This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/8JhThUfEI6-dyKCZlf2ZCjj1VkQ.roa File: 8JhThUfEI6-dyKCZlf2ZCjj1VkQ.roa (raw, json) Hash identifier: 2igkMEalCW6z13z96rK5BylnNAlPki1vsxOv45bnmQg= Subject key identifier: F0:98:53:85:47:C4:23:AF:9D:C8:A0:99:95:FD:99:0A:38:F5:56:44 Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Certificate serial: 019B7F82DF1973B69EFEB06A898F3F3AE10D Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/8JhThUfEI6-dyKCZlf2ZCjj1VkQ.roa Signing time: Fri 02 Jan 2026 16:20:41 +0000 ROA not before: Fri 02 Jan 2026 16:20:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212701 IP address blocks: 2a0b:b87:ffd8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 07:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:df:19:73:b6:9e:fe:b0:6a:89:8f:3f:3a:e1:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Validity Not Before: Jan 2 16:20:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f098538547c423af9dc8a09995fd990a38f55644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a8:b9:02:ab:ca:c7:d7:2c:6a:25:66:29:e6: b4:7b:01:fc:6a:86:fe:d7:e1:0d:86:55:22:a7:6c: d0:0d:20:f2:88:fd:d0:ac:17:0b:5b:1b:34:a8:9a: 5d:1c:e9:27:64:15:65:85:8f:84:0c:ce:b0:a4:25: 1f:9f:37:a2:2b:f1:b8:17:67:07:94:3f:76:ce:e0: dc:37:a7:52:c9:7e:78:2a:6c:72:b4:b7:56:02:66: b8:66:a3:c5:39:05:6d:83:88:ed:68:b1:b6:b1:04: c2:e4:51:8d:9c:19:7c:f1:49:50:33:7b:ec:9f:9b: 1e:cd:7b:72:ff:33:ce:6c:e3:64:d7:b6:71:bc:7d: be:8b:2a:90:3a:02:91:e8:d9:13:2c:b0:f2:12:d9: e3:64:32:82:b8:b2:51:f9:7a:70:ff:dd:06:9f:34: ea:23:24:b9:13:62:b9:85:f6:b4:66:cb:a1:79:87: e1:98:d6:3a:e8:35:36:48:01:c3:65:88:01:03:24: b8:32:66:04:c2:79:25:34:d0:2d:b3:62:67:bc:56: 7f:71:1a:00:e0:c2:fa:ca:e5:2d:73:6d:3f:a9:2d: cb:19:aa:ba:66:7a:a5:a6:39:a1:8b:3f:e7:59:23: 13:65:bb:ae:68:12:12:a9:d0:e5:e8:c2:88:99:4e: cb:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:98:53:85:47:C4:23:AF:9D:C8:A0:99:95:FD:99:0A:38:F5:56:44 X509v3 Authority Key Identifier: keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/8JhThUfEI6-dyKCZlf2ZCjj1VkQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:b87:ffd8::/48 Signature Algorithm: sha256WithRSAEncryption b2:dd:96:d5:c2:d0:62:2b:c8:23:a1:05:31:ae:d5:53:7f:a0: 3b:da:77:59:cb:00:e2:8e:8f:48:bd:e2:5b:36:ba:4d:4e:10: e3:46:0e:fe:ec:27:da:8b:15:d9:ef:c2:e9:48:48:b3:18:4a: 24:c6:c9:e6:03:e5:78:dc:81:85:b6:9b:97:ce:49:21:c5:da: ea:3a:2b:ef:1c:21:3a:93:df:5b:5a:16:4d:ca:e4:ff:f6:85: 34:af:13:bd:78:75:da:b9:ad:d0:ad:92:cf:7b:6b:08:d8:d3: 3f:89:c2:ca:98:4d:0e:de:bb:fc:de:1f:3e:70:a7:40:b8:4b: 78:cd:0b:e1:6d:32:6b:ef:3b:72:ba:64:78:b8:5b:ed:38:14: a8:c8:77:3b:1a:b5:cf:e7:2a:14:7f:c8:65:16:cc:75:78:7e: e8:17:10:29:5d:24:cb:a0:3e:97:97:3e:b0:40:a5:a0:e1:21: 2e:89:95:d7:c3:33:e6:95:70:d2:7b:e1:c9:3a:da:57:d2:3a: 42:36:c6:36:94:c7:c9:17:cd:8c:18:60:3a:42:ea:22:d6:b5: 59:ea:7f:8e:b0:f9:0c:59:2a:15:71:b8:21:a0:d9:4c:8b:f5: e3:02:53:3a:96:cc:cf:8e:8a:30:8e:ca:67:93:7e:34:cd:fd: d1:77:40:5e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/gt8Zc7ae/rBqiY8/OuENMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz YjUwMzQwHhcNMjYwMTAyMTYyMDQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMDk4NTM4NTQ3YzQyM2FmOWRjOGEwOTk5NWZkOTkwYTM4ZjU1NjQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA56i5AqvKx9csaiVmKea0ewH8aob+ 1+ENhlUip2zQDSDyiP3QrBcLWxs0qJpdHOknZBVlhY+EDM6wpCUfnzeiK/G4F2cH lD92zuDcN6dSyX54KmxytLdWAma4ZqPFOQVtg4jtaLG2sQTC5FGNnBl88UlQM3vs n5sezXty/zPObONk17ZxvH2+iyqQOgKR6NkTLLDyEtnjZDKCuLJR+Xpw/90GnzTq IyS5E2K5hfa0ZsuheYfhmNY66DU2SAHDZYgBAyS4MmYEwnklNNAts2JnvFZ/cRoA 4ML6yuUtc20/qS3LGaq6Znqlpjmhiz/nWSMTZbuuaBISqdDl6MKImU7LWwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFPCYU4VHxCOvncigmZX9mQo49VZEMB8GA1UdIwQY MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It Mzk0YWNkMjFmMzliLzEvOEpoVGhVZkVJNi1keUtDWmxmMlpDamoxVmtRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgsLh//Y MA0GCSqGSIb3DQEBCwUAA4IBAQCy3ZbVwtBiK8gjoQUxrtVTf6A72ndZywDijo9I veJbNrpNThDjRg7+7CfaixXZ78LpSEizGEokxsnmA+V43IGFtpuXzkkhxdrqOivv HCE6k99bWhZNyuT/9oU0rxO9eHXaua3QrZLPe2sI2NM/icLKmE0O3rv83h8+cKdA uEt4zQvhbTJr7ztyumR4uFvtOBSoyHc7GrXP5yoUf8hlFsx1eH7oFxApXSTLoD6X lz6wQKWg4SEuiZXXwzPmlXDSe+HJOtpX0jpCNsY2lMfJF82MGGA6Quoi1rVZ6n+O sPkMWSoVcbghoNlMi/XjAlM6lszPjoowjspnk340zf3Rd0Be -----END CERTIFICATE-----Generated at Tue Jan 20 15:20:57 2026 by rpki-client