This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/5o8Qy57Y5UEvFMyCRbONIt76Hds.roa File: 5o8Qy57Y5UEvFMyCRbONIt76Hds.roa (raw, json) Hash identifier: oJzi0bxwWR8wQJNsNRSVYDRg/bJRETpHh6yiLKjCSmI= Subject key identifier: E6:8F:10:CB:9E:D8:E5:41:2F:14:CC:82:45:B3:8D:22:DE:FA:1D:DB Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0 Certificate serial: 019B7758EFBA5E39911BAB429906B341CB8C Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/5o8Qy57Y5UEvFMyCRbONIt76Hds.roa Signing time: Thu 01 Jan 2026 02:17:55 +0000 ROA not before: Thu 01 Jan 2026 02:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212049 IP address blocks: 2a0f:5707:aaf0::/44 maxlen: 44 2a0f:5707:aafa::/48 maxlen: 48 2a0f:5707:aaff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.mft rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:ef:ba:5e:39:91:1b:ab:42:99:06:b3:41:cb:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0 Validity Not Before: Jan 1 02:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e68f10cb9ed8e5412f14cc8245b38d22defa1ddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1e:e1:10:ba:bd:b0:65:30:f1:f3:c4:8a:15: 92:b2:19:98:23:63:fe:02:06:f4:3e:fe:b2:03:4d: 0e:9d:fb:c6:89:d8:ea:ca:7e:2c:60:e2:33:57:29: a0:43:7c:54:5e:5f:72:f1:19:b9:fd:41:c3:77:0f: 38:bc:54:58:1b:fe:90:f9:cc:4d:64:56:b8:f6:e0: 31:64:68:12:4c:ad:2a:75:8e:ff:3c:9d:85:bb:02: e2:aa:98:72:6b:79:37:ce:8c:84:2a:06:49:9c:40: 0e:e8:0e:09:33:b9:02:4f:a6:03:65:34:d8:24:b8: 99:11:27:47:c0:56:77:56:23:eb:12:83:df:0d:02: 67:68:ca:79:29:78:02:f4:e2:71:11:de:3e:cf:b5: 2f:e9:80:90:78:e0:31:4f:eb:bf:7a:25:e4:dd:60: 46:41:3d:21:5d:11:9f:fb:aa:31:c6:8f:1c:37:52: 21:8a:fd:50:6d:28:c2:55:0e:df:a2:d8:55:be:9b: 23:09:91:d8:9e:08:57:84:87:d9:ba:bb:55:28:bc: b4:af:68:5b:b9:82:d1:a0:38:4c:91:44:30:b8:3b: a2:48:40:05:7f:79:60:db:7e:35:9e:d6:ec:07:2f: 41:5c:59:34:27:87:dc:f9:b7:df:84:53:fc:bc:93: 1d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:8F:10:CB:9E:D8:E5:41:2F:14:CC:82:45:B3:8D:22:DE:FA:1D:DB X509v3 Authority Key Identifier: keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/5o8Qy57Y5UEvFMyCRbONIt76Hds.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:5707:aaf0::/44 Signature Algorithm: sha256WithRSAEncryption 05:22:e8:07:dc:88:1b:08:7a:9e:cb:cf:cf:8c:2a:16:a6:02: c6:68:d1:34:2b:4f:cf:89:d3:aa:af:ea:16:9a:14:3c:3a:b3: bb:32:ff:fc:b7:f6:5b:af:fe:db:40:88:66:ae:c1:28:b9:94: 52:60:99:74:65:a3:d5:44:ac:32:9d:13:b9:e2:78:96:c3:22: b6:c4:f7:84:3c:92:b0:54:7b:a3:46:28:c7:f4:44:de:95:95: cd:76:4a:5b:50:0d:f5:17:c3:b3:03:75:4f:dd:b1:fe:27:1e: 2f:0c:ae:6f:35:86:0f:f8:b8:68:be:cd:e9:08:e7:d7:af:66: 4e:18:1f:7a:6b:3e:8c:72:73:22:90:bc:48:f7:45:a2:0f:5b: 8e:68:bc:dd:0b:f4:2a:bd:1c:1b:18:08:b4:6a:c4:aa:5d:34: 37:a8:b6:09:88:72:e8:29:4a:55:57:cc:8f:cf:bc:87:6e:06: 19:13:af:2f:ee:1c:f0:d6:10:cf:f5:d8:d9:f6:e0:d7:0f:0d: a4:da:7c:39:7d:68:e1:8a:71:12:9c:31:c0:88:c8:7f:bb:d2: 53:ef:ce:cf:c7:f9:08:b4:46:30:57:4e:d1:e6:38:cf:77:98: 67:cf:4a:3d:21:aa:61:1f:50:d2:c9:d1:9c:25:59:39:35:56: f8:8b:a8:d0 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3WO+6XjmRG6tCmQazQcuMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhNjQ0YzExNTY4NTE4MDNmMzdhZGVlYzA4NzZjY2Y5ODlk NWFlZjAwHhcNMjYwMTAxMDIxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNjhmMTBjYjllZDhlNTQxMmYxNGNjODI0NWIzOGQyMmRlZmExZGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwR7hELq9sGUw8fPEihWSshmYI2P+ Agb0Pv6yA00OnfvGidjqyn4sYOIzVymgQ3xUXl9y8Rm5/UHDdw84vFRYG/6Q+cxN ZFa49uAxZGgSTK0qdY7/PJ2FuwLiqphya3k3zoyEKgZJnEAO6A4JM7kCT6YDZTTY JLiZESdHwFZ3ViPrEoPfDQJnaMp5KXgC9OJxEd4+z7Uv6YCQeOAxT+u/eiXk3WBG QT0hXRGf+6oxxo8cN1Ihiv1QbSjCVQ7fothVvpsjCZHYnghXhIfZurtVKLy0r2hb uYLRoDhMkUQwuDuiSEAFf3lg2341ntbsBy9BXFk0J4fc+bffhFP8vJMdmQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFOaPEMue2OVBLxTMgkWzjSLe+h3bMB8GA1UdIwQY MBaAFEpkTBFWhRgD83re7Ah2zPmJ1a7wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3Mzkt Y2MxYzliNWY2NjQwLzEvNW84UXk1N1k1VUV2Rk15Q1JiT05JdDc2SGRzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3MzktY2MxYzliNWY2NjQw LzEvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg9XB6rw MA0GCSqGSIb3DQEBCwUAA4IBAQAFIugH3IgbCHqey8/PjCoWpgLGaNE0K0/PidOq r+oWmhQ8OrO7Mv/8t/Zbr/7bQIhmrsEouZRSYJl0ZaPVRKwynRO54niWwyK2xPeE PJKwVHujRijH9ETelZXNdkpbUA31F8OzA3VP3bH+Jx4vDK5vNYYP+Lhovs3pCOfX r2ZOGB96az6McnMikLxI90WiD1uOaLzdC/QqvRwbGAi0asSqXTQ3qLYJiHLoKUpV V8yPz7yHbgYZE68v7hzw1hDP9djZ9uDXDw2k2nw5fWjhinESnDHAiMh/u9JT787P x/kItEYwV07R5jjPd5hnz0o9IaphH1DSydGcJVk5NVb4i6jQ -----END CERTIFICATE-----Generated at Sun Jan 25 10:08:48 2026 by rpki-client