This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/rOXSxFVdlGz4p5dzWag5xGv4b-s.roa File: rOXSxFVdlGz4p5dzWag5xGv4b-s.roa (raw, json) Hash identifier: PVmZOOJojEPRoDhr9z8ZMA/VoX6FKNqWidv30DvvQcA= Subject key identifier: AC:E5:D2:C4:55:5D:94:6C:F8:A7:97:73:59:A8:39:C4:6B:F8:6F:EB Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071 Certificate serial: 019B7E38A6219585EFA82E7F1AB8E4801515 Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/rOXSxFVdlGz4p5dzWag5xGv4b-s.roa Signing time: Fri 02 Jan 2026 10:20:00 +0000 ROA not before: Fri 02 Jan 2026 10:20:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208973 IP address blocks: 2a07:3500:10c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.mft rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 19:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:a6:21:95:85:ef:a8:2e:7f:1a:b8:e4:80:15:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071 Validity Not Before: Jan 2 10:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ace5d2c4555d946cf8a7977359a839c46bf86feb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ec:5d:56:74:c9:d0:39:e5:dc:70:02:9b:91: 62:39:42:7e:02:45:e0:98:6d:73:66:49:fc:28:a3: f2:eb:b2:e9:28:44:e4:7e:76:fd:05:71:06:8b:30: e8:54:8d:b5:48:62:3a:fe:3d:dc:17:e4:fe:1d:54: 34:09:1d:dd:90:fa:3b:8a:03:4c:47:88:b6:22:05: f4:c7:20:c5:8a:40:0d:1f:35:05:1d:99:14:d3:33: 34:83:47:a3:c8:04:bd:03:b9:38:71:c6:10:8c:8a: 70:d1:7d:46:bd:4e:f9:c7:bb:85:ef:d3:83:54:72: 91:c8:a1:03:cd:fc:04:b6:4e:c2:f1:d0:b7:d1:6f: fc:5e:7c:65:c1:16:1f:4d:8c:7d:29:42:12:06:6c: 75:3c:42:a7:0b:b7:66:00:06:a9:61:b3:0a:e8:d0: b0:4d:08:ca:49:5d:18:d4:75:6a:6d:4c:61:d9:5d: 01:34:6a:66:76:be:92:ea:df:27:5a:d2:3f:89:19: ad:63:e2:a4:e8:48:ce:84:69:60:d1:89:fa:2b:01: 10:11:45:12:91:93:ef:9e:14:9d:94:8c:84:5a:05: 34:d4:0e:82:56:70:75:c9:92:2b:fc:b0:ee:ba:59: 78:be:0f:d0:6d:d8:1a:d3:b1:c9:94:78:19:93:c3: 2b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:E5:D2:C4:55:5D:94:6C:F8:A7:97:73:59:A8:39:C4:6B:F8:6F:EB X509v3 Authority Key Identifier: keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/rOXSxFVdlGz4p5dzWag5xGv4b-s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:3500:10c0::/48 Signature Algorithm: sha256WithRSAEncryption 9b:8f:15:b2:19:a8:8c:02:7f:95:38:ae:07:4e:9c:d8:b6:dd: 7a:87:53:42:ad:1c:27:f9:23:5c:65:92:95:07:72:e0:3a:14: d1:c1:e6:43:ab:cc:4b:30:b8:a7:d9:77:d2:76:c1:25:5d:38: bd:8c:6f:04:36:9c:35:7c:af:6e:b8:12:20:4b:10:73:d0:24: 5e:ba:8d:bf:d9:fa:f0:fa:62:21:b8:41:c5:1e:f4:7c:4a:f3: 6a:12:a7:10:92:5f:19:7c:db:41:9f:a7:40:80:e5:22:51:b5: cb:ad:79:26:a9:e9:f4:51:a3:3e:2a:81:bb:2e:e9:a4:d5:37: fe:7d:fc:db:fd:8a:2a:5f:9b:a8:3d:06:d3:7f:7e:3a:61:ba: 54:05:45:4f:a8:0d:92:57:c7:fc:92:5d:92:a7:3f:07:bb:6a: 99:3e:76:09:93:73:10:57:29:03:47:8a:95:ec:62:b8:97:85: 74:27:f0:18:99:ec:48:95:c5:9d:bb:a0:36:06:27:86:8a:a6: b6:dd:a4:04:61:65:6a:f5:db:a9:54:a5:0a:10:3f:64:23:af: a8:be:cf:9e:dc:c5:45:ef:3c:6a:e6:9c:18:56:3a:e1:89:e8: 07:ec:da:c2:3c:6b:d9:12:4d:96:58:69:4e:20:a7:ad:20:e9: 1d:bf:cd:90 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OKYhlYXvqC5/GrjkgBUVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwNWQyOGQxNjYyNmJjNWRjYWJmMmU5MTU0MzU3ODJiOTZl MTQwNzEwHhcNMjYwMTAyMTAyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhY2U1ZDJjNDU1NWQ5NDZjZjhhNzk3NzM1OWE4MzljNDZiZjg2ZmViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuexdVnTJ0Dnl3HACm5FiOUJ+AkXg mG1zZkn8KKPy67LpKETkfnb9BXEGizDoVI21SGI6/j3cF+T+HVQ0CR3dkPo7igNM R4i2IgX0xyDFikANHzUFHZkU0zM0g0ejyAS9A7k4ccYQjIpw0X1GvU75x7uF79OD VHKRyKEDzfwEtk7C8dC30W/8XnxlwRYfTYx9KUISBmx1PEKnC7dmAAapYbMK6NCw TQjKSV0Y1HVqbUxh2V0BNGpmdr6S6t8nWtI/iRmtY+Kk6EjOhGlg0Yn6KwEQEUUS kZPvnhSdlIyEWgU01A6CVnB1yZIr/LDuull4vg/Qbdga07HJlHgZk8MrUwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKzl0sRVXZRs+KeXc1moOcRr+G/rMB8GA1UdIwQY MBaAFLBdKNFmJrxdyr8ukVQ1eCuW4UBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEt YWQ1NzU1MjJiMzY1LzEvck9YU3hGVmRsR3o0cDVkeldhZzV4R3Y0Yi1zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEtYWQ1NzU1MjJiMzY1 LzEvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgc1ABDA MA0GCSqGSIb3DQEBCwUAA4IBAQCbjxWyGaiMAn+VOK4HTpzYtt16h1NCrRwn+SNc ZZKVB3LgOhTRweZDq8xLMLin2XfSdsElXTi9jG8ENpw1fK9uuBIgSxBz0CReuo2/ 2frw+mIhuEHFHvR8SvNqEqcQkl8ZfNtBn6dAgOUiUbXLrXkmqen0UaM+KoG7Lumk 1Tf+ffzb/YoqX5uoPQbTf346YbpUBUVPqA2SV8f8kl2Spz8Hu2qZPnYJk3MQVykD R4qV7GK4l4V0J/AYmexIlcWdu6A2BieGiqa23aQEYWVq9dupVKUKED9kI6+ovs+e 3MVF7zxq5pwYVjrhiegH7NrCPGvZEk2WWGlOIKetIOkdv82Q -----END CERTIFICATE-----Generated at Tue Jan 20 04:47:57 2026 by rpki-client