This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/s4rhjerfhsq49RDwrY2imc6pigs.roa File: s4rhjerfhsq49RDwrY2imc6pigs.roa (raw, json) Hash identifier: ohkoid0GtCL3tCMVcP87iu5zXvmVKSxAuJuHsjuZBRY= Subject key identifier: B3:8A:E1:8D:EA:DF:86:CA:B8:F5:10:F0:AD:8D:A2:99:CE:A9:8A:0B Certificate issuer: /CN=259490c5dbcfbf590da33bfbd37970a0763469c9 Certificate serial: 019B7C110BD914DD6ADA56B6BB00F12687F8 Authority key identifier: 25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/s4rhjerfhsq49RDwrY2imc6pigs.roa Signing time: Fri 02 Jan 2026 00:17:30 +0000 ROA not before: Fri 02 Jan 2026 00:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7018 IP address blocks: 2a0e:ec01::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/JZSQxdvPv1kNozv703lwoHY0ack.crl rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/JZSQxdvPv1kNozv703lwoHY0ack.mft rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 03:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:0b:d9:14:dd:6a:da:56:b6:bb:00:f1:26:87:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=259490c5dbcfbf590da33bfbd37970a0763469c9 Validity Not Before: Jan 2 00:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b38ae18deadf86cab8f510f0ad8da299cea98a0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:54:02:36:df:5c:c8:94:2f:0c:1e:c5:0b:f2: 55:75:49:13:b1:59:6a:8f:ab:ea:2a:ec:8d:3c:d1: 0e:14:cd:5d:48:3f:05:03:5c:4d:81:77:34:72:21: b0:e6:57:7d:c4:55:2a:cf:df:9b:c2:44:55:5b:01: 9d:0c:58:61:9a:d3:68:6f:24:1f:47:05:7a:cc:dd: 2d:85:ff:72:5c:fe:37:cb:30:f6:fa:d1:0d:74:da: 52:e6:dd:33:53:df:68:d7:f6:9d:8f:2b:99:d5:c1: ad:2e:a2:de:55:78:8c:1b:6a:9d:d8:80:f2:15:5c: 28:d9:49:61:37:cd:6b:96:2f:e7:2d:48:6f:e8:85: e6:58:81:f8:ab:56:9d:36:35:c2:10:2c:cb:6d:3f: 52:46:34:13:8e:4c:c6:be:2b:e1:04:c2:6a:f3:2f: 2d:c5:1b:be:40:6d:42:70:24:be:c4:03:0b:b5:2b: 75:99:9f:d1:e9:97:88:18:28:16:ec:4a:1b:2e:6f: 58:6f:81:7f:0e:61:dd:d8:6e:4e:12:ec:d9:fd:ab: b7:65:3a:cd:84:2f:a4:62:87:d3:bf:7f:59:09:f6: 26:8a:59:e9:26:44:21:b3:85:10:96:8e:35:44:87: 2a:f5:f9:27:5f:73:01:7d:ca:8d:d4:8e:43:af:cf: ae:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:8A:E1:8D:EA:DF:86:CA:B8:F5:10:F0:AD:8D:A2:99:CE:A9:8A:0B X509v3 Authority Key Identifier: keyid:25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/s4rhjerfhsq49RDwrY2imc6pigs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/JZSQxdvPv1kNozv703lwoHY0ack.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:ec01::/32 Signature Algorithm: sha256WithRSAEncryption 83:42:31:d1:c5:c5:37:fc:1a:2a:f3:ec:7b:91:bf:24:f9:44: e3:51:45:5d:0c:af:b3:27:32:6c:16:f4:66:6d:64:71:96:0a: 96:f6:cb:b5:77:ec:9a:d3:0c:9d:c2:94:9c:66:c9:66:44:08: 21:4f:af:bc:37:d7:36:79:ce:06:b1:70:73:ea:7d:cc:1a:3c: b4:2c:a5:9b:f5:7c:c7:c0:ab:73:22:6a:88:68:2d:81:91:df: eb:3e:bb:48:25:2f:51:14:87:f2:d5:a9:3b:0f:fa:b7:d5:8b: 7f:8f:d0:06:c4:ab:3f:06:75:60:6c:c4:ee:cb:54:80:39:a7: 69:1b:36:74:b1:6a:41:1a:16:c2:66:bb:db:b6:06:4a:28:df: 5b:bf:cb:c6:8e:c6:d7:94:c4:75:94:2e:b5:63:fd:47:b1:a6: 6f:0d:67:78:61:e3:33:47:4d:c4:a2:12:6b:71:11:bd:ee:8d: 80:c0:b8:a2:91:1d:d0:db:29:ab:66:cc:43:dc:ed:7c:1c:1a: 9a:33:9f:57:ba:5c:93:3b:c0:b4:9e:c6:92:61:24:c5:9d:29: f0:4b:89:9a:f1:fb:7d:71:64:27:30:59:f0:d7:3f:30:26:79: f7:fc:9e:17:b8:bf:d6:c1:33:db:e6:4e:62:b9:63:39:26:75: e4:0f:75:97 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt8EQvZFN1q2la2uwDxJof4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1OTQ5MGM1ZGJjZmJmNTkwZGEzM2JmYmQzNzk3MGEwNzYz NDY5YzkwHhcNMjYwMTAyMDAxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMzhhZTE4ZGVhZGY4NmNhYjhmNTEwZjBhZDhkYTI5OWNlYTk4YTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFQCNt9cyJQvDB7FC/JVdUkTsVlq j6vqKuyNPNEOFM1dSD8FA1xNgXc0ciGw5ld9xFUqz9+bwkRVWwGdDFhhmtNobyQf RwV6zN0thf9yXP43yzD2+tENdNpS5t0zU99o1/adjyuZ1cGtLqLeVXiMG2qd2IDy FVwo2UlhN81rli/nLUhv6IXmWIH4q1adNjXCECzLbT9SRjQTjkzGvivhBMJq8y8t xRu+QG1CcCS+xAMLtSt1mZ/R6ZeIGCgW7EobLm9Yb4F/DmHd2G5OEuzZ/au3ZTrN hC+kYofTv39ZCfYmilnpJkQhs4UQlo41RIcq9fknX3MBfcqN1I5Dr8+uMwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFLOK4Y3q34bKuPUQ8K2NopnOqYoLMB8GA1UdIwQY MBaAFCWUkMXbz79ZDaM7+9N5cKB2NGnJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlpTUXhkdlB2MWtOb3p2NzAzbHdvSFkwYWNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9lZGFkMmQtOTVjYy00OWQwLTg2ZjQt M2NlM2NmOGIxYzQ5LzEvczRyaGplcmZoc3E0OVJEd3JZMmltYzZwaWdzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9lZGFkMmQtOTVjYy00OWQwLTg2ZjQtM2NlM2NmOGIxYzQ5 LzEvSlpTUXhkdlB2MWtOb3p2NzAzbHdvSFkwYWNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg7sATAN BgkqhkiG9w0BAQsFAAOCAQEAg0Ix0cXFN/waKvPse5G/JPlE41FFXQyvsycybBb0 Zm1kcZYKlvbLtXfsmtMMncKUnGbJZkQIIU+vvDfXNnnOBrFwc+p9zBo8tCylm/V8 x8CrcyJqiGgtgZHf6z67SCUvURSH8tWpOw/6t9WLf4/QBsSrPwZ1YGzE7stUgDmn aRs2dLFqQRoWwma727YGSijfW7/Lxo7G15TEdZQutWP9R7Gmbw1neGHjM0dNxKIS a3ERve6NgMC4opEd0Nspq2bMQ9ztfBwamjOfV7pckzvAtJ7GkmEkxZ0p8EuJmvH7 fXFkJzBZ8Nc/MCZ59/yeF7i/1sEz2+ZOYrljOSZ15A91lw== -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:14 2026 by rpki-client