This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/4nJ0h3kxVoLTGLl-KMMdIGNO3U4.roa File: 4nJ0h3kxVoLTGLl-KMMdIGNO3U4.roa (raw, json) Hash identifier: yXSTzPv+VSMPQEsmFJQmVgwkS8AYD6u5M83BtbV+VIE= Subject key identifier: E2:72:74:87:79:31:56:82:D3:18:B9:7E:28:C3:1D:20:63:4E:DD:4E Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Certificate serial: 019B7D5B69846BC46889E13B402D3F4117B0 Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/4nJ0h3kxVoLTGLl-KMMdIGNO3U4.roa Signing time: Fri 02 Jan 2026 06:18:21 +0000 ROA not before: Fri 02 Jan 2026 06:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51658 IP address blocks: 2a0a:d6c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:69:84:6b:c4:68:89:e1:3b:40:2d:3f:41:17:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Validity Not Before: Jan 2 06:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e272748779315682d318b97e28c31d20634edd4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e5:36:4e:d2:63:36:5a:66:77:55:0a:65:a7: d5:2c:80:19:76:92:b7:a4:ad:f8:97:e6:ae:82:db: 60:a7:87:9d:77:98:2b:70:70:d6:b6:fb:82:5d:e9: 90:77:b6:34:d0:27:d3:53:69:bb:82:39:a9:09:7a: 6a:97:b6:72:5a:06:aa:ed:7e:69:f8:7f:9e:7f:c0: db:17:00:f4:95:18:44:16:4c:3c:be:e9:17:42:b1: e5:5a:6b:62:49:9a:89:ad:be:22:d5:9e:32:1b:ff: 25:0b:0a:41:74:7a:ae:c5:f3:7b:e0:b8:d6:b4:e4: 97:2f:5b:69:11:4e:38:90:58:43:8d:49:bf:28:eb: 87:23:5e:06:ea:74:50:f8:51:a1:cc:dd:83:27:de: d4:a5:58:7e:63:de:69:7d:03:6c:8b:94:f4:4a:ce: 5f:73:87:d0:2d:d5:7f:c4:a5:38:1d:05:21:40:cc: cb:db:a9:b9:7c:04:69:15:bc:be:11:2d:00:a4:7a: ef:e8:c7:9c:cd:71:a7:e8:f6:d4:5c:86:ef:be:c4: 3b:d6:d5:0f:6f:cb:50:23:01:cc:8d:ee:cb:3c:8a: 41:20:80:b1:86:ee:48:95:47:61:19:80:bc:37:15: 3e:f1:ca:23:65:a2:7d:58:5d:50:1b:15:72:4f:10: 49:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:72:74:87:79:31:56:82:D3:18:B9:7E:28:C3:1D:20:63:4E:DD:4E X509v3 Authority Key Identifier: keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/4nJ0h3kxVoLTGLl-KMMdIGNO3U4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:d6c0:1::/48 Signature Algorithm: sha256WithRSAEncryption 27:20:3d:49:66:fa:79:45:df:e6:b2:21:49:cf:24:da:5f:f0: a3:a7:19:3b:2c:82:07:5c:0d:78:2e:35:4a:4f:2d:43:63:fa: a2:fb:d4:53:ee:1f:d2:0a:12:f7:20:a6:d6:e9:26:e0:c2:c4: c3:ea:26:ac:08:2f:69:74:f0:aa:a1:cc:7f:61:33:2d:68:bb: 89:c1:16:fb:f8:3d:b8:e0:37:7a:96:85:33:78:1b:00:8e:c7: 00:24:4e:ef:1d:1a:97:c4:d8:58:d8:80:66:8d:dd:74:26:f9: 0c:8e:95:09:83:ac:d4:53:bf:3e:79:91:21:d7:da:c5:e6:b5: 74:92:5c:af:00:bb:34:0e:e8:a4:a4:b4:b2:23:65:bc:00:3e: 6f:2b:5d:27:88:0c:23:83:a8:57:35:83:cb:30:6e:ff:d5:75: 59:42:c7:d8:d4:52:b0:26:4c:7e:ec:85:54:cc:9d:cf:7a:ad: 81:1b:e8:bc:49:5a:73:53:f8:78:e2:60:ce:f4:02:55:db:d3: be:cc:40:e0:79:d9:b5:60:b5:d6:80:b5:c5:af:18:cf:93:c7: 8c:5b:70:2b:1f:08:32:eb:9f:ca:fb:0c:52:62:91:a1:0c:66: 9a:5d:bc:0d:1f:da:be:6a:06:43:28:69:19:a5:05:82:70:02: c3:b1:44:27 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9W2mEa8RoieE7QC0/QRewMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4N2Q2ZGY3ZWI3NTQyZTAzMzNhZWVkZDE0YWRmZjhmNTFm OGNiZDgwHhcNMjYwMTAyMDYxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMjcyNzQ4Nzc5MzE1NjgyZDMxOGI5N2UyOGMzMWQyMDYzNGVkZDRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2+U2TtJjNlpmd1UKZafVLIAZdpK3 pK34l+augttgp4edd5grcHDWtvuCXemQd7Y00CfTU2m7gjmpCXpql7ZyWgaq7X5p +H+ef8DbFwD0lRhEFkw8vukXQrHlWmtiSZqJrb4i1Z4yG/8lCwpBdHquxfN74LjW tOSXL1tpEU44kFhDjUm/KOuHI14G6nRQ+FGhzN2DJ97UpVh+Y95pfQNsi5T0Ss5f c4fQLdV/xKU4HQUhQMzL26m5fARpFby+ES0ApHrv6MeczXGn6PbUXIbvvsQ71tUP b8tQIwHMje7LPIpBIICxhu5IlUdhGYC8NxU+8cojZaJ9WF1QGxVyTxBJ6wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFOJydId5MVaC0xi5fijDHSBjTt1OMB8GA1UdIwQY MBaAFDh9bffrdULgMzru3RSt/49R+MvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2Mt NjA5YTQ4YjJiMTRkLzEvNG5KMGgza3hWb0xUR0xsLUtNTWRJR05PM1U0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2MtNjA5YTQ4YjJiMTRk LzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgrWwAAB MA0GCSqGSIb3DQEBCwUAA4IBAQAnID1JZvp5Rd/msiFJzyTaX/Cjpxk7LIIHXA14 LjVKTy1DY/qi+9RT7h/SChL3IKbW6SbgwsTD6iasCC9pdPCqocx/YTMtaLuJwRb7 +D244Dd6loUzeBsAjscAJE7vHRqXxNhY2IBmjd10JvkMjpUJg6zUU78+eZEh19rF 5rV0klyvALs0DuikpLSyI2W8AD5vK10niAwjg6hXNYPLMG7/1XVZQsfY1FKwJkx+ 7IVUzJ3Peq2BG+i8SVpzU/h44mDO9AJV29O+zEDgedm1YLXWgLXFrxjPk8eMW3Ar Hwgy65/K+wxSYpGhDGaaXbwNH9q+agZDKGkZpQWCcALDsUQn -----END CERTIFICATE-----Generated at Mon Jan 26 00:14:05 2026 by rpki-client