This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/16c890-17e7-4a51-a387-3e8df3310232/1/xHh-97Lta5LNVTnO8SR2JedTzJQ.roa File: xHh-97Lta5LNVTnO8SR2JedTzJQ.roa (raw, json) Hash identifier: YnOTNh9VfWJM3zMtcxSBKdQt1SEdIDNsrihIoA70J5s= Subject key identifier: C4:78:7E:F7:B2:ED:6B:92:CD:55:39:CE:F1:24:76:25:E7:53:CC:94 Certificate issuer: /CN=08b3eb5fb3ba7656e11357834829eecaf441212e Certificate serial: 019B7AC7976B0B6A7E0CA19D10D0F9999B69 Authority key identifier: 08:B3:EB:5F:B3:BA:76:56:E1:13:57:83:48:29:EE:CA:F4:41:21:2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CLPrX7O6dlbhE1eDSCnuyvRBIS4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/16c890-17e7-4a51-a387-3e8df3310232/1/xHh-97Lta5LNVTnO8SR2JedTzJQ.roa Signing time: Thu 01 Jan 2026 18:17:39 +0000 ROA not before: Thu 01 Jan 2026 18:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206276 IP address blocks: 2a05:c380::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/16c890-17e7-4a51-a387-3e8df3310232/1/CLPrX7O6dlbhE1eDSCnuyvRBIS4.crl rsync://rpki.ripe.net/repository/DEFAULT/48/16c890-17e7-4a51-a387-3e8df3310232/1/CLPrX7O6dlbhE1eDSCnuyvRBIS4.mft rsync://rpki.ripe.net/repository/DEFAULT/CLPrX7O6dlbhE1eDSCnuyvRBIS4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:97:6b:0b:6a:7e:0c:a1:9d:10:d0:f9:99:9b:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08b3eb5fb3ba7656e11357834829eecaf441212e Validity Not Before: Jan 1 18:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c4787ef7b2ed6b92cd5539cef1247625e753cc94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:34:10:10:2d:47:d6:8b:16:df:66:3f:d6:94: 5e:ca:ca:ac:76:c5:2a:15:8b:c3:80:0e:9d:58:83: 26:9e:04:1e:85:49:d2:89:10:f5:98:19:92:68:07: 7e:98:a8:b7:b7:5d:70:93:44:15:97:a9:1e:69:bb: aa:69:db:bf:04:35:52:3a:65:77:a2:0c:2c:58:cb: 3a:f2:af:3e:4d:1d:ea:f7:c7:66:ef:f0:da:bc:0d: 84:b5:00:d9:1a:ed:e7:c9:4b:5c:d6:28:b9:d6:78: d3:25:e4:d2:c5:1a:ec:2c:21:e2:78:8a:3d:3c:3f: 34:e8:b3:4d:bb:bf:98:1b:03:84:cb:53:cb:b1:2b: 9d:30:34:ff:ce:d6:c7:6f:be:35:a5:a2:ad:43:27: af:50:24:42:9a:d5:c1:b8:15:66:0a:2d:49:04:88: 67:60:bc:77:16:c5:85:19:c0:0a:ce:27:cc:ba:f2: 00:87:6b:3d:5c:ea:d3:33:66:e6:1e:03:b7:2b:9e: fb:34:04:43:90:b2:9f:f7:26:f5:b0:2e:29:55:39: 0b:c2:c9:5c:67:0e:f8:86:56:0b:c0:c3:3b:25:38: de:07:6b:91:c9:47:4e:39:88:f0:ed:91:28:f3:40: 90:43:fe:c7:de:1d:8c:b6:6a:46:9d:aa:21:17:1d: d9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:78:7E:F7:B2:ED:6B:92:CD:55:39:CE:F1:24:76:25:E7:53:CC:94 X509v3 Authority Key Identifier: keyid:08:B3:EB:5F:B3:BA:76:56:E1:13:57:83:48:29:EE:CA:F4:41:21:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CLPrX7O6dlbhE1eDSCnuyvRBIS4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/16c890-17e7-4a51-a387-3e8df3310232/1/xHh-97Lta5LNVTnO8SR2JedTzJQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/16c890-17e7-4a51-a387-3e8df3310232/1/CLPrX7O6dlbhE1eDSCnuyvRBIS4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:c380::/29 Signature Algorithm: sha256WithRSAEncryption 12:ed:f0:8c:54:32:70:29:95:92:98:d5:08:47:e4:29:66:83: 1a:b0:d3:09:e0:f7:cd:4a:9d:d4:0e:d6:6c:5f:ec:87:6c:11: 6d:3e:a8:ad:36:84:68:37:60:52:0b:f7:19:89:b4:42:6c:68: 13:dc:9f:eb:f4:83:99:41:f4:ef:a4:ee:63:ca:41:02:07:e0: 7c:2d:64:fc:76:52:17:1e:f4:1e:59:47:e3:f4:0b:e7:be:77: 8b:ec:c8:d0:9d:4d:44:cd:2f:c2:02:9e:e9:3f:e5:0a:1e:1c: 93:db:c2:32:bc:24:18:52:ff:3f:69:c0:2d:f3:1e:5d:28:be: 8e:8d:73:f7:93:95:b7:58:58:1d:50:dd:50:7c:ad:30:b0:37: 99:ed:d9:10:f2:91:37:55:cd:78:bb:22:50:97:f7:63:fb:d6: 90:42:ae:86:5c:32:ea:f5:19:d3:53:30:4c:8d:b9:5d:03:99: 34:a6:42:f1:64:f4:fb:a9:ca:9a:2c:65:c9:17:97:c9:e2:a9: 94:a7:c6:0c:3b:11:da:a3:ad:f9:22:d1:c7:e9:dc:84:df:97: 13:2a:bc:1c:da:99:28:9c:08:7f:e6:bd:70:f3:5c:f1:8b:27: 8e:38:8d:8d:ed:d8:fc:7c:07:c9:fe:75:dd:10:71:91:be:40: 8e:12:f9:fb -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt6x5drC2p+DKGdEND5mZtpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4YjNlYjVmYjNiYTc2NTZlMTEzNTc4MzQ4MjllZWNhZjQ0 MTIxMmUwHhcNMjYwMTAxMTgxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNDc4N2VmN2IyZWQ2YjkyY2Q1NTM5Y2VmMTI0NzYyNWU3NTNjYzk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0DQQEC1H1osW32Y/1pReysqsdsUq FYvDgA6dWIMmngQehUnSiRD1mBmSaAd+mKi3t11wk0QVl6keabuqadu/BDVSOmV3 ogwsWMs68q8+TR3q98dm7/DavA2EtQDZGu3nyUtc1ii51njTJeTSxRrsLCHieIo9 PD806LNNu7+YGwOEy1PLsSudMDT/ztbHb741paKtQyevUCRCmtXBuBVmCi1JBIhn YLx3FsWFGcAKzifMuvIAh2s9XOrTM2bmHgO3K577NARDkLKf9yb1sC4pVTkLwslc Zw74hlYLwMM7JTjeB2uRyUdOOYjw7ZEo80CQQ/7H3h2MtmpGnaohFx3Z+QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFMR4fvey7WuSzVU5zvEkdiXnU8yUMB8GA1UdIwQY MBaAFAiz61+zunZW4RNXg0gp7sr0QSEuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0xQclg3TzZkbGJoRTFlRFNDbnV5dlJCSVM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC8xNmM4OTAtMTdlNy00YTUxLWEzODct M2U4ZGYzMzEwMjMyLzEveEhoLTk3THRhNUxOVlRuTzhTUjJKZWRUekpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC8xNmM4OTAtMTdlNy00YTUxLWEzODctM2U4ZGYzMzEwMjMy LzEvQ0xQclg3TzZkbGJoRTFlRFNDbnV5dlJCSVM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgXDgDAN BgkqhkiG9w0BAQsFAAOCAQEAEu3wjFQycCmVkpjVCEfkKWaDGrDTCeD3zUqd1A7W bF/sh2wRbT6orTaEaDdgUgv3GYm0QmxoE9yf6/SDmUH076TuY8pBAgfgfC1k/HZS Fx70HllH4/QL5753i+zI0J1NRM0vwgKe6T/lCh4ck9vCMrwkGFL/P2nALfMeXSi+ jo1z95OVt1hYHVDdUHytMLA3me3ZEPKRN1XNeLsiUJf3Y/vWkEKuhlwy6vUZ01Mw TI25XQOZNKZC8WT0+6nKmixlyReXyeKplKfGDDsR2qOt+SLRx+nchN+XEyq8HNqZ KJwIf+a9cPNc8YsnjjiNje3Y/HwHyf513RBxkb5AjhL5+w== -----END CERTIFICATE-----Generated at Sun Jan 25 23:32:30 2026 by rpki-client