This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/mHSeWUrjc6YX-rsHgTi0XW2FRBg.roa File: mHSeWUrjc6YX-rsHgTi0XW2FRBg.roa (raw, json) Hash identifier: t5nE21qjW3DJQIzH2j04n4MZU2wBAB1tTQYoPBXsr7U= Subject key identifier: 98:74:9E:59:4A:E3:73:A6:17:FA:BB:07:81:38:B4:5D:6D:85:44:18 Certificate issuer: /CN=2968b4e0ef8106f0e12ab8e501d2aa4e36b783c2 Certificate serial: 019B7BA36A7F2B1089D714F1BBCA9903E0B0 Authority key identifier: 29:68:B4:E0:EF:81:06:F0:E1:2A:B8:E5:01:D2:AA:4E:36:B7:83:C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWi04O-BBvDhKrjlAdKqTja3g8I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/mHSeWUrjc6YX-rsHgTi0XW2FRBg.roa Signing time: Thu 01 Jan 2026 22:17:45 +0000 ROA not before: Thu 01 Jan 2026 22:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207480 IP address blocks: 2a01:e901:160::/48 maxlen: 48 2a01:e901:162::/48 maxlen: 48 2a01:e901:170::/48 maxlen: 48 2a01:e901:172::/48 maxlen: 48 2a01:e901:182::/48 maxlen: 48 2a01:e901:192::/48 maxlen: 48 2a01:e901:1a2::/48 maxlen: 48 2a01:e901:1b2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/KWi04O-BBvDhKrjlAdKqTja3g8I.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/KWi04O-BBvDhKrjlAdKqTja3g8I.mft rsync://rpki.ripe.net/repository/DEFAULT/KWi04O-BBvDhKrjlAdKqTja3g8I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:6a:7f:2b:10:89:d7:14:f1:bb:ca:99:03:e0:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2968b4e0ef8106f0e12ab8e501d2aa4e36b783c2 Validity Not Before: Jan 1 22:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=98749e594ae373a617fabb078138b45d6d854418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d3:5a:08:fe:79:18:f4:f8:a4:ab:9b:83:3e: 5d:a6:93:09:b7:7e:c9:79:fc:b9:de:22:c0:86:4a: ee:d6:28:ee:97:c7:ce:fa:cd:2e:af:f4:80:27:7f: 78:c4:97:9a:79:89:af:de:50:7f:8b:e7:9e:a2:32: dd:f6:fc:f2:fd:fe:eb:bd:ce:63:f2:6e:91:c1:f1: d6:f1:b1:67:10:fc:78:b2:c9:89:aa:f0:cd:c4:2b: 95:ee:43:d3:fa:4a:5e:81:f4:4b:4f:3f:fb:34:f0: 32:b7:7d:03:35:4b:eb:e7:ef:61:89:af:9f:6a:ec: 9f:45:81:2c:a5:b8:9e:b8:21:2e:4f:2c:88:03:a9: a6:ce:1f:7d:56:7c:69:ec:83:0e:df:bb:75:2a:8f: 28:ee:b1:51:24:40:0b:db:2a:49:18:d0:98:4f:19: 62:67:43:32:64:76:9e:0d:c0:0f:8d:2b:b5:71:e9: 07:81:fc:0d:65:a7:b6:10:47:fb:49:10:2f:86:79: c3:63:4b:6a:c0:f1:96:ff:d2:5e:bb:4e:fb:b0:fa: 5a:f1:0b:a6:6a:40:a0:d5:e3:c2:41:84:17:79:a8: f6:e6:c9:96:53:57:ea:be:fb:03:52:41:e8:1c:82: 07:9c:a3:96:21:97:1d:dc:70:6f:04:ec:e6:33:52: 4f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:74:9E:59:4A:E3:73:A6:17:FA:BB:07:81:38:B4:5D:6D:85:44:18 X509v3 Authority Key Identifier: keyid:29:68:B4:E0:EF:81:06:F0:E1:2A:B8:E5:01:D2:AA:4E:36:B7:83:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWi04O-BBvDhKrjlAdKqTja3g8I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/mHSeWUrjc6YX-rsHgTi0XW2FRBg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/481637-6c1c-45e8-8fbd-44f8ed5d61d7/1/KWi04O-BBvDhKrjlAdKqTja3g8I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:e901:160::/48 2a01:e901:162::/48 2a01:e901:170::/48 2a01:e901:172::/48 2a01:e901:182::/48 2a01:e901:192::/48 2a01:e901:1a2::/48 2a01:e901:1b2::/48 Signature Algorithm: sha256WithRSAEncryption 40:87:5e:b8:e3:c3:18:e4:4d:58:84:96:d1:42:39:0a:bb:9d: 16:40:6e:84:06:b3:ef:af:df:5e:83:c0:76:f4:af:48:01:0d: 60:6a:37:a1:4e:5a:f8:22:11:30:2c:fc:04:09:4e:0c:00:72: 39:25:47:6c:9d:fa:3f:b7:39:13:3a:99:81:2e:50:77:8e:ee: 0f:f9:65:c1:b4:a4:09:c4:28:18:1a:6c:93:ea:19:56:fb:93: 88:c7:bf:30:34:15:58:bb:8f:dc:7c:e1:56:2b:4f:30:ff:d1: e9:7b:d3:ee:d0:6d:bd:8a:a6:92:3d:ca:c2:a5:85:af:31:eb: c5:e7:49:0d:09:b1:c1:c3:6e:01:ae:03:e3:1f:ce:25:19:08: ea:e3:92:cc:ac:23:aa:66:db:87:a4:e3:53:7d:e7:1e:97:14: fc:20:72:f9:5f:4c:64:86:aa:d8:bf:0c:03:67:4e:d7:54:91: c5:62:a7:5f:fc:64:b4:ff:8e:45:f6:0c:65:17:f1:8c:e0:82: 62:56:c3:b2:e5:0a:da:a3:dc:47:91:37:1f:e1:c4:06:a1:95: 09:1f:14:5d:97:86:07:99:f6:b4:7c:ec:be:cb:c6:19:ac:1f: 3f:f0:f9:ce:e5:df:49:94:e0:aa:a8:ed:8e:d6:34:2c:7d:92: 03:bf:d6:85 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgISAZt7o2p/KxCJ1xTxu8qZA+CwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5NjhiNGUwZWY4MTA2ZjBlMTJhYjhlNTAxZDJhYTRlMzZi NzgzYzIwHhcNMjYwMTAxMjIxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ODc0OWU1OTRhZTM3M2E2MTdmYWJiMDc4MTM4YjQ1ZDZkODU0NDE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNNaCP55GPT4pKubgz5dppMJt37J efy53iLAhkru1ijul8fO+s0ur/SAJ394xJeaeYmv3lB/i+eeojLd9vzy/f7rvc5j 8m6RwfHW8bFnEPx4ssmJqvDNxCuV7kPT+kpegfRLTz/7NPAyt30DNUvr5+9hia+f auyfRYEspbieuCEuTyyIA6mmzh99Vnxp7IMO37t1Ko8o7rFRJEAL2ypJGNCYTxli Z0MyZHaeDcAPjSu1cekHgfwNZae2EEf7SRAvhnnDY0tqwPGW/9Jeu077sPpa8Qum akCg1ePCQYQXeaj25smWU1fqvvsDUkHoHIIHnKOWIZcd3HBvBOzmM1JPBQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFJh0nllK43OmF/q7B4E4tF1thUQYMB8GA1UdIwQY MBaAFClotODvgQbw4Sq45QHSqk42t4PCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1dpMDRPLUJCdkRoS3JqbEFkS3FUamEzZzhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80ODE2MzctNmMxYy00NWU4LThmYmQt NDRmOGVkNWQ2MWQ3LzEvbUhTZVdVcmpjNllYLXJzSGdUaTBYVzJGUkJnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy80ODE2MzctNmMxYy00NWU4LThmYmQtNDRmOGVkNWQ2MWQ3 LzEvS1dpMDRPLUJCdkRoS3JqbEFkS3FUamEzZzhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAAjBIAwcAKgHpAQFg AwcAKgHpAQFiAwcAKgHpAQFwAwcAKgHpAQFyAwcAKgHpAQGCAwcAKgHpAQGSAwcA KgHpAQGiAwcAKgHpAQGyMA0GCSqGSIb3DQEBCwUAA4IBAQBAh16448MY5E1YhJbR QjkKu50WQG6EBrPvr99eg8B29K9IAQ1gajehTlr4IhEwLPwECU4MAHI5JUdsnfo/ tzkTOpmBLlB3ju4P+WXBtKQJxCgYGmyT6hlW+5OIx78wNBVYu4/cfOFWK08w/9Hp e9Pu0G29iqaSPcrCpYWvMevF50kNCbHBw24BrgPjH84lGQjq45LMrCOqZtuHpONT fecelxT8IHL5X0xkhqrYvwwDZ07XVJHFYqdf/GS0/45F9gxlF/GM4IJiVsOy5Qra o9xHkTcf4cQGoZUJHxRdl4YHmfa0fOy+y8YZrB8/8PnO5d9JlOCqqO2O1jQsfZID v9aF -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:27 2026 by rpki-client