This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/e77412-b0d7-4104-926a-99ee616ca85b/1/oerPqNmEjqxbGPl4Gs_7bUETdN0.roa File: oerPqNmEjqxbGPl4Gs_7bUETdN0.roa (raw, json) Hash identifier: EfuWXG0YIgrPAIfQYw0siImFKnCmmDF+zPQxYy5oo28= Subject key identifier: A1:EA:CF:A8:D9:84:8E:AC:5B:18:F9:78:1A:CF:FB:6D:41:13:74:DD Certificate issuer: /CN=2292d96dfb66cb18069d8bd15c9e90cd9124f003 Certificate serial: 019B7F8572F985B63C2A77202F6D0FBD262E Authority key identifier: 22:92:D9:6D:FB:66:CB:18:06:9D:8B:D1:5C:9E:90:CD:91:24:F0:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpLZbftmyxgGnYvRXJ6QzZEk8AM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/e77412-b0d7-4104-926a-99ee616ca85b/1/oerPqNmEjqxbGPl4Gs_7bUETdN0.roa Signing time: Fri 02 Jan 2026 16:23:30 +0000 ROA not before: Fri 02 Jan 2026 16:23:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215795 IP address blocks: 2a06:3a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/e77412-b0d7-4104-926a-99ee616ca85b/1/IpLZbftmyxgGnYvRXJ6QzZEk8AM.crl rsync://rpki.ripe.net/repository/DEFAULT/11/e77412-b0d7-4104-926a-99ee616ca85b/1/IpLZbftmyxgGnYvRXJ6QzZEk8AM.mft rsync://rpki.ripe.net/repository/DEFAULT/IpLZbftmyxgGnYvRXJ6QzZEk8AM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:72:f9:85:b6:3c:2a:77:20:2f:6d:0f:bd:26:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2292d96dfb66cb18069d8bd15c9e90cd9124f003 Validity Not Before: Jan 2 16:23:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a1eacfa8d9848eac5b18f9781acffb6d411374dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5d:27:52:ae:e3:f0:ff:17:b4:c8:c3:d2:f5: b0:2a:96:80:04:e3:18:54:fa:43:b8:cc:0d:fc:a0: a6:63:69:d9:5e:51:4f:13:eb:ba:dd:ed:7a:38:90: 98:ee:39:1d:e9:c1:fe:d6:1f:25:8d:ca:c2:71:5d: e4:1b:6e:63:91:86:f6:db:13:7d:bf:fd:ac:15:ab: f9:55:f5:7e:2a:6b:41:f2:56:9c:d8:f6:36:90:2c: 0f:8d:ba:18:81:e1:33:c5:83:f9:e5:c7:df:c4:9f: 48:9c:a8:9f:c8:67:1e:26:a1:67:30:dd:af:e0:dc: 64:58:41:de:17:e7:9a:75:c9:9f:c0:7d:31:5a:04: 93:75:7f:54:01:bc:54:9e:39:35:ad:49:46:6b:03: 84:5b:8e:f9:e7:5a:29:05:33:5a:e4:71:bf:24:e3: c2:4d:f9:e0:60:7a:0f:b2:96:2c:f3:44:97:90:68: 09:d0:d6:40:87:1e:2d:83:5c:87:be:56:45:f8:59: 47:b6:f1:f9:d0:77:e9:9b:8d:67:65:2a:56:06:33: 15:d3:7e:dd:3f:4e:36:73:b0:7e:6b:59:07:b8:c9: fb:6f:ea:a9:4e:f7:29:bf:f7:0e:29:78:ed:85:cc: ab:26:10:7f:6e:0d:8c:61:5b:42:ae:72:b4:45:52: 09:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:EA:CF:A8:D9:84:8E:AC:5B:18:F9:78:1A:CF:FB:6D:41:13:74:DD X509v3 Authority Key Identifier: keyid:22:92:D9:6D:FB:66:CB:18:06:9D:8B:D1:5C:9E:90:CD:91:24:F0:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpLZbftmyxgGnYvRXJ6QzZEk8AM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/e77412-b0d7-4104-926a-99ee616ca85b/1/oerPqNmEjqxbGPl4Gs_7bUETdN0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/e77412-b0d7-4104-926a-99ee616ca85b/1/IpLZbftmyxgGnYvRXJ6QzZEk8AM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:3a40::/48 Signature Algorithm: sha256WithRSAEncryption 33:82:ce:6b:34:d5:c9:9e:ee:c2:b9:d3:dd:b3:79:6c:71:39: c9:75:79:4b:34:50:77:1b:62:66:d8:35:a6:7e:a3:73:71:83: 8e:10:d7:46:07:20:79:8b:59:4f:41:64:9c:6c:4b:f2:20:a5: a8:84:46:ea:fc:9f:c1:68:bb:b7:2f:7c:90:9b:82:15:58:21: 18:88:2e:ba:ae:43:e8:a5:95:8e:c9:8b:10:46:f0:af:7f:5c: 6c:62:0d:25:78:7e:f0:68:8a:c2:4c:42:14:f2:a7:ac:a7:fe: 01:18:f5:e2:3d:a2:82:6c:c6:01:61:ea:d6:ae:f2:1b:b5:fc: e3:94:fe:34:06:62:44:9d:7d:0e:4f:63:b5:10:94:e3:8e:2a: 48:95:35:60:93:18:3c:6f:48:df:5b:35:5e:98:18:cb:1d:f6: b4:46:91:29:a4:13:17:ad:c2:58:5b:87:3c:2f:fb:7a:b4:6a: 0c:36:83:6d:79:d1:60:32:eb:fe:d1:0f:dd:96:95:95:30:9a: 50:09:71:33:96:70:d3:b2:4f:4f:93:66:5e:65:1a:63:82:d6: d9:cb:bc:08:4c:d0:66:ae:7d:66:db:dc:56:16:00:0c:42:d2: 83:e4:9c:ba:71:c8:1f:1c:b6:01:d1:94:d4:2c:f2:96:a0:70: c7:9d:2d:65 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/hXL5hbY8KncgL20PvSYuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyOTJkOTZkZmI2NmNiMTgwNjlkOGJkMTVjOWU5MGNkOTEy NGYwMDMwHhcNMjYwMTAyMTYyMzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMWVhY2ZhOGQ5ODQ4ZWFjNWIxOGY5NzgxYWNmZmI2ZDQxMTM3NGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxl0nUq7j8P8XtMjD0vWwKpaABOMY VPpDuMwN/KCmY2nZXlFPE+u63e16OJCY7jkd6cH+1h8ljcrCcV3kG25jkYb22xN9 v/2sFav5VfV+KmtB8lac2PY2kCwPjboYgeEzxYP55cffxJ9InKifyGceJqFnMN2v 4NxkWEHeF+eadcmfwH0xWgSTdX9UAbxUnjk1rUlGawOEW47551opBTNa5HG/JOPC TfngYHoPspYs80SXkGgJ0NZAhx4tg1yHvlZF+FlHtvH50Hfpm41nZSpWBjMV037d P042c7B+a1kHuMn7b+qpTvcpv/cOKXjthcyrJhB/bg2MYVtCrnK0RVIJ6wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKHqz6jZhI6sWxj5eBrP+21BE3TdMB8GA1UdIwQY MBaAFCKS2W37ZssYBp2L0VyekM2RJPADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXBMWmJmdG15eGdHbll2UlhKNlF6WkVrOEFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9lNzc0MTItYjBkNy00MTA0LTkyNmEt OTllZTYxNmNhODViLzEvb2VyUHFObUVqcXhiR1BsNEdzXzdiVUVUZE4wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9lNzc0MTItYjBkNy00MTA0LTkyNmEtOTllZTYxNmNhODVi LzEvSXBMWmJmdG15eGdHbll2UlhKNlF6WkVrOEFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgY6QAAA MA0GCSqGSIb3DQEBCwUAA4IBAQAzgs5rNNXJnu7CudPds3lscTnJdXlLNFB3G2Jm 2DWmfqNzcYOOENdGByB5i1lPQWScbEvyIKWohEbq/J/BaLu3L3yQm4IVWCEYiC66 rkPopZWOyYsQRvCvf1xsYg0leH7waIrCTEIU8qesp/4BGPXiPaKCbMYBYerWrvIb tfzjlP40BmJEnX0OT2O1EJTjjipIlTVgkxg8b0jfWzVemBjLHfa0RpEppBMXrcJY W4c8L/t6tGoMNoNtedFgMuv+0Q/dlpWVMJpQCXEzlnDTsk9Pk2ZeZRpjgtbZy7wI TNBmrn1m29xWFgAMQtKD5Jy6ccgfHLYB0ZTULPKWoHDHnS1l -----END CERTIFICATE-----Generated at Sun Jan 25 11:45:14 2026 by rpki-client