:f4:6f: 5a:11:43:de:9d:11:5a:52:26:c3:87:1a:42:7c:4e: c5:cf:48:c6:fb:96:28:9a:b1:9c:72:c3:a4:62:a9: bf:03:e9:51:ea:d7:46:a9:ce:51:2a:b3:8a:03:85: 39:02:be:11:fc:79:bd:f1:2b:40:e4:ee:af:02:48: 70:2e:4b:f2:a3:10:8a:56:ff:b6:0d:54:02:66:e0: e6:12:42:e6:f7:a1:13:ee:28:c8:30:25:d8:76:9b: 01:ee:37:d6:48:0a:64:8f:62:08:e1:7b:12:da:6b: c2:b8:52:84:4d:05:8e:ca:e0:ee:66:ce:d8:9d:26: a7:0f:54:89:fd:98:f8:28:cc:b2:e7:38:16:3c:ad: ab:3e:3f:fc:76:9b:e5:b3:a6:ce:9d:e0:97:06:e3: 16:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:49:BF:CE:44:FC:46:45:CE:A3:AA:EB:48:8F:52:E6:87:21:CF:5F X509v3 Authority Key Identifier: keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/rEm_zkT8RkXOo6rrSI9S5ochz18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:2698:7400::/38 Signature Algorithm: sha256WithRSAEncryption aa:84:93:cd:5b:69:1e:14:88:33:b6:85:03:df:e8:20:f9:55: c8:69:7a:d5:08:ac:f1:b2:09:42:9d:3b:ae:65:35:77:6d:ca: 0c:8c:76:12:04:30:b6:a4:d8:3a:6f:d5:c2:26:d8:1a:d4:ce: 6f:ca:92:94:35:f2:95:2f:37:99:be:b2:31:73:a5:11:c4:d2: 11:32:63:e2:e6:3f:66:b4:d7:a1:36:18:b7:29:66:4c:7e:f7: e3:91:e6:43:ad:ec:7c:ca:d7:60:3c:1a:3e:70:9c:1d:83:68: 03:fa:a9:cf:43:00:36:da:0a:b6:43:b1:2e:0e:ea:37:cd:67: a3:8b:2f:54:08:0e:3b:7d:7e:32:63:bc:9c:65:81:25:7b:f1: 75:90:93:a4:1e:a7:6e:59:18:8b:8c:20:d5:a3:a0:75:f4:1f: 1d:0e:f5:b9:e8:b4:27:27:e4:4a:81:d3:3c:7e:78:56:44:f4: bb:31:70:df:09:72:44:65:82:b6:68:4e:f8:61:97:bb:b8:7a: 94:d1:ec:38:fe:8f:ae:17:d7:c6:e2:2a:be:1b:81:c0:e5:e1: 0c:c1:17:e4:97:59:57:d6:ba:60:49:12:fd:37:bf:3a:e8:88: 8f:c4:8a:02:b2:2a:a8:02:3f:2a:75:d9:85:2a:ac:fd:36:f9: c3:18:8b:6d -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt/E/NResr1Tq8hIP2wYKouMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MDJiOTVjZTYyMzlkNTI2YzM1YWU3YThlMmNlYjQ4YWVi ODJiNWYwHhcNMjYwMTAyMTQxOTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYzQ5YmZjZTQ0ZmM0NjQ1Y2VhM2FhZWI0ODhmNTJlNjg3MjFjZjVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnsIDEj/eZRjqyJNFsj1ONuS0xMB yU3VdfYwNdPV0kDWWJIvLJTb58ri6bg45Rep3zAEzhRuk5fZlTIB0CsItnxcganL Vkvf23tYlHNifFyeSXOchPVcuGl56/AV6RHlT0A2xkUT9G9aEUPenRFaUibDhxpC fE7Fz0jG+5YomrGccsOkYqm/A+lR6tdGqc5RKrOKA4U5Ar4R/Hm98StA5O6vAkhw LkvyoxCKVv+2DVQCZuDmEkLm96ET7ijIMCXYdpsB7jfWSApkj2II4XsS2mvCuFKE TQWOyuDuZs7YnSanD1SJ/Zj4KMyy5zgWPK2rPj/8dpvls6bOneCXBuMW+QIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFKxJv85E/EZFzqOq60iPUuaHIc9fMB8GA1UdIwQY MBaAFAgCuVzmI51SbDWueo4s60iuuCtfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDIt Y2YwYWEzZWNhZDI4LzEvckVtX3prVDhSa1hPbzZyclNJOVM1b2NoejE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDItY2YwYWEzZWNhZDI4 LzEvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCKgImmHQw DQYJKoZIhvcNAQELBQADggEBAKqEk81baR4UiDO2hQPf6CD5VchpetUIrPGyCUKd O65lNXdtygyMdhIEMLak2Dpv1cIm2BrUzm/KkpQ18pUvN5m+sjFzpRHE0hEyY+Lm P2a016E2GLcpZkx+9+OR5kOt7HzK12A8Gj5wnB2DaAP6qc9DADbaCrZDsS4O6jfN Z6OLL1QIDjt9fjJjvJxlgSV78XWQk6Qep25ZGIuMINWjoHX0Hx0O9bnotCcn5EqB 0zx+eFZE9LsxcN8JckRlgrZoTvhhl7u4epTR7Dj+j64X18biKr4bgcDl4QzBF+SX WVfWumBJEv03vzroiI/EigKyKqgCPyp12YUqrP02+cMYi20= -----END CERTIFICATE-----Generated at Thu Feb 5 05:56:24 2026 by rpki-client