This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/4b82fe-ff73-4b58-a21a-00fd05d3cd1d/1/X4f6FdUM7-oxmTPyJDPnSjOJQjc.roa File: X4f6FdUM7-oxmTPyJDPnSjOJQjc.roa (raw, json) Hash identifier: G+8NGrdkwPv6Os9FA75QeRzjamvnyvobATUloFoNoiE= Subject key identifier: 5F:87:FA:15:D5:0C:EF:EA:31:99:33:F2:24:33:E7:4A:33:89:42:37 Certificate issuer: /CN=577cd3b2391f4726c1aa89d5ed3d040823252355 Certificate serial: 019B7EA6AAF3EF63DE428519F816A367F08F Authority key identifier: 57:7C:D3:B2:39:1F:47:26:C1:AA:89:D5:ED:3D:04:08:23:25:23:55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V3zTsjkfRybBqonV7T0ECCMlI1U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/4b82fe-ff73-4b58-a21a-00fd05d3cd1d/1/X4f6FdUM7-oxmTPyJDPnSjOJQjc.roa Signing time: Fri 02 Jan 2026 12:20:10 +0000 ROA not before: Fri 02 Jan 2026 12:20:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211881 IP address blocks: 2a14:a980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/4b82fe-ff73-4b58-a21a-00fd05d3cd1d/1/V3zTsjkfRybBqonV7T0ECCMlI1U.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/4b82fe-ff73-4b58-a21a-00fd05d3cd1d/1/V3zTsjkfRybBqonV7T0ECCMlI1U.mft rsync://rpki.ripe.net/repository/DEFAULT/V3zTsjkfRybBqonV7T0ECCMlI1U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:aa:f3:ef:63:de:42:85:19:f8:16:a3:67:f0:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=577cd3b2391f4726c1aa89d5ed3d040823252355 Validity Not Before: Jan 2 12:20:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f87fa15d50cefea319933f22433e74a33894237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d9:88:92:26:e1:a6:a8:57:43:d7:0f:34:45: 5f:b9:0e:e9:36:39:8e:57:08:3c:86:e3:f4:b9:ac: 24:50:5b:f9:5c:c8:aa:af:5c:40:38:9d:3a:f7:40: f3:f4:18:8d:9a:f8:e2:be:74:5d:06:ae:be:ef:9d: 47:26:d9:5f:61:d6:ee:1d:57:8b:85:c7:0a:f9:14: 4e:e0:58:45:73:f5:0d:13:93:45:a9:10:fc:63:b2: 16:49:7a:f1:aa:9d:24:b3:cc:68:8e:8c:de:86:6b: 25:9e:70:d0:e0:e3:19:91:60:ff:d4:0c:00:a5:b3: 59:0f:30:e9:79:3e:ff:7a:62:e0:39:c3:44:c9:15: 49:86:a6:99:ef:1f:47:0c:ce:d1:f9:24:50:fd:83: e0:70:37:fe:fe:fe:51:b4:91:f1:93:63:ea:83:2d: db:48:a3:e8:84:02:0b:c4:0f:3b:dc:e1:d2:29:80: 76:13:8c:dc:12:56:34:dd:97:a6:59:4a:d9:7f:1f: a0:1a:8a:99:03:b9:6a:cf:f8:a0:2e:fe:69:f1:8d: 9f:67:f1:7a:ab:3d:40:b3:ae:ec:e4:c9:b3:b9:96: 45:36:d1:b1:ce:48:43:ed:e0:bb:5d:dc:96:bf:60: 17:1f:4e:cc:36:e9:f3:32:f9:34:97:bc:d4:77:e3: 04:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:87:FA:15:D5:0C:EF:EA:31:99:33:F2:24:33:E7:4A:33:89:42:37 X509v3 Authority Key Identifier: keyid:57:7C:D3:B2:39:1F:47:26:C1:AA:89:D5:ED:3D:04:08:23:25:23:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3zTsjkfRybBqonV7T0ECCMlI1U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/4b82fe-ff73-4b58-a21a-00fd05d3cd1d/1/X4f6FdUM7-oxmTPyJDPnSjOJQjc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/4b82fe-ff73-4b58-a21a-00fd05d3cd1d/1/V3zTsjkfRybBqonV7T0ECCMlI1U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:a980::/48 Signature Algorithm: sha256WithRSAEncryption 7c:54:ee:73:13:15:50:6c:52:b3:bc:be:8a:b5:35:5a:43:6e: 57:28:0e:9f:e3:a9:be:3a:43:c9:8e:19:c7:c3:9c:0a:e0:bc: 1d:8b:03:d0:5e:e7:09:c7:09:b5:e0:08:7e:48:93:f7:48:5f: 89:ab:20:bc:d0:5f:a0:2f:93:2e:86:01:fd:4d:46:c4:ce:3f: d8:9f:1e:91:d8:12:b1:48:bd:36:6f:34:ae:b1:f9:f9:2c:50: af:5c:f9:22:b1:a6:0b:03:ef:64:34:46:e0:92:4f:06:22:dc: a5:59:a6:b5:6f:2b:7b:c1:a6:17:e2:2e:e0:02:34:4b:75:51: 47:16:87:32:c5:4a:cd:fb:d3:7e:26:89:02:c0:b4:9e:7b:5e: f2:40:00:07:27:13:f9:18:cd:fd:a4:9a:af:5c:5c:62:8d:11: d1:ad:41:86:79:fa:3d:26:db:be:93:60:44:5d:3d:78:4f:0e: d5:87:32:95:ed:f7:53:06:e4:e3:57:e7:23:c7:56:dd:0e:1e: 5d:bc:ea:c7:7e:48:c1:a2:db:7c:61:6c:a6:07:98:a4:3c:f5: 2c:32:6e:0b:c4:a2:22:65:8a:8f:77:15:96:f2:f2:88:e7:2f: 3d:ff:7d:20:c4:25:7a:d6:d0:fd:f5:43:9b:93:73:32:f9:90: de:69:bf:ef -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+pqrz72PeQoUZ+BajZ/CPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3N2NkM2IyMzkxZjQ3MjZjMWFhODlkNWVkM2QwNDA4MjMy NTIzNTUwHhcNMjYwMTAyMTIyMDEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Zjg3ZmExNWQ1MGNlZmVhMzE5OTMzZjIyNDMzZTc0YTMzODk0MjM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtmIkibhpqhXQ9cPNEVfuQ7pNjmO Vwg8huP0uawkUFv5XMiqr1xAOJ0690Dz9BiNmvjivnRdBq6+751HJtlfYdbuHVeL hccK+RRO4FhFc/UNE5NFqRD8Y7IWSXrxqp0ks8xojozehmslnnDQ4OMZkWD/1AwA pbNZDzDpeT7/emLgOcNEyRVJhqaZ7x9HDM7R+SRQ/YPgcDf+/v5RtJHxk2Pqgy3b SKPohAILxA873OHSKYB2E4zcElY03ZemWUrZfx+gGoqZA7lqz/igLv5p8Y2fZ/F6 qz1As67s5MmzuZZFNtGxzkhD7eC7XdyWv2AXH07MNunzMvk0l7zUd+MEaQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFF+H+hXVDO/qMZkz8iQz50oziUI3MB8GA1UdIwQY MBaAFFd807I5H0cmwaqJ1e09BAgjJSNVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVjN6VHNqa2ZSeWJCcW9uVjdUMEVDQ01sSTFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS80YjgyZmUtZmY3My00YjU4LWEyMWEt MDBmZDA1ZDNjZDFkLzEvWDRmNkZkVU03LW94bVRQeUpEUG5Tak9KUWpjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS80YjgyZmUtZmY3My00YjU4LWEyMWEtMDBmZDA1ZDNjZDFk LzEvVjN6VHNqa2ZSeWJCcW9uVjdUMEVDQ01sSTFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhSpgAAA MA0GCSqGSIb3DQEBCwUAA4IBAQB8VO5zExVQbFKzvL6KtTVaQ25XKA6f46m+OkPJ jhnHw5wK4LwdiwPQXucJxwm14Ah+SJP3SF+JqyC80F+gL5MuhgH9TUbEzj/Ynx6R 2BKxSL02bzSusfn5LFCvXPkisaYLA+9kNEbgkk8GItylWaa1byt7waYX4i7gAjRL dVFHFocyxUrN+9N+JokCwLSee17yQAAHJxP5GM39pJqvXFxijRHRrUGGefo9Jtu+ k2BEXT14Tw7VhzKV7fdTBuTjV+cjx1bdDh5dvOrHfkjBott8YWymB5ikPPUsMm4L xKIiZYqPdxWW8vKI5y89/30gxCV61tD99UObk3My+ZDeab/v -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:12 2026 by rpki-client