This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/5cd884-79f5-483d-904a-96fe1911d0b3/1/D18iaweY7IkhqqR5zq6vLrvj0Pg.roa File: D18iaweY7IkhqqR5zq6vLrvj0Pg.roa (raw, json) Hash identifier: Hhn3FeMGETnYd99FxqKSu0nN+d4EwdOOJOCVfjvw0Rk= Subject key identifier: 0F:5F:22:6B:07:98:EC:89:21:AA:A4:79:CE:AE:AF:2E:BB:E3:D0:F8 Certificate issuer: /CN=ecb612e1f6b4d83f8a5d552cf3b60edd23bfe9f4 Certificate serial: 019B78354DF093ABB9C31FF2872E1BF7E8E8 Authority key identifier: EC:B6:12:E1:F6:B4:D8:3F:8A:5D:55:2C:F3:B6:0E:DD:23:BF:E9:F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7LYS4fa02D-KXVUs87YO3SO_6fQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/5cd884-79f5-483d-904a-96fe1911d0b3/1/D18iaweY7IkhqqR5zq6vLrvj0Pg.roa Signing time: Thu 01 Jan 2026 06:18:37 +0000 ROA not before: Thu 01 Jan 2026 06:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201057 IP address blocks: 2a03:e581::/48 maxlen: 48 2a03:e581:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/5cd884-79f5-483d-904a-96fe1911d0b3/1/7LYS4fa02D-KXVUs87YO3SO_6fQ.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/5cd884-79f5-483d-904a-96fe1911d0b3/1/7LYS4fa02D-KXVUs87YO3SO_6fQ.mft rsync://rpki.ripe.net/repository/DEFAULT/7LYS4fa02D-KXVUs87YO3SO_6fQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:4d:f0:93:ab:b9:c3:1f:f2:87:2e:1b:f7:e8:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ecb612e1f6b4d83f8a5d552cf3b60edd23bfe9f4 Validity Not Before: Jan 1 06:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0f5f226b0798ec8921aaa479ceaeaf2ebbe3d0f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:59:f4:d6:cb:6c:9a:f6:c6:e0:6b:e3:61:59: 1b:e5:cd:d0:13:ce:b1:ac:01:2d:ad:64:1f:9c:71: e4:5d:9f:d9:1b:fa:5f:1b:a7:50:67:df:ee:6b:ed: b6:2a:be:64:a3:38:5e:f1:0f:59:40:ee:ce:53:e1: 92:a3:a3:3c:c5:a1:52:44:bf:2c:c1:a6:54:15:77: 96:f0:d1:7f:7e:62:56:26:5a:17:89:c7:c4:4d:14: b9:58:ae:3f:de:3c:d5:15:04:b3:6d:e9:0c:68:d3: b0:10:64:63:a4:c7:f2:30:fd:d2:fa:f5:a4:e0:44: df:3d:43:b4:e2:5c:f7:f7:f7:b6:33:69:2a:55:65: a2:88:fb:a8:78:25:1c:f8:ec:8b:75:07:f3:45:1f: 4c:d8:ff:a0:f7:a7:c6:6c:f6:70:08:f2:77:5a:df: 14:1d:0b:24:1e:f0:8a:e3:93:a0:a4:39:8d:ff:68: e4:67:d2:8c:87:a4:2f:8b:8a:31:e4:ea:a1:8c:98: d5:a9:28:ad:a2:46:2f:0d:c2:bd:30:d2:24:f3:8b: 5c:b9:36:4d:e2:4c:8b:fd:fd:6d:52:80:af:6e:ee: ac:a7:53:ec:8e:d9:05:d8:fb:34:85:aa:64:2c:bc: 44:ae:a6:f2:98:ed:c6:39:d8:ad:07:ef:bd:71:8b: bf:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:5F:22:6B:07:98:EC:89:21:AA:A4:79:CE:AE:AF:2E:BB:E3:D0:F8 X509v3 Authority Key Identifier: keyid:EC:B6:12:E1:F6:B4:D8:3F:8A:5D:55:2C:F3:B6:0E:DD:23:BF:E9:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7LYS4fa02D-KXVUs87YO3SO_6fQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/5cd884-79f5-483d-904a-96fe1911d0b3/1/D18iaweY7IkhqqR5zq6vLrvj0Pg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/5cd884-79f5-483d-904a-96fe1911d0b3/1/7LYS4fa02D-KXVUs87YO3SO_6fQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a03:e581::/48 2a03:e581:4::/48 Signature Algorithm: sha256WithRSAEncryption 78:07:97:e0:72:89:31:c0:c0:bc:d1:53:24:96:29:cc:e7:f3: 00:3f:81:c5:c3:55:2f:1b:89:f8:84:0b:8c:3f:d2:24:78:8a: 31:37:5b:66:18:87:b9:97:f8:09:82:ac:63:5d:43:17:1f:e5: 0b:1f:a6:cb:d1:93:cb:07:25:97:ce:64:e4:33:2b:18:bb:68: e9:13:14:84:06:75:4e:af:7a:fb:08:55:a9:b1:cb:af:81:94: cb:0a:4d:e3:47:88:b2:4e:e4:69:6a:a6:75:6d:c4:eb:a4:4b: 58:23:e2:42:f8:25:75:bd:d0:ec:3b:18:f8:e5:d6:59:cb:0a: 84:d7:0d:83:0d:87:5f:ce:08:c4:b2:b2:86:a5:a1:55:b1:b6: 99:88:5f:b4:bb:80:b3:4e:1f:10:9e:d0:e2:20:7a:f0:05:d1: 99:42:f3:0e:cb:70:ca:3b:be:5d:09:bd:02:7e:dd:3b:b6:37: c7:39:d4:3b:68:0e:44:e4:15:f0:40:ab:3c:fa:af:9f:f7:4c: 54:8c:d0:d6:b2:06:b0:ea:b1:8b:a4:6e:3f:00:dd:31:a0:f9: e8:34:5f:b7:4e:86:52:3b:09:69:1d:de:56:80:18:d4:bf:c7: a6:3d:28:e7:96:21:8c:7c:05:38:52:0f:ad:b2:07:7a:c1:30: b6:7c:b5:dd -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt4NU3wk6u5wx/yhy4b9+joMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVjYjYxMmUxZjZiNGQ4M2Y4YTVkNTUyY2YzYjYwZWRkMjNi ZmU5ZjQwHhcNMjYwMTAxMDYxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZjVmMjI2YjA3OThlYzg5MjFhYWE0NzljZWFlYWYyZWJiZTNkMGY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFn01stsmvbG4GvjYVkb5c3QE86x rAEtrWQfnHHkXZ/ZG/pfG6dQZ9/ua+22Kr5kozhe8Q9ZQO7OU+GSo6M8xaFSRL8s waZUFXeW8NF/fmJWJloXicfETRS5WK4/3jzVFQSzbekMaNOwEGRjpMfyMP3S+vWk 4ETfPUO04lz39/e2M2kqVWWiiPuoeCUc+OyLdQfzRR9M2P+g96fGbPZwCPJ3Wt8U HQskHvCK45OgpDmN/2jkZ9KMh6Qvi4ox5OqhjJjVqSitokYvDcK9MNIk84tcuTZN 4kyL/f1tUoCvbu6sp1PsjtkF2Ps0hapkLLxErqbymO3GOditB++9cYu/NwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFA9fImsHmOyJIaqkec6ury6749D4MB8GA1UdIwQY MBaAFOy2EuH2tNg/il1VLPO2Dt0jv+n0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN0xZUzRmYTAyRC1LWFZVczg3WU8zU09fNmZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS81Y2Q4ODQtNzlmNS00ODNkLTkwNGEt OTZmZTE5MTFkMGIzLzEvRDE4aWF3ZVk3SWtocXFSNXpxNnZMcnZqMFBnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS81Y2Q4ODQtNzlmNS00ODNkLTkwNGEtOTZmZTE5MTFkMGIz LzEvN0xZUzRmYTAyRC1LWFZVczg3WU8zU09fNmZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgPlgQAA AwcAKgPlgQAEMA0GCSqGSIb3DQEBCwUAA4IBAQB4B5fgcokxwMC80VMklinM5/MA P4HFw1UvG4n4hAuMP9IkeIoxN1tmGIe5l/gJgqxjXUMXH+ULH6bL0ZPLByWXzmTk MysYu2jpExSEBnVOr3r7CFWpscuvgZTLCk3jR4iyTuRpaqZ1bcTrpEtYI+JC+CV1 vdDsOxj45dZZywqE1w2DDYdfzgjEsrKGpaFVsbaZiF+0u4CzTh8QntDiIHrwBdGZ QvMOy3DKO75dCb0Cft07tjfHOdQ7aA5E5BXwQKs8+q+f90xUjNDWsgaw6rGLpG4/ AN0xoPnoNF+3ToZSOwlpHd5WgBjUv8emPSjnliGMfAU4Ug+tsgd6wTC2fLXd -----END CERTIFICATE-----Generated at Mon Jan 26 08:39:53 2026 by rpki-client