This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/S0f4eJQFFpAJU7gBmRif1cCdYzE.roa File: S0f4eJQFFpAJU7gBmRif1cCdYzE.roa (raw, json) Hash identifier: dMXse4/XYRfPD3fvc6eTVZmcZ4FGksUwnohMDVBgvc0= Subject key identifier: 4B:47:F8:78:94:05:16:90:09:53:B8:01:99:18:9F:D5:C0:9D:63:31 Certificate issuer: /CN=2968b4e0ef8106f0e12ab8e501d2aa4e36b783c2 Certificate serial: 019B7BA36DCAB051B5716F8F06F07A64CAFB Authority key identifier: 29:68:B4:E0:EF:81:06:F0:E1:2A:B8:E5:01:D2:AA:4E:36:B7:83:C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWi04O-BBvDhKrjlAdKqTja3g8I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/S0f4eJQFFpAJU7gBmRif1cCdYzE.roa Signing time: Thu 01 Jan 2026 22:17:46 +0000 ROA not before: Thu 01 Jan 2026 22:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210348 IP address blocks: 2a01:e901:10c::/48 maxlen: 48 2a01:e901:11c::/48 maxlen: 48 2a01:e901:12c::/48 maxlen: 48 2a01:e901:13c::/48 maxlen: 48 2a01:e901:14c::/48 maxlen: 48 2a01:e901:15c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/KWi04O-BBvDhKrjlAdKqTja3g8I.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/KWi04O-BBvDhKrjlAdKqTja3g8I.mft rsync://rpki.ripe.net/repository/DEFAULT/KWi04O-BBvDhKrjlAdKqTja3g8I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:6d:ca:b0:51:b5:71:6f:8f:06:f0:7a:64:ca:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2968b4e0ef8106f0e12ab8e501d2aa4e36b783c2 Validity Not Before: Jan 1 22:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4b47f878940516900953b80199189fd5c09d6331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9b:ae:9e:a5:65:0c:64:9d:d3:b3:5f:36:18: e8:a3:dd:de:1d:bb:d3:f9:26:d3:f1:67:80:de:47: 90:dc:34:7b:70:7b:f5:ed:87:96:a1:39:8b:9f:c1: 6d:8a:8e:2c:ec:e0:7f:95:f0:7a:5e:c4:93:69:37: dd:bd:00:13:de:e0:70:50:ca:a6:c0:72:6c:11:96: b1:fc:37:f5:91:0e:51:c6:90:58:82:86:d7:1d:38: be:04:5d:80:d5:4b:df:d3:f5:61:01:43:fd:4d:8c: d9:07:c8:ed:a6:04:42:09:25:cb:1e:3d:c3:fa:cb: 1a:71:50:b6:d1:93:df:b4:86:28:b6:3f:33:5a:71: b8:2d:1e:36:66:7b:97:e8:c1:b9:53:b7:4a:d3:cb: 08:a1:18:70:97:e5:83:69:94:a6:79:b8:97:1d:d1: 21:a7:be:d4:1e:85:78:b8:b0:26:e2:73:6f:c5:5d: 66:72:9f:83:e7:bf:12:54:7e:3c:cf:a9:a1:4f:cf: 4b:82:87:17:cf:5a:35:d7:6f:34:6a:e0:aa:41:11: bb:0d:16:ae:d8:9b:ea:dd:80:5e:1d:36:b6:67:0c: 11:96:2e:3a:7d:be:90:5c:2a:be:2a:04:bc:34:8f: 59:16:3a:fb:10:b3:d4:77:a7:7f:a0:41:12:31:e9: 2f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:47:F8:78:94:05:16:90:09:53:B8:01:99:18:9F:D5:C0:9D:63:31 X509v3 Authority Key Identifier: keyid:29:68:B4:E0:EF:81:06:F0:E1:2A:B8:E5:01:D2:AA:4E:36:B7:83:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWi04O-BBvDhKrjlAdKqTja3g8I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/S0f4eJQFFpAJU7gBmRif1cCdYzE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/KWi04O-BBvDhKrjlAdKqTja3g8I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:e901:10c::/48 2a01:e901:11c::/48 2a01:e901:12c::/48 2a01:e901:13c::/48 2a01:e901:14c::/48 2a01:e901:15c::/48 Signature Algorithm: sha256WithRSAEncryption 42:62:95:23:47:4b:a5:ab:55:72:48:9b:bb:c5:2b:a7:70:0a: 15:99:f5:95:a1:90:ed:a7:a8:7f:8a:60:e0:01:43:7d:93:1e: 42:43:2e:cc:1b:a9:5b:64:cb:83:f3:13:57:8e:45:89:28:b3: 13:5a:d0:c5:2d:3e:fb:aa:e4:e8:79:2e:23:5d:f8:ad:fd:2e: 2d:9c:c3:22:d9:7e:44:89:ea:6a:39:d8:e1:f1:1c:25:f0:b0: b7:a0:80:8e:8f:66:07:12:e2:a1:fb:5f:0e:77:28:94:66:30: 76:8e:58:54:59:fb:85:ef:ce:63:d0:d0:d7:25:7f:b2:87:a9: d9:13:4e:7d:2f:33:c8:05:39:6e:79:ad:3a:0e:2c:c5:f7:26: f4:85:b8:c9:8c:12:b7:b1:65:c0:96:80:72:ab:a7:02:3b:ca: 58:10:b9:b0:b4:64:48:cb:00:e8:3a:d9:a7:03:ae:58:78:e3: 5b:4e:a8:70:a9:dc:9e:26:dc:ed:f3:65:a4:33:7f:a8:ea:9f: 46:b5:a9:48:21:b6:7b:c5:79:53:8e:1b:06:d9:b0:0c:cf:0e: f5:4f:5d:1c:42:eb:1d:05:f6:6f:95:2a:ec:10:a2:14:7b:e5: 20:36:57:1c:eb:ef:76:03:62:18:9a:af:fc:38:e0:da:3b:a5: c6:97:9f:14 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISAZt7o23KsFG1cW+PBvB6ZMr7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5NjhiNGUwZWY4MTA2ZjBlMTJhYjhlNTAxZDJhYTRlMzZi NzgzYzIwHhcNMjYwMTAxMjIxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YjQ3Zjg3ODk0MDUxNjkwMDk1M2I4MDE5OTE4OWZkNWMwOWQ2MzMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJuunqVlDGSd07NfNhjoo93eHbvT +SbT8WeA3keQ3DR7cHv17YeWoTmLn8Ftio4s7OB/lfB6XsSTaTfdvQAT3uBwUMqm wHJsEZax/Df1kQ5RxpBYgobXHTi+BF2A1Uvf0/VhAUP9TYzZB8jtpgRCCSXLHj3D +ssacVC20ZPftIYotj8zWnG4LR42ZnuX6MG5U7dK08sIoRhwl+WDaZSmebiXHdEh p77UHoV4uLAm4nNvxV1mcp+D578SVH48z6mhT89LgocXz1o11280auCqQRG7DRau 2Jvq3YBeHTa2ZwwRli46fb6QXCq+KgS8NI9ZFjr7ELPUd6d/oEESMekvgQIDAQAB o4ICOTCCAjUwHQYDVR0OBBYEFEtH+HiUBRaQCVO4AZkYn9XAnWMxMB8GA1UdIwQY MBaAFClotODvgQbw4Sq45QHSqk42t4PCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1dpMDRPLUJCdkRoS3JqbEFkS3FUamEzZzhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80ODE2MzctNmMxYy00NWU4LThmYmQt NDRmOGVkNWQ2MWQ3LzEvUzBmNGVKUUZGcEFKVTdnQm1SaWYxY0NkWXpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy80ODE2MzctNmMxYy00NWU4LThmYmQtNDRmOGVkNWQ2MWQ3 LzEvS1dpMDRPLUJCdkRoS3JqbEFkS3FUamEzZzhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAAjA2AwcAKgHpAQEM AwcAKgHpAQEcAwcAKgHpAQEsAwcAKgHpAQE8AwcAKgHpAQFMAwcAKgHpAQFcMA0G CSqGSIb3DQEBCwUAA4IBAQBCYpUjR0ulq1VySJu7xSuncAoVmfWVoZDtp6h/imDg AUN9kx5CQy7MG6lbZMuD8xNXjkWJKLMTWtDFLT77quToeS4jXfit/S4tnMMi2X5E iepqOdjh8Rwl8LC3oICOj2YHEuKh+18OdyiUZjB2jlhUWfuF785j0NDXJX+yh6nZ E059LzPIBTluea06DizF9yb0hbjJjBK3sWXAloByq6cCO8pYELmwtGRIywDoOtmn A65YeONbTqhwqdyeJtzt82WkM3+o6p9GtalIIbZ7xXlTjhsG2bAMzw71T10cQusd BfZvlSrsEKIUe+UgNlcc6+92A2IYmq/8OODaO6XGl58U -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:50 2026 by rpki-client