This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/1-EbrvxNY7jUJJte1JMBcOC69EBk.roa File: 1-EbrvxNY7jUJJte1JMBcOC69EBk.roa (raw, json) Hash identifier: /M4gkvV/7tnw4BlBdpuc1viYnL0XhtHAFXwLDGq3QCg= Subject key identifier: F8:46:EB:BF:13:58:EE:35:09:26:D7:B5:24:C0:5C:38:2E:BD:10:19 Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Certificate serial: 019B7758A6BCBC9E78EA7004F130B1F6ADCC Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/1-EbrvxNY7jUJJte1JMBcOC69EBk.roa Signing time: Thu 01 Jan 2026 02:17:37 +0000 ROA not before: Thu 01 Jan 2026 02:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60539 IP address blocks: 2a13:aac6:c300::/40 maxlen: 40 2a13:aac7::/32 maxlen: 48 2a13:aac7:50::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:a6:bc:bc:9e:78:ea:70:04:f1:30:b1:f6:ad:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Validity Not Before: Jan 1 02:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f846ebbf1358ee350926d7b524c05c382ebd1019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cb:36:fd:40:94:f6:c8:c9:6e:06:bb:da:79: fb:a7:b5:6e:da:ad:48:20:b2:dd:a4:3a:04:dd:39: 09:54:a7:ca:d9:45:19:ba:36:12:02:16:6a:7e:3c: 29:65:97:5a:19:b1:04:74:6f:16:22:9e:35:71:00: aa:a4:1d:36:37:8d:ae:0f:9d:89:cd:d9:3d:e9:63: 9f:1f:0a:45:d7:c0:7b:a4:5e:00:3c:55:da:33:a2: 73:2f:33:3c:cd:fa:68:26:a0:42:bf:bb:47:7c:26: eb:26:1e:6b:fd:a5:05:46:19:85:3d:d0:29:8a:69: d2:a8:07:6c:68:9c:dd:4e:62:ec:02:ba:bd:9b:97: 55:89:d7:c7:e9:54:89:ac:14:79:72:bd:75:c8:a6: ff:f6:17:5c:d4:07:25:d8:c3:a3:52:a8:64:10:ce: 0d:1a:cb:c0:c1:02:b9:09:dd:ee:37:ad:54:09:ce: 3e:38:95:c7:47:55:9f:2e:e5:a1:73:62:41:ab:23: 1f:ef:bf:3e:28:a3:ad:cd:19:20:6a:78:38:e4:58: 56:7f:f7:25:a2:06:36:37:0f:bc:0d:29:0d:e0:6f: 9e:8d:04:a4:76:94:c3:30:a9:95:26:07:7d:15:49: ad:98:2f:5b:27:77:be:28:a0:8b:cb:42:6b:7f:86: 0a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:46:EB:BF:13:58:EE:35:09:26:D7:B5:24:C0:5C:38:2E:BD:10:19 X509v3 Authority Key Identifier: keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/1-EbrvxNY7jUJJte1JMBcOC69EBk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:aac6:c300::/40 2a13:aac7::/32 Signature Algorithm: sha256WithRSAEncryption 15:c1:c0:75:cb:fb:53:12:a4:72:b3:e7:5d:44:e0:3f:ca:d0: 0c:6a:58:b6:e8:39:5e:38:49:05:43:6d:fa:31:81:03:f2:90: 41:7e:f0:6c:0a:a2:2f:bb:ae:49:fc:46:a1:69:30:fb:6e:8b: a6:12:1b:30:9c:07:5e:6c:d9:af:1c:e8:ab:96:d8:1a:e0:b5: b3:02:03:cd:73:f8:89:93:89:4f:5e:b4:fa:ad:2f:a5:27:5b: 73:0a:f6:ae:79:48:2c:b7:23:94:f8:d3:12:07:38:ef:7c:4d: 61:23:27:83:e4:64:b5:fd:f6:17:3e:84:47:53:9f:37:7d:ea: d8:59:80:4e:ad:f0:dd:88:61:e6:f6:41:cf:49:74:70:16:14: 16:06:5a:c8:3e:ac:37:08:a7:f2:f2:79:73:f4:f2:1f:27:73: 0a:ef:7f:c2:1a:ea:05:14:45:c2:ad:78:79:9a:44:3f:75:32: dd:ca:f0:bd:11:20:02:88:2b:bd:59:04:8e:f3:d0:53:50:c2: a1:b1:a1:8d:8d:af:af:43:89:a6:b9:fd:ff:78:70:cb:0e:92: e7:93:c5:c7:c0:66:f4:23:df:97:8f:ae:5f:1c:86:40:c6:fc: 49:52:73:fe:3f:33:51:b8:38:2e:87:ac:df:6d:8f:39:a2:b5: 76:bc:52:4d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZt3WKa8vJ546nAE8TCx9q3MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMjRjY2RkNzBmM2VjNzYyY2JkNjVlMDRkZDZmNzZiZTIz NmE4YTcwHhcNMjYwMTAxMDIxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmODQ2ZWJiZjEzNThlZTM1MDkyNmQ3YjUyNGMwNWMzODJlYmQxMDE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcs2/UCU9sjJbga72nn7p7Vu2q1I ILLdpDoE3TkJVKfK2UUZujYSAhZqfjwpZZdaGbEEdG8WIp41cQCqpB02N42uD52J zdk96WOfHwpF18B7pF4APFXaM6JzLzM8zfpoJqBCv7tHfCbrJh5r/aUFRhmFPdAp imnSqAdsaJzdTmLsArq9m5dVidfH6VSJrBR5cr11yKb/9hdc1Acl2MOjUqhkEM4N GsvAwQK5Cd3uN61UCc4+OJXHR1WfLuWhc2JBqyMf778+KKOtzRkgang45FhWf/cl ogY2Nw+8DSkN4G+ejQSkdpTDMKmVJgd9FUmtmC9bJ3e+KKCLy0Jrf4YK/QIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFPhG678TWO41CSbXtSTAXDguvRAZMB8GA1UdIwQY MBaAFKEkzN1w8+x2LL1l4E3W92viNqinMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEt N2IzNTM5N2FmMmY3LzEvMS1FYnJ2eE5ZN2pVSkp0ZTFKTUJjT0M2OUVCay5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNTYvYjY5NGI4LTgyMTEtNGMwNi05YzgxLTdiMzUzOTdhZjJm Ny8xL29TVE0zWER6N0hZc3ZXWGdUZGIzYS1JMnFLYy5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAoBggrBgEFBQcBBwEB/wQZMBcwFQQCAAIwDwMGACoTqsbD AwUAKhOqxzANBgkqhkiG9w0BAQsFAAOCAQEAFcHAdcv7UxKkcrPnXUTgP8rQDGpY tug5XjhJBUNt+jGBA/KQQX7wbAqiL7uuSfxGoWkw+26LphIbMJwHXmzZrxzoq5bY GuC1swIDzXP4iZOJT160+q0vpSdbcwr2rnlILLcjlPjTEgc473xNYSMng+Rktf32 Fz6ER1OfN33q2FmATq3w3Yhh5vZBz0l0cBYUFgZayD6sNwin8vJ5c/TyHydzCu9/ whrqBRRFwq14eZpEP3Uy3crwvREgAogrvVkEjvPQU1DCobGhjY2vr0OJprn9/3hw yw6S55PFx8Bm9CPfl4+uXxyGQMb8SVJz/j8zUbg4Loes322POaK1drxSTQ== -----END CERTIFICATE-----Generated at Sun Jan 25 23:49:38 2026 by rpki-client