This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/daa03d-d74b-4cfc-a23b-5a14372457f5/1/OytMoAZMK8wtoSzZvtAHJ9Md1Mo.roa File: OytMoAZMK8wtoSzZvtAHJ9Md1Mo.roa (raw, json) Hash identifier: H/07CVFn18uiXemUf+RsWUhgJ/GpamvFqfgXdnjOQDU= Subject key identifier: 3B:2B:4C:A0:06:4C:2B:CC:2D:A1:2C:D9:BE:D0:07:27:D3:1D:D4:CA Certificate issuer: /CN=16af8ffa644e4041fdad0fc96d6272cb4017a8b0 Certificate serial: 019B7F857581458914B007689B73D23E4676 Authority key identifier: 16:AF:8F:FA:64:4E:40:41:FD:AD:0F:C9:6D:62:72:CB:40:17:A8:B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fq-P-mROQEH9rQ_JbWJyy0AXqLA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/daa03d-d74b-4cfc-a23b-5a14372457f5/1/OytMoAZMK8wtoSzZvtAHJ9Md1Mo.roa Signing time: Fri 02 Jan 2026 16:23:31 +0000 ROA not before: Fri 02 Jan 2026 16:23:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34927 IP address blocks: 2001:678:1030::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/daa03d-d74b-4cfc-a23b-5a14372457f5/1/Fq-P-mROQEH9rQ_JbWJyy0AXqLA.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/daa03d-d74b-4cfc-a23b-5a14372457f5/1/Fq-P-mROQEH9rQ_JbWJyy0AXqLA.mft rsync://rpki.ripe.net/repository/DEFAULT/Fq-P-mROQEH9rQ_JbWJyy0AXqLA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:75:81:45:89:14:b0:07:68:9b:73:d2:3e:46:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16af8ffa644e4041fdad0fc96d6272cb4017a8b0 Validity Not Before: Jan 2 16:23:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3b2b4ca0064c2bcc2da12cd9bed00727d31dd4ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:63:28:c8:88:4a:92:fa:7e:a7:eb:08:1e:e6: 4f:71:3b:9d:96:fb:ce:7e:52:64:7d:a5:6e:8c:7f: 28:1c:bc:b0:b4:c9:85:1d:19:56:c6:b2:b4:4b:f0: af:1f:a7:a6:e9:04:b8:62:2e:ff:6e:24:78:3f:88: 9e:7a:4b:41:42:19:4e:a4:f5:51:2b:db:3c:1b:e7: 75:76:75:4f:13:07:a1:66:bc:ce:25:52:6b:87:3b: c2:be:10:38:71:bf:65:65:31:87:7c:d6:23:05:4a: 75:80:3a:9a:8a:ff:8b:d0:3e:b2:93:2c:76:b1:64: f6:1c:ff:e4:00:a2:c1:e7:67:63:56:f8:c1:b1:27: 65:a8:fc:ac:34:e8:64:d2:2c:0b:2f:23:bc:3a:ab: 98:27:d3:1e:cc:e9:8d:07:ce:62:9b:9a:cc:bf:a8: 27:8b:ab:0d:0b:d6:85:ad:ed:2a:a3:6b:85:6c:41: 85:5c:c7:00:04:a5:43:09:8e:24:63:d0:01:cb:51: 25:34:7a:01:be:46:4d:28:2c:06:3a:02:fd:88:09: ee:ed:ef:5e:4e:20:f9:55:5c:92:5f:c1:69:6c:1b: 41:57:18:ce:30:17:f0:ff:99:5f:de:8c:6f:cf:ad: 52:53:22:fb:dd:d4:bd:bc:80:60:62:07:64:b4:42: 49:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:2B:4C:A0:06:4C:2B:CC:2D:A1:2C:D9:BE:D0:07:27:D3:1D:D4:CA X509v3 Authority Key Identifier: keyid:16:AF:8F:FA:64:4E:40:41:FD:AD:0F:C9:6D:62:72:CB:40:17:A8:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fq-P-mROQEH9rQ_JbWJyy0AXqLA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/daa03d-d74b-4cfc-a23b-5a14372457f5/1/OytMoAZMK8wtoSzZvtAHJ9Md1Mo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/daa03d-d74b-4cfc-a23b-5a14372457f5/1/Fq-P-mROQEH9rQ_JbWJyy0AXqLA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1030::/48 Signature Algorithm: sha256WithRSAEncryption 33:30:13:68:60:84:34:83:cc:8f:7f:ce:2b:1c:c7:06:51:2c: 6a:16:07:d6:df:53:72:21:0d:1e:69:8c:52:cb:bc:15:12:23: 5e:24:90:6a:27:00:a4:d1:fb:5b:27:f5:9e:5c:eb:79:80:df: 8a:20:70:11:04:04:08:f9:6d:c7:08:8b:35:a7:ad:7c:8c:e2: 5a:f3:1b:00:eb:81:bb:f7:a0:e8:98:24:a8:a8:5e:b2:59:1e: e6:f9:70:ac:04:7b:19:d1:51:32:6b:98:2e:a9:4d:c4:93:ab: 62:1a:b6:c3:05:4c:6d:99:27:59:17:f2:0d:d1:d3:83:72:20: 74:03:62:38:50:a8:1c:3b:dc:97:af:97:40:71:b0:ae:4a:46: f9:fc:0f:49:7a:11:38:f4:e7:fa:fc:de:7c:2d:bd:28:f7:3f: 40:13:28:84:20:88:ab:8b:59:c8:9f:bd:b4:96:bc:23:da:35: 13:71:b0:b7:ee:7e:f9:4c:99:4e:d8:f3:ec:20:cc:5e:4f:1a: 4b:5c:91:24:0c:c7:0a:e2:07:19:6f:aa:e5:2e:52:84:93:91: 54:24:5d:e4:1f:be:73:47:ec:c2:3d:fe:1c:74:54:1d:be:d2: 29:a3:ab:7a:6e:95:d8:5a:96:ec:a6:e0:4d:d0:9c:31:ee:b3: 28:a2:17:8e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/hXWBRYkUsAdom3PSPkZ2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2YWY4ZmZhNjQ0ZTQwNDFmZGFkMGZjOTZkNjI3MmNiNDAx N2E4YjAwHhcNMjYwMTAyMTYyMzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYjJiNGNhMDA2NGMyYmNjMmRhMTJjZDliZWQwMDcyN2QzMWRkNGNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2MoyIhKkvp+p+sIHuZPcTudlvvO flJkfaVujH8oHLywtMmFHRlWxrK0S/CvH6em6QS4Yi7/biR4P4ieektBQhlOpPVR K9s8G+d1dnVPEwehZrzOJVJrhzvCvhA4cb9lZTGHfNYjBUp1gDqaiv+L0D6ykyx2 sWT2HP/kAKLB52djVvjBsSdlqPysNOhk0iwLLyO8OquYJ9MezOmNB85im5rMv6gn i6sNC9aFre0qo2uFbEGFXMcABKVDCY4kY9ABy1ElNHoBvkZNKCwGOgL9iAnu7e9e TiD5VVySX8FpbBtBVxjOMBfw/5lf3oxvz61SUyL73dS9vIBgYgdktEJJ5wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDsrTKAGTCvMLaEs2b7QByfTHdTKMB8GA1UdIwQY MBaAFBavj/pkTkBB/a0PyW1icstAF6iwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRnEtUC1tUk9RRUg5clFfSmJXSnl5MEFYcUxBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9kYWEwM2QtZDc0Yi00Y2ZjLWEyM2It NWExNDM3MjQ1N2Y1LzEvT3l0TW9BWk1LOHd0b1N6WnZ0QUhKOU1kMU1vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9kYWEwM2QtZDc0Yi00Y2ZjLWEyM2ItNWExNDM3MjQ1N2Y1 LzEvRnEtUC1tUk9RRUg5clFfSmJXSnl5MEFYcUxBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeBAw MA0GCSqGSIb3DQEBCwUAA4IBAQAzMBNoYIQ0g8yPf84rHMcGUSxqFgfW31NyIQ0e aYxSy7wVEiNeJJBqJwCk0ftbJ/WeXOt5gN+KIHARBAQI+W3HCIs1p618jOJa8xsA 64G796DomCSoqF6yWR7m+XCsBHsZ0VEya5guqU3Ek6tiGrbDBUxtmSdZF/IN0dOD ciB0A2I4UKgcO9yXr5dAcbCuSkb5/A9JehE49Of6/N58Lb0o9z9AEyiEIIiri1nI n720lrwj2jUTcbC37n75TJlO2PPsIMxeTxpLXJEkDMcK4gcZb6rlLlKEk5FUJF3k H75zR+zCPf4cdFQdvtIpo6t6bpXYWpbspuBN0Jwx7rMooheO -----END CERTIFICATE-----Generated at Tue Jan 20 12:11:10 2026 by rpki-client