This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/2d35a9-e802-415c-ba56-7b7b5d4f58fb/1/o3gRhnoxqQ88vLsJ907e8FUTmqA.roa File: o3gRhnoxqQ88vLsJ907e8FUTmqA.roa (raw, json) Hash identifier: UrtwMipJPazDk1m5kuyjLEt8pZZiKIgsZ4p4MqxkIRQ= Subject key identifier: A3:78:11:86:7A:31:A9:0F:3C:BC:BB:09:F7:4E:DE:F0:55:13:9A:A0 Certificate issuer: /CN=5729626fa91313d56e4d7645572ff58061fd4f8c Certificate serial: 019B7E37DA00F3780E235C87DA1F050E2C64 Authority key identifier: 57:29:62:6F:A9:13:13:D5:6E:4D:76:45:57:2F:F5:80:61:FD:4F:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vylib6kTE9VuTXZFVy_1gGH9T4w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/2d35a9-e802-415c-ba56-7b7b5d4f58fb/1/o3gRhnoxqQ88vLsJ907e8FUTmqA.roa Signing time: Fri 02 Jan 2026 10:19:07 +0000 ROA not before: Fri 02 Jan 2026 10:19:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24956 IP address blocks: 2001:67c:1978::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/2d35a9-e802-415c-ba56-7b7b5d4f58fb/1/Vylib6kTE9VuTXZFVy_1gGH9T4w.crl rsync://rpki.ripe.net/repository/DEFAULT/60/2d35a9-e802-415c-ba56-7b7b5d4f58fb/1/Vylib6kTE9VuTXZFVy_1gGH9T4w.mft rsync://rpki.ripe.net/repository/DEFAULT/Vylib6kTE9VuTXZFVy_1gGH9T4w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:da:00:f3:78:0e:23:5c:87:da:1f:05:0e:2c:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5729626fa91313d56e4d7645572ff58061fd4f8c Validity Not Before: Jan 2 10:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a37811867a31a90f3cbcbb09f74edef055139aa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:d3:fc:b9:bf:ed:6a:da:11:b8:95:f4:c6:7c: ff:bf:39:55:cd:84:92:65:d7:5c:9b:e0:ef:7f:c1: ad:85:a5:73:c1:3a:34:e7:3c:09:56:38:ae:ec:e6: 3d:d6:8b:7a:2c:94:6d:d3:2a:dd:ab:31:9c:1c:b0: c1:13:72:00:b4:3f:c9:88:de:3b:9c:3d:7b:6f:63: fa:67:59:60:c4:f7:b2:8a:a8:8b:89:d2:06:bc:60: 69:bf:a4:f2:10:ca:f6:7d:e0:53:8c:88:fb:4e:ae: 6c:fe:35:70:46:20:84:7a:2b:f4:27:11:e6:9c:f6: cd:6e:7e:d1:28:37:18:fe:fc:59:36:38:2e:30:4d: 30:b3:d4:b6:d0:15:a0:10:af:08:43:c0:f8:ce:0d: 11:28:19:19:32:f6:6f:d0:b9:ab:7c:ab:da:af:6d: 90:72:bd:db:b7:8e:23:d9:9a:f0:f0:b7:19:e8:aa: 12:af:47:2e:3f:b2:13:5b:fe:cd:71:bf:fe:4e:ec: 2b:39:fc:8a:98:b5:ec:ca:c5:43:e5:76:9c:7f:b0: 0c:96:b7:b4:16:2a:ad:e7:c6:a6:ea:b7:d4:63:d4: fe:a4:0d:90:67:34:36:0f:b6:cb:6e:e6:2a:aa:f7: dc:9a:e8:b6:77:1c:ea:ef:f0:f5:63:f8:8c:83:c5: 85:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:78:11:86:7A:31:A9:0F:3C:BC:BB:09:F7:4E:DE:F0:55:13:9A:A0 X509v3 Authority Key Identifier: keyid:57:29:62:6F:A9:13:13:D5:6E:4D:76:45:57:2F:F5:80:61:FD:4F:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vylib6kTE9VuTXZFVy_1gGH9T4w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2d35a9-e802-415c-ba56-7b7b5d4f58fb/1/o3gRhnoxqQ88vLsJ907e8FUTmqA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2d35a9-e802-415c-ba56-7b7b5d4f58fb/1/Vylib6kTE9VuTXZFVy_1gGH9T4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:1978::/48 Signature Algorithm: sha256WithRSAEncryption b2:72:fa:a0:14:ac:ed:76:12:a9:5a:9e:d0:ba:e6:17:40:ff: 23:76:b6:a1:da:cf:20:e1:f2:c8:eb:c4:b5:65:60:95:57:f8: 5f:64:d1:e0:10:51:3f:a0:a1:d3:ab:66:9b:b8:c2:a7:ce:f3: 2b:cd:da:c9:c6:13:77:bc:c9:6a:8e:d4:35:5e:88:fb:b2:db: e8:55:2a:d3:04:56:d4:ff:a7:b3:db:5b:cc:c3:be:0d:0c:eb: 11:2e:0a:7b:57:fe:2d:0f:30:0a:0f:b9:76:d5:da:f7:f4:ad: b0:8a:19:59:2c:5e:4b:90:2f:20:8e:37:8e:b2:ab:c7:cc:53: e6:d6:ac:25:55:2e:b5:37:5a:c1:96:b3:8a:65:f1:8c:3e:55: b2:2d:41:8a:7e:8c:2b:a5:1a:93:48:b1:bb:82:ae:0a:a6:00: f5:02:06:19:c8:e6:a6:19:f1:02:42:4d:49:f5:ae:51:ba:35: 35:11:78:25:02:9c:fd:ba:23:29:dc:1b:2d:e1:94:aa:a4:13: 72:31:fb:a1:91:c7:0b:7a:24:96:2b:80:b7:4a:1e:89:61:4b: 76:52:83:83:b3:82:e9:07:d1:a5:b2:73:e4:9c:b5:41:4b:83: b2:d3:2e:3d:26:13:0a:4a:e5:71:9d:fb:30:63:59:b5:8a:38: 96:e3:a5:46 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+N9oA83gOI1yH2h8FDixkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3Mjk2MjZmYTkxMzEzZDU2ZTRkNzY0NTU3MmZmNTgwNjFm ZDRmOGMwHhcNMjYwMTAyMTAxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMzc4MTE4NjdhMzFhOTBmM2NiY2JiMDlmNzRlZGVmMDU1MTM5YWEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5tP8ub/tatoRuJX0xnz/vzlVzYSS Zddcm+Dvf8GthaVzwTo05zwJVjiu7OY91ot6LJRt0yrdqzGcHLDBE3IAtD/JiN47 nD17b2P6Z1lgxPeyiqiLidIGvGBpv6TyEMr2feBTjIj7Tq5s/jVwRiCEeiv0JxHm nPbNbn7RKDcY/vxZNjguME0ws9S20BWgEK8IQ8D4zg0RKBkZMvZv0LmrfKvar22Q cr3bt44j2Zrw8LcZ6KoSr0cuP7ITW/7Ncb/+TuwrOfyKmLXsysVD5Xacf7AMlre0 Fiqt58am6rfUY9T+pA2QZzQ2D7bLbuYqqvfcmui2dxzq7/D1Y/iMg8WFXQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKN4EYZ6MakPPLy7CfdO3vBVE5qgMB8GA1UdIwQY MBaAFFcpYm+pExPVbk12RVcv9YBh/U+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnlsaWI2a1RFOVZ1VFhaRlZ5XzFnR0g5VDR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8yZDM1YTktZTgwMi00MTVjLWJhNTYt N2I3YjVkNGY1OGZiLzEvbzNnUmhub3hxUTg4dkxzSjkwN2U4RlVUbXFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC8yZDM1YTktZTgwMi00MTVjLWJhNTYtN2I3YjVkNGY1OGZi LzEvVnlsaWI2a1RFOVZ1VFhaRlZ5XzFnR0g5VDR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBl4 MA0GCSqGSIb3DQEBCwUAA4IBAQCycvqgFKztdhKpWp7QuuYXQP8jdrah2s8g4fLI 68S1ZWCVV/hfZNHgEFE/oKHTq2abuMKnzvMrzdrJxhN3vMlqjtQ1Xoj7stvoVSrT BFbU/6ez21vMw74NDOsRLgp7V/4tDzAKD7l21dr39K2wihlZLF5LkC8gjjeOsqvH zFPm1qwlVS61N1rBlrOKZfGMPlWyLUGKfowrpRqTSLG7gq4KpgD1AgYZyOamGfEC Qk1J9a5RujU1EXglApz9uiMp3Bst4ZSqpBNyMfuhkccLeiSWK4C3Sh6JYUt2UoOD s4LpB9GlsnPknLVBS4Oy0y49JhMKSuVxnfswY1m1ijiW46VG -----END CERTIFICATE-----Generated at Mon Feb 9 20:45:44 2026 by rpki-client