This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/s4doa2uCWT8wlElRSQYnyEhb-io.roa File: s4doa2uCWT8wlElRSQYnyEhb-io.roa (raw, json) Hash identifier: q2luMe75BiPCJy4TtTk1lDnNUZzVDgGLlpHp90uHA98= Subject key identifier: B3:87:68:6B:6B:82:59:3F:30:94:49:51:49:06:27:C8:48:5B:FA:2A Certificate issuer: /CN=a7a4e23482268475c1b935637d0002c2fd2993b8 Certificate serial: 019B7CEE70B1BBE7A077928A03B2463B3329 Authority key identifier: A7:A4:E2:34:82:26:84:75:C1:B9:35:63:7D:00:02:C2:FD:29:93:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/s4doa2uCWT8wlElRSQYnyEhb-io.roa Signing time: Fri 02 Jan 2026 04:19:19 +0000 ROA not before: Fri 02 Jan 2026 04:19:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210097 IP address blocks: 2a14:ae00:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.mft rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:70:b1:bb:e7:a0:77:92:8a:03:b2:46:3b:33:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7a4e23482268475c1b935637d0002c2fd2993b8 Validity Not Before: Jan 2 04:19:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b387686b6b82593f30944951490627c8485bfa2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1b:6e:d7:24:96:42:a8:69:ce:05:c3:fe:eb: a1:ea:5e:b0:56:ab:d0:e4:72:d6:c3:bf:e6:be:02: 03:f4:44:4e:f8:87:ed:26:be:ba:35:9a:92:1d:90: 49:97:46:07:a5:70:d1:f1:3c:97:fd:15:26:27:7f: 34:93:38:5a:1e:65:fe:b1:d5:9e:49:13:68:eb:a4: 7b:5b:8b:ee:16:3b:0a:db:87:cc:0c:0e:1b:0f:c5: f4:b5:3e:29:a6:1e:06:4f:97:97:eb:e4:b9:0f:e4: 24:e1:38:be:6d:9d:43:f2:2a:23:f7:57:02:9a:cb: b0:95:16:52:e7:60:87:b4:ef:ae:48:0f:89:af:1b: bd:ff:48:05:f3:d2:3f:65:6f:c7:cb:e3:21:c7:60: 09:08:18:a0:65:4a:b3:6b:fa:ad:b3:2e:c5:e2:5b: d1:a3:82:9f:9d:b9:62:1e:26:44:78:83:92:21:f1: 0d:0b:6c:cb:0d:68:9e:e5:31:37:9d:11:09:cf:56: 66:ba:90:42:d6:91:da:8f:69:09:da:f0:eb:b3:12: c1:36:3b:7e:e9:a5:67:6a:bd:27:24:3f:b2:37:20: 53:48:e9:f6:48:36:a5:27:d7:61:15:f9:02:eb:69: 17:09:27:52:b3:b7:ac:bf:18:d9:45:cf:d5:59:f1: 63:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:87:68:6B:6B:82:59:3F:30:94:49:51:49:06:27:C8:48:5B:FA:2A X509v3 Authority Key Identifier: keyid:A7:A4:E2:34:82:26:84:75:C1:B9:35:63:7D:00:02:C2:FD:29:93:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p6TiNIImhHXBuTVjfQACwv0pk7g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/s4doa2uCWT8wlElRSQYnyEhb-io.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/07f623-14fb-4a80-9f46-23331b64916c/1/p6TiNIImhHXBuTVjfQACwv0pk7g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:ae00:b::/48 Signature Algorithm: sha256WithRSAEncryption 59:9a:b8:36:f9:9f:20:f8:ff:52:d2:45:d3:1a:32:ba:c6:c3: 13:8f:82:9e:c7:ef:a3:ce:10:cd:63:05:e1:f1:7b:db:d3:ca: 26:f6:10:91:c7:08:bd:e4:5a:80:29:7d:20:71:fd:65:58:f5: 26:67:5e:62:49:ff:bd:84:39:f7:b1:52:e1:cd:88:a2:3e:ab: ec:fe:f4:32:c5:5f:8e:30:c7:17:59:7a:d6:77:ea:b4:98:81: d2:da:49:b9:86:29:2f:53:36:21:b3:1e:2f:03:3a:8a:9a:0e: 72:b6:21:c7:13:e3:85:0c:6f:c4:6f:4e:75:d0:0b:d3:3e:c2: 4f:df:c6:f7:f5:d7:dd:ba:b1:b1:75:86:c3:e3:34:5e:9a:89: 42:d7:0f:65:bb:68:52:ee:af:38:9d:fa:8b:8a:b8:9e:dd:3c: e9:c4:ba:25:0a:58:18:0b:5b:31:b1:8b:7f:82:f3:0d:0e:be: e9:34:67:3c:81:e8:73:53:06:bf:8e:01:88:18:d0:39:f5:be: ce:0d:8b:e6:6d:e9:d7:48:ae:37:b6:42:05:30:d4:d5:5d:b2: 8b:1e:d0:67:22:8b:4f:fb:36:9a:77:96:cc:c2:9f:4b:23:94: 36:ba:c8:79:f8:87:49:db:c6:2a:8a:4b:9c:e4:ec:13:5e:7c: da:6a:bd:c5 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt87nCxu+egd5KKA7JGOzMpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3YTRlMjM0ODIyNjg0NzVjMWI5MzU2MzdkMDAwMmMyZmQy OTkzYjgwHhcNMjYwMTAyMDQxOTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMzg3Njg2YjZiODI1OTNmMzA5NDQ5NTE0OTA2MjdjODQ4NWJmYTJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAshtu1ySWQqhpzgXD/uuh6l6wVqvQ 5HLWw7/mvgID9ERO+IftJr66NZqSHZBJl0YHpXDR8TyX/RUmJ380kzhaHmX+sdWe SRNo66R7W4vuFjsK24fMDA4bD8X0tT4pph4GT5eX6+S5D+Qk4Ti+bZ1D8ioj91cC msuwlRZS52CHtO+uSA+Jrxu9/0gF89I/ZW/Hy+Mhx2AJCBigZUqza/qtsy7F4lvR o4KfnbliHiZEeIOSIfENC2zLDWie5TE3nREJz1ZmupBC1pHaj2kJ2vDrsxLBNjt+ 6aVnar0nJD+yNyBTSOn2SDalJ9dhFfkC62kXCSdSs7esvxjZRc/VWfFj6QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLOHaGtrglk/MJRJUUkGJ8hIW/oqMB8GA1UdIwQY MBaAFKek4jSCJoR1wbk1Y30AAsL9KZO4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDZUaU5JSW1oSFhCdVRWamZRQUN3djBwazdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8wN2Y2MjMtMTRmYi00YTgwLTlmNDYt MjMzMzFiNjQ5MTZjLzEvczRkb2EydUNXVDh3bEVsUlNRWW55RWhiLWlvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy8wN2Y2MjMtMTRmYi00YTgwLTlmNDYtMjMzMzFiNjQ5MTZj LzEvcDZUaU5JSW1oSFhCdVRWamZRQUN3djBwazdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhSuAAAL MA0GCSqGSIb3DQEBCwUAA4IBAQBZmrg2+Z8g+P9S0kXTGjK6xsMTj4Kex++jzhDN YwXh8Xvb08om9hCRxwi95FqAKX0gcf1lWPUmZ15iSf+9hDn3sVLhzYiiPqvs/vQy xV+OMMcXWXrWd+q0mIHS2km5hikvUzYhsx4vAzqKmg5ytiHHE+OFDG/Eb0510AvT PsJP38b39dfdurGxdYbD4zRemolC1w9lu2hS7q84nfqLirie3TzpxLolClgYC1sx sYt/gvMNDr7pNGc8gehzUwa/jgGIGNA59b7ODYvmbenXSK43tkIFMNTVXbKLHtBn IotP+zaad5bMwp9LI5Q2ush5+IdJ28Yqikuc5OwTXnzaar3F -----END CERTIFICATE-----Generated at Sun Jan 25 10:20:11 2026 by rpki-client