This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/481236-a06c-4903-9385-6b7d7e4ed701/1/xOxM1BncNHfY0c-6DzC1tBiAY8A.roa File: xOxM1BncNHfY0c-6DzC1tBiAY8A.roa (raw, json) Hash identifier: Yq27UJVRisxKr8puDtLKdu2H0pR8ajRLZTCral2Htvw= Subject key identifier: C4:EC:4C:D4:19:DC:34:77:D8:D1:CF:BA:0F:30:B5:B4:18:80:63:C0 Certificate issuer: /CN=35d45f2ac5bce1569df6b2ad80d16f1b92fbd85c Certificate serial: 019B797E59E19CC0154D269B283970DBC626 Authority key identifier: 35:D4:5F:2A:C5:BC:E1:56:9D:F6:B2:AD:80:D1:6F:1B:92:FB:D8:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdRfKsW84Vad9rKtgNFvG5L72Fw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/481236-a06c-4903-9385-6b7d7e4ed701/1/xOxM1BncNHfY0c-6DzC1tBiAY8A.roa Signing time: Thu 01 Jan 2026 12:18:02 +0000 ROA not before: Thu 01 Jan 2026 12:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203600 IP address blocks: 2a06:e540::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/481236-a06c-4903-9385-6b7d7e4ed701/1/NdRfKsW84Vad9rKtgNFvG5L72Fw.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/481236-a06c-4903-9385-6b7d7e4ed701/1/NdRfKsW84Vad9rKtgNFvG5L72Fw.mft rsync://rpki.ripe.net/repository/DEFAULT/NdRfKsW84Vad9rKtgNFvG5L72Fw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:59:e1:9c:c0:15:4d:26:9b:28:39:70:db:c6:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35d45f2ac5bce1569df6b2ad80d16f1b92fbd85c Validity Not Before: Jan 1 12:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c4ec4cd419dc3477d8d1cfba0f30b5b4188063c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:47:14:bd:5e:3b:0f:38:9d:8c:11:b6:1a:16: 67:6d:8f:53:b7:91:64:62:f0:51:be:ac:8b:b0:c9: a3:1c:39:c3:fa:b5:f8:49:44:ea:67:9c:1c:99:16: d0:ca:2b:72:61:23:a3:2c:80:3e:09:a5:89:2b:a7: e8:7f:92:8c:90:1c:31:0e:5f:a4:75:54:69:77:26: a1:72:e7:57:2f:87:e0:30:aa:36:2b:7f:8b:09:c5: e1:79:51:c3:b7:44:45:9a:e2:d8:94:38:c5:e2:0f: 31:7c:bb:7d:45:b0:88:db:25:8f:fd:7e:92:48:a0: ae:0b:64:0c:4d:55:09:a9:bf:aa:9f:31:50:d3:4e: bf:20:a9:36:07:eb:38:1d:28:6f:db:17:7a:cc:8c: 1a:64:35:af:11:4c:5e:26:02:c4:6d:6d:c5:55:33: 42:38:4a:94:98:df:87:f7:7b:f3:91:cc:b2:ab:17: 8d:05:2a:d8:c4:c8:41:72:ea:ba:c6:93:32:ec:d0: 2b:6d:d6:d1:f0:f5:e1:30:47:91:c3:58:bb:b1:a9: 9b:59:92:10:24:a7:d2:31:3d:92:5f:21:24:f2:0c: 58:fb:f9:db:8f:74:89:ae:bb:e3:d4:2d:c3:74:a9: 03:e0:60:ff:47:6a:9d:0c:83:f1:f8:4b:50:01:cb: ec:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:EC:4C:D4:19:DC:34:77:D8:D1:CF:BA:0F:30:B5:B4:18:80:63:C0 X509v3 Authority Key Identifier: keyid:35:D4:5F:2A:C5:BC:E1:56:9D:F6:B2:AD:80:D1:6F:1B:92:FB:D8:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdRfKsW84Vad9rKtgNFvG5L72Fw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/481236-a06c-4903-9385-6b7d7e4ed701/1/xOxM1BncNHfY0c-6DzC1tBiAY8A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/481236-a06c-4903-9385-6b7d7e4ed701/1/NdRfKsW84Vad9rKtgNFvG5L72Fw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:e540::/29 Signature Algorithm: sha256WithRSAEncryption 71:3d:2d:f8:3a:0d:0a:45:96:9e:36:10:ee:88:d6:7c:0b:6c: 3e:05:2c:72:92:46:00:94:49:cf:ac:c2:dd:d4:09:01:69:be: ac:35:fe:2c:cf:f3:26:4f:e1:14:48:92:89:c9:14:43:3d:cc: 65:19:1e:45:cd:e2:ce:41:0c:f0:ae:0d:96:ad:05:d7:d2:71: 03:bf:02:9b:0b:62:64:f5:2b:a5:24:ae:fd:b2:6e:40:f6:fc: 8d:67:17:00:a1:ad:3d:0b:92:fc:a1:36:61:b1:00:75:0a:ab: 74:4d:f4:c4:05:1a:81:9e:64:7f:c4:d7:11:2b:95:fb:19:2c: 7d:67:15:d9:3c:f4:e8:a6:8c:be:b9:da:91:df:7a:8c:c6:72: db:64:9c:d0:df:7f:ce:d0:18:32:e7:d6:44:21:12:28:f3:0e: d8:83:f2:a2:87:d5:0b:21:ae:93:26:92:7a:c5:f8:4e:d6:47: 20:e6:22:3d:25:e5:7e:cb:2e:28:73:f3:39:6c:87:87:1f:2a: 50:3a:84:f3:0c:c4:59:21:8b:0e:b7:56:ae:87:5f:b2:f4:6f: 22:60:45:31:c8:7d:c4:d0:b4:84:ab:e9:a8:44:25:23:46:37: b9:c9:46:7e:ce:e9:d2:63:bb:7e:95:87:44:fc:fd:51:52:90: c9:fe:df:f6 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt5flnhnMAVTSabKDlw28YmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1ZDQ1ZjJhYzViY2UxNTY5ZGY2YjJhZDgwZDE2ZjFiOTJm YmQ4NWMwHhcNMjYwMTAxMTIxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNGVjNGNkNDE5ZGMzNDc3ZDhkMWNmYmEwZjMwYjViNDE4ODA2M2MwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEcUvV47DzidjBG2GhZnbY9Tt5Fk YvBRvqyLsMmjHDnD+rX4SUTqZ5wcmRbQyityYSOjLIA+CaWJK6fof5KMkBwxDl+k dVRpdyahcudXL4fgMKo2K3+LCcXheVHDt0RFmuLYlDjF4g8xfLt9RbCI2yWP/X6S SKCuC2QMTVUJqb+qnzFQ006/IKk2B+s4HShv2xd6zIwaZDWvEUxeJgLEbW3FVTNC OEqUmN+H93vzkcyyqxeNBSrYxMhBcuq6xpMy7NArbdbR8PXhMEeRw1i7sambWZIQ JKfSMT2SXyEk8gxY+/nbj3SJrrvj1C3DdKkD4GD/R2qdDIPx+EtQAcvsIwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFMTsTNQZ3DR32NHPug8wtbQYgGPAMB8GA1UdIwQY MBaAFDXUXyrFvOFWnfayrYDRbxuS+9hcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmRSZktzVzg0VmFkOXJLdGdORnZHNUw3MkZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS80ODEyMzYtYTA2Yy00OTAzLTkzODUt NmI3ZDdlNGVkNzAxLzEveE94TTFCbmNOSGZZMGMtNkR6QzF0QmlBWThBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS80ODEyMzYtYTA2Yy00OTAzLTkzODUtNmI3ZDdlNGVkNzAx LzEvTmRSZktzVzg0VmFkOXJLdGdORnZHNUw3MkZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgblQDAN BgkqhkiG9w0BAQsFAAOCAQEAcT0t+DoNCkWWnjYQ7ojWfAtsPgUscpJGAJRJz6zC 3dQJAWm+rDX+LM/zJk/hFEiSickUQz3MZRkeRc3izkEM8K4Nlq0F19JxA78Cmwti ZPUrpSSu/bJuQPb8jWcXAKGtPQuS/KE2YbEAdQqrdE30xAUagZ5kf8TXESuV+xks fWcV2Tz06KaMvrnakd96jMZy22Sc0N9/ztAYMufWRCESKPMO2IPyoofVCyGukyaS esX4TtZHIOYiPSXlfssuKHPzOWyHhx8qUDqE8wzEWSGLDrdWrodfsvRvImBFMch9 xNC0hKvpqEQlI0Y3uclGfs7p0mO7fpWHRPz9UVKQyf7f9g== -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:05 2026 by rpki-client