This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/0gTAS52EzZGedF9EVkZ6nHotli4.roa File: 0gTAS52EzZGedF9EVkZ6nHotli4.roa (raw, json) Hash identifier: g/qzwDYBrug0sMoJmGL1niHAWphdXHLRRty5c1RcLfU= Subject key identifier: D2:04:C0:4B:9D:84:CD:91:9E:74:5F:44:56:46:7A:9C:7A:2D:96:2E Certificate issuer: /CN=cfcead390625edba1408108df57cea47160d70e5 Certificate serial: 019B7C8027E384080800637A648369D5FA71 Authority key identifier: CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/0gTAS52EzZGedF9EVkZ6nHotli4.roa Signing time: Fri 02 Jan 2026 02:18:52 +0000 ROA not before: Fri 02 Jan 2026 02:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213729 IP address blocks: 2a0f:7803:f650::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.mft rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 14:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:27:e3:84:08:08:00:63:7a:64:83:69:d5:fa:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cfcead390625edba1408108df57cea47160d70e5 Validity Not Before: Jan 2 02:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d204c04b9d84cd919e745f4456467a9c7a2d962e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:90:2f:fb:20:c6:c9:2a:f1:33:7f:1e:0f:f1: 13:07:8d:f0:a4:b4:88:f4:fb:3a:76:f7:b5:20:08: 18:66:3f:a8:04:6c:1f:b8:91:5c:9d:e1:6c:b8:62: 09:3a:02:a5:b4:79:9a:67:bf:67:7b:1a:a2:0b:3c: 9b:95:34:94:ad:33:8d:f9:6f:38:88:9b:00:84:80: 1b:41:6e:d6:02:87:9d:0c:cf:8c:45:22:5a:8a:9b: 77:54:5d:f7:79:58:bc:51:5e:6f:dd:38:18:02:57: d9:2b:f4:8b:95:a4:e3:18:bf:6f:ee:6d:d1:e8:6a: 45:5b:c6:c1:ae:b2:3d:cf:ff:9b:e4:58:3a:5b:6a: ab:05:8f:81:dc:85:c8:2e:74:77:a9:d7:7d:24:3b: 48:40:ac:4e:26:9b:62:25:80:2d:76:d8:84:e6:ce: 08:de:50:3e:8a:b1:73:51:47:bd:25:94:17:ec:34: 3e:69:1e:62:0b:e4:c7:a6:31:0e:fa:e0:66:91:60: 59:26:c9:18:08:0d:c2:e0:40:bd:09:e2:5e:cc:d9: 0d:34:15:bd:2c:b6:f0:57:04:57:18:63:c2:7f:d5: 5b:ab:38:ba:f5:26:0f:d2:16:f8:33:5e:65:54:0a: 15:c4:d8:62:3e:6e:4e:df:6c:05:8a:44:77:55:e4: 2f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:04:C0:4B:9D:84:CD:91:9E:74:5F:44:56:46:7A:9C:7A:2D:96:2E X509v3 Authority Key Identifier: keyid:CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/0gTAS52EzZGedF9EVkZ6nHotli4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:7803:f650::/44 Signature Algorithm: sha256WithRSAEncryption aa:6c:cd:3f:1a:e8:f5:8e:75:fd:31:5f:16:64:ad:20:99:a7: 15:f6:3e:02:a1:c6:ab:02:3a:2b:0e:c1:88:a0:13:d1:a6:ff: 75:ba:32:07:13:59:08:9c:01:05:df:2a:66:18:a1:00:b0:43: 73:06:55:67:da:44:1c:28:f3:7e:c8:44:50:19:4a:64:3f:62: cf:77:e0:08:e4:39:02:95:8d:41:74:61:0a:98:0f:10:13:9a: 82:21:5b:cb:5d:f2:a2:e5:ee:1e:61:03:7f:c7:b3:84:55:f6: 8a:47:57:74:b3:15:80:ca:29:a4:56:5d:ec:b9:7b:40:8d:9b: ca:a7:45:54:ed:5c:8e:7d:77:c7:b1:11:ce:6e:2a:af:ec:c3: e9:b6:8e:f0:3a:5f:90:af:10:d8:4a:15:52:df:48:93:56:b8: f8:28:d5:d1:97:42:65:a0:38:82:9a:7b:c5:4d:45:9d:c4:c0: f6:9f:2e:4c:c6:0a:f9:f7:09:94:f8:ed:5f:fd:30:e1:33:9c: ee:a2:c4:3d:df:13:62:22:ba:6a:8c:cc:a0:4c:b3:16:91:a4: 8e:4d:03:6f:a2:77:23:95:23:12:b6:28:ec:f6:49:04:9e:40: ee:b6:cd:d5:67:f3:b1:d2:5f:69:fd:ad:67:31:67:43:32:8f: de:05:80:f2 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt8gCfjhAgIAGN6ZINp1fpxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmY2VhZDM5MDYyNWVkYmExNDA4MTA4ZGY1N2NlYTQ3MTYw ZDcwZTUwHhcNMjYwMTAyMDIxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjA0YzA0YjlkODRjZDkxOWU3NDVmNDQ1NjQ2N2E5YzdhMmQ5NjJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpAv+yDGySrxM38eD/ETB43wpLSI 9Ps6dve1IAgYZj+oBGwfuJFcneFsuGIJOgKltHmaZ79nexqiCzyblTSUrTON+W84 iJsAhIAbQW7WAoedDM+MRSJaipt3VF33eVi8UV5v3TgYAlfZK/SLlaTjGL9v7m3R 6GpFW8bBrrI9z/+b5Fg6W2qrBY+B3IXILnR3qdd9JDtIQKxOJptiJYAtdtiE5s4I 3lA+irFzUUe9JZQX7DQ+aR5iC+THpjEO+uBmkWBZJskYCA3C4EC9CeJezNkNNBW9 LLbwVwRXGGPCf9Vbqzi69SYP0hb4M15lVAoVxNhiPm5O32wFikR3VeQv/QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNIEwEudhM2RnnRfRFZGepx6LZYuMB8GA1UdIwQY MBaAFM/OrTkGJe26FAgQjfV86kcWDXDlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejg2dE9RWWw3Ym9VQ0JDTjlYenFSeFlOY09VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9jNDY0N2EtNjA0Mi00ZmU4LWEyNzYt ZjViNmE3MThmNGI1LzEvMGdUQVM1MkV6WkdlZEY5RVZrWjZuSG90bGk0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9jNDY0N2EtNjA0Mi00ZmU4LWEyNzYtZjViNmE3MThmNGI1 LzEvejg2dE9RWWw3Ym9VQ0JDTjlYenFSeFlOY09VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg94A/ZQ MA0GCSqGSIb3DQEBCwUAA4IBAQCqbM0/Guj1jnX9MV8WZK0gmacV9j4CocarAjor DsGIoBPRpv91ujIHE1kInAEF3ypmGKEAsENzBlVn2kQcKPN+yERQGUpkP2LPd+AI 5DkClY1BdGEKmA8QE5qCIVvLXfKi5e4eYQN/x7OEVfaKR1d0sxWAyimkVl3suXtA jZvKp0VU7VyOfXfHsRHObiqv7MPpto7wOl+QrxDYShVS30iTVrj4KNXRl0JloDiC mnvFTUWdxMD2ny5Mxgr59wmU+O1f/TDhM5zuosQ93xNiIrpqjMygTLMWkaSOTQNv oncjlSMStijs9kkEnkDuts3VZ/Ox0l9p/a1nMWdDMo/eBYDy -----END CERTIFICATE-----Generated at Wed Jan 21 16:59:20 2026 by rpki-client