This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/Oi4i4ArTYX2bzJDgdOmJ8wfG-Qc.roa File: Oi4i4ArTYX2bzJDgdOmJ8wfG-Qc.roa (raw, json) Hash identifier: 3SqbbSrad4TWe7DkRtPVNoNwj8sBMXzmlo9+pJyqPD0= Subject key identifier: 3A:2E:22:E0:0A:D3:61:7D:9B:CC:90:E0:74:E9:89:F3:07:C6:F9:07 Certificate issuer: /CN=b6a368b8e66f9e15a610ec18d6b147b6ba24cee7 Certificate serial: 019B7CEE16E5F27883CE32981E9AB08B24EF Authority key identifier: B6:A3:68:B8:E6:6F:9E:15:A6:10:EC:18:D6:B1:47:B6:BA:24:CE:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tqNouOZvnhWmEOwY1rFHtrokzuc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/Oi4i4ArTYX2bzJDgdOmJ8wfG-Qc.roa Signing time: Fri 02 Jan 2026 04:18:56 +0000 ROA not before: Fri 02 Jan 2026 04:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207363 IP address blocks: 2001:678:1098::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft rsync://rpki.ripe.net/repository/DEFAULT/tqNouOZvnhWmEOwY1rFHtrokzuc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 22:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:16:e5:f2:78:83:ce:32:98:1e:9a:b0:8b:24:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b6a368b8e66f9e15a610ec18d6b147b6ba24cee7 Validity Not Before: Jan 2 04:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3a2e22e00ad3617d9bcc90e074e989f307c6f907 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f2:d4:b9:11:c4:22:8d:d3:ae:ed:59:38:c2: 3f:8e:58:fb:a0:33:57:12:49:a0:76:b0:65:66:e3: 8a:2a:d8:c2:50:ed:09:35:8e:2b:e2:9a:eb:2d:e0: f9:c4:dd:a0:6e:e9:81:27:f9:fe:a6:2c:51:d5:1d: e2:88:fd:c1:f3:04:b9:e6:df:f0:f9:0d:02:5d:fa: 3e:01:f0:dc:bb:3c:b7:b0:4a:5d:51:51:01:c9:cf: f9:5d:81:0b:a6:8c:37:1d:53:e8:9a:27:75:f8:dd: dc:37:a1:4b:bf:1e:bf:a4:fb:db:b5:fb:bf:ca:12: 2b:29:24:af:5a:38:31:01:bf:ca:d4:9e:80:fe:32: 94:09:32:5f:a0:86:be:07:d6:c1:0b:a7:d1:e0:26: 5c:b5:1d:3d:51:9a:fa:f3:60:a6:00:42:9e:8d:f1: ee:52:7b:6b:a2:72:92:ce:7e:15:55:d4:3f:54:c7: 77:e3:c2:e7:2a:2a:7b:a0:80:b3:56:86:5e:47:80: ae:9b:9a:aa:e3:f0:4f:0a:33:67:f3:79:e8:8c:ca: 12:3d:00:35:3e:24:a2:e4:c6:a7:55:95:45:96:d4: 27:07:78:b5:d2:02:6f:c8:cf:53:34:d5:b8:07:7e: a2:3f:5f:41:01:4f:14:9c:5a:78:22:80:cf:86:50: c7:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:2E:22:E0:0A:D3:61:7D:9B:CC:90:E0:74:E9:89:F3:07:C6:F9:07 X509v3 Authority Key Identifier: keyid:B6:A3:68:B8:E6:6F:9E:15:A6:10:EC:18:D6:B1:47:B6:BA:24:CE:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tqNouOZvnhWmEOwY1rFHtrokzuc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/Oi4i4ArTYX2bzJDgdOmJ8wfG-Qc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1098::/48 Signature Algorithm: sha256WithRSAEncryption 39:cd:a1:0c:ce:a4:7e:5f:af:11:66:fe:0e:a4:52:db:ec:57: 40:df:93:8a:2b:8a:56:c5:71:80:30:42:0c:6d:c7:e2:7e:bd: e7:bc:ce:ae:fb:fc:38:5f:bd:46:c9:26:28:57:d4:19:b0:d2: fe:9e:27:d8:3b:7c:ed:33:9b:9c:94:41:d6:10:f3:57:3a:d0: 9d:46:04:00:a1:82:9a:71:db:04:82:1c:51:4d:29:9a:8b:34: 84:9b:5e:be:d6:0b:c9:58:cd:cc:0f:fa:e5:11:95:73:bd:79: 4c:3b:bc:9c:4a:0b:b6:d6:87:39:6f:7d:49:4f:d5:5b:e9:b9: 58:e8:04:f6:d7:8c:d5:99:f4:1f:e3:20:86:8a:88:6c:14:86: 00:26:3b:b3:c6:2d:89:48:f7:c1:da:a0:d1:2a:f6:13:30:b7: 62:0e:ad:41:0b:0f:06:44:3a:86:81:91:fc:68:70:84:1d:ea: a6:52:9c:d6:d3:36:4b:31:c8:a1:34:ef:1c:7f:17:f2:09:21: d8:ba:7c:3d:bb:9f:30:18:8a:f3:2c:e6:9f:03:57:ff:de:c2: 19:e9:6e:0d:26:47:67:a1:f4:41:ef:a1:9e:0b:3f:d0:ab:4c: fd:4f:77:9e:a6:78:83:4c:55:a1:0e:ad:47:f4:fd:fd:cf:76: 73:e0:35:19 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt87hbl8niDzjKYHpqwiyTvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2YTM2OGI4ZTY2ZjllMTVhNjEwZWMxOGQ2YjE0N2I2YmEy NGNlZTcwHhcNMjYwMTAyMDQxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYTJlMjJlMDBhZDM2MTdkOWJjYzkwZTA3NGU5ODlmMzA3YzZmOTA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/LUuRHEIo3Tru1ZOMI/jlj7oDNX EkmgdrBlZuOKKtjCUO0JNY4r4prrLeD5xN2gbumBJ/n+pixR1R3iiP3B8wS55t/w +Q0CXfo+AfDcuzy3sEpdUVEByc/5XYELpow3HVPomid1+N3cN6FLvx6/pPvbtfu/ yhIrKSSvWjgxAb/K1J6A/jKUCTJfoIa+B9bBC6fR4CZctR09UZr682CmAEKejfHu UntronKSzn4VVdQ/VMd348LnKip7oICzVoZeR4Cum5qq4/BPCjNn83nojMoSPQA1 PiSi5ManVZVFltQnB3i10gJvyM9TNNW4B36iP19BAU8UnFp4IoDPhlDHfwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDouIuAK02F9m8yQ4HTpifMHxvkHMB8GA1UdIwQY MBaAFLajaLjmb54VphDsGNaxR7a6JM7nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHFOb3VPWnZuaFdtRU93WTFyRkh0cm9renVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9iYTE4NjgtYWI3Ni00YmUxLWJjNTMt NzQ4MGQ4YTJmMWJlLzEvT2k0aTRBclRZWDJiekpEZ2RPbUo4d2ZHLVFjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS9iYTE4NjgtYWI3Ni00YmUxLWJjNTMtNzQ4MGQ4YTJmMWJl LzEvdHFOb3VPWnZuaFdtRU93WTFyRkh0cm9renVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeBCY MA0GCSqGSIb3DQEBCwUAA4IBAQA5zaEMzqR+X68RZv4OpFLb7FdA35OKK4pWxXGA MEIMbcfifr3nvM6u+/w4X71GySYoV9QZsNL+nifYO3ztM5uclEHWEPNXOtCdRgQA oYKacdsEghxRTSmaizSEm16+1gvJWM3MD/rlEZVzvXlMO7ycSgu21oc5b31JT9Vb 6blY6AT214zVmfQf4yCGiohsFIYAJjuzxi2JSPfB2qDRKvYTMLdiDq1BCw8GRDqG gZH8aHCEHeqmUpzW0zZLMcihNO8cfxfyCSHYunw9u58wGIrzLOafA1f/3sIZ6W4N JkdnofRB76GeCz/Qq0z9T3eepniDTFWhDq1H9P39z3Zz4DUZ -----END CERTIFICATE-----Generated at Sun Jan 18 08:53:30 2026 by rpki-client