This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/1OR7MiBYrBCTFUeXZt8nxO3fT1w.roa File: 1OR7MiBYrBCTFUeXZt8nxO3fT1w.roa (raw, json) Hash identifier: O61r2RIUvERzmLaBVoDYNHK7kM7U4nIi+QM0eXMDPoU= Subject key identifier: D4:E4:7B:32:20:58:AC:10:93:15:47:97:66:DF:27:C4:ED:DF:4F:5C Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f Certificate serial: 019B77595AFDC4AC0D035064CF969020D620 Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/1OR7MiBYrBCTFUeXZt8nxO3fT1w.roa Signing time: Thu 01 Jan 2026 02:18:23 +0000 ROA not before: Thu 01 Jan 2026 02:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58321 IP address blocks: 2a06:1980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:5a:fd:c4:ac:0d:03:50:64:cf:96:90:20:d6:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f Validity Not Before: Jan 1 02:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d4e47b322058ac109315479766df27c4eddf4f5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f4:51:b4:99:50:df:d1:cf:ec:a3:82:26:47: 36:64:0c:72:1a:ab:4e:b8:c2:cc:57:c0:10:be:59: 1f:a0:9d:41:07:0b:70:99:12:d8:45:31:32:c0:9b: 16:9e:d2:d6:69:07:a3:de:85:72:09:11:a9:b7:71: cf:7f:e1:a1:13:ee:c7:d1:8c:1b:27:34:1f:68:8f: df:44:98:28:06:07:04:8a:3f:e3:d7:1c:5a:ac:33: 26:e9:cf:f0:d6:91:5f:ea:49:7b:43:07:89:ff:e5: 95:9e:85:f6:6d:d0:9a:dc:b2:a7:a4:a8:82:04:bf: 2a:49:16:46:ca:c1:3b:9d:f8:4c:83:0d:a5:8c:93: e5:78:a4:2e:49:ab:68:9d:e0:52:60:83:48:08:45: 91:e5:d7:6f:18:ad:96:00:5a:dc:aa:bb:bf:e9:aa: bc:ce:99:ae:e6:9f:b2:19:0c:c4:fc:b8:b4:3b:10: 66:5a:ce:04:46:a1:9f:2a:a4:66:31:2c:ad:e3:bf: 1a:e1:ce:12:c1:fa:9a:86:10:e2:ee:2b:63:13:43: 7f:be:55:1a:15:52:c6:5e:2b:73:25:22:b5:3c:38: 8b:a1:35:11:34:db:19:cb:62:3a:18:bf:0a:34:32: 76:93:40:c8:76:e4:88:15:fe:79:34:11:66:24:2e: d3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E4:7B:32:20:58:AC:10:93:15:47:97:66:DF:27:C4:ED:DF:4F:5C X509v3 Authority Key Identifier: keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/1OR7MiBYrBCTFUeXZt8nxO3fT1w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1980::/48 Signature Algorithm: sha256WithRSAEncryption 14:83:51:cd:7d:c9:a5:2d:87:76:79:48:22:70:ed:3e:8f:d3: 15:d5:6d:79:d3:7b:46:51:9c:b6:e7:d4:d4:b6:ab:91:10:f5: 25:ef:77:15:72:7a:b3:36:75:62:d2:c5:a4:5d:7f:db:6c:42: d3:c6:20:e6:bf:a1:82:10:34:98:77:b4:a6:c5:bd:49:a1:40: f9:f3:2b:a3:27:79:55:f1:b4:8e:e6:4b:21:7c:b8:85:f0:74: d9:16:1d:9e:5b:02:37:84:4b:0e:66:d3:4d:65:85:1c:62:c3: d4:2c:88:39:b0:99:5b:c5:20:ec:00:2e:aa:18:d1:43:52:34: 4e:6f:02:c8:e9:dd:92:f9:d7:f3:bb:f8:a8:59:00:2d:c4:eb: ed:3e:5c:c7:e9:0f:8b:66:4c:46:ea:ce:c8:bf:ac:d0:12:72: 1b:99:7a:0f:21:c3:17:2d:e0:37:59:be:3c:f3:bd:3e:ab:dc: e3:d9:96:5a:d6:fe:a4:7b:f7:7e:23:ad:d9:53:f8:0b:11:e1: fd:87:26:8b:73:59:79:5f:96:e2:be:4f:92:26:e0:b5:39:ca: 69:dd:cd:12:dd:92:b6:94:64:6c:ae:88:ac:8a:26:c5:88:61: a8:b8:85:dd:15:25:ca:e2:83:32:ab:ac:6b:2a:fc:7e:fa:d5: 58:bc:a2:62 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3WVr9xKwNA1Bkz5aQINYgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmN2RhNTY4YWQwMjdiOWUyNDljMTNlMjIzZDMyMjc2OTg4 MWEyOWYwHhcNMjYwMTAxMDIxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNGU0N2IzMjIwNThhYzEwOTMxNTQ3OTc2NmRmMjdjNGVkZGY0ZjVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6fRRtJlQ39HP7KOCJkc2ZAxyGqtO uMLMV8AQvlkfoJ1BBwtwmRLYRTEywJsWntLWaQej3oVyCRGpt3HPf+GhE+7H0Ywb JzQfaI/fRJgoBgcEij/j1xxarDMm6c/w1pFf6kl7QweJ/+WVnoX2bdCa3LKnpKiC BL8qSRZGysE7nfhMgw2ljJPleKQuSatoneBSYINICEWR5ddvGK2WAFrcqru/6aq8 zpmu5p+yGQzE/Li0OxBmWs4ERqGfKqRmMSyt478a4c4SwfqahhDi7itjE0N/vlUa FVLGXitzJSK1PDiLoTURNNsZy2I6GL8KNDJ2k0DIduSIFf55NBFmJC7TKQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNTkezIgWKwQkxVHl2bfJ8Tt309cMB8GA1UdIwQY MBaAFF99pWitAnueJJwT4iPTInaYgaKfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8wNTQ4OGYtZjRlMC00ZTZjLTk0ZjUt Mzc1NzUzOWMyYWM5LzEvMU9SN01pQllyQkNURlVlWFp0OG54TzNmVDF3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8wNTQ4OGYtZjRlMC00ZTZjLTk0ZjUtMzc1NzUzOWMyYWM5 LzEvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgYZgAAA MA0GCSqGSIb3DQEBCwUAA4IBAQAUg1HNfcmlLYd2eUgicO0+j9MV1W1503tGUZy2 59TUtquREPUl73cVcnqzNnVi0sWkXX/bbELTxiDmv6GCEDSYd7Smxb1JoUD58yuj J3lV8bSO5kshfLiF8HTZFh2eWwI3hEsOZtNNZYUcYsPULIg5sJlbxSDsAC6qGNFD UjRObwLI6d2S+dfzu/ioWQAtxOvtPlzH6Q+LZkxG6s7Iv6zQEnIbmXoPIcMXLeA3 Wb48870+q9zj2ZZa1v6ke/d+I63ZU/gLEeH9hyaLc1l5X5bivk+SJuC1Ocpp3c0S 3ZK2lGRsroisiibFiGGouIXdFSXK4oMyq6xrKvx++tVYvKJi -----END CERTIFICATE-----Generated at Mon Jan 26 07:57:43 2026 by rpki-client