This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/8a344e-0ed8-42b2-a744-a9e8468710a3/1/v8NZKNxgnU-zImgNKMmRR_QjCn8.roa File: v8NZKNxgnU-zImgNKMmRR_QjCn8.roa (raw, json) Hash identifier: L8Sl8NS6P/fBhdPviN+pCnl2uaYlMuG1Zvcne9YV8g4= Subject key identifier: BF:C3:59:28:DC:60:9D:4F:B3:22:68:0D:28:C9:91:47:F4:23:0A:7F Certificate issuer: /CN=c8d335041718b18830b1f58c15d3518510fe6118 Certificate serial: 019B7D5CFD7A15B421A102AA3F1097668AAF Authority key identifier: C8:D3:35:04:17:18:B1:88:30:B1:F5:8C:15:D3:51:85:10:FE:61:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNM1BBcYsYgwsfWMFdNRhRD-YRg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/8a344e-0ed8-42b2-a744-a9e8468710a3/1/v8NZKNxgnU-zImgNKMmRR_QjCn8.roa Signing time: Fri 02 Jan 2026 06:20:04 +0000 ROA not before: Fri 02 Jan 2026 06:20:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29286 IP address blocks: 2a03:b7c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/8a344e-0ed8-42b2-a744-a9e8468710a3/1/yNM1BBcYsYgwsfWMFdNRhRD-YRg.crl rsync://rpki.ripe.net/repository/DEFAULT/41/8a344e-0ed8-42b2-a744-a9e8468710a3/1/yNM1BBcYsYgwsfWMFdNRhRD-YRg.mft rsync://rpki.ripe.net/repository/DEFAULT/yNM1BBcYsYgwsfWMFdNRhRD-YRg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:fd:7a:15:b4:21:a1:02:aa:3f:10:97:66:8a:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8d335041718b18830b1f58c15d3518510fe6118 Validity Not Before: Jan 2 06:20:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bfc35928dc609d4fb322680d28c99147f4230a7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1e:47:a0:f6:d7:ec:b6:e5:d4:88:35:0b:1a: d7:b8:5a:9f:9c:d4:7b:9e:e1:5b:32:59:eb:af:6e: 3b:c3:1f:37:51:30:b2:39:d4:e0:1d:d8:ef:7e:6a: cc:dd:ed:66:82:d8:b7:ad:74:ac:a5:ef:9a:ca:8b: b9:a6:76:a0:10:88:c3:1a:31:6e:7c:1c:83:43:59: 97:c8:b9:51:48:c2:6c:bf:98:80:12:79:8b:6c:ce: 77:78:35:90:7c:5c:c4:bc:6f:c2:f2:a0:6e:79:5f: 3c:8f:15:36:75:a1:5c:13:67:06:3d:a6:b5:fa:54: ff:be:02:22:77:ac:ae:65:dc:0c:02:f1:b7:33:77: 6b:39:59:ef:17:08:cf:ae:1a:4e:e0:b3:ff:a9:c8: 1c:1b:54:e3:17:d7:76:28:d9:38:f0:3b:1c:73:63: a3:4f:5c:71:ec:ec:d0:79:6e:b2:97:83:f5:a8:11: 07:61:16:f6:2a:e4:5e:a2:a8:63:1e:02:72:66:aa: c0:9f:55:e9:98:77:55:32:c6:00:c2:df:0a:f8:eb: 76:ee:13:f1:41:4c:06:76:b8:18:ae:d9:48:e2:74: c7:c0:9e:95:38:a2:a2:65:0c:0c:71:95:d9:47:80: 30:96:98:91:01:ca:e3:72:33:b5:16:80:26:e4:d8: d8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C3:59:28:DC:60:9D:4F:B3:22:68:0D:28:C9:91:47:F4:23:0A:7F X509v3 Authority Key Identifier: keyid:C8:D3:35:04:17:18:B1:88:30:B1:F5:8C:15:D3:51:85:10:FE:61:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNM1BBcYsYgwsfWMFdNRhRD-YRg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8a344e-0ed8-42b2-a744-a9e8468710a3/1/v8NZKNxgnU-zImgNKMmRR_QjCn8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8a344e-0ed8-42b2-a744-a9e8468710a3/1/yNM1BBcYsYgwsfWMFdNRhRD-YRg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:b7c0::/32 Signature Algorithm: sha256WithRSAEncryption a6:23:0f:1d:68:c4:bb:8a:6e:64:10:63:9c:44:35:49:97:56: 51:17:21:cf:82:67:03:17:13:bd:d8:8f:2a:02:f7:c0:3b:90: 27:70:12:79:7e:c9:f6:b6:d4:74:0f:2c:2a:25:a0:e8:34:b8: 6d:0f:b7:93:2c:02:34:08:8f:3d:d1:3e:f8:7b:03:74:5a:ed: 57:f1:15:f3:08:8e:51:ab:d9:bc:9d:88:a1:7f:53:bb:4b:54: 5c:fa:44:2b:a4:89:d9:b0:d7:f3:51:6f:ab:b2:a5:93:04:30: ab:89:e7:2c:22:ba:8a:09:0b:ff:68:56:28:ff:65:bc:df:5e: 1b:06:b0:5e:87:5a:be:14:ea:93:3f:d7:17:90:83:27:76:5e: 14:86:3c:31:0d:5a:56:ef:e6:ad:70:de:83:d4:33:dc:99:0d: 18:64:bf:20:ed:5b:3d:0c:79:f4:f7:b8:89:36:4a:22:79:33: c1:96:99:de:7f:e7:43:ea:72:b0:31:0a:76:d0:cc:5b:6e:9e: bc:69:9c:a0:e1:f0:2e:48:5c:db:15:8a:9b:0b:af:42:44:98: 69:96:70:3f:0c:a1:75:28:ea:97:41:e2:d6:5c:77:44:bd:5a: 0a:ef:d3:17:66:88:99:21:11:94:e0:08:50:84:11:e5:46:97: 0c:92:11:d9 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt9XP16FbQhoQKqPxCXZoqvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4ZDMzNTA0MTcxOGIxODgzMGIxZjU4YzE1ZDM1MTg1MTBm ZTYxMTgwHhcNMjYwMTAyMDYyMDA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZmMzNTkyOGRjNjA5ZDRmYjMyMjY4MGQyOGM5OTE0N2Y0MjMwYTdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuB5HoPbX7Lbl1Ig1CxrXuFqfnNR7 nuFbMlnrr247wx83UTCyOdTgHdjvfmrM3e1mgti3rXSspe+ayou5pnagEIjDGjFu fByDQ1mXyLlRSMJsv5iAEnmLbM53eDWQfFzEvG/C8qBueV88jxU2daFcE2cGPaa1 +lT/vgIid6yuZdwMAvG3M3drOVnvFwjPrhpO4LP/qcgcG1TjF9d2KNk48Dscc2Oj T1xx7OzQeW6yl4P1qBEHYRb2KuReoqhjHgJyZqrAn1XpmHdVMsYAwt8K+Ot27hPx QUwGdrgYrtlI4nTHwJ6VOKKiZQwMcZXZR4AwlpiRAcrjcjO1FoAm5NjYBQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFL/DWSjcYJ1PsyJoDSjJkUf0Iwp/MB8GA1UdIwQY MBaAFMjTNQQXGLGIMLH1jBXTUYUQ/mEYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveU5NMUJCY1lzWWd3c2ZXTUZkTlJoUkQtWVJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS84YTM0NGUtMGVkOC00MmIyLWE3NDQt YTllODQ2ODcxMGEzLzEvdjhOWktOeGduVS16SW1nTktNbVJSX1FqQ244LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS84YTM0NGUtMGVkOC00MmIyLWE3NDQtYTllODQ2ODcxMGEz LzEveU5NMUJCY1lzWWd3c2ZXTUZkTlJoUkQtWVJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgO3wDAN BgkqhkiG9w0BAQsFAAOCAQEApiMPHWjEu4puZBBjnEQ1SZdWURchz4JnAxcTvdiP KgL3wDuQJ3ASeX7J9rbUdA8sKiWg6DS4bQ+3kywCNAiPPdE++HsDdFrtV/EV8wiO UavZvJ2IoX9Tu0tUXPpEK6SJ2bDX81Fvq7KlkwQwq4nnLCK6igkL/2hWKP9lvN9e GwawXodavhTqkz/XF5CDJ3ZeFIY8MQ1aVu/mrXDeg9Qz3JkNGGS/IO1bPQx59Pe4 iTZKInkzwZaZ3n/nQ+pysDEKdtDMW26evGmcoOHwLkhc2xWKmwuvQkSYaZZwPwyh dSjql0Hi1lx3RL1aCu/TF2aImSERlOAIUIQR5UaXDJIR2Q== -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:14 2026 by rpki-client