This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/ouM5YtdgzmK88LVBLR4anX4lhhA.roa File: ouM5YtdgzmK88LVBLR4anX4lhhA.roa (raw, json) Hash identifier: 8cSgKHpeL4CzJp24fOsiDeOOZHqLgpt9SIcrnZhqRTM= Subject key identifier: A2:E3:39:62:D7:60:CE:62:BC:F0:B5:41:2D:1E:1A:9D:7E:25:86:10 Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79 Certificate serial: 019B7A5B3DF21EF04CD4157347F3817FF23F Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/ouM5YtdgzmK88LVBLR4anX4lhhA.roa Signing time: Thu 01 Jan 2026 16:19:18 +0000 ROA not before: Thu 01 Jan 2026 16:19:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201086 IP address blocks: 2a0c:f340::/32 maxlen: 32 2a0e:9c00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.mft rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:3d:f2:1e:f0:4c:d4:15:73:47:f3:81:7f:f2:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79 Validity Not Before: Jan 1 16:19:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a2e33962d760ce62bcf0b5412d1e1a9d7e258610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:12:11:c7:c8:b7:30:a8:8a:6e:80:67:05:0f: df:89:86:e7:ef:d2:38:82:dc:6d:d4:33:34:3b:8c: 17:b9:f9:a0:56:fc:c9:c8:d3:d4:80:ef:3d:e9:b9: dd:3f:84:ad:98:23:d7:62:5c:ca:86:87:b8:c9:4c: 28:95:3a:b2:a5:6c:57:91:07:03:93:9a:85:0f:98: c5:e2:2d:38:fa:ed:2c:2f:b4:9d:d8:8d:a8:cb:b4: 5d:c5:b9:f8:21:83:f7:37:28:6c:f1:74:62:72:d6: 59:c6:30:11:2a:7b:07:46:12:a7:39:8d:c2:13:66: 8c:9c:bb:14:60:6d:10:ac:0a:b7:76:36:ff:ef:43: 53:25:d7:31:8a:c7:c8:ef:f2:bf:28:23:96:33:de: 36:c9:60:0f:12:11:64:e2:11:c3:b8:2a:2d:25:97: 48:c8:9c:65:69:b2:ba:e7:3e:bc:13:4c:6f:b5:ac: 32:34:47:5b:19:cc:a2:0d:59:e9:2d:93:7e:a1:55: cd:5b:be:e5:ee:21:31:53:1b:64:8b:c4:98:c3:d7: ed:c5:ff:9d:a6:ab:33:2d:e2:91:5a:ae:3b:de:78: 09:cb:f8:3a:2a:c0:2f:76:1b:83:2e:cc:7d:7c:e2: 6f:81:6f:2d:a6:57:a8:2c:84:9d:14:7e:ba:69:29: df:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:E3:39:62:D7:60:CE:62:BC:F0:B5:41:2D:1E:1A:9D:7E:25:86:10 X509v3 Authority Key Identifier: keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/ouM5YtdgzmK88LVBLR4anX4lhhA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:f340::/32 2a0e:9c00::/29 Signature Algorithm: sha256WithRSAEncryption c6:df:d5:6e:b1:c9:15:5f:78:1f:71:d2:72:89:1e:79:e0:03: 96:4f:d0:f2:c4:17:22:68:63:cc:36:5f:66:3c:7b:6c:ff:35: 33:63:a4:10:0f:9f:0d:d0:7a:a5:e8:d0:eb:fc:15:89:84:d7: 04:7f:d8:6d:a7:2f:1d:f6:9b:51:e8:22:0f:d6:19:b1:e6:17: ca:c2:67:50:7e:c5:21:e6:27:96:66:b2:96:43:fd:af:59:de: 83:16:75:c2:00:40:a1:f8:f9:97:35:c5:e3:59:01:90:82:18: a1:ec:2e:72:09:8a:9a:e7:70:83:58:38:59:bd:ab:c6:55:3c: d6:e9:d3:32:49:85:23:6c:60:89:79:42:e3:ed:da:55:85:59: d2:a1:29:fa:a1:06:af:c3:dc:dd:4c:7c:35:19:f8:be:ac:2b: d5:25:8d:65:de:03:37:47:d8:f1:54:d1:a8:f3:6e:93:27:e9: f0:1f:ac:a4:cf:17:13:46:a5:aa:ce:cc:3b:a2:44:e3:aa:89: 01:70:c1:3f:04:4e:0f:d2:e0:74:e4:81:80:dc:d9:9b:79:2f: 74:d1:3a:dc:2d:d1:07:e5:62:f5:46:0e:bb:76:6d:a0:74:36: 12:96:b7:74:37:5c:26:69:20:c6:e4:42:fc:6c:7d:b7:bd:1a: c6:60:12:b8 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt6Wz3yHvBM1BVzR/OBf/I/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllNTUzMjAwNzc2OTY5NDRiMTYxM2MyZThjOWM2MDZhMWUw NmViNzkwHhcNMjYwMTAxMTYxOTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMmUzMzk2MmQ3NjBjZTYyYmNmMGI1NDEyZDFlMWE5ZDdlMjU4NjEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRIRx8i3MKiKboBnBQ/fiYbn79I4 gtxt1DM0O4wXufmgVvzJyNPUgO896bndP4StmCPXYlzKhoe4yUwolTqypWxXkQcD k5qFD5jF4i04+u0sL7Sd2I2oy7Rdxbn4IYP3Nyhs8XRictZZxjARKnsHRhKnOY3C E2aMnLsUYG0QrAq3djb/70NTJdcxisfI7/K/KCOWM942yWAPEhFk4hHDuCotJZdI yJxlabK65z68E0xvtawyNEdbGcyiDVnpLZN+oVXNW77l7iExUxtki8SYw9ftxf+d pqszLeKRWq473ngJy/g6KsAvdhuDLsx9fOJvgW8tpleoLISdFH66aSnf8QIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFKLjOWLXYM5ivPC1QS0eGp1+JYYQMB8GA1UdIwQY MBaAFJ5VMgB3aWlEsWE8LoycYGoeBut5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmxVeUFIZHBhVVN4WVR3dWpKeGdhaDRHNjNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8yNjBiNjEtYTM0OC00ZDQ3LTkyZjYt MWUwZThiOTA5ZTM0LzEvb3VNNVl0ZGd6bUs4OExWQkxSNGFuWDRsaGhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC8yNjBiNjEtYTM0OC00ZDQ3LTkyZjYtMWUwZThiOTA5ZTM0 LzEvbmxVeUFIZHBhVVN4WVR3dWpKeGdhaDRHNjNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUAKgzzQAMF AyoOnAAwDQYJKoZIhvcNAQELBQADggEBAMbf1W6xyRVfeB9x0nKJHnngA5ZP0PLE FyJoY8w2X2Y8e2z/NTNjpBAPnw3QeqXo0Ov8FYmE1wR/2G2nLx32m1HoIg/WGbHm F8rCZ1B+xSHmJ5ZmspZD/a9Z3oMWdcIAQKH4+Zc1xeNZAZCCGKHsLnIJiprncINY OFm9q8ZVPNbp0zJJhSNsYIl5QuPt2lWFWdKhKfqhBq/D3N1MfDUZ+L6sK9UljWXe AzdH2PFU0ajzbpMn6fAfrKTPFxNGparOzDuiROOqiQFwwT8ETg/S4HTkgYDc2Zt5 L3TROtwt0QflYvVGDrt2baB0NhKWt3Q3XCZpIMbkQvxsfbe9GsZgErg= -----END CERTIFICATE-----Generated at Mon Jan 26 23:24:04 2026 by rpki-client