This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/jomDDpmvUyYKeeu7mg2vhVBOATA.roa File: jomDDpmvUyYKeeu7mg2vhVBOATA.roa (raw, json) Hash identifier: thUrAXY8EF7ulWKF9tMUoGhY15aZU2XPo2atxmqqMJE= Subject key identifier: 8E:89:83:0E:99:AF:53:26:0A:79:EB:BB:9A:0D:AF:85:50:4E:01:30 Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a Certificate serial: 019B7BA40D3FCB6519FFA865CC314F17E0AE Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/jomDDpmvUyYKeeu7mg2vhVBOATA.roa Signing time: Thu 01 Jan 2026 22:18:27 +0000 ROA not before: Thu 01 Jan 2026 22:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203273 IP address blocks: 2a0e:d606::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.mft rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:0d:3f:cb:65:19:ff:a8:65:cc:31:4f:17:e0:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a Validity Not Before: Jan 1 22:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8e89830e99af53260a79ebbb9a0daf85504e0130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:2d:bb:c0:22:a1:1e:8b:ee:7c:4f:cc:4b:14: d3:34:14:3f:6f:59:42:c7:b9:c0:6b:85:d9:c8:27: dd:56:c0:f3:c4:f1:d3:62:da:ea:32:2f:73:62:30: 11:25:23:45:9c:7c:b8:92:6d:99:82:80:43:32:0b: 9d:48:ad:a9:6c:52:47:12:0e:4e:4b:e3:55:1d:fc: d6:69:68:a2:8e:e3:02:c8:51:18:54:7c:db:70:70: ed:47:28:02:0c:f1:62:86:cf:f7:06:7d:45:ee:da: 98:5d:32:0b:7e:22:63:72:15:ae:df:cc:c8:d1:5b: 27:20:f0:c3:56:3c:e4:bd:e8:ee:05:de:20:d5:06: 22:e2:ba:77:ee:b1:b3:e7:d3:9b:ef:ac:bf:a6:3e: 12:17:f0:02:be:21:69:25:c9:1f:95:38:2b:38:11: 1c:6e:68:47:11:30:72:de:e1:d1:fc:e2:c7:58:0d: 78:f7:4a:ee:93:45:60:d7:0b:d2:bc:aa:0d:80:67: c1:32:8b:d1:b4:31:71:37:97:c8:b8:39:42:cc:ac: 1a:50:d1:67:78:8f:40:4c:f5:64:70:76:49:97:a1: 33:69:e2:ca:22:e5:aa:f9:3e:e0:26:fc:73:af:af: 12:b8:5c:fa:5d:f3:32:c7:3c:d8:ce:01:59:47:6f: dc:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:89:83:0E:99:AF:53:26:0A:79:EB:BB:9A:0D:AF:85:50:4E:01:30 X509v3 Authority Key Identifier: keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/jomDDpmvUyYKeeu7mg2vhVBOATA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:d606::/48 Signature Algorithm: sha256WithRSAEncryption 80:ff:07:25:27:c3:7a:19:85:74:4d:c2:80:22:e1:f4:1a:eb: e6:72:0b:44:01:5d:a7:dd:26:0e:05:9b:71:d8:8c:9f:b4:63: 30:f6:63:61:3f:f7:2a:59:86:b9:26:9c:41:33:0e:e9:f9:dd: c8:73:63:94:5c:ac:09:08:03:7a:95:c5:95:ad:6a:67:f0:18: c4:c7:6f:7b:80:8b:f2:aa:20:d1:78:32:e2:89:e1:36:03:18: 1e:be:96:83:24:ec:99:27:79:44:8e:48:1d:d9:46:9b:65:b4: e1:2d:e3:54:c3:60:c7:2a:d3:87:10:41:d3:1d:8d:08:ec:2e: a5:22:93:a4:d2:9e:7b:b9:03:4c:f4:7f:f2:66:3e:4f:59:54: 8a:6d:c7:a2:48:c3:7d:83:9c:68:6e:9b:c3:d2:c6:ab:5b:b8: 7e:27:0b:ca:29:61:ad:f4:62:65:6c:c8:7f:76:56:6c:55:b3: 1a:80:5c:2c:43:37:45:bb:5e:76:6c:4c:43:87:bd:e6:9f:bc: a9:9f:d8:eb:20:af:b4:10:a6:75:9b:df:af:5c:86:90:26:90: b3:a8:73:8a:3e:55:47:04:4b:ed:73:da:06:03:21:72:f1:ed: c5:fd:45:28:7d:f7:e7:95:c3:ac:96:eb:a4:d8:3a:44:59:99: 30:15:73:ee -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7pA0/y2UZ/6hlzDFPF+CuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NzA5MGMyNzVjMzRjMDVjMzA2ZjNiMzYwNjM4OTNhMGQ3 Mjc4MmEwHhcNMjYwMTAxMjIxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZTg5ODMwZTk5YWY1MzI2MGE3OWViYmI5YTBkYWY4NTUwNGUwMTMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApC27wCKhHovufE/MSxTTNBQ/b1lC x7nAa4XZyCfdVsDzxPHTYtrqMi9zYjARJSNFnHy4km2ZgoBDMgudSK2pbFJHEg5O S+NVHfzWaWiijuMCyFEYVHzbcHDtRygCDPFihs/3Bn1F7tqYXTILfiJjchWu38zI 0VsnIPDDVjzkvejuBd4g1QYi4rp37rGz59Ob76y/pj4SF/ACviFpJckflTgrOBEc bmhHETBy3uHR/OLHWA1490ruk0Vg1wvSvKoNgGfBMovRtDFxN5fIuDlCzKwaUNFn eI9ATPVkcHZJl6EzaeLKIuWq+T7gJvxzr68SuFz6XfMyxzzYzgFZR2/c3wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFI6Jgw6Zr1MmCnnru5oNr4VQTgEwMB8GA1UdIwQY MBaAFKhwkMJ1w0wFwwbzs2BjiToNcngqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEt YjU3YTM2ZjJhZmNkLzEvam9tRERwbXZVeVlLZWV1N21nMnZoVkJPQVRBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEtYjU3YTM2ZjJhZmNk LzEvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg7WBgAA MA0GCSqGSIb3DQEBCwUAA4IBAQCA/wclJ8N6GYV0TcKAIuH0GuvmcgtEAV2n3SYO BZtx2IyftGMw9mNhP/cqWYa5JpxBMw7p+d3Ic2OUXKwJCAN6lcWVrWpn8BjEx297 gIvyqiDReDLiieE2AxgevpaDJOyZJ3lEjkgd2UabZbThLeNUw2DHKtOHEEHTHY0I 7C6lIpOk0p57uQNM9H/yZj5PWVSKbceiSMN9g5xobpvD0sarW7h+JwvKKWGt9GJl bMh/dlZsVbMagFwsQzdFu152bExDh73mn7ypn9jrIK+0EKZ1m9+vXIaQJpCzqHOK PlVHBEvtc9oGAyFy8e3F/UUofffnlcOsluuk2DpEWZkwFXPu -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:14 2026 by rpki-client