This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/e38ff0-469b-41e5-bbed-179e6e4290c0/1/hOsDm_jLjaABWQYdgF5cRs0nk_I.roa File: hOsDm_jLjaABWQYdgF5cRs0nk_I.roa (raw, json) Hash identifier: x7cu1utx5qWvwfcBByX3NCvCKM+cJIOmug/RN9fVkCg= Subject key identifier: 84:EB:03:9B:F8:CB:8D:A0:01:59:06:1D:80:5E:5C:46:CD:27:93:F2 Certificate issuer: /CN=b22640351ab21a0dc7aaa15fab5b110977714a3c Certificate serial: 019B7F157ED89E5373AEA33C7C0131363A30 Authority key identifier: B2:26:40:35:1A:B2:1A:0D:C7:AA:A1:5F:AB:5B:11:09:77:71:4A:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siZANRqyGg3HqqFfq1sRCXdxSjw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/e38ff0-469b-41e5-bbed-179e6e4290c0/1/hOsDm_jLjaABWQYdgF5cRs0nk_I.roa Signing time: Fri 02 Jan 2026 14:21:13 +0000 ROA not before: Fri 02 Jan 2026 14:21:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 2a14:2ec0:62b4::/48 maxlen: 48 2a14:2ec0:854e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/e38ff0-469b-41e5-bbed-179e6e4290c0/1/siZANRqyGg3HqqFfq1sRCXdxSjw.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/e38ff0-469b-41e5-bbed-179e6e4290c0/1/siZANRqyGg3HqqFfq1sRCXdxSjw.mft rsync://rpki.ripe.net/repository/DEFAULT/siZANRqyGg3HqqFfq1sRCXdxSjw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:7e:d8:9e:53:73:ae:a3:3c:7c:01:31:36:3a:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b22640351ab21a0dc7aaa15fab5b110977714a3c Validity Not Before: Jan 2 14:21:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=84eb039bf8cb8da00159061d805e5c46cd2793f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b8:8d:d1:e1:51:90:39:32:30:3f:a4:bb:1d: 98:55:58:39:0e:9e:29:9b:70:01:e9:18:1b:d8:7d: 71:f9:0e:6a:d8:df:89:22:87:05:7d:ef:95:36:45: d6:d0:ac:01:ad:c3:61:f4:2d:68:4c:ec:11:67:f7: 4e:a9:4c:b3:d9:14:c3:c2:82:fb:0f:98:97:f4:9a: dd:25:b9:ee:43:3f:b3:7b:ec:ea:0c:61:78:87:b7: 5e:32:c0:2a:75:eb:e0:bd:5e:3e:ed:92:79:f5:9f: 02:35:ff:3c:63:f3:07:af:52:c2:ca:f5:08:12:a3: be:cd:39:d5:f3:6c:ba:1a:fa:9b:8e:99:2f:7c:5e: 4d:e5:86:b7:e7:95:ed:96:32:fd:b0:16:f1:b1:a3: 5f:0c:4d:2f:26:2c:db:32:15:1b:21:74:ac:4e:fb: 96:2e:33:dd:33:5f:e2:94:20:2f:87:0f:c6:a9:c8: 08:92:6f:e9:17:fb:2d:fa:8f:fd:93:b6:0b:8f:4f: fa:52:89:bd:f3:68:9d:13:79:fc:8f:40:10:01:1e: a5:bc:5d:bb:75:b0:5d:60:03:1b:8a:17:51:5f:a5: 7d:0e:1f:b9:28:14:13:ca:01:08:ae:27:0e:0f:f3: ec:88:8d:2b:2e:d2:66:b3:53:f0:d5:9f:a7:92:4d: ea:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:EB:03:9B:F8:CB:8D:A0:01:59:06:1D:80:5E:5C:46:CD:27:93:F2 X509v3 Authority Key Identifier: keyid:B2:26:40:35:1A:B2:1A:0D:C7:AA:A1:5F:AB:5B:11:09:77:71:4A:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siZANRqyGg3HqqFfq1sRCXdxSjw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e38ff0-469b-41e5-bbed-179e6e4290c0/1/hOsDm_jLjaABWQYdgF5cRs0nk_I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e38ff0-469b-41e5-bbed-179e6e4290c0/1/siZANRqyGg3HqqFfq1sRCXdxSjw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:2ec0:62b4::/48 2a14:2ec0:854e::/48 Signature Algorithm: sha256WithRSAEncryption b7:99:4c:11:b0:a6:c5:d2:fd:9a:32:14:88:c3:b2:c4:0a:ff: 35:d1:d9:88:29:ab:04:75:d8:39:a2:c2:e2:63:a2:7f:91:50: ff:ad:66:4c:6c:49:76:9e:e8:8e:b0:5c:5f:6e:7f:46:3c:2e: cb:36:17:c8:f7:0b:8c:72:64:20:8d:b2:6c:00:4b:7e:20:04: bd:51:3d:90:8c:7d:9a:71:6d:39:4c:ec:a6:73:0e:ec:61:76: 53:4f:ed:bf:5f:11:42:aa:f7:6e:fa:4a:d4:33:d3:8c:3f:a4: 17:77:5f:f7:b8:9e:15:a9:d3:02:0b:ec:b9:2f:6a:33:be:8b: cc:90:d3:8c:9f:3a:f5:28:a5:e2:92:93:44:31:cd:b4:f2:83: 54:13:5b:38:16:66:22:43:ae:41:2f:04:24:82:ba:88:15:35: ba:0e:c3:a9:5d:6b:5c:cd:1a:e5:52:d3:c0:de:b7:fd:c4:84: 62:21:b3:90:21:2a:cb:c9:97:e5:77:3d:e1:ea:f7:c5:93:b9: 63:a1:cf:3c:65:c9:45:af:b3:db:d6:6c:04:f4:35:55:6e:62: 13:e8:54:c1:42:26:8f:2d:e1:d7:68:49:cc:dd:cb:32:d8:f4: 52:27:1c:70:04:ec:a7:21:56:4c:ec:fd:f7:18:5f:8c:44:8b: be:06:10:90 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt/FX7YnlNzrqM8fAExNjowMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMjY0MDM1MWFiMjFhMGRjN2FhYTE1ZmFiNWIxMTA5Nzc3 MTRhM2MwHhcNMjYwMTAyMTQyMTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NGViMDM5YmY4Y2I4ZGEwMDE1OTA2MWQ4MDVlNWM0NmNkMjc5M2YyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxbiN0eFRkDkyMD+kux2YVVg5Dp4p m3AB6Rgb2H1x+Q5q2N+JIocFfe+VNkXW0KwBrcNh9C1oTOwRZ/dOqUyz2RTDwoL7 D5iX9JrdJbnuQz+ze+zqDGF4h7deMsAqdevgvV4+7ZJ59Z8CNf88Y/MHr1LCyvUI EqO+zTnV82y6GvqbjpkvfF5N5Ya355XtljL9sBbxsaNfDE0vJizbMhUbIXSsTvuW LjPdM1/ilCAvhw/GqcgIkm/pF/st+o/9k7YLj0/6Uom982idE3n8j0AQAR6lvF27 dbBdYAMbihdRX6V9Dh+5KBQTygEIricOD/PsiI0rLtJms1Pw1Z+nkk3qzwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFITrA5v4y42gAVkGHYBeXEbNJ5PyMB8GA1UdIwQY MBaAFLImQDUashoNx6qhX6tbEQl3cUo8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2laQU5ScXlHZzNIcXFGZnExc1JDWGR4U2p3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9lMzhmZjAtNDY5Yi00MWU1LWJiZWQt MTc5ZTZlNDI5MGMwLzEvaE9zRG1fakxqYUFCV1FZZGdGNWNSczBua19JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi9lMzhmZjAtNDY5Yi00MWU1LWJiZWQtMTc5ZTZlNDI5MGMw LzEvc2laQU5ScXlHZzNIcXFGZnExc1JDWGR4U2p3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKhQuwGK0 AwcAKhQuwIVOMA0GCSqGSIb3DQEBCwUAA4IBAQC3mUwRsKbF0v2aMhSIw7LECv81 0dmIKasEddg5osLiY6J/kVD/rWZMbEl2nuiOsFxfbn9GPC7LNhfI9wuMcmQgjbJs AEt+IAS9UT2QjH2acW05TOymcw7sYXZTT+2/XxFCqvdu+krUM9OMP6QXd1/3uJ4V qdMCC+y5L2ozvovMkNOMnzr1KKXikpNEMc208oNUE1s4FmYiQ65BLwQkgrqIFTW6 DsOpXWtczRrlUtPA3rf9xIRiIbOQISrLyZfldz3h6vfFk7ljoc88ZclFr7Pb1mwE 9DVVbmIT6FTBQiaPLeHXaEnM3csy2PRSJxxwBOynIVZM7P33GF+MRIu+BhCQ -----END CERTIFICATE-----Generated at Wed Jan 7 23:51:47 2026 by rpki-client