This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/900cef-6481-4ff8-8e04-3cb8d817e027/1/0sYvu1PO-IyHrG5N2OwGBlK2IA0.roa File: 0sYvu1PO-IyHrG5N2OwGBlK2IA0.roa (raw, json) Hash identifier: NMF2/P9bXnT/asgGcGIGlNxwJHSua/9I79hyE0CwqWk= Subject key identifier: D2:C6:2F:BB:53:CE:F8:8C:87:AC:6E:4D:D8:EC:06:06:52:B6:20:0D Certificate issuer: /CN=80ffd9df456adbe3b1e661ee15626865fe1688c8 Certificate serial: 019BD62CD9F4358BE01903AC56B9253A371D Authority key identifier: 80:FF:D9:DF:45:6A:DB:E3:B1:E6:61:EE:15:62:68:65:FE:16:88:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gP_Z30Vq2-Ox5mHuFWJoZf4WiMg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/900cef-6481-4ff8-8e04-3cb8d817e027/1/0sYvu1PO-IyHrG5N2OwGBlK2IA0.roa Signing time: Mon 19 Jan 2026 12:13:42 +0000 ROA not before: Mon 19 Jan 2026 12:13:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61992 IP address blocks: 2a14:e900::/29 maxlen: 48 2a14:e900:22::/48 maxlen: 48 2a14:e900:1000::/48 maxlen: 48 2a14:e900:2030::/48 maxlen: 48 2a14:e900:2100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/900cef-6481-4ff8-8e04-3cb8d817e027/1/gP_Z30Vq2-Ox5mHuFWJoZf4WiMg.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/900cef-6481-4ff8-8e04-3cb8d817e027/1/gP_Z30Vq2-Ox5mHuFWJoZf4WiMg.mft rsync://rpki.ripe.net/repository/DEFAULT/gP_Z30Vq2-Ox5mHuFWJoZf4WiMg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 06:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d6:2c:d9:f4:35:8b:e0:19:03:ac:56:b9:25:3a:37:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80ffd9df456adbe3b1e661ee15626865fe1688c8 Validity Not Before: Jan 19 12:13:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d2c62fbb53cef88c87ac6e4dd8ec060652b6200d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:bf:e7:84:0a:50:78:fa:ae:04:9c:c1:98:e6: c2:89:31:d0:d2:94:b9:fa:66:15:91:57:00:59:22: 6b:d7:3f:18:8c:fd:f7:04:c9:6f:67:fd:fe:d5:34: a6:9e:a5:08:dc:aa:20:41:52:19:58:8f:d7:f1:b1: c5:b4:77:85:64:b4:08:e8:0d:44:90:da:58:47:45: e3:f8:9d:ac:81:e2:c5:7c:69:f3:2c:f2:fd:34:a5: a7:2b:10:3f:56:3c:7a:3f:18:cd:23:2a:ca:9e:28: f3:60:9d:15:e9:30:4e:e0:1d:6b:5b:1b:59:7f:5a: d0:7f:be:3b:e3:64:d2:ce:91:bb:23:ae:a1:e0:dd: c4:a5:91:a2:4f:e7:ed:6a:c4:19:2f:c9:99:d7:56: 83:d8:1a:65:ac:4e:1b:c4:2f:74:80:55:d9:33:40: bb:95:40:dc:a4:2a:41:b2:16:e7:1f:e7:27:84:4d: 73:dc:1e:4c:3e:74:3d:eb:b5:5e:12:be:76:5d:bf: 36:79:16:2e:a2:d8:42:e0:26:ee:f0:84:7c:92:8d: eb:91:14:e7:3e:b8:44:94:a9:80:db:3a:1b:47:6e: a5:a0:2a:0b:7b:d7:cd:65:9e:67:57:bf:24:49:ab: 7a:74:6e:64:e9:04:bf:f4:7d:b5:27:10:1a:13:d7: 87:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:C6:2F:BB:53:CE:F8:8C:87:AC:6E:4D:D8:EC:06:06:52:B6:20:0D X509v3 Authority Key Identifier: keyid:80:FF:D9:DF:45:6A:DB:E3:B1:E6:61:EE:15:62:68:65:FE:16:88:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gP_Z30Vq2-Ox5mHuFWJoZf4WiMg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/900cef-6481-4ff8-8e04-3cb8d817e027/1/0sYvu1PO-IyHrG5N2OwGBlK2IA0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/900cef-6481-4ff8-8e04-3cb8d817e027/1/gP_Z30Vq2-Ox5mHuFWJoZf4WiMg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:e900::/29 Signature Algorithm: sha256WithRSAEncryption 6a:77:a9:18:5b:42:96:99:1a:5a:4a:ac:db:09:3d:d7:1d:22: db:90:58:1b:8b:db:6c:2e:7e:98:1a:d3:4e:15:70:d4:19:ae: 7f:8f:0f:0c:13:85:6f:8d:94:1b:ca:63:93:45:21:e1:f8:ee: 24:63:d8:38:40:64:79:8c:11:8e:0f:a9:fe:2a:0d:55:19:2f: 0c:f9:7e:90:a3:bf:e0:39:6b:74:09:34:5c:ec:e9:ad:cb:a2: a5:44:23:34:11:e9:b2:85:99:a9:3a:1c:60:bd:73:97:1a:65: b1:fb:51:b0:b5:9c:0c:66:0a:32:fd:08:64:5e:e2:4d:93:1f: 28:d7:b5:a4:7e:8e:5c:75:1c:69:eb:57:a7:da:32:fe:12:e6: 96:cb:98:7b:4c:e8:84:42:b4:b0:6b:59:46:26:ff:8d:db:22: 6a:34:05:b2:b3:66:2b:e7:72:15:48:2f:38:97:b7:cc:20:7d: d6:2b:3c:1b:0e:f3:02:fd:1e:78:53:f6:d4:76:10:aa:64:de: e6:a7:d9:15:b4:ae:ec:75:ba:61:6a:6d:5f:e4:d2:bc:b7:78: 8b:85:51:20:bf:73:bd:79:e3:6d:b6:9d:37:7b:61:45:87:47: e8:78:49:12:16:82:03:0a:9e:8e:7c:f9:e3:d2:dc:47:e2:c0: 9d:bd:25:3f -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZvWLNn0NYvgGQOsVrklOjcdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwZmZkOWRmNDU2YWRiZTNiMWU2NjFlZTE1NjI2ODY1ZmUx Njg4YzgwHhcNMjYwMTE5MTIxMzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMmM2MmZiYjUzY2VmODhjODdhYzZlNGRkOGVjMDYwNjUyYjYyMDBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnL/nhApQePquBJzBmObCiTHQ0pS5 +mYVkVcAWSJr1z8YjP33BMlvZ/3+1TSmnqUI3KogQVIZWI/X8bHFtHeFZLQI6A1E kNpYR0Xj+J2sgeLFfGnzLPL9NKWnKxA/Vjx6PxjNIyrKnijzYJ0V6TBO4B1rWxtZ f1rQf74742TSzpG7I66h4N3EpZGiT+ftasQZL8mZ11aD2BplrE4bxC90gFXZM0C7 lUDcpCpBshbnH+cnhE1z3B5MPnQ967VeEr52Xb82eRYuothC4Cbu8IR8ko3rkRTn PrhElKmA2zobR26loCoLe9fNZZ5nV78kSat6dG5k6QS/9H21JxAaE9eHjwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFNLGL7tTzviMh6xuTdjsBgZStiANMB8GA1UdIwQY MBaAFID/2d9FatvjseZh7hViaGX+FojIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ1BfWjMwVnEyLU94NW1IdUZXSm9aZjRXaU1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi85MDBjZWYtNjQ4MS00ZmY4LThlMDQt M2NiOGQ4MTdlMDI3LzEvMHNZdnUxUE8tSXlIckc1TjJPd0dCbEsySUEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi85MDBjZWYtNjQ4MS00ZmY4LThlMDQtM2NiOGQ4MTdlMDI3 LzEvZ1BfWjMwVnEyLU94NW1IdUZXSm9aZjRXaU1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhTpADAN BgkqhkiG9w0BAQsFAAOCAQEAanepGFtClpkaWkqs2wk91x0i25BYG4vbbC5+mBrT ThVw1Bmuf48PDBOFb42UG8pjk0Uh4fjuJGPYOEBkeYwRjg+p/ioNVRkvDPl+kKO/ 4DlrdAk0XOzprcuipUQjNBHpsoWZqTocYL1zlxplsftRsLWcDGYKMv0IZF7iTZMf KNe1pH6OXHUcaetXp9oy/hLmlsuYe0zohEK0sGtZRib/jdsiajQFsrNmK+dyFUgv OJe3zCB91is8Gw7zAv0eeFP21HYQqmTe5qfZFbSu7HW6YWptX+TSvLd4i4VRIL9z vXnjbbadN3thRYdH6HhJEhaCAwqejnz549LcR+LAnb0lPw== -----END CERTIFICATE-----Generated at Mon Jan 26 12:21:02 2026 by rpki-client