This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/3feb15-6834-43e2-b6e7-04d74f368698/1/6oMyL4Y_2Xcvd0ThcfssP_mVE20.roa File: 6oMyL4Y_2Xcvd0ThcfssP_mVE20.roa (raw, json) Hash identifier: JOsCREV0c9arO+BxSgqWMu5cq/6/bc73ElaebweULrs= Subject key identifier: EA:83:32:2F:86:3F:D9:77:2F:77:44:E1:71:FB:2C:3F:F9:95:13:6D Certificate issuer: /CN=91c10bfde5813ab47c38c5c1904ec26b32c2a095 Certificate serial: 019AA322C174CB5AD85E9C81DF1F47FC2948 Authority key identifier: 91:C1:0B:FD:E5:81:3A:B4:7C:38:C5:C1:90:4E:C2:6B:32:C2:A0:95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcEL_eWBOrR8OMXBkE7CazLCoJU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/3feb15-6834-43e2-b6e7-04d74f368698/1/6oMyL4Y_2Xcvd0ThcfssP_mVE20.roa Signing time: Thu 20 Nov 2025 21:19:15 +0000 ROA not before: Thu 20 Nov 2025 21:19:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 2a00:18b0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/3feb15-6834-43e2-b6e7-04d74f368698/1/kcEL_eWBOrR8OMXBkE7CazLCoJU.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/3feb15-6834-43e2-b6e7-04d74f368698/1/kcEL_eWBOrR8OMXBkE7CazLCoJU.mft rsync://rpki.ripe.net/repository/DEFAULT/kcEL_eWBOrR8OMXBkE7CazLCoJU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a3:22:c1:74:cb:5a:d8:5e:9c:81:df:1f:47:fc:29:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91c10bfde5813ab47c38c5c1904ec26b32c2a095 Validity Not Before: Nov 20 21:19:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=ea83322f863fd9772f7744e171fb2c3ff995136d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9a:c7:f1:19:e2:5f:a8:75:5d:a8:e8:92:8f: 37:89:66:41:94:62:d0:fc:c1:5a:47:c5:47:96:92: 91:93:1e:6a:7d:b4:8d:1f:f5:1c:1a:47:a0:67:4f: 69:24:ed:c8:d6:ae:b0:31:19:32:89:09:7c:cf:ed: 55:e2:7e:1f:26:22:1a:57:64:00:22:c1:2c:20:57: 6b:19:d5:82:ec:d5:32:11:e2:21:6b:f0:ac:23:7b: d3:99:46:e9:0c:4a:39:97:95:83:12:5c:93:d5:3d: ae:21:d9:3c:9d:1a:14:97:be:d3:1c:ca:a2:c3:46: 1d:a5:d8:b4:89:5f:19:da:74:7f:b2:74:9a:6a:eb: 90:b9:b6:a0:cb:5c:50:5d:8a:c1:5b:a1:a4:82:c0: 36:e9:f2:4d:35:e9:a8:4d:01:78:7e:d1:83:f3:46: 7d:61:df:3b:6d:da:b3:5d:d1:62:19:d2:8f:54:29: 80:e4:23:15:42:1d:e7:af:ca:81:7d:8f:db:ef:13: c9:4c:09:b2:b1:34:9f:ee:34:76:fe:5d:7e:ba:ed: 13:2f:a9:71:31:71:ba:a2:1b:e5:06:f8:f0:a9:7c: ac:3f:ef:3e:db:94:b4:67:55:1f:7b:bb:cf:a8:91: 93:a2:a5:be:42:dd:b9:82:7e:f4:e3:70:42:68:53: 76:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:83:32:2F:86:3F:D9:77:2F:77:44:E1:71:FB:2C:3F:F9:95:13:6D X509v3 Authority Key Identifier: keyid:91:C1:0B:FD:E5:81:3A:B4:7C:38:C5:C1:90:4E:C2:6B:32:C2:A0:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcEL_eWBOrR8OMXBkE7CazLCoJU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3feb15-6834-43e2-b6e7-04d74f368698/1/6oMyL4Y_2Xcvd0ThcfssP_mVE20.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3feb15-6834-43e2-b6e7-04d74f368698/1/kcEL_eWBOrR8OMXBkE7CazLCoJU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:18b0::/29 Signature Algorithm: sha256WithRSAEncryption 4a:02:19:36:11:56:1a:1e:50:82:85:91:76:20:1f:3e:6e:53: 58:e5:14:e6:c1:53:16:c5:2c:27:6a:17:e1:2a:0f:d5:49:24: bc:9f:c8:5e:53:fd:78:ea:f2:08:e2:7d:a4:60:67:5d:1a:ae: 36:40:1a:d3:c2:25:6c:16:78:4a:4d:ed:5a:ca:b2:39:e8:74: e6:c5:4d:9d:e0:8c:13:f8:d9:93:3a:1e:43:3c:58:02:44:ff: d1:88:9a:b1:73:00:ce:be:fb:5e:5a:17:58:9f:51:77:a1:83: d2:a5:cd:e6:96:4d:19:dd:17:99:52:95:30:c8:95:50:ff:af: 48:08:03:dc:dc:5f:80:5c:fe:07:40:c6:33:86:be:0b:ba:2a: 04:18:eb:5a:f0:16:e1:74:c8:73:0b:5d:1d:1c:b4:c4:ba:42: 25:29:de:1b:ae:f2:d9:75:7c:15:09:9d:9e:5b:7a:4f:ed:2f: e5:2c:44:7f:bc:be:9f:ce:6b:50:5d:63:51:ab:15:20:f1:ea: 04:33:cf:ba:3e:99:18:60:cb:d9:e4:96:8e:89:ab:06:c9:64: c0:eb:fd:27:8b:77:96:f7:c4:ba:cb:96:6c:53:f6:88:a6:f2: 31:06:96:a1:2b:9f:bc:e2:bc:c8:66:d4:c6:48:c3:de:f1:80: e8:fc:13:a1 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZqjIsF0y1rYXpyB3x9H/ClIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxYzEwYmZkZTU4MTNhYjQ3YzM4YzVjMTkwNGVjMjZiMzJj MmEwOTUwHhcNMjUxMTIwMjExOTE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYTgzMzIyZjg2M2ZkOTc3MmY3NzQ0ZTE3MWZiMmMzZmY5OTUxMzZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJrH8RniX6h1Xajoko83iWZBlGLQ /MFaR8VHlpKRkx5qfbSNH/UcGkegZ09pJO3I1q6wMRkyiQl8z+1V4n4fJiIaV2QA IsEsIFdrGdWC7NUyEeIha/CsI3vTmUbpDEo5l5WDElyT1T2uIdk8nRoUl77THMqi w0Ydpdi0iV8Z2nR/snSaauuQubagy1xQXYrBW6GkgsA26fJNNemoTQF4ftGD80Z9 Yd87bdqzXdFiGdKPVCmA5CMVQh3nr8qBfY/b7xPJTAmysTSf7jR2/l1+uu0TL6lx MXG6ohvlBvjwqXysP+8+25S0Z1Ufe7vPqJGToqW+Qt25gn7043BCaFN2vwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFOqDMi+GP9l3L3dE4XH7LD/5lRNtMB8GA1UdIwQY MBaAFJHBC/3lgTq0fDjFwZBOwmsywqCVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2NFTF9lV0JPclI4T01YQmtFN0NhekxDb0pVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zZmViMTUtNjgzNC00M2UyLWI2ZTct MDRkNzRmMzY4Njk4LzEvNm9NeUw0WV8yWGN2ZDBUaGNmc3NQX21WRTIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zZmViMTUtNjgzNC00M2UyLWI2ZTctMDRkNzRmMzY4Njk4 LzEva2NFTF9lV0JPclI4T01YQmtFN0NhekxDb0pVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgAYsDAN BgkqhkiG9w0BAQsFAAOCAQEASgIZNhFWGh5QgoWRdiAfPm5TWOUU5sFTFsUsJ2oX 4SoP1UkkvJ/IXlP9eOryCOJ9pGBnXRquNkAa08IlbBZ4Sk3tWsqyOeh05sVNneCM E/jZkzoeQzxYAkT/0YiasXMAzr77XloXWJ9Rd6GD0qXN5pZNGd0XmVKVMMiVUP+v SAgD3NxfgFz+B0DGM4a+C7oqBBjrWvAW4XTIcwtdHRy0xLpCJSneG67y2XV8FQmd nlt6T+0v5SxEf7y+n85rUF1jUasVIPHqBDPPuj6ZGGDL2eSWjomrBslkwOv9J4t3 lvfEusuWbFP2iKbyMQaWoSufvOK8yGbUxkjD3vGA6PwToQ== -----END CERTIFICATE-----Generated at Sat Nov 22 21:34:46 2025 by rpki-client