This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/OeXUCM0rcgYsFn8_0wkR-Kaaw-A.roa File: OeXUCM0rcgYsFn8_0wkR-Kaaw-A.roa (raw, json) Hash identifier: MhHkIFe4oRCwqObdvBfiVfImsE4G4J+KgigbD3rGs9A= Subject key identifier: 39:E5:D4:08:CD:2B:72:06:2C:16:7F:3F:D3:09:11:F8:A6:9A:C3:E0 Certificate issuer: /CN=ed5a6ba2d2248bc4782ac0fdb3c64b946640b09c Certificate serial: 019B78A318FD02E7DA7443DA1024A8D570DE Authority key identifier: ED:5A:6B:A2:D2:24:8B:C4:78:2A:C0:FD:B3:C6:4B:94:66:40:B0:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7VprotIki8R4KsD9s8ZLlGZAsJw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/OeXUCM0rcgYsFn8_0wkR-Kaaw-A.roa Signing time: Thu 01 Jan 2026 08:18:33 +0000 ROA not before: Thu 01 Jan 2026 08:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215988 IP address blocks: 2a14:4d00::/29 maxlen: 128 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/7VprotIki8R4KsD9s8ZLlGZAsJw.crl rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/7VprotIki8R4KsD9s8ZLlGZAsJw.mft rsync://rpki.ripe.net/repository/DEFAULT/7VprotIki8R4KsD9s8ZLlGZAsJw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:18:fd:02:e7:da:74:43:da:10:24:a8:d5:70:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ed5a6ba2d2248bc4782ac0fdb3c64b946640b09c Validity Not Before: Jan 1 08:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=39e5d408cd2b72062c167f3fd30911f8a69ac3e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b8:19:43:35:14:83:a4:71:4f:17:58:ee:8e: a3:7d:52:78:2d:fb:ae:1f:66:8a:30:e9:d6:56:67: 8b:b3:93:42:65:7e:2b:cc:f6:a0:2a:24:be:77:9c: cb:72:05:d4:73:93:ee:03:1a:ed:d0:3a:83:3d:87: c8:c7:f4:6e:a2:5d:4d:fb:d0:31:f6:46:d9:fd:a9: af:aa:0e:b8:97:f3:1d:6a:a5:78:81:75:c8:ea:b6: cf:05:f3:5d:32:c2:3b:75:e9:be:bc:72:24:b9:87: 77:78:fa:5a:47:de:bb:82:41:0c:10:5b:4a:40:a5: 29:1c:0c:d5:c4:2c:42:c6:24:19:51:ff:c9:79:98: 76:2d:bc:2f:c9:ed:65:67:a5:9c:0d:58:7f:c0:84: 19:34:2d:4f:2f:63:33:ca:76:e8:a4:aa:87:8b:53: 11:45:a7:6a:86:b6:84:ad:48:ce:38:da:c3:f8:23: cf:af:48:d3:82:ae:d4:47:25:72:90:18:0a:21:83: 9c:fd:ff:62:66:8e:0a:14:90:6c:27:47:f8:c4:29: f1:a2:24:fd:0f:ef:fc:89:d3:c9:9c:dc:49:36:3a: d9:94:66:b7:29:3d:23:d6:ed:f6:91:7d:a0:29:98: 45:d6:a8:77:57:ba:b3:91:5d:6d:73:d4:15:c5:fb: 42:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E5:D4:08:CD:2B:72:06:2C:16:7F:3F:D3:09:11:F8:A6:9A:C3:E0 X509v3 Authority Key Identifier: keyid:ED:5A:6B:A2:D2:24:8B:C4:78:2A:C0:FD:B3:C6:4B:94:66:40:B0:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7VprotIki8R4KsD9s8ZLlGZAsJw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/OeXUCM0rcgYsFn8_0wkR-Kaaw-A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/7VprotIki8R4KsD9s8ZLlGZAsJw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:4d00::/29 Signature Algorithm: sha256WithRSAEncryption 59:cc:87:ff:f4:c3:50:92:73:c7:41:ef:9f:36:d4:c0:3f:aa: e8:2d:cb:d6:88:e5:6a:f0:6c:bf:74:1b:14:9f:e0:76:68:0b: 55:30:03:94:1e:f2:dd:58:ef:50:66:77:c8:24:9f:e7:b4:94: 45:27:3e:fd:8c:5b:52:ff:a6:5e:f3:9d:f1:f1:f2:03:6d:95: 92:9d:b0:32:c4:8a:c4:77:44:86:dc:7d:07:58:fe:6a:08:2a: 4a:2d:79:ee:e7:21:2c:57:d4:f4:ab:ae:74:96:57:58:26:59: 8d:c0:bc:4d:b5:59:53:f4:75:87:71:51:86:c3:a2:37:00:14: c6:90:09:4b:f4:bf:aa:85:af:e2:f4:7e:a1:c2:d4:13:2c:7c: bd:0b:eb:37:88:ab:f7:45:ea:72:b4:0e:d3:9a:b9:20:47:bf: f4:0b:6e:bb:58:4c:77:5b:f7:a0:94:cf:e0:ab:ba:fb:d5:58: 03:90:7d:05:85:b2:8a:37:f8:8a:2b:c5:a3:cb:3f:1a:d9:ed: 8e:a5:0c:28:ca:0d:48:a4:5e:a5:2c:4c:a2:77:94:ed:a2:d9: 06:7f:60:72:41:25:ed:d4:5f:8f:cf:40:c5:e8:8b:f2:82:53: c1:38:10:20:dd:14:5f:f2:d5:7e:80:db:76:12:f2:fb:b5:87: 95:3b:ba:a6 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt4oxj9AufadEPaECSo1XDeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkNWE2YmEyZDIyNDhiYzQ3ODJhYzBmZGIzYzY0Yjk0NjY0 MGIwOWMwHhcNMjYwMTAxMDgxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOWU1ZDQwOGNkMmI3MjA2MmMxNjdmM2ZkMzA5MTFmOGE2OWFjM2UwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLgZQzUUg6RxTxdY7o6jfVJ4Lfuu H2aKMOnWVmeLs5NCZX4rzPagKiS+d5zLcgXUc5PuAxrt0DqDPYfIx/Ruol1N+9Ax 9kbZ/amvqg64l/MdaqV4gXXI6rbPBfNdMsI7dem+vHIkuYd3ePpaR967gkEMEFtK QKUpHAzVxCxCxiQZUf/JeZh2Lbwvye1lZ6WcDVh/wIQZNC1PL2MzynbopKqHi1MR RadqhraErUjOONrD+CPPr0jTgq7URyVykBgKIYOc/f9iZo4KFJBsJ0f4xCnxoiT9 D+/8idPJnNxJNjrZlGa3KT0j1u32kX2gKZhF1qh3V7qzkV1tc9QVxftC2QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFDnl1AjNK3IGLBZ/P9MJEfimmsPgMB8GA1UdIwQY MBaAFO1aa6LSJIvEeCrA/bPGS5RmQLCcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN1Zwcm90SWtpOFI0S3NEOXM4WkxsR1pBc0p3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9iMjc4ZGYtZWQzNy00ZGU3LWE2NzUt MTA3YThkODViZDMwLzEvT2VYVUNNMHJjZ1lzRm44XzB3a1ItS2Fhdy1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC9iMjc4ZGYtZWQzNy00ZGU3LWE2NzUtMTA3YThkODViZDMw LzEvN1Zwcm90SWtpOFI0S3NEOXM4WkxsR1pBc0p3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhRNADAN BgkqhkiG9w0BAQsFAAOCAQEAWcyH//TDUJJzx0HvnzbUwD+q6C3L1ojlavBsv3Qb FJ/gdmgLVTADlB7y3VjvUGZ3yCSf57SURSc+/YxbUv+mXvOd8fHyA22Vkp2wMsSK xHdEhtx9B1j+aggqSi157uchLFfU9KuudJZXWCZZjcC8TbVZU/R1h3FRhsOiNwAU xpAJS/S/qoWv4vR+ocLUEyx8vQvrN4ir90XqcrQO05q5IEe/9Atuu1hMd1v3oJTP 4Ku6+9VYA5B9BYWyijf4iivFo8s/GtntjqUMKMoNSKRepSxMoneU7aLZBn9gckEl 7dRfj89AxeiL8oJTwTgQIN0UX/LVfoDbdhLy+7WHlTu6pg== -----END CERTIFICATE-----Generated at Sun Jan 25 09:11:49 2026 by rpki-client