This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/05U8EXnIqXJPMPlGO2bn_Cp43Ck.roa File: 05U8EXnIqXJPMPlGO2bn_Cp43Ck.roa (raw, json) Hash identifier: vVGXOO/oJVCgI15HAiVLh/hAKCHmjAzaEHuV+NQi8jQ= Subject key identifier: D3:95:3C:11:79:C8:A9:72:4F:30:F9:46:3B:66:E7:FC:2A:78:DC:29 Certificate issuer: /CN=095dff1f6bd8813de5ff9af167247f78b88439bd Certificate serial: 019B7F8180F2E5852728C7E7B3043CB9A43D Authority key identifier: 09:5D:FF:1F:6B:D8:81:3D:E5:FF:9A:F1:67:24:7F:78:B8:84:39:BD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CV3_H2vYgT3l_5rxZyR_eLiEOb0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/05U8EXnIqXJPMPlGO2bn_Cp43Ck.roa Signing time: Fri 02 Jan 2026 16:19:11 +0000 ROA not before: Fri 02 Jan 2026 16:19:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197116 IP address blocks: 2a11:f400::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/CV3_H2vYgT3l_5rxZyR_eLiEOb0.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/CV3_H2vYgT3l_5rxZyR_eLiEOb0.mft rsync://rpki.ripe.net/repository/DEFAULT/CV3_H2vYgT3l_5rxZyR_eLiEOb0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:81:80:f2:e5:85:27:28:c7:e7:b3:04:3c:b9:a4:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095dff1f6bd8813de5ff9af167247f78b88439bd Validity Not Before: Jan 2 16:19:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d3953c1179c8a9724f30f9463b66e7fc2a78dc29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:13:06:e7:fc:0d:09:90:d5:a6:ce:91:16:8b: 1c:ee:56:a0:02:67:b9:ab:57:a5:e5:d2:99:d1:b7: ae:12:25:75:dd:ba:41:69:2f:94:aa:3f:b7:3d:59: 9e:e0:4c:c4:ca:66:03:1d:de:d2:84:a6:48:e2:99: 76:9e:0f:62:5f:91:38:0e:f1:6a:e9:3d:32:7a:25: e3:ec:32:e4:89:a9:b7:27:49:f6:f2:7c:56:c4:56: 3e:25:31:af:f9:9e:6d:39:da:65:7e:b1:a8:2f:17: 73:b9:c8:cb:8c:8c:43:6e:7e:5e:4c:58:62:78:f2: e7:d5:4e:f1:dc:24:51:21:63:66:b5:c3:c6:b6:a9: 92:33:96:11:5a:a5:94:f5:1a:99:d5:7d:db:d2:72: ea:92:96:e2:cf:af:25:46:b6:d3:a6:4e:ae:12:f6: 4c:a5:fc:3f:75:f3:14:4d:40:f0:c4:a8:09:f8:bf: b6:83:55:40:68:ce:c1:5a:80:a6:d3:2c:01:9c:e4: c3:14:c7:be:09:5c:45:b7:bb:13:72:4b:71:1b:52: 88:64:8c:28:1c:53:8e:c3:d4:6b:cd:72:0b:b1:fd: b0:33:a5:8d:c6:03:00:42:d8:a2:26:d7:3a:0b:34: a8:78:03:66:d7:33:7a:28:e2:ab:e1:5c:7e:d3:ac: d2:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:95:3C:11:79:C8:A9:72:4F:30:F9:46:3B:66:E7:FC:2A:78:DC:29 X509v3 Authority Key Identifier: keyid:09:5D:FF:1F:6B:D8:81:3D:E5:FF:9A:F1:67:24:7F:78:B8:84:39:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CV3_H2vYgT3l_5rxZyR_eLiEOb0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/05U8EXnIqXJPMPlGO2bn_Cp43Ck.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/CV3_H2vYgT3l_5rxZyR_eLiEOb0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f400::/32 Signature Algorithm: sha256WithRSAEncryption a2:f8:8a:17:f7:92:4e:89:3c:bb:d5:9a:98:fd:03:f2:d9:4b: 7f:6e:fd:b4:6e:8b:11:8e:0e:c1:13:58:3a:83:19:24:91:b0: 27:5e:35:51:3b:7a:05:50:94:fb:00:24:af:a3:0a:c7:87:b5: 77:3d:77:43:dc:da:69:c2:2f:a3:bb:e7:26:c7:2a:37:76:b3: c1:78:a3:dd:ac:50:23:bc:4e:86:ab:5f:a1:c3:8f:ba:11:90: a9:9e:1b:41:7b:e1:0e:ce:72:24:fd:fb:ec:c7:e6:fd:ff:67: 9f:fd:82:8c:74:ca:d2:db:d5:69:ff:be:33:21:1c:c2:6c:f6: d3:fd:89:9a:2e:1e:9c:c4:db:b0:00:88:89:1c:be:3a:47:cd: 38:7b:2c:40:3f:25:92:be:93:1c:76:46:c1:80:fa:f7:1c:53: 6f:e9:48:2d:08:95:a3:2e:2b:17:11:d5:06:1e:7a:aa:46:20: d2:49:49:50:a6:fe:0e:f1:56:29:b1:9b:fa:3b:1b:d3:4d:07: cd:82:5b:72:b7:77:2c:71:0f:11:a1:41:43:81:f3:7d:95:a0: e6:4d:e0:b5:fc:80:9e:59:d1:2f:ef:79:2d:57:12:3a:77:eb: 28:b6:c6:e3:36:e5:56:6c:3e:6b:b5:50:58:33:70:3c:70:e7: f5:96:c7:bb -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/gYDy5YUnKMfnswQ8uaQ9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NWRmZjFmNmJkODgxM2RlNWZmOWFmMTY3MjQ3Zjc4Yjg4 NDM5YmQwHhcNMjYwMTAyMTYxOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzk1M2MxMTc5YzhhOTcyNGYzMGY5NDYzYjY2ZTdmYzJhNzhkYzI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0xMG5/wNCZDVps6RFosc7lagAme5 q1el5dKZ0beuEiV13bpBaS+Uqj+3PVme4EzEymYDHd7ShKZI4pl2ng9iX5E4DvFq 6T0yeiXj7DLkiam3J0n28nxWxFY+JTGv+Z5tOdplfrGoLxdzucjLjIxDbn5eTFhi ePLn1U7x3CRRIWNmtcPGtqmSM5YRWqWU9RqZ1X3b0nLqkpbiz68lRrbTpk6uEvZM pfw/dfMUTUDwxKgJ+L+2g1VAaM7BWoCm0ywBnOTDFMe+CVxFt7sTcktxG1KIZIwo HFOOw9RrzXILsf2wM6WNxgMAQtiiJtc6CzSoeANm1zN6KOKr4Vx+06zSZQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFNOVPBF5yKlyTzD5Rjtm5/wqeNwpMB8GA1UdIwQY MBaAFAld/x9r2IE95f+a8Wckf3i4hDm9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1YzX0gydllnVDNsXzVyeFp5Ul9lTGlFT2IwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy81ZDAyNzgtMjE2ZS00NzEyLTk0ODct MTliM2QxNTQ0YzM5LzEvMDVVOEVYbklxWEpQTVBsR08yYm5fQ3A0M0NrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy81ZDAyNzgtMjE2ZS00NzEyLTk0ODctMTliM2QxNTQ0YzM5 LzEvQ1YzX0gydllnVDNsXzVyeFp5Ul9lTGlFT2IwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhH0ADAN BgkqhkiG9w0BAQsFAAOCAQEAoviKF/eSTok8u9WamP0D8tlLf279tG6LEY4OwRNY OoMZJJGwJ141UTt6BVCU+wAkr6MKx4e1dz13Q9zaacIvo7vnJscqN3azwXij3axQ I7xOhqtfocOPuhGQqZ4bQXvhDs5yJP377Mfm/f9nn/2CjHTK0tvVaf++MyEcwmz2 0/2Jmi4enMTbsACIiRy+OkfNOHssQD8lkr6THHZGwYD69xxTb+lILQiVoy4rFxHV Bh56qkYg0klJUKb+DvFWKbGb+jsb000HzYJbcrd3LHEPEaFBQ4HzfZWg5k3gtfyA nlnRL+95LVcSOnfrKLbG4zblVmw+a7VQWDNwPHDn9ZbHuw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:55:37 2026 by rpki-client