This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/420c14-cb2c-4e3e-87b9-3fc39487807c/1/SizhTkIG2sATNsv1VQNzH4wHchc.roa File: SizhTkIG2sATNsv1VQNzH4wHchc.roa (raw, json) Hash identifier: 2PYBEpDEAGt3SnEGmQvvCFiLA489Fe6L2n4/O/hryFQ= Subject key identifier: 4A:2C:E1:4E:42:06:DA:C0:13:36:CB:F5:55:03:73:1F:8C:07:72:17 Certificate issuer: /CN=2c83dfb24629c16779350b4a777b5b280fc59d44 Certificate serial: 019B7D5BC57DBA2ECD6E74B517E821F8A579 Authority key identifier: 2C:83:DF:B2:46:29:C1:67:79:35:0B:4A:77:7B:5B:28:0F:C5:9D:44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LIPfskYpwWd5NQtKd3tbKA_FnUQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/420c14-cb2c-4e3e-87b9-3fc39487807c/1/SizhTkIG2sATNsv1VQNzH4wHchc.roa Signing time: Fri 02 Jan 2026 06:18:44 +0000 ROA not before: Fri 02 Jan 2026 06:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207044 IP address blocks: 2a03:5f00:104::/48 maxlen: 48 2a03:5f00:108::/48 maxlen: 48 2a03:5f00:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/420c14-cb2c-4e3e-87b9-3fc39487807c/1/LIPfskYpwWd5NQtKd3tbKA_FnUQ.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/420c14-cb2c-4e3e-87b9-3fc39487807c/1/LIPfskYpwWd5NQtKd3tbKA_FnUQ.mft rsync://rpki.ripe.net/repository/DEFAULT/LIPfskYpwWd5NQtKd3tbKA_FnUQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:c5:7d:ba:2e:cd:6e:74:b5:17:e8:21:f8:a5:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2c83dfb24629c16779350b4a777b5b280fc59d44 Validity Not Before: Jan 2 06:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4a2ce14e4206dac01336cbf55503731f8c077217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:10:83:a0:08:fc:76:1e:6f:cc:08:41:f6:87: 5c:66:98:b9:20:28:27:b6:8f:d3:cd:e5:96:23:0b: ca:4a:9d:11:d3:1e:5a:23:8a:3d:08:01:5c:24:92: bd:83:5d:1e:aa:21:ee:58:36:11:eb:d3:7c:e5:d1: 50:4d:f4:c1:f8:af:c8:cf:93:7b:03:02:29:8d:de: e1:14:52:c5:29:cd:61:47:b9:01:9c:52:7c:3f:0e: b3:fa:d2:f0:e8:cc:ce:83:63:c2:cd:06:b0:39:58: 8f:b3:c9:f1:41:72:0f:73:3c:f6:63:95:87:f4:70: 9d:18:45:54:80:c5:b0:91:2c:00:f6:97:e7:75:3d: e1:1a:21:a6:92:24:8f:8d:c3:59:f6:27:5c:f7:11: 46:28:43:41:92:32:e2:08:85:92:3e:e0:4c:87:f0: a6:4b:1d:49:64:0d:8c:42:09:5c:51:48:7a:1c:7d: a5:2e:f6:a3:01:34:b8:a3:78:23:b4:e4:dc:a8:24: dc:a8:6b:8d:6d:7b:c3:15:0d:83:a7:00:ff:69:7e: 79:b1:9e:7c:fa:f2:6f:d5:c9:4a:29:7a:e3:5e:76: c0:87:01:db:38:45:ba:8c:9a:54:8c:df:52:df:ac: dc:c5:92:1b:84:51:46:cd:ac:9f:fd:ae:c9:cd:32: d5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:2C:E1:4E:42:06:DA:C0:13:36:CB:F5:55:03:73:1F:8C:07:72:17 X509v3 Authority Key Identifier: keyid:2C:83:DF:B2:46:29:C1:67:79:35:0B:4A:77:7B:5B:28:0F:C5:9D:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LIPfskYpwWd5NQtKd3tbKA_FnUQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/420c14-cb2c-4e3e-87b9-3fc39487807c/1/SizhTkIG2sATNsv1VQNzH4wHchc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/420c14-cb2c-4e3e-87b9-3fc39487807c/1/LIPfskYpwWd5NQtKd3tbKA_FnUQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:5f00:104::/48 2a03:5f00:108::/48 2a03:5f00:1000::/48 Signature Algorithm: sha256WithRSAEncryption b1:e1:a7:f9:e9:52:43:29:a6:da:84:fa:05:d2:06:f3:15:39: 97:93:ca:88:c0:bc:e2:24:41:f1:4f:a1:fc:a3:12:a3:1b:c0: aa:c6:46:cd:9e:51:1b:f1:bf:6c:76:3a:cf:29:e4:9b:7d:dc: 27:4e:fe:9b:f1:f8:ea:b6:3b:9f:f6:41:6b:f6:b2:5f:45:7e: 17:06:0c:05:d9:45:3d:d4:3f:b0:39:34:20:b2:d1:2a:fe:f2: e7:f2:33:c4:30:79:59:c9:b5:da:a3:26:fa:eb:b6:16:46:44: cc:a7:5b:38:1d:bb:88:30:25:c2:f1:72:70:c0:01:2e:43:42: 99:94:77:79:b4:dd:13:51:9e:1a:8c:55:61:e3:d1:f1:bf:d5: 16:0f:34:77:6f:a9:cf:79:50:9e:8d:27:6f:d3:61:ef:66:b1: 4b:6f:80:f6:28:ed:70:20:f7:ce:72:3f:fc:37:50:98:a6:5e: 4c:02:77:3d:e3:25:19:1b:16:14:4a:47:2c:87:e6:b4:18:6b: 4e:f9:6a:34:80:55:b6:f2:aa:2f:df:7d:f3:80:8c:a2:68:eb: f3:0c:7c:81:c4:46:2a:69:f4:49:82:0c:f9:13:99:dc:cf:39: 89:c9:dd:9b:b1:fb:fc:f6:d5:4b:5e:ae:ec:e2:a1:ef:56:7e: 87:17:3b:cd -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt9W8V9ui7NbnS1F+gh+KV5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjODNkZmIyNDYyOWMxNjc3OTM1MGI0YTc3N2I1YjI4MGZj NTlkNDQwHhcNMjYwMTAyMDYxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YTJjZTE0ZTQyMDZkYWMwMTMzNmNiZjU1NTAzNzMxZjhjMDc3MjE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0BCDoAj8dh5vzAhB9odcZpi5ICgn to/TzeWWIwvKSp0R0x5aI4o9CAFcJJK9g10eqiHuWDYR69N85dFQTfTB+K/Iz5N7 AwIpjd7hFFLFKc1hR7kBnFJ8Pw6z+tLw6MzOg2PCzQawOViPs8nxQXIPczz2Y5WH 9HCdGEVUgMWwkSwA9pfndT3hGiGmkiSPjcNZ9idc9xFGKENBkjLiCIWSPuBMh/Cm Sx1JZA2MQglcUUh6HH2lLvajATS4o3gjtOTcqCTcqGuNbXvDFQ2DpwD/aX55sZ58 +vJv1clKKXrjXnbAhwHbOEW6jJpUjN9S36zcxZIbhFFGzayf/a7JzTLVRwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFEos4U5CBtrAEzbL9VUDcx+MB3IXMB8GA1UdIwQY MBaAFCyD37JGKcFneTULSnd7WygPxZ1EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTElQZnNrWXB3V2Q1TlF0S2QzdGJLQV9GblVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS80MjBjMTQtY2IyYy00ZTNlLTg3Yjkt M2ZjMzk0ODc4MDdjLzEvU2l6aFRrSUcyc0FUTnN2MVZRTnpINHdIY2hjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS80MjBjMTQtY2IyYy00ZTNlLTg3YjktM2ZjMzk0ODc4MDdj LzEvTElQZnNrWXB3V2Q1TlF0S2QzdGJLQV9GblVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzAhBAIAAjAbAwcAKgNfAAEE AwcAKgNfAAEIAwcAKgNfABAAMA0GCSqGSIb3DQEBCwUAA4IBAQCx4af56VJDKaba hPoF0gbzFTmXk8qIwLziJEHxT6H8oxKjG8CqxkbNnlEb8b9sdjrPKeSbfdwnTv6b 8fjqtjuf9kFr9rJfRX4XBgwF2UU91D+wOTQgstEq/vLn8jPEMHlZybXaoyb667YW RkTMp1s4HbuIMCXC8XJwwAEuQ0KZlHd5tN0TUZ4ajFVh49Hxv9UWDzR3b6nPeVCe jSdv02HvZrFLb4D2KO1wIPfOcj/8N1CYpl5MAnc94yUZGxYUSkcsh+a0GGtO+Wo0 gFW28qov333zgIyiaOvzDHyBxEYqafRJggz5E5nczzmJyd2bsfv89tVLXq7s4qHv Vn6HFzvN -----END CERTIFICATE-----Generated at Sun Jan 25 16:38:33 2026 by rpki-client