This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/8PQCqasix5u_qcA9FcwMXbhvaMk.roa File: 8PQCqasix5u_qcA9FcwMXbhvaMk.roa (raw, json) Hash identifier: 8EEAfGyFcIQHiHz04bLnEYc5uoP12ajvS44E4X5x6Og= Subject key identifier: F0:F4:02:A9:AB:22:C7:9B:BF:A9:C0:3D:15:CC:0C:5D:B8:6F:68:C9 Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Certificate serial: 019B7BA5652333C807D704D03986B1B1AC33 Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/8PQCqasix5u_qcA9FcwMXbhvaMk.roa Signing time: Thu 01 Jan 2026 22:19:55 +0000 ROA not before: Thu 01 Jan 2026 22:19:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215577 IP address blocks: 2a07:e345:200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:65:23:33:c8:07:d7:04:d0:39:86:b1:b1:ac:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Validity Not Before: Jan 1 22:19:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f0f402a9ab22c79bbfa9c03d15cc0c5db86f68c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:18:b3:be:68:6e:9a:47:ed:39:88:4b:ca:cf: f3:f4:19:fd:cd:f2:a1:7e:d0:d7:3d:34:40:00:3b: b2:9f:2a:0e:65:57:4e:05:0a:29:d1:e6:61:c7:f7: 08:6b:d4:18:7d:cc:26:16:e2:d3:3d:65:3a:86:3b: 81:a7:4f:d6:03:18:44:b3:c4:62:ca:9a:26:9f:1c: 96:aa:7b:5c:4e:21:51:fc:d2:85:2c:54:3c:56:e7: 5c:8e:5d:c0:b1:ad:71:2b:b5:d7:9e:bc:8d:d8:e9: dd:f5:f3:80:d7:5d:46:75:65:63:92:3d:f8:b5:3a: f4:7c:dc:66:d1:d8:ce:0c:bd:81:07:27:61:c0:45: b3:85:21:db:d7:6a:e4:27:07:fd:9b:ae:8e:cc:08: 68:c5:b0:63:b7:18:18:6b:a6:3c:de:3b:dc:18:77: 0e:68:5a:d4:b7:94:1e:df:05:86:09:fc:aa:b2:1e: b8:fb:1b:76:ea:e7:8e:b7:00:83:ab:3a:a3:fe:41: d8:52:89:48:d2:31:5b:b4:70:59:0c:ce:1c:8e:49: a6:81:75:32:c9:d4:bc:3d:4b:88:1b:4f:46:d5:ed: 2d:96:3d:3b:f7:75:f2:ea:47:38:3b:4f:91:be:5d: 77:9c:86:90:63:38:11:26:26:74:d8:69:88:19:1f: 16:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F4:02:A9:AB:22:C7:9B:BF:A9:C0:3D:15:CC:0C:5D:B8:6F:68:C9 X509v3 Authority Key Identifier: keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/8PQCqasix5u_qcA9FcwMXbhvaMk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:e345:200::/48 Signature Algorithm: sha256WithRSAEncryption 89:7b:b8:4d:1e:31:60:6e:71:1c:43:e2:92:02:3e:cb:c5:4d: 38:29:b4:cd:76:e2:9e:00:b4:94:a3:56:ab:74:0c:e7:da:2c: 76:e8:f1:91:f6:de:db:c4:61:b4:10:5f:70:02:7e:90:cd:3b: 58:5f:e1:13:51:83:db:ba:c6:99:6e:fc:06:63:92:f6:74:6b: da:66:96:8d:80:96:94:24:c2:c1:64:ff:d0:05:da:41:62:e6: 4e:0f:7f:0b:72:49:7c:a9:fa:e9:d1:5a:7d:b7:c1:b9:46:7e: 29:43:9d:26:d8:fa:54:ab:39:c0:d8:4f:56:e6:3a:8a:54:70: 30:a9:e6:4d:5c:56:f8:87:af:6d:f2:83:c1:8a:b8:54:70:28: 25:62:52:75:c8:0d:37:61:47:f8:ba:32:ef:82:4b:4d:a9:b4: 2c:cd:bb:b5:9d:64:db:c7:ad:27:5b:e6:cb:c5:23:fc:23:e4: 7a:22:d6:2d:e9:08:c1:18:f5:05:d1:fc:0b:69:aa:4a:44:e5: 19:76:4b:d7:8f:53:b0:78:51:72:17:7b:20:21:63:32:af:6a: 57:92:44:f6:62:82:3a:9d:3d:85:20:3a:3d:b1:e5:c2:d8:90: 1c:9a:f4:1e:c2:89:81:b1:ae:7f:58:12:3c:bd:5a:28:ef:e4: 76:0e:c3:9d -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7pWUjM8gH1wTQOYaxsawzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl MGI5MjYwHhcNMjYwMTAxMjIxOTU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMGY0MDJhOWFiMjJjNzliYmZhOWMwM2QxNWNjMGM1ZGI4NmY2OGM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmBizvmhumkftOYhLys/z9Bn9zfKh ftDXPTRAADuynyoOZVdOBQop0eZhx/cIa9QYfcwmFuLTPWU6hjuBp0/WAxhEs8Ri ypomnxyWqntcTiFR/NKFLFQ8Vudcjl3Asa1xK7XXnryN2Ond9fOA111GdWVjkj34 tTr0fNxm0djODL2BBydhwEWzhSHb12rkJwf9m66OzAhoxbBjtxgYa6Y83jvcGHcO aFrUt5Qe3wWGCfyqsh64+xt26ueOtwCDqzqj/kHYUolI0jFbtHBZDM4cjkmmgXUy ydS8PUuIG09G1e0tlj0793Xy6kc4O0+Rvl13nIaQYzgRJiZ02GmIGR8WMQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFPD0AqmrIsebv6nAPRXMDF24b2jJMB8GA1UdIwQY MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt NzM4NTZhZjQ5ZjNlLzEvOFBRQ3Fhc2l4NXVfcWNBOUZjd01YYmh2YU1rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgfjRQIA MA0GCSqGSIb3DQEBCwUAA4IBAQCJe7hNHjFgbnEcQ+KSAj7LxU04KbTNduKeALSU o1ardAzn2ix26PGR9t7bxGG0EF9wAn6QzTtYX+ETUYPbusaZbvwGY5L2dGvaZpaN gJaUJMLBZP/QBdpBYuZOD38Lckl8qfrp0Vp9t8G5Rn4pQ50m2PpUqznA2E9W5jqK VHAwqeZNXFb4h69t8oPBirhUcCglYlJ1yA03YUf4ujLvgktNqbQszbu1nWTbx60n W+bLxSP8I+R6ItYt6QjBGPUF0fwLaapKROUZdkvXj1OweFFyF3sgIWMyr2pXkkT2 YoI6nT2FIDo9seXC2JAcmvQewomBsa5/WBI8vVoo7+R2DsOd -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:08 2026 by rpki-client