This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/Ma8ETmVDXVY55RsSP0-WygtYyhU.roa File: Ma8ETmVDXVY55RsSP0-WygtYyhU.roa (raw, json) Hash identifier: yn9w1zI8XWvBjbPWkPiTKvYl9hC2KAjL+BOgbhLHov0= Subject key identifier: 31:AF:04:4E:65:43:5D:56:39:E5:1B:12:3F:4F:96:CA:0B:58:CA:15 Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e Certificate serial: 019B790FFDC768A9A46D66C2A1BE382D1DC7 Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/Ma8ETmVDXVY55RsSP0-WygtYyhU.roa Signing time: Thu 01 Jan 2026 10:17:29 +0000 ROA not before: Thu 01 Jan 2026 10:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 196863 IP address blocks: 2a02:2808:2301::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.mft rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:0f:fd:c7:68:a9:a4:6d:66:c2:a1:be:38:2d:1d:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e Validity Not Before: Jan 1 10:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=31af044e65435d5639e51b123f4f96ca0b58ca15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f0:55:08:e5:96:b7:e4:04:a4:1a:a3:43:ba: 18:64:01:a0:71:fc:93:39:29:15:86:dd:fa:a0:ed: 78:0a:3b:33:e8:28:af:98:ef:15:40:67:4b:37:33: d8:88:c1:9b:80:f5:0b:ca:57:46:44:15:f4:a2:4e: d2:ce:eb:19:e1:16:d0:57:c5:23:31:29:dc:03:34: 02:89:5a:c0:6e:07:43:ba:0a:91:5c:dc:b2:63:f2: 40:b8:85:98:49:80:00:74:e6:97:bc:fc:33:59:fe: a5:d9:ce:bb:15:f6:73:37:81:5d:53:1b:60:cd:90: ad:ad:38:9a:51:98:bb:01:33:55:50:d0:ab:b2:10: 1d:57:0c:55:4f:11:87:ba:45:29:2a:19:bb:00:67: ec:82:14:83:73:8d:8c:26:46:b3:eb:a2:88:46:d7: 23:52:dd:43:b2:62:39:bc:aa:37:86:10:76:12:5a: 43:7a:b1:bd:58:8a:f6:23:13:0b:63:72:10:ec:35: 30:b9:01:78:ca:a2:be:59:69:89:e2:9d:1c:3c:14: f4:bb:3d:22:93:c7:f7:f3:6d:ed:eb:df:22:99:38: 8d:5b:50:1c:1c:e1:42:de:21:c8:d8:6f:e3:cf:b8: 06:f3:48:d4:bf:81:a2:ac:87:74:98:40:9d:92:c6: ae:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:AF:04:4E:65:43:5D:56:39:E5:1B:12:3F:4F:96:CA:0B:58:CA:15 X509v3 Authority Key Identifier: keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/Ma8ETmVDXVY55RsSP0-WygtYyhU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:2808:2301::/48 Signature Algorithm: sha256WithRSAEncryption 07:c9:e2:96:5f:5d:44:fd:b7:6d:24:de:ba:a0:61:58:b2:a0: 4f:21:60:66:a5:95:e7:32:77:3b:bf:15:0f:ac:71:0e:3b:e9: 47:9f:47:b8:bd:33:55:7f:dc:54:77:62:9d:2f:63:dd:15:6b: b0:e5:9f:b9:07:0f:1f:72:c6:e2:cb:bd:ad:88:fb:1b:b5:0b: 78:38:aa:05:ed:f1:d9:12:64:6f:2a:b0:63:d7:9c:13:53:0d: 1b:b3:c5:16:30:48:5d:5f:e8:90:78:de:63:a3:ef:2e:c8:00: 81:b4:cf:ba:50:8e:e5:7f:a6:5d:07:3a:30:48:14:46:10:83: 59:8c:77:8e:85:4c:3a:ec:ac:be:1c:4c:e1:2c:20:cd:42:5b: 9d:a4:95:5c:cb:13:13:73:5f:69:49:3f:09:eb:cc:3a:eb:ea: f4:9a:dc:02:a3:a8:bc:ab:d9:03:e6:51:bc:d3:4b:78:49:7e: 5c:29:f4:9e:37:3e:a6:0a:b6:b0:76:65:d8:23:01:45:2c:8e: 45:6e:21:d0:82:44:30:5e:db:8e:07:5e:82:55:6b:e4:f9:42: db:88:32:f9:3d:3f:09:f0:63:08:06:aa:34:b7:8c:98:fb:56: f6:36:69:ae:50:5c:0a:2c:6d:91:8d:31:b3:a5:3a:5b:34:b9: 1c:86:b4:85 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5D/3HaKmkbWbCob44LR3HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmOTNkM2JhMTk3ZjVjZTMwOThiZmE3NzAwYjQzODU0ZWFh ODBlOWUwHhcNMjYwMTAxMTAxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMWFmMDQ0ZTY1NDM1ZDU2MzllNTFiMTIzZjRmOTZjYTBiNThjYTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPBVCOWWt+QEpBqjQ7oYZAGgcfyT OSkVht36oO14Cjsz6CivmO8VQGdLNzPYiMGbgPULyldGRBX0ok7SzusZ4RbQV8Uj MSncAzQCiVrAbgdDugqRXNyyY/JAuIWYSYAAdOaXvPwzWf6l2c67FfZzN4FdUxtg zZCtrTiaUZi7ATNVUNCrshAdVwxVTxGHukUpKhm7AGfsghSDc42MJkaz66KIRtcj Ut1DsmI5vKo3hhB2ElpDerG9WIr2IxMLY3IQ7DUwuQF4yqK+WWmJ4p0cPBT0uz0i k8f3823t698imTiNW1AcHOFC3iHI2G/jz7gG80jUv4GirId0mECdksauqwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDGvBE5lQ11WOeUbEj9PlsoLWMoVMB8GA1UdIwQY MBaAFC+T07oZf1zjCYv6dwC0OFTqqA6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDVQVHVobF9YT01KaV9wM0FMUTRWT3FvRHA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC83YTg3YTAtODAxNC00NjA1LTlmYjUt OWU3MWRjMjRhNjgzLzEvTWE4RVRtVkRYVlk1NVJzU1AwLVd5Z3RZeWhVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC83YTg3YTAtODAxNC00NjA1LTlmYjUtOWU3MWRjMjRhNjgz LzEvTDVQVHVobF9YT01KaV9wM0FMUTRWT3FvRHA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgIoCCMB MA0GCSqGSIb3DQEBCwUAA4IBAQAHyeKWX11E/bdtJN66oGFYsqBPIWBmpZXnMnc7 vxUPrHEOO+lHn0e4vTNVf9xUd2KdL2PdFWuw5Z+5Bw8fcsbiy72tiPsbtQt4OKoF 7fHZEmRvKrBj15wTUw0bs8UWMEhdX+iQeN5jo+8uyACBtM+6UI7lf6ZdBzowSBRG EINZjHeOhUw67Ky+HEzhLCDNQludpJVcyxMTc19pST8J68w66+r0mtwCo6i8q9kD 5lG800t4SX5cKfSeNz6mCrawdmXYIwFFLI5FbiHQgkQwXtuOB16CVWvk+ULbiDL5 PT8J8GMIBqo0t4yY+1b2NmmuUFwKLG2RjTGzpTpbNLkchrSF -----END CERTIFICATE-----Generated at Sun Jan 25 13:34:43 2026 by rpki-client