This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/1a2a0f-9481-4be1-85f5-d78d95426cae/1/vm8yl7UbsZH9NAHEQzIodWMmimI.roa File: vm8yl7UbsZH9NAHEQzIodWMmimI.roa (raw, json) Hash identifier: Q0uQ98zQcJyDm7dzGXwkuXWtJLhZX6D4OwDjNRtFEO4= Subject key identifier: BE:6F:32:97:B5:1B:B1:91:FD:34:01:C4:43:32:28:75:63:26:8A:62 Certificate issuer: /CN=5f2b1565a10fd13460e95f1e9fe08c2088c2cb1f Certificate serial: 019C2CDA5E7E2036D74B9B3A4D2AAC898639 Authority key identifier: 5F:2B:15:65:A1:0F:D1:34:60:E9:5F:1E:9F:E0:8C:20:88:C2:CB:1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XysVZaEP0TRg6V8en-CMIIjCyx8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/1a2a0f-9481-4be1-85f5-d78d95426cae/1/vm8yl7UbsZH9NAHEQzIodWMmimI.roa Signing time: Thu 05 Feb 2026 08:10:34 +0000 ROA not before: Thu 05 Feb 2026 08:10:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198464 IP address blocks: 2a0c:a640:40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/1a2a0f-9481-4be1-85f5-d78d95426cae/1/XysVZaEP0TRg6V8en-CMIIjCyx8.crl rsync://rpki.ripe.net/repository/DEFAULT/35/1a2a0f-9481-4be1-85f5-d78d95426cae/1/XysVZaEP0TRg6V8en-CMIIjCyx8.mft rsync://rpki.ripe.net/repository/DEFAULT/XysVZaEP0TRg6V8en-CMIIjCyx8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:2c:da:5e:7e:20:36:d7:4b:9b:3a:4d:2a:ac:89:86:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f2b1565a10fd13460e95f1e9fe08c2088c2cb1f Validity Not Before: Feb 5 08:10:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=be6f3297b51bb191fd3401c44332287563268a62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ee:6e:7f:0d:ec:ca:21:38:72:c0:2e:57:db: 78:d1:be:ee:22:ef:94:23:71:53:27:b3:ac:50:2f: cb:ce:bc:9b:19:e7:a2:4d:44:4d:d8:e1:0f:ad:32: 50:e2:ae:4b:37:11:ae:52:c2:11:b0:c7:f7:9f:0e: 14:b3:0b:39:b3:d3:77:72:87:2f:84:66:07:b3:ea: da:80:94:fa:26:1f:3a:39:c3:3c:6e:16:a7:d5:7b: 7d:b8:48:99:d3:f9:e6:17:72:af:a5:07:28:04:dc: f7:07:4b:78:4a:61:9e:09:cc:f0:19:0d:66:c5:15: b7:68:4e:1a:d2:c0:ba:dd:bf:f6:36:0b:9f:45:58: 63:4a:dd:ba:26:d0:59:e2:5a:8f:e3:35:35:f7:57: f1:f1:ab:b0:9d:08:43:4d:49:87:5b:aa:49:c5:b9: b5:cd:6d:57:d4:ff:be:44:92:00:4d:47:cc:1f:9c: ed:38:70:0c:12:f7:e8:06:48:db:c1:49:b2:28:c3: 9b:19:82:73:55:7e:d6:56:13:1e:21:d9:a3:d6:47: a8:28:36:19:d7:c1:0b:77:33:7f:3b:1a:a4:e5:e4: 87:49:ef:7f:03:50:49:2f:16:a8:94:12:66:f4:34: 23:ab:c8:ba:f8:ed:ab:ea:9b:2a:82:c3:87:2f:43: 71:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:6F:32:97:B5:1B:B1:91:FD:34:01:C4:43:32:28:75:63:26:8A:62 X509v3 Authority Key Identifier: keyid:5F:2B:15:65:A1:0F:D1:34:60:E9:5F:1E:9F:E0:8C:20:88:C2:CB:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XysVZaEP0TRg6V8en-CMIIjCyx8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/1a2a0f-9481-4be1-85f5-d78d95426cae/1/vm8yl7UbsZH9NAHEQzIodWMmimI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/1a2a0f-9481-4be1-85f5-d78d95426cae/1/XysVZaEP0TRg6V8en-CMIIjCyx8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:a640:40::/48 Signature Algorithm: sha256WithRSAEncryption 1e:83:ca:3e:d2:b1:60:f1:44:54:a5:8a:dd:87:bd:5c:a1:7f: 44:7a:0a:ea:35:de:4e:5a:29:53:57:90:f2:65:41:7f:11:b0: 92:37:c3:5c:46:c2:4e:a9:19:64:b6:0f:67:c8:00:57:78:e8: 2c:a6:cc:b9:cf:19:25:13:2c:c6:ec:bc:e2:2a:7d:c2:45:0a: ea:8e:e4:45:e3:12:40:a4:69:21:01:28:b3:a6:e0:73:58:97: ce:80:7c:ae:08:97:dc:9d:bf:32:fb:7d:eb:41:52:f6:44:cb: c0:dc:29:a8:10:31:9a:b0:5d:4e:22:2a:23:ae:5f:b2:b2:54: 08:a4:a4:c8:6c:f0:db:91:c7:2c:ac:57:d2:23:42:45:93:44: ca:0b:7d:78:29:1e:60:bc:14:7e:6c:d8:5c:60:74:54:2a:dd: b3:f0:47:91:0a:8d:8a:9c:46:3e:48:79:1f:ca:d9:61:42:92: fe:03:df:c7:2b:a9:b6:08:96:3b:aa:4c:4f:d3:f9:d3:67:7a: 70:3e:de:67:07:17:ed:9d:15:1e:32:4b:bf:d3:35:f4:00:f6: 63:f9:f3:95:7b:71:1c:3c:02:54:09:f7:f4:10:00:33:a6:b3: 88:da:1c:23:d5:0e:00:aa:76:7a:b2:42:d9:76:1f:67:8b:52: 36:66:a9:ad -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZws2l5+IDbXS5s6TSqsiYY5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmMmIxNTY1YTEwZmQxMzQ2MGU5NWYxZTlmZTA4YzIwODhj MmNiMWYwHhcNMjYwMjA1MDgxMDM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZTZmMzI5N2I1MWJiMTkxZmQzNDAxYzQ0MzMyMjg3NTYzMjY4YTYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzu5ufw3syiE4csAuV9t40b7uIu+U I3FTJ7OsUC/LzrybGeeiTURN2OEPrTJQ4q5LNxGuUsIRsMf3nw4Usws5s9N3cocv hGYHs+ragJT6Jh86OcM8bhan1Xt9uEiZ0/nmF3KvpQcoBNz3B0t4SmGeCczwGQ1m xRW3aE4a0sC63b/2NgufRVhjSt26JtBZ4lqP4zU191fx8auwnQhDTUmHW6pJxbm1 zW1X1P++RJIATUfMH5ztOHAMEvfoBkjbwUmyKMObGYJzVX7WVhMeIdmj1keoKDYZ 18ELdzN/Oxqk5eSHSe9/A1BJLxaolBJm9DQjq8i6+O2r6psqgsOHL0NxSwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFL5vMpe1G7GR/TQBxEMyKHVjJopiMB8GA1UdIwQY MBaAFF8rFWWhD9E0YOlfHp/gjCCIwssfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHlzVlphRVAwVFJnNlY4ZW4tQ01JSWpDeXg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8xYTJhMGYtOTQ4MS00YmUxLTg1ZjUt ZDc4ZDk1NDI2Y2FlLzEvdm04eWw3VWJzWkg5TkFIRVF6SW9kV01taW1JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS8xYTJhMGYtOTQ4MS00YmUxLTg1ZjUtZDc4ZDk1NDI2Y2Fl LzEvWHlzVlphRVAwVFJnNlY4ZW4tQ01JSWpDeXg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgymQABA MA0GCSqGSIb3DQEBCwUAA4IBAQAeg8o+0rFg8URUpYrdh71coX9EegrqNd5OWilT V5DyZUF/EbCSN8NcRsJOqRlktg9nyABXeOgspsy5zxklEyzG7LziKn3CRQrqjuRF 4xJApGkhASizpuBzWJfOgHyuCJfcnb8y+33rQVL2RMvA3CmoEDGasF1OIiojrl+y slQIpKTIbPDbkccsrFfSI0JFk0TKC314KR5gvBR+bNhcYHRUKt2z8EeRCo2KnEY+ SHkfytlhQpL+A9/HK6m2CJY7qkxP0/nTZ3pwPt5nBxftnRUeMku/0zX0APZj+fOV e3EcPAJUCff0EAAzprOI2hwj1Q4AqnZ6skLZdh9ni1I2Zqmt -----END CERTIFICATE-----Generated at Mon Feb 9 20:51:27 2026 by rpki-client