This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/8cSFy7Ko1nag59SAcofvgS4Nnmg.roa File: 8cSFy7Ko1nag59SAcofvgS4Nnmg.roa (raw, json) Hash identifier: IveoawDTw5t/FsiNYzrV2ir2XqSXTfIr+SxjBonLcNI= Subject key identifier: F1:C4:85:CB:B2:A8:D6:76:A0:E7:D4:80:72:87:EF:81:2E:0D:9E:68 Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02 Certificate serial: 019B7EA556D13B034FBA10F075D69CCC3616 Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/8cSFy7Ko1nag59SAcofvgS4Nnmg.roa Signing time: Fri 02 Jan 2026 12:18:43 +0000 ROA not before: Fri 02 Jan 2026 12:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198596 IP address blocks: 2a10:4646:320::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.mft rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 31 Jan 2026 15:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:56:d1:3b:03:4f:ba:10:f0:75:d6:9c:cc:36:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02 Validity Not Before: Jan 2 12:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f1c485cbb2a8d676a0e7d4807287ef812e0d9e68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ce:1b:83:d7:71:74:fd:b1:c2:31:bb:33:aa: f4:a6:87:c8:0a:91:14:9e:56:c1:41:4b:44:1e:f5: fc:a1:b4:77:b1:17:af:f3:d5:67:5c:da:99:f5:f3: 55:b2:8b:08:41:90:4c:ad:66:b2:61:f7:98:e7:08: 28:a2:a2:4e:5a:48:a1:d1:6b:0e:e6:8f:ab:4e:f2: dc:ec:fe:b3:81:5e:0b:2c:9d:31:b1:70:33:fc:1c: 6f:41:8b:37:92:dc:bc:09:1d:63:12:8f:8f:3f:d3: ac:38:56:07:3c:46:28:47:9f:0a:b8:c4:fa:b2:27: 67:3f:26:18:bd:72:7b:62:22:d6:22:c5:d9:68:b9: 77:57:61:a1:19:ad:cf:88:75:82:bf:c7:12:ff:fc: ee:9a:90:07:ff:94:10:37:9a:51:9c:49:86:5d:9f: 99:f4:62:9e:ae:9c:3f:f6:20:78:3b:9f:1b:9b:3d: e4:44:85:c9:ca:29:0b:ee:2a:02:0b:d6:c6:0e:ef: c4:d7:c8:17:94:91:08:e5:6f:a9:59:17:4a:2e:43: b6:15:59:7b:ff:0c:f2:e0:48:db:14:60:1b:0c:85: 5b:c9:cd:aa:01:da:2c:3f:74:22:c6:4f:51:0e:53: 65:fc:47:67:f3:99:f9:83:6b:d2:9a:d4:c1:62:2f: 22:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C4:85:CB:B2:A8:D6:76:A0:E7:D4:80:72:87:EF:81:2E:0D:9E:68 X509v3 Authority Key Identifier: keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/8cSFy7Ko1nag59SAcofvgS4Nnmg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:4646:320::/44 Signature Algorithm: sha256WithRSAEncryption db:a1:6e:14:8f:6a:e0:89:9c:c6:1f:aa:c1:63:1b:bd:46:0b: f2:b4:4c:1d:a8:fb:3f:04:03:6c:eb:97:53:ec:b6:7c:bd:f2: 7d:44:c4:6b:83:2a:a5:5f:77:13:59:d9:10:3a:73:3a:43:b5: 8c:84:25:0d:03:12:17:c4:2d:5a:d8:93:35:cf:c2:71:dc:98: cc:8d:1b:de:41:f0:a0:2d:a6:8b:ef:a0:09:39:a9:51:90:2e: c6:97:6b:24:26:e6:87:66:80:10:d4:55:b3:72:fc:79:9f:7a: 62:a4:59:c8:c6:20:65:ff:d2:f3:39:03:19:5e:4f:8b:67:93: e1:c0:6d:36:61:cb:94:39:4b:25:9a:38:06:ba:24:a0:38:de: 1d:c2:e1:26:77:74:d9:27:96:bc:a6:3c:1a:68:b8:97:fa:d4: 03:bc:36:01:5b:be:1a:0f:73:12:da:41:1a:c0:82:d0:52:4d: 59:e0:db:5d:ba:2f:24:99:6e:5f:51:9c:58:76:8e:08:9f:8e: a1:79:80:7f:2f:14:21:2f:b1:6e:5b:8d:af:34:f8:0f:75:c2: b8:fb:6f:45:e8:bb:9b:e6:b9:5b:d2:24:0e:cb:54:82:94:81: f4:55:30:bf:24:26:a1:ba:e1:01:b6:1a:43:ad:00:49:40:73: a0:cc:31:cd -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+pVbROwNPuhDwddaczDYWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhNmQyODE3NDkxZGQyY2QwNjc4MDY4ZTM1YTllZmM2ODY2 N2RmMDIwHhcNMjYwMTAyMTIxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMWM0ODVjYmIyYThkNjc2YTBlN2Q0ODA3Mjg3ZWY4MTJlMGQ5ZTY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmc4bg9dxdP2xwjG7M6r0pofICpEU nlbBQUtEHvX8obR3sRev89VnXNqZ9fNVsosIQZBMrWayYfeY5wgooqJOWkih0WsO 5o+rTvLc7P6zgV4LLJ0xsXAz/BxvQYs3kty8CR1jEo+PP9OsOFYHPEYoR58KuMT6 sidnPyYYvXJ7YiLWIsXZaLl3V2GhGa3PiHWCv8cS//zumpAH/5QQN5pRnEmGXZ+Z 9GKerpw/9iB4O58bmz3kRIXJyikL7ioCC9bGDu/E18gXlJEI5W+pWRdKLkO2FVl7 /wzy4EjbFGAbDIVbyc2qAdosP3Qixk9RDlNl/Edn85n5g2vSmtTBYi8i4wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFPHEhcuyqNZ2oOfUgHKH74EuDZ5oMB8GA1UdIwQY MBaAFEptKBdJHdLNBngGjjWp78aGZ98CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMt YWU5MjgzZTc5NjRlLzEvOGNTRnk3S28xbmFnNTlTQWNvZnZnUzRObm1nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMtYWU5MjgzZTc5NjRl LzEvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhBGRgMg MA0GCSqGSIb3DQEBCwUAA4IBAQDboW4Uj2rgiZzGH6rBYxu9RgvytEwdqPs/BANs 65dT7LZ8vfJ9RMRrgyqlX3cTWdkQOnM6Q7WMhCUNAxIXxC1a2JM1z8Jx3JjMjRve QfCgLaaL76AJOalRkC7Gl2skJuaHZoAQ1FWzcvx5n3pipFnIxiBl/9LzOQMZXk+L Z5PhwG02YcuUOUslmjgGuiSgON4dwuEmd3TZJ5a8pjwaaLiX+tQDvDYBW74aD3MS 2kEawILQUk1Z4Ntdui8kmW5fUZxYdo4In46heYB/LxQhL7FuW42vNPgPdcK4+29F 6Lub5rlb0iQOy1SClIH0VTC/JCahuuEBthpDrQBJQHOgzDHN -----END CERTIFICATE-----Generated at Fri Jan 30 22:55:37 2026 by rpki-client