This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/ebc57d-5c3e-4bad-b70d-819680db4358/1/AV8wo7IcGhoDNh45lsVAfOCmZyE.roa File: AV8wo7IcGhoDNh45lsVAfOCmZyE.roa (raw, json) Hash identifier: xfFdNGYBpXcUrobp7nBFSY8sabsVXKXuRVyeR5Zfluo= Subject key identifier: 01:5F:30:A3:B2:1C:1A:1A:03:36:1E:39:96:C5:40:7C:E0:A6:67:21 Certificate issuer: /CN=e8a247598cc32160328417a1b10db67fdf59f10f Certificate serial: 019A82BB809B472F1ED96B68BB9F63AF660C Authority key identifier: E8:A2:47:59:8C:C3:21:60:32:84:17:A1:B1:0D:B6:7F:DF:59:F1:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6KJHWYzDIWAyhBehsQ22f99Z8Q8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/ebc57d-5c3e-4bad-b70d-819680db4358/1/AV8wo7IcGhoDNh45lsVAfOCmZyE.roa Signing time: Fri 14 Nov 2025 14:18:37 +0000 ROA not before: Fri 14 Nov 2025 14:18:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 211350 IP address blocks: 2a14:d480::/29 maxlen: 48 2a14:d480::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/ebc57d-5c3e-4bad-b70d-819680db4358/1/6KJHWYzDIWAyhBehsQ22f99Z8Q8.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/ebc57d-5c3e-4bad-b70d-819680db4358/1/6KJHWYzDIWAyhBehsQ22f99Z8Q8.mft rsync://rpki.ripe.net/repository/DEFAULT/6KJHWYzDIWAyhBehsQ22f99Z8Q8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:82:bb:80:9b:47:2f:1e:d9:6b:68:bb:9f:63:af:66:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8a247598cc32160328417a1b10db67fdf59f10f Validity Not Before: Nov 14 14:18:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=015f30a3b21c1a1a03361e3996c5407ce0a66721 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:4c:fa:bd:d6:17:b6:fc:8c:d3:e6:8e:6c:c8: 71:9b:0b:80:e9:37:cc:51:0a:89:46:34:e0:20:91: 5b:a1:b2:9a:75:1b:d7:54:b5:10:4b:e9:7d:70:b2: 8f:73:b8:a5:82:5b:0a:a4:d6:7b:d8:1e:dc:8e:9c: 8c:db:fb:d1:9e:6a:c6:12:8b:f2:3a:66:ed:0e:10: e9:fd:32:f2:3c:b7:6a:f5:0d:c8:1c:92:18:89:c8: cc:a4:2d:c6:b2:a8:1a:bd:41:22:b2:b8:3d:42:c6: c0:4c:0e:f4:15:93:4c:f9:0e:61:3c:22:3c:7b:58: 95:16:f1:e9:f8:db:e1:a9:d0:1f:b1:4a:2f:5f:ae: 6d:af:f1:e4:33:9f:4e:25:9f:d4:69:50:a8:3f:7e: 71:b3:a5:aa:1b:55:7a:96:a3:4e:2d:04:c8:40:49: a6:7f:cc:91:5d:90:85:19:10:4d:6d:fe:d6:d9:7b: 0c:63:89:57:bb:45:8a:88:96:3c:fe:0a:ea:27:80: 26:cb:f6:e8:c3:7a:12:84:e6:0c:11:f0:6b:63:9c: 5c:54:4b:ab:af:9b:8d:5e:0d:5a:54:75:5a:cd:0e: 92:0b:12:1d:57:d6:89:60:1d:01:42:d5:10:3d:f7: b2:64:b8:ac:e8:47:56:ca:d7:f8:fe:03:5f:27:9e: b7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:5F:30:A3:B2:1C:1A:1A:03:36:1E:39:96:C5:40:7C:E0:A6:67:21 X509v3 Authority Key Identifier: keyid:E8:A2:47:59:8C:C3:21:60:32:84:17:A1:B1:0D:B6:7F:DF:59:F1:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6KJHWYzDIWAyhBehsQ22f99Z8Q8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ebc57d-5c3e-4bad-b70d-819680db4358/1/AV8wo7IcGhoDNh45lsVAfOCmZyE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ebc57d-5c3e-4bad-b70d-819680db4358/1/6KJHWYzDIWAyhBehsQ22f99Z8Q8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:d480::/29 Signature Algorithm: sha256WithRSAEncryption 38:d9:0c:37:51:51:e2:23:de:72:db:a5:d7:30:1f:b8:db:92: a3:1f:2d:a7:15:a5:fe:8d:3d:09:81:a8:ac:8e:bd:2d:18:20: 99:ff:88:ef:f3:06:3d:18:2a:73:55:98:6c:50:6e:73:27:e2: 0f:7d:88:6a:0c:3f:9a:70:10:5d:d6:03:39:5f:07:75:49:58: 8a:c4:99:e7:df:06:0c:6d:f7:11:28:36:6d:7a:f7:81:fa:31: 38:d9:84:a3:4b:de:6f:26:c9:2e:3f:3c:d9:6d:03:4c:08:57: ef:43:94:45:7d:75:7b:2f:0c:dd:d2:09:c1:d7:85:9d:04:dc: 1a:0e:8f:3c:06:e9:9f:17:0d:5a:cb:6e:ee:08:f3:a1:93:11: d7:b6:1a:38:be:9b:0b:2d:3f:9c:ff:0a:bf:27:a7:55:0c:87: c8:1d:b1:d0:d0:71:59:72:db:e3:68:22:88:63:6f:72:b1:39: 6d:33:0f:c3:ca:b3:3b:12:e1:6e:9b:ba:cc:23:19:d3:82:77: 00:a9:0c:33:93:1b:b8:18:43:72:ba:19:f5:d3:93:bd:16:6d: 4a:ef:98:2b:e8:7c:3e:87:6c:46:1a:45:99:94:5c:43:53:fc: c6:73:07:c8:d4:6a:25:f6:04:92:7f:a1:5a:e2:02:d3:94:c3: 3c:78:5c:6c -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZqCu4CbRy8e2Wtou59jr2YMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU4YTI0NzU5OGNjMzIxNjAzMjg0MTdhMWIxMGRiNjdmZGY1 OWYxMGYwHhcNMjUxMTE0MTQxODM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMTVmMzBhM2IyMWMxYTFhMDMzNjFlMzk5NmM1NDA3Y2UwYTY2NzIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkkz6vdYXtvyM0+aObMhxmwuA6TfM UQqJRjTgIJFbobKadRvXVLUQS+l9cLKPc7ilglsKpNZ72B7cjpyM2/vRnmrGEovy OmbtDhDp/TLyPLdq9Q3IHJIYicjMpC3GsqgavUEisrg9QsbATA70FZNM+Q5hPCI8 e1iVFvHp+NvhqdAfsUovX65tr/HkM59OJZ/UaVCoP35xs6WqG1V6lqNOLQTIQEmm f8yRXZCFGRBNbf7W2XsMY4lXu0WKiJY8/grqJ4Amy/bow3oShOYMEfBrY5xcVEur r5uNXg1aVHVazQ6SCxIdV9aJYB0BQtUQPfeyZLis6EdWytf4/gNfJ563iQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFAFfMKOyHBoaAzYeOZbFQHzgpmchMB8GA1UdIwQY MBaAFOiiR1mMwyFgMoQXobENtn/fWfEPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNktKSFdZekRJV0F5aEJlaHNRMjJmOTlaOFE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9lYmM1N2QtNWMzZS00YmFkLWI3MGQt ODE5NjgwZGI0MzU4LzEvQVY4d283SWNHaG9ETmg0NWxzVkFmT0NtWnlFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9lYmM1N2QtNWMzZS00YmFkLWI3MGQtODE5NjgwZGI0MzU4 LzEvNktKSFdZekRJV0F5aEJlaHNRMjJmOTlaOFE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhTUgDAN BgkqhkiG9w0BAQsFAAOCAQEAONkMN1FR4iPectul1zAfuNuSox8tpxWl/o09CYGo rI69LRggmf+I7/MGPRgqc1WYbFBucyfiD32Iagw/mnAQXdYDOV8HdUlYisSZ598G DG33ESg2bXr3gfoxONmEo0vebybJLj882W0DTAhX70OURX11ey8M3dIJwdeFnQTc Gg6PPAbpnxcNWstu7gjzoZMR17YaOL6bCy0/nP8KvyenVQyHyB2x0NBxWXLb42gi iGNvcrE5bTMPw8qzOxLhbpu6zCMZ04J3AKkMM5MbuBhDcroZ9dOTvRZtSu+YK+h8 PodsRhpFmZRcQ1P8xnMHyNRqJfYEkn+hWuIC05TDPHhcbA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:22:58 2025 by rpki-client