This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/1-0M2Obo2Q8e967SGkmQDEfXZayM.roa File: 1-0M2Obo2Q8e967SGkmQDEfXZayM.roa (raw, json) Hash identifier: fDXFZQjR8P2lB0fAkk+7Ytji6EhqtxGESPHwfw5J/OQ= Subject key identifier: FB:43:36:39:BA:36:43:C7:BD:EB:B4:86:92:64:03:11:F5:D9:6B:23 Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055 Certificate serial: 019B7EA547923A053B2EDA1AE9E5E3F0D44D Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/1-0M2Obo2Q8e967SGkmQDEfXZayM.roa Signing time: Fri 02 Jan 2026 12:18:39 +0000 ROA not before: Fri 02 Jan 2026 12:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208386 IP address blocks: 2a0e:c640::/29 maxlen: 29 2a0f:9700::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.mft rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:47:92:3a:05:3b:2e:da:1a:e9:e5:e3:f0:d4:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055 Validity Not Before: Jan 2 12:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fb433639ba3643c7bdebb48692640311f5d96b23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:10:5f:e5:1a:03:74:dc:4c:36:75:0a:b3:67: 65:ca:f0:0e:fe:f7:b5:11:35:e6:c1:93:d5:ba:fe: 4d:ee:6c:37:bb:15:ea:cd:bf:a6:34:11:3f:dd:1b: 71:1c:d4:ea:89:b6:73:93:46:a0:3f:a3:ed:cb:21: ab:02:d4:50:a9:c9:38:79:f9:3b:20:5f:1b:3b:a6: 7f:09:59:44:2e:f0:0d:84:9d:94:f5:74:5f:38:12: 40:c2:14:fc:0f:0a:45:c8:cb:c0:65:49:08:06:aa: d4:a4:9f:8b:a3:a0:fe:84:49:9a:9d:e1:e5:b6:8c: 1b:92:d8:cb:b7:1c:4e:4c:71:ef:c0:5d:a8:ee:f4: c9:ba:b9:6b:c6:a0:ff:ac:29:cc:e4:8b:d1:d0:e5: b7:a0:7b:61:b8:de:7c:d6:e9:36:ef:21:8e:65:a8: dd:a6:3e:23:55:35:e2:f2:12:c2:aa:1f:1c:28:f8: 02:9a:90:76:04:cf:f0:d3:a6:7f:74:54:64:a4:aa: 6c:e0:c3:26:ea:72:cb:5a:91:3d:bc:77:9c:b1:3d: bb:78:e7:83:d5:ab:ba:da:07:3d:d4:f6:fa:7b:93: 6c:9d:83:f1:52:f9:86:99:2b:9b:8f:79:fb:df:77: fc:e2:f1:82:ff:8a:19:a0:ec:1c:74:91:e5:28:94: 98:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:43:36:39:BA:36:43:C7:BD:EB:B4:86:92:64:03:11:F5:D9:6B:23 X509v3 Authority Key Identifier: keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/1-0M2Obo2Q8e967SGkmQDEfXZayM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:c640::/29 2a0f:9700::/29 Signature Algorithm: sha256WithRSAEncryption b7:6c:b1:c5:94:ae:18:21:7f:45:11:0f:88:71:3b:54:c7:6d: 36:5f:74:66:d4:b5:85:c5:ac:58:f3:ff:f7:d8:0c:61:4a:47: 04:fa:e4:0a:41:e7:5a:4c:44:5c:fb:6e:a1:c0:6b:22:ee:5f: e2:63:23:7c:00:68:9b:cf:f6:83:fc:68:d1:96:77:6f:92:92: 7b:98:ac:79:f4:21:46:e5:87:15:a6:c5:f4:8e:14:17:57:b4: 1a:26:db:88:ea:1e:17:7f:f8:15:fd:8d:29:90:02:93:3f:d5: 68:d4:c4:fb:ed:a5:5c:e5:fd:94:fc:52:e4:b8:f0:35:7c:35: 27:46:65:78:86:90:3a:09:ed:dc:c7:5d:3a:4a:7e:bb:e7:28: 38:f5:df:b6:7b:3b:71:e7:0b:7a:fe:bb:db:de:55:53:db:f0: c9:16:71:a0:d7:7b:6f:61:bd:6c:61:1b:b1:08:77:6c:66:dd: e4:08:a5:87:14:66:2e:ca:87:ce:9a:0a:2c:41:5e:02:88:71: 43:cb:c8:57:5f:4b:89:57:d1:8c:a5:44:27:05:4d:88:39:3b: 79:2a:d6:21:94:62:64:47:d4:7b:51:9c:5b:28:08:a5:b6:c8: 77:b2:e9:16:70:00:f4:d6:6c:f3:11:1c:d5:38:0b:74:fd:8a: 38:4f:20:46 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgISAZt+pUeSOgU7Ltoa6eXj8NRNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjZDk4YzJjNTRiMGNiZWExMzRlMjdhOTgxY2ZkZGU3MzIz NmUwNTUwHhcNMjYwMTAyMTIxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYjQzMzYzOWJhMzY0M2M3YmRlYmI0ODY5MjY0MDMxMWY1ZDk2YjIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBBf5RoDdNxMNnUKs2dlyvAO/ve1 ETXmwZPVuv5N7mw3uxXqzb+mNBE/3RtxHNTqibZzk0agP6PtyyGrAtRQqck4efk7 IF8bO6Z/CVlELvANhJ2U9XRfOBJAwhT8DwpFyMvAZUkIBqrUpJ+Lo6D+hEmaneHl towbktjLtxxOTHHvwF2o7vTJurlrxqD/rCnM5IvR0OW3oHthuN581uk27yGOZajd pj4jVTXi8hLCqh8cKPgCmpB2BM/w06Z/dFRkpKps4MMm6nLLWpE9vHecsT27eOeD 1au62gc91Pb6e5NsnYPxUvmGmSubj3n733f84vGC/4oZoOwcdJHlKJSYVQIDAQAB o4ICEjCCAg4wHQYDVR0OBBYEFPtDNjm6NkPHveu0hpJkAxH12WsjMB8GA1UdIwQY MBaAFGzZjCxUsMvqE04nqYHP3ecyNuBVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWIt ZDM3ZGY2MzRhOTI5LzEvMS0wTTJPYm8yUThlOTY3U0drbVFERWZYWmF5TS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvZTEvMDE2MzhjLTZjYjktNDU4OS05MDliLWQzN2RmNjM0YTky OS8xL2JObU1MRlN3eS1vVFRpZXBnY19kNXpJMjRGVS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAnBggrBgEFBQcBBwEB/wQYMBYwFAQCAAIwDgMFAyoOxkAD BQMqD5cAMA0GCSqGSIb3DQEBCwUAA4IBAQC3bLHFlK4YIX9FEQ+IcTtUx202X3Rm 1LWFxaxY8//32AxhSkcE+uQKQedaTERc+26hwGsi7l/iYyN8AGibz/aD/GjRlndv kpJ7mKx59CFG5YcVpsX0jhQXV7QaJtuI6h4Xf/gV/Y0pkAKTP9Vo1MT77aVc5f2U /FLkuPA1fDUnRmV4hpA6Ce3cx106Sn675yg49d+2eztx5wt6/rvb3lVT2/DJFnGg 13tvYb1sYRuxCHdsZt3kCKWHFGYuyofOmgosQV4CiHFDy8hXX0uJV9GMpUQnBU2I OTt5KtYhlGJkR9R7UZxbKAiltsh3sukWcAD01mzzERzVOAt0/Yo4TyBG -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:42 2026 by rpki-client