This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/opbJdENGQKlgxiw3UzXsb5urRe8.roa File: opbJdENGQKlgxiw3UzXsb5urRe8.roa (raw, json) Hash identifier: 6DXHz5IMpgCFLQr3dZW4IiHNXv7NbkZD9862/Rjdnts= Subject key identifier: A2:96:C9:74:43:46:40:A9:60:C6:2C:37:53:35:EC:6F:9B:AB:45:EF Certificate issuer: /CN=351a14ce9d25239b92fe5abce532515044c1aba4 Certificate serial: 019B7DCB0EC1A9E32C45B8E6E23F821065D5 Authority key identifier: 35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/opbJdENGQKlgxiw3UzXsb5urRe8.roa Signing time: Fri 02 Jan 2026 08:20:18 +0000 ROA not before: Fri 02 Jan 2026 08:20:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57640 IP address blocks: 2a05:91c2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.mft rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:0e:c1:a9:e3:2c:45:b8:e6:e2:3f:82:10:65:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=351a14ce9d25239b92fe5abce532515044c1aba4 Validity Not Before: Jan 2 08:20:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a296c974434640a960c62c375335ec6f9bab45ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:d1:66:00:c9:98:02:ed:0a:43:8c:15:ee:76: 75:2a:5c:3b:76:cf:ae:49:74:90:87:ee:93:ff:63: 7a:37:91:f1:32:0e:ee:fe:05:40:bd:6d:c0:3e:fd: 20:5b:61:07:af:f4:c7:05:b2:ab:52:4a:e5:d2:59: cc:e9:c8:b5:8b:5e:8c:8c:2e:5c:66:eb:d9:bd:20: b9:98:af:8c:f6:5b:09:d0:e3:2d:cc:db:f9:d6:7f: 8e:3c:fa:27:27:44:e7:66:8e:d7:0e:ac:9e:2a:3a: 3b:e7:cc:81:c7:c8:36:14:06:ae:9e:37:5c:e5:47: e3:36:97:9b:a8:01:60:bc:ff:8f:a6:b6:17:4a:91: a1:35:9a:97:c9:e2:6c:90:53:27:06:f3:e3:dd:92: 71:2f:6f:ae:66:cd:80:5f:d2:3b:de:9c:a5:74:9f: cf:93:10:92:11:13:c9:55:10:a4:ed:33:f4:f7:c1: cc:2f:b0:5f:67:bd:eb:9b:dd:04:9e:f7:a6:95:cd: b4:11:42:62:bf:fb:e0:63:7d:b4:75:bb:c2:d6:0d: 22:d8:90:0e:63:10:a0:01:53:b7:00:2e:32:07:c4: a8:d1:06:02:7b:f6:ed:82:94:a0:ba:b8:60:73:bb: b9:fd:c0:65:52:82:92:2c:7c:47:40:79:60:37:5d: 1e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:96:C9:74:43:46:40:A9:60:C6:2C:37:53:35:EC:6F:9B:AB:45:EF X509v3 Authority Key Identifier: keyid:35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/opbJdENGQKlgxiw3UzXsb5urRe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:91c2::/48 Signature Algorithm: sha256WithRSAEncryption 6a:1e:9f:79:66:51:c4:fb:e1:5b:94:80:28:32:7f:72:1b:f4: 75:10:e5:98:1d:85:33:e5:a1:b9:27:d4:90:eb:90:3a:d0:fc: 34:97:28:92:1c:75:85:07:b5:91:cc:f0:a5:b1:b1:05:44:b0: ff:7f:de:1a:67:83:0e:ce:e7:6f:26:b0:6d:79:c7:c2:86:ab: 08:9d:5e:d0:4e:4b:a3:a2:76:1b:f8:17:a3:e0:a9:cb:e1:39: 0f:c3:bc:f4:9e:31:5e:2d:18:af:ac:61:a8:93:7e:3f:50:34: d7:2c:07:a0:9d:8b:88:bc:a7:52:2a:71:58:3d:b2:7d:58:9f: af:8c:e5:7e:1c:36:72:c3:64:f3:e0:ea:1b:a5:0f:b4:d8:9b: dd:a3:72:d7:a2:c9:97:e7:04:4d:45:58:3f:f8:6c:d7:82:c0: b9:ab:b0:be:83:4a:ed:56:1c:1b:cc:c8:07:f9:13:aa:2d:64: 68:77:1f:75:cc:89:c3:17:ae:a0:13:b3:7f:6f:33:29:a1:d0: f8:0f:41:d4:0a:a9:98:d0:40:59:2d:9d:bc:cf:b5:4a:c5:c5: 87:c7:0d:2a:ef:cf:88:8e:c3:fb:5c:74:ce:d7:0a:8c:a0:19: 1b:b4:6f:e3:a1:54:f2:2a:2c:06:6c:fd:05:66:a3:a0:12:2d: 9f:7c:d9:93 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9yw7BqeMsRbjm4j+CEGXVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MWExNGNlOWQyNTIzOWI5MmZlNWFiY2U1MzI1MTUwNDRj MWFiYTQwHhcNMjYwMTAyMDgyMDE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMjk2Yzk3NDQzNDY0MGE5NjBjNjJjMzc1MzM1ZWM2ZjliYWI0NWVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgdFmAMmYAu0KQ4wV7nZ1Klw7ds+u SXSQh+6T/2N6N5HxMg7u/gVAvW3APv0gW2EHr/THBbKrUkrl0lnM6ci1i16MjC5c ZuvZvSC5mK+M9lsJ0OMtzNv51n+OPPonJ0TnZo7XDqyeKjo758yBx8g2FAaunjdc 5UfjNpebqAFgvP+PprYXSpGhNZqXyeJskFMnBvPj3ZJxL2+uZs2AX9I73pyldJ/P kxCSERPJVRCk7TP098HML7BfZ73rm90Envemlc20EUJiv/vgY320dbvC1g0i2JAO YxCgAVO3AC4yB8So0QYCe/btgpSgurhgc7u5/cBlUoKSLHxHQHlgN10e9wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKKWyXRDRkCpYMYsN1M17G+bq0XvMB8GA1UdIwQY MBaAFDUaFM6dJSObkv5avOUyUVBEwaukMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlJvVXpwMGxJNXVTX2xxODVUSlJVRVRCcTZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8zZTIxNjUtM2JiNS00NWMzLTk4OWEt Mjk1Mzg5NGIxZjZkLzEvb3BiSmRFTkdRS2xneGl3M1V6WHNiNXVyUmU4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy8zZTIxNjUtM2JiNS00NWMzLTk4OWEtMjk1Mzg5NGIxZjZk LzEvTlJvVXpwMGxJNXVTX2xxODVUSlJVRVRCcTZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgWRwgAA MA0GCSqGSIb3DQEBCwUAA4IBAQBqHp95ZlHE++FblIAoMn9yG/R1EOWYHYUz5aG5 J9SQ65A60Pw0lyiSHHWFB7WRzPClsbEFRLD/f94aZ4MOzudvJrBtecfChqsInV7Q TkujonYb+Bej4KnL4TkPw7z0njFeLRivrGGok34/UDTXLAegnYuIvKdSKnFYPbJ9 WJ+vjOV+HDZyw2Tz4OobpQ+02Jvdo3LXosmX5wRNRVg/+GzXgsC5q7C+g0rtVhwb zMgH+ROqLWRodx91zInDF66gE7N/bzMpodD4D0HUCqmY0EBZLZ28z7VKxcWHxw0q 78+IjsP7XHTO1wqMoBkbtG/joVTyKiwGbP0FZqOgEi2ffNmT -----END CERTIFICATE-----Generated at Mon Jan 26 04:42:36 2026 by rpki-client