This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/Fv3FN4kr698bVDao3o9XOjr8Tz4.roa File: Fv3FN4kr698bVDao3o9XOjr8Tz4.roa (raw, json) Hash identifier: 6rB82aXUm+Tn4n4wm/0OKr0aMTrP2YtkhF371pF2g1s= Subject key identifier: 16:FD:C5:37:89:2B:EB:DF:1B:54:36:A8:DE:8F:57:3A:3A:FC:4F:3E Certificate issuer: /CN=d515f2e9149ce1b428c8f1edfc009215e2847f55 Certificate serial: 019B7BA390FD4E947B4F21F3F451FFC7042D Authority key identifier: D5:15:F2:E9:14:9C:E1:B4:28:C8:F1:ED:FC:00:92:15:E2:84:7F:55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1RXy6RSc4bQoyPHt_ACSFeKEf1U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/Fv3FN4kr698bVDao3o9XOjr8Tz4.roa Signing time: Thu 01 Jan 2026 22:17:55 +0000 ROA not before: Thu 01 Jan 2026 22:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 2a01:ea00:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/1RXy6RSc4bQoyPHt_ACSFeKEf1U.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/1RXy6RSc4bQoyPHt_ACSFeKEf1U.mft rsync://rpki.ripe.net/repository/DEFAULT/1RXy6RSc4bQoyPHt_ACSFeKEf1U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:90:fd:4e:94:7b:4f:21:f3:f4:51:ff:c7:04:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d515f2e9149ce1b428c8f1edfc009215e2847f55 Validity Not Before: Jan 1 22:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=16fdc537892bebdf1b5436a8de8f573a3afc4f3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:41:a4:c7:bb:72:b0:bc:58:fe:b7:42:5a:4b: a9:37:be:11:c1:0a:6a:de:f4:94:98:44:95:74:09: 99:c2:05:6d:b3:ce:8c:19:4a:20:4e:c4:2e:b8:b5: 92:e3:56:f5:9b:64:f4:dc:62:e1:3f:99:88:8b:e3: 1b:c7:b4:7e:d2:50:c3:ff:a4:66:95:6a:b5:d4:e2: 49:4f:2e:b3:33:e7:c1:36:7f:c3:b0:21:32:fa:1f: 89:1b:8a:99:9f:c9:57:7d:a5:e3:dc:e9:7d:9b:e2: 35:5b:f5:a7:e8:5b:47:5a:1c:65:7d:19:4c:78:80: 9e:ca:6a:de:7c:22:e0:d5:29:88:ce:7b:ef:50:4e: 59:0c:6a:2d:70:b9:f9:ed:db:2a:2f:cc:36:0c:16: df:a6:d7:67:87:a5:7b:3b:ff:72:1b:0b:16:d5:a7: 9d:18:08:d4:b4:9b:fa:ad:a8:72:83:d6:53:d2:26: ed:07:94:ff:11:69:d5:c9:d0:27:c7:4e:97:d2:86: a2:e8:d7:61:60:72:ea:89:13:32:09:7c:fa:6d:65: 66:f3:b4:ab:a0:0f:9b:8d:b4:0b:10:41:37:59:a9: da:06:25:c8:b7:7d:a3:03:bb:f8:fa:77:37:5a:00: 3a:36:b8:f0:dc:e5:ba:35:06:4e:fe:ee:eb:20:d6: 48:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:FD:C5:37:89:2B:EB:DF:1B:54:36:A8:DE:8F:57:3A:3A:FC:4F:3E X509v3 Authority Key Identifier: keyid:D5:15:F2:E9:14:9C:E1:B4:28:C8:F1:ED:FC:00:92:15:E2:84:7F:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1RXy6RSc4bQoyPHt_ACSFeKEf1U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/Fv3FN4kr698bVDao3o9XOjr8Tz4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8366ae-575d-4fde-8e92-0089944980ca/1/1RXy6RSc4bQoyPHt_ACSFeKEf1U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:ea00:1::/48 Signature Algorithm: sha256WithRSAEncryption 69:48:a5:84:71:9a:37:39:e7:a9:f5:2b:af:fb:e0:4d:ff:72: b2:ac:24:d1:77:17:20:12:cb:4a:25:af:7e:98:19:c4:7b:9b: d4:89:cc:58:a7:40:51:f1:b9:9c:e6:79:af:da:d2:97:8a:57: 87:9f:6a:db:32:18:42:a2:58:88:24:e8:d9:e2:0d:23:95:26: 05:13:33:0f:84:d8:6b:45:93:c1:c0:32:58:ac:73:fa:22:95: 86:53:a1:eb:2b:14:43:db:5f:bb:8d:2a:cd:c3:50:a2:9f:2a: ce:24:53:3b:79:4c:0a:97:f7:3b:0b:3f:bf:ca:79:4f:a2:1d: 82:de:a3:29:99:42:10:7e:66:64:53:cf:bf:00:a9:af:3b:86: 0c:1a:8f:62:7d:c3:4b:73:f1:a3:de:2d:5b:43:ee:7d:8f:a7: 0c:a3:fd:4a:09:4e:a3:89:66:71:cb:53:cb:fd:6c:d7:8a:b5: d5:fd:dc:28:1c:12:0a:69:d9:fa:ef:ef:cb:0e:b2:23:c5:4a: 85:ae:93:32:35:2e:33:a2:c2:a9:0c:1a:a7:ad:8f:2a:2f:15: 77:85:8a:31:b8:52:d2:99:73:58:89:c5:3c:f8:69:a1:30:6e: 32:a2:9f:6c:4f:8e:08:ce:a8:29:0f:f3:f3:08:f8:71:d4:f0: a7:58:32:ef -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7o5D9TpR7TyHz9FH/xwQtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1MTVmMmU5MTQ5Y2UxYjQyOGM4ZjFlZGZjMDA5MjE1ZTI4 NDdmNTUwHhcNMjYwMTAxMjIxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNmZkYzUzNzg5MmJlYmRmMWI1NDM2YThkZThmNTczYTNhZmM0ZjNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkGkx7tysLxY/rdCWkupN74RwQpq 3vSUmESVdAmZwgVts86MGUogTsQuuLWS41b1m2T03GLhP5mIi+Mbx7R+0lDD/6Rm lWq11OJJTy6zM+fBNn/DsCEy+h+JG4qZn8lXfaXj3Ol9m+I1W/Wn6FtHWhxlfRlM eICeymrefCLg1SmIznvvUE5ZDGotcLn57dsqL8w2DBbfptdnh6V7O/9yGwsW1aed GAjUtJv6rahyg9ZT0ibtB5T/EWnVydAnx06X0oai6NdhYHLqiRMyCXz6bWVm87Sr oA+bjbQLEEE3WanaBiXIt32jA7v4+nc3WgA6Nrjw3OW6NQZO/u7rINZIgwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFBb9xTeJK+vfG1Q2qN6PVzo6/E8+MB8GA1UdIwQY MBaAFNUV8ukUnOG0KMjx7fwAkhXihH9VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVJYeTZSU2M0YlFveVBIdF9BQ1NGZUtFZjFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84MzY2YWUtNTc1ZC00ZmRlLThlOTIt MDA4OTk0NDk4MGNhLzEvRnYzRk40a3I2OThiVkRhbzNvOVhPanI4VHo0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS84MzY2YWUtNTc1ZC00ZmRlLThlOTItMDA4OTk0NDk4MGNh LzEvMVJYeTZSU2M0YlFveVBIdF9BQ1NGZUtFZjFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgHqAAAB MA0GCSqGSIb3DQEBCwUAA4IBAQBpSKWEcZo3Oeep9Suv++BN/3KyrCTRdxcgEstK Ja9+mBnEe5vUicxYp0BR8bmc5nmv2tKXileHn2rbMhhColiIJOjZ4g0jlSYFEzMP hNhrRZPBwDJYrHP6IpWGU6HrKxRD21+7jSrNw1CinyrOJFM7eUwKl/c7Cz+/ynlP oh2C3qMpmUIQfmZkU8+/AKmvO4YMGo9ifcNLc/Gj3i1bQ+59j6cMo/1KCU6jiWZx y1PL/WzXirXV/dwoHBIKadn67+/LDrIjxUqFrpMyNS4zosKpDBqnrY8qLxV3hYox uFLSmXNYicU8+GmhMG4yop9sT44IzqgpD/PzCPhx1PCnWDLv -----END CERTIFICATE-----Generated at Fri Jan 2 11:04:01 2026 by rpki-client