This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/c15ba7-d82f-4dda-903c-c14aac41a1c2/1/EJFSOtkmc_lWhhNXUUs4nruRB1Y.roa File: EJFSOtkmc_lWhhNXUUs4nruRB1Y.roa (raw, json) Hash identifier: mFAyY+U8ccrimuAI66qBOmKYa7OrPg3wRggOsTclU6Q= Subject key identifier: 10:91:52:3A:D9:26:73:F9:56:86:13:57:51:4B:38:9E:BB:91:07:56 Certificate issuer: /CN=bc0078a27f1003263c4c561b0250766f2f526e7d Certificate serial: 019B7D5ACDFFE4246B7BE39BAB4CFD7494FD Authority key identifier: BC:00:78:A2:7F:10:03:26:3C:4C:56:1B:02:50:76:6F:2F:52:6E:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vAB4on8QAyY8TFYbAlB2by9Sbn0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/c15ba7-d82f-4dda-903c-c14aac41a1c2/1/EJFSOtkmc_lWhhNXUUs4nruRB1Y.roa Signing time: Fri 02 Jan 2026 06:17:41 +0000 ROA not before: Fri 02 Jan 2026 06:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30058 IP address blocks: 2001:3680::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/c15ba7-d82f-4dda-903c-c14aac41a1c2/1/vAB4on8QAyY8TFYbAlB2by9Sbn0.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/c15ba7-d82f-4dda-903c-c14aac41a1c2/1/vAB4on8QAyY8TFYbAlB2by9Sbn0.mft rsync://rpki.ripe.net/repository/DEFAULT/vAB4on8QAyY8TFYbAlB2by9Sbn0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:cd:ff:e4:24:6b:7b:e3:9b:ab:4c:fd:74:94:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bc0078a27f1003263c4c561b0250766f2f526e7d Validity Not Before: Jan 2 06:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1091523ad92673f956861357514b389ebb910756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:9b:8e:6c:b9:0a:b0:be:28:30:d5:1a:0f:26: b5:99:03:04:4d:16:9f:77:93:7e:79:1b:e2:20:80: d7:21:9e:76:ef:9e:c3:b7:d4:1f:c1:5f:49:af:56: 6a:a2:82:1c:fe:1d:f4:88:01:67:3a:75:34:0a:28: 46:a1:87:e9:09:27:8b:f6:dc:95:98:cb:b2:6c:0a: b2:2e:11:e7:e3:55:6c:27:c9:c6:e2:4a:6a:8d:2c: 13:ad:03:31:e0:08:a6:db:f3:4f:bd:78:68:d4:59: 23:30:75:ee:66:a9:42:69:3e:34:c8:1d:a8:cc:0e: 32:69:0f:91:10:0e:ec:e6:d7:79:ff:c3:00:57:6a: d5:1f:9e:da:58:70:a0:9d:ee:4c:74:a9:c4:12:53: df:d5:28:5e:a6:92:f8:22:ab:83:ac:e3:34:2b:5a: fc:de:1f:5d:84:b3:21:53:78:94:12:04:f2:cc:62: 5b:01:5f:e6:42:33:4f:96:b0:55:34:8f:b3:3e:f0: a2:16:ea:58:68:b2:1b:38:f8:c0:ce:8b:9f:7e:99: ab:bf:03:11:05:17:f4:a8:ab:62:d3:42:52:4c:65: c4:63:f3:8c:11:20:64:2b:df:57:7a:3a:dd:1e:76: 21:dc:6d:3a:dc:8c:5d:fe:5e:09:b5:71:72:4d:f9: da:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:91:52:3A:D9:26:73:F9:56:86:13:57:51:4B:38:9E:BB:91:07:56 X509v3 Authority Key Identifier: keyid:BC:00:78:A2:7F:10:03:26:3C:4C:56:1B:02:50:76:6F:2F:52:6E:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vAB4on8QAyY8TFYbAlB2by9Sbn0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/c15ba7-d82f-4dda-903c-c14aac41a1c2/1/EJFSOtkmc_lWhhNXUUs4nruRB1Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/c15ba7-d82f-4dda-903c-c14aac41a1c2/1/vAB4on8QAyY8TFYbAlB2by9Sbn0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3680::/29 Signature Algorithm: sha256WithRSAEncryption 13:c0:1e:02:f3:87:a2:11:e2:26:12:0c:4d:f0:d1:c2:27:61: a2:8a:08:4a:71:f4:0b:f9:da:46:82:1e:5f:ff:bb:47:5a:3b: fe:65:33:cb:e4:13:04:a8:77:82:41:70:7b:cf:d6:7b:8d:97: 7f:5a:9a:1a:fb:07:c0:f2:aa:55:ef:88:66:9f:81:fd:94:e2: 33:76:47:1b:8a:1a:54:64:91:5c:d6:f5:2a:01:0b:b0:ef:36: 0a:ec:5c:45:0a:f6:8d:b9:30:58:c1:c1:e4:dc:c6:ff:17:17: 10:69:1c:e8:d1:6e:d1:7a:d3:65:13:d1:95:bb:f7:e9:d8:da: 27:b5:21:77:d6:0d:a8:17:60:d7:bd:f2:88:43:0d:42:a2:69: 40:3d:07:82:df:58:ee:02:1c:17:aa:1a:a2:64:71:43:bb:ce: d1:1a:57:b5:33:12:26:29:74:2b:5d:2f:35:ee:1e:bb:7c:f5: d0:ce:e0:26:76:38:d0:ee:ae:ac:82:c7:8d:36:ea:45:1c:c8: 41:0c:38:39:0b:38:9e:4e:91:d0:82:49:66:e3:e9:07:84:c2: df:44:57:50:be:8f:27:80:d1:1e:85:0d:c2:c9:96:75:8a:85: 20:5c:e9:31:bd:b8:26:df:b1:4f:91:df:62:9f:ec:5c:64:8f: 96:8d:c1:98 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt9Ws3/5CRre+Obq0z9dJT9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjMDA3OGEyN2YxMDAzMjYzYzRjNTYxYjAyNTA3NjZmMmY1 MjZlN2QwHhcNMjYwMTAyMDYxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMDkxNTIzYWQ5MjY3M2Y5NTY4NjEzNTc1MTRiMzg5ZWJiOTEwNzU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4puObLkKsL4oMNUaDya1mQMETRaf d5N+eRviIIDXIZ52757Dt9QfwV9Jr1ZqooIc/h30iAFnOnU0CihGoYfpCSeL9tyV mMuybAqyLhHn41VsJ8nG4kpqjSwTrQMx4Aim2/NPvXho1FkjMHXuZqlCaT40yB2o zA4yaQ+REA7s5td5/8MAV2rVH57aWHCgne5MdKnEElPf1SheppL4IquDrOM0K1r8 3h9dhLMhU3iUEgTyzGJbAV/mQjNPlrBVNI+zPvCiFupYaLIbOPjAzouffpmrvwMR BRf0qKti00JSTGXEY/OMESBkK99XejrdHnYh3G063Ixd/l4JtXFyTfnaewIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFBCRUjrZJnP5VoYTV1FLOJ67kQdWMB8GA1UdIwQY MBaAFLwAeKJ/EAMmPExWGwJQdm8vUm59MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdkFCNG9uOFFBeVk4VEZZYkFsQjJieTlTYm4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC9jMTViYTctZDgyZi00ZGRhLTkwM2Mt YzE0YWFjNDFhMWMyLzEvRUpGU090a21jX2xXaGhOWFVVczRucnVSQjFZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC9jMTViYTctZDgyZi00ZGRhLTkwM2MtYzE0YWFjNDFhMWMy LzEvdkFCNG9uOFFBeVk4VEZZYkFsQjJieTlTYm4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDIAE2gDAN BgkqhkiG9w0BAQsFAAOCAQEAE8AeAvOHohHiJhIMTfDRwidhoooISnH0C/naRoIe X/+7R1o7/mUzy+QTBKh3gkFwe8/We42Xf1qaGvsHwPKqVe+IZp+B/ZTiM3ZHG4oa VGSRXNb1KgELsO82CuxcRQr2jbkwWMHB5NzG/xcXEGkc6NFu0XrTZRPRlbv36dja J7Uhd9YNqBdg173yiEMNQqJpQD0Hgt9Y7gIcF6oaomRxQ7vO0RpXtTMSJil0K10v Ne4eu3z10M7gJnY40O6urILHjTbqRRzIQQw4OQs4nk6R0IJJZuPpB4TC30RXUL6P J4DRHoUNwsmWdYqFIFzpMb24Jt+xT5HfYp/sXGSPlo3BmA== -----END CERTIFICATE-----Generated at Tue Jan 20 12:50:13 2026 by rpki-client