This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/o5BKntmZ9JtZu-kMInHB78iso3o.roa File: o5BKntmZ9JtZu-kMInHB78iso3o.roa (raw, json) Hash identifier: y3nwxUjTAtP6jlMnZQwlOLiitgv+xb6KltP0aX7WOCQ= Subject key identifier: A3:90:4A:9E:D9:99:F4:9B:59:BB:E9:0C:22:71:C1:EF:C8:AC:A3:7A Certificate issuer: /CN=835bc9bb547e27788d221bc8bbd5fb02e024480f Certificate serial: 019B76EB660E66A35D59A1280DC62A10FAAB Authority key identifier: 83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/o5BKntmZ9JtZu-kMInHB78iso3o.roa Signing time: Thu 01 Jan 2026 00:18:17 +0000 ROA not before: Thu 01 Jan 2026 00:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205909 IP address blocks: 2a0b:6b86:600::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.mft rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:66:0e:66:a3:5d:59:a1:28:0d:c6:2a:10:fa:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=835bc9bb547e27788d221bc8bbd5fb02e024480f Validity Not Before: Jan 1 00:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a3904a9ed999f49b59bbe90c2271c1efc8aca37a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:df:15:05:f0:8e:53:da:b6:d9:ff:cb:da:99: f8:59:1c:f0:83:aa:d3:6e:db:cd:cb:3c:bc:ce:1a: 54:c2:9e:9f:86:0e:8e:b6:bc:6e:c6:60:ec:b3:28: 05:2f:54:48:29:28:8c:ac:2b:44:7a:6c:00:a1:a6: 13:8f:bf:0f:c4:d1:ea:97:5d:51:ba:0c:aa:f2:03: b1:69:9e:22:b8:64:a2:7a:eb:95:fb:12:f6:63:52: 20:9c:52:ed:a0:16:b2:cc:e1:d6:dc:b8:89:5e:99: 82:e6:bb:96:93:ff:e6:86:63:b8:18:35:48:09:f3: d7:5a:8a:21:ac:b9:74:7a:27:51:f9:2d:15:7f:a9: 36:6a:35:b0:8c:7d:f1:1c:01:90:37:60:63:d8:19: a2:ed:0f:56:9c:87:5f:42:1e:ae:4c:ef:2e:5d:1a: 9c:fb:69:0d:bd:21:3d:86:55:26:cf:9e:8c:a9:c9: 7c:e7:b0:31:01:43:29:93:e7:e9:72:08:12:7e:d0: 7e:a2:70:85:6b:30:ff:9d:70:5b:e3:c7:b1:65:d3: 7a:0f:1f:b8:20:31:47:4f:f0:e5:1d:f0:5b:7c:4b: 85:03:40:ed:c9:37:7e:5f:a5:9c:35:20:6c:ea:1a: 39:32:72:8b:50:a2:7f:dc:ad:a9:78:c3:77:8f:28: ec:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:90:4A:9E:D9:99:F4:9B:59:BB:E9:0C:22:71:C1:EF:C8:AC:A3:7A X509v3 Authority Key Identifier: keyid:83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/o5BKntmZ9JtZu-kMInHB78iso3o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:6b86:600::/40 Signature Algorithm: sha256WithRSAEncryption 08:18:89:62:d9:ea:fe:24:b9:9d:b6:88:d8:46:fa:f4:c2:d6: 77:65:e0:b4:91:c3:2d:fa:71:20:49:83:b9:23:65:a5:f4:e1: d3:29:ee:fd:a4:b6:eb:76:46:1b:eb:6a:8a:c6:f1:bf:42:bc: 76:7f:f9:ed:6b:c1:9a:72:0e:6d:d9:b1:6b:9a:fc:2e:72:f6: 03:b5:01:35:f2:12:9b:29:76:8f:1c:6e:d8:f1:60:22:f5:2e: 77:bd:ce:34:e5:4c:38:d7:c4:b5:30:71:dd:93:7c:ef:a2:94: 86:4e:67:be:17:e1:c8:04:07:64:53:3c:fd:d8:85:6e:a5:e0: 89:f7:ca:00:19:65:a4:a5:ce:d1:76:c3:7d:a3:d2:56:1a:88: 0b:a8:5c:2f:07:2f:92:5c:73:bf:8c:c4:5e:0a:84:6f:17:35: 95:99:89:80:40:f0:59:45:0a:e7:a5:58:14:b4:6f:a7:3d:b7: 96:1d:cd:2a:3a:7a:93:f2:f8:68:d5:c5:d9:92:f8:12:1a:bf: 54:c3:6d:d0:3a:58:de:96:27:cb:b1:19:e4:7f:ae:32:7d:64: ad:fe:72:39:9a:5d:ca:52:67:c4:51:af:fc:30:7a:5e:7c:30: 0f:44:5c:f6:7f:39:9e:92:d8:5d:33:33:00:9f:de:ab:2b:62: b8:e9:ba:80 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt262YOZqNdWaEoDcYqEPqrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzNWJjOWJiNTQ3ZTI3Nzg4ZDIyMWJjOGJiZDVmYjAyZTAy NDQ4MGYwHhcNMjYwMTAxMDAxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMzkwNGE5ZWQ5OTlmNDliNTliYmU5MGMyMjcxYzFlZmM4YWNhMzdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA298VBfCOU9q22f/L2pn4WRzwg6rT btvNyzy8zhpUwp6fhg6OtrxuxmDssygFL1RIKSiMrCtEemwAoaYTj78PxNHql11R ugyq8gOxaZ4iuGSieuuV+xL2Y1IgnFLtoBayzOHW3LiJXpmC5ruWk//mhmO4GDVI CfPXWoohrLl0eidR+S0Vf6k2ajWwjH3xHAGQN2Bj2Bmi7Q9WnIdfQh6uTO8uXRqc +2kNvSE9hlUmz56Mqcl857AxAUMpk+fpcggSftB+onCFazD/nXBb48exZdN6Dx+4 IDFHT/DlHfBbfEuFA0DtyTd+X6WcNSBs6ho5MnKLUKJ/3K2peMN3jyjsPQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFKOQSp7ZmfSbWbvpDCJxwe/IrKN6MB8GA1UdIwQY MBaAFINbybtUfid4jSIbyLvV+wLgJEgPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzF2SnUxUi1KM2lOSWh2SXU5WDdBdUFrU0E4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC85NjJmYjEtM2RmMC00ZWMyLWI1MGEt YjM2YTI0ZDM5NDI3LzEvbzVCS250bVo5SnRadS1rTUluSEI3OGlzbzNvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC85NjJmYjEtM2RmMC00ZWMyLWI1MGEtYjM2YTI0ZDM5NDI3 LzEvZzF2SnUxUi1KM2lOSWh2SXU5WDdBdUFrU0E4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgtrhgYw DQYJKoZIhvcNAQELBQADggEBAAgYiWLZ6v4kuZ22iNhG+vTC1ndl4LSRwy36cSBJ g7kjZaX04dMp7v2ktut2RhvraorG8b9CvHZ/+e1rwZpyDm3ZsWua/C5y9gO1ATXy Epspdo8cbtjxYCL1Lne9zjTlTDjXxLUwcd2TfO+ilIZOZ74X4cgEB2RTPP3YhW6l 4In3ygAZZaSlztF2w32j0lYaiAuoXC8HL5Jcc7+MxF4KhG8XNZWZiYBA8FlFCuel WBS0b6c9t5YdzSo6epPy+GjVxdmS+BIav1TDbdA6WN6WJ8uxGeR/rjJ9ZK3+cjma XcpSZ8RRr/wwel58MA9EXPZ/OZ6S2F0zMwCf3qsrYrjpuoA= -----END CERTIFICATE-----Generated at Sun Jan 25 22:50:07 2026 by rpki-client