This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/GEH0KcgFtkEgfOjHGAYLpjaTGlM.roa File: GEH0KcgFtkEgfOjHGAYLpjaTGlM.roa (raw, json) Hash identifier: pDgheK9VVM6MnVLVYSFwhImHJu+EPJ0spm4cHHYyxB4= Subject key identifier: 18:41:F4:29:C8:05:B6:41:20:7C:E8:C7:18:06:0B:A6:36:93:1A:53 Certificate issuer: /CN=01626ffd800eafa336bdf343141f03f7c393c364 Certificate serial: 019B797E3112FAE3707B253202EBEE11EB04 Authority key identifier: 01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/GEH0KcgFtkEgfOjHGAYLpjaTGlM.roa Signing time: Thu 01 Jan 2026 12:17:51 +0000 ROA not before: Thu 01 Jan 2026 12:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3573 IP address blocks: 2a02:ee80:404a::/47 maxlen: 47 2a02:ee80:404a::/48 maxlen: 48 2a02:ee80:404b::/48 maxlen: 48 2a02:ee80:4066::/47 maxlen: 47 2a02:ee80:4066::/48 maxlen: 48 2a02:ee80:4067::/48 maxlen: 48 2a02:ee80:415c::/47 maxlen: 47 2a02:ee80:4170::/47 maxlen: 47 2a02:ee80:4170::/48 maxlen: 48 2a02:ee80:4171::/48 maxlen: 48 2a02:ee80:41a8::/47 maxlen: 47 2a02:ee80:42d4::/47 maxlen: 47 2a02:ee80:4354::/47 maxlen: 47 2a02:ee80:4354::/48 maxlen: 48 2a02:ee80:4355::/48 maxlen: 48 2a02:ee80:437e::/47 maxlen: 47 2a02:ee80:437e::/48 maxlen: 48 2a02:ee80:437f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.mft rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:31:12:fa:e3:70:7b:25:32:02:eb:ee:11:eb:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01626ffd800eafa336bdf343141f03f7c393c364 Validity Not Before: Jan 1 12:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1841f429c805b641207ce8c718060ba636931a53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ac:bf:c3:85:1e:2a:f3:07:33:ec:c6:02:56: f8:26:d0:3c:50:40:67:ce:cb:9d:5d:c4:2e:d2:47: 95:b6:36:28:db:e3:4b:5d:0f:4e:bb:27:5a:b5:c0: 3d:c8:82:83:34:c7:ba:18:6a:75:3b:33:3e:5d:ec: 0c:d9:37:53:4c:ee:27:e9:a0:30:04:81:8e:8a:7e: a3:5d:32:6d:2b:35:e9:b5:b7:54:7a:5d:38:0d:d2: be:e1:ad:7a:00:ad:73:e9:fc:79:88:11:21:20:10: d4:d0:16:43:17:5b:e6:00:39:1b:4b:2d:05:3a:30: 94:d6:57:cd:c1:10:dc:3e:34:3c:31:69:d3:0d:8e: 37:c9:d5:bb:08:70:d9:43:fc:43:10:a9:ba:14:3a: b6:0f:11:10:d5:54:b6:c3:14:77:0d:9d:88:cf:d4: 5f:98:6b:5e:77:2f:f9:2b:96:f3:88:1a:75:a3:51: ea:11:8b:68:99:ab:69:92:60:30:e8:3d:c4:49:18: e1:4c:a4:c7:80:bf:36:2a:46:ce:0a:b9:4d:15:90: 81:ba:8e:79:11:76:f0:0a:f8:12:99:04:3b:62:fd: 53:2f:6a:c3:62:03:0d:9f:c9:8a:3d:21:96:90:53: 95:ab:c7:aa:b2:a9:98:3b:9d:83:4e:e0:12:61:b6: 47:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:41:F4:29:C8:05:B6:41:20:7C:E8:C7:18:06:0B:A6:36:93:1A:53 X509v3 Authority Key Identifier: keyid:01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/GEH0KcgFtkEgfOjHGAYLpjaTGlM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:ee80:404a::/47 2a02:ee80:4066::/47 2a02:ee80:415c::/47 2a02:ee80:4170::/47 2a02:ee80:41a8::/47 2a02:ee80:42d4::/47 2a02:ee80:4354::/47 2a02:ee80:437e::/47 Signature Algorithm: sha256WithRSAEncryption 1b:67:a6:b9:89:f4:46:10:c4:d3:3d:0e:f7:f1:3c:9b:05:fb: 8e:b2:5b:60:2c:65:cc:a1:5c:1d:26:a1:7c:15:5a:10:3f:f6: 42:85:7d:db:49:7f:73:21:a9:38:13:ac:19:bc:0f:19:b4:85: f4:e7:fb:08:68:0f:e7:7a:50:83:a1:eb:ca:ed:62:56:23:8b: 3d:dc:dd:85:ee:1a:4c:18:41:1b:2c:c2:4d:3b:41:67:35:b3: 0d:e0:24:00:be:77:98:57:44:8f:e8:b3:e4:69:17:68:42:72: 05:9b:e8:94:1e:b5:cb:56:c2:0e:27:6b:1d:f8:af:07:65:43: 7d:6b:5c:5a:83:b4:ed:c8:79:47:15:e2:91:39:a5:2e:6f:4f: e8:d0:7d:19:54:a3:87:3b:c0:26:84:e5:62:80:f4:b5:80:e5: 7c:26:24:60:6b:99:2d:8e:c8:58:6d:88:67:5c:ec:7f:8f:a7: a3:fa:c5:21:5f:ea:8c:f0:18:f0:f3:62:4f:fb:f8:52:96:ee: f9:ff:e1:8f:35:93:6d:59:85:38:b7:fe:f7:f8:7b:cb:65:1f: 02:e8:81:c1:ab:b3:86:5e:87:39:58:fd:5f:fc:da:a8:b6:59: 12:06:a1:fe:4f:26:17:c7:21:50:57:c9:09:ff:0c:74:e1:67: 0f:99:31:28 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgISAZt5fjES+uNweyUyAuvuEesEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxNjI2ZmZkODAwZWFmYTMzNmJkZjM0MzE0MWYwM2Y3YzM5 M2MzNjQwHhcNMjYwMTAxMTIxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxODQxZjQyOWM4MDViNjQxMjA3Y2U4YzcxODA2MGJhNjM2OTMxYTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6y/w4UeKvMHM+zGAlb4JtA8UEBn zsudXcQu0keVtjYo2+NLXQ9OuydatcA9yIKDNMe6GGp1OzM+XewM2TdTTO4n6aAw BIGOin6jXTJtKzXptbdUel04DdK+4a16AK1z6fx5iBEhIBDU0BZDF1vmADkbSy0F OjCU1lfNwRDcPjQ8MWnTDY43ydW7CHDZQ/xDEKm6FDq2DxEQ1VS2wxR3DZ2Iz9Rf mGtedy/5K5bziBp1o1HqEYtomatpkmAw6D3ESRjhTKTHgL82KkbOCrlNFZCBuo55 EXbwCvgSmQQ7Yv1TL2rDYgMNn8mKPSGWkFOVq8eqsqmYO52DTuASYbZHpQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFBhB9CnIBbZBIHzoxxgGC6Y2kxpTMB8GA1UdIwQY MBaAFAFib/2ADq+jNr3zQxQfA/fDk8NkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVdKdl9ZQU9yNk0ydmZOREZCOEQ5OE9UdzJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jNGU1YTAtODIxOS00ZmY5LTgyODct MWY0YmVhMjNlNGM3LzEvR0VIMEtjZ0Z0a0VnZk9qSEdBWUxwamFUR2xNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9jNGU1YTAtODIxOS00ZmY5LTgyODctMWY0YmVhMjNlNGM3 LzEvQVdKdl9ZQU9yNk0ydmZOREZCOEQ5OE9UdzJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAAjBIAwcBKgLugEBK AwcBKgLugEBmAwcBKgLugEFcAwcBKgLugEFwAwcBKgLugEGoAwcBKgLugELUAwcB KgLugENUAwcBKgLugEN+MA0GCSqGSIb3DQEBCwUAA4IBAQAbZ6a5ifRGEMTTPQ73 8TybBfuOsltgLGXMoVwdJqF8FVoQP/ZChX3bSX9zIak4E6wZvA8ZtIX05/sIaA/n elCDoevK7WJWI4s93N2F7hpMGEEbLMJNO0FnNbMN4CQAvneYV0SP6LPkaRdoQnIF m+iUHrXLVsIOJ2sd+K8HZUN9a1xag7TtyHlHFeKROaUub0/o0H0ZVKOHO8AmhOVi gPS1gOV8JiRga5ktjshYbYhnXOx/j6ej+sUhX+qM8Bjw82JP+/hSlu75/+GPNZNt WYU4t/73+HvLZR8C6IHBq7OGXoc5WP1f/NqotlkSBqH+TyYXxyFQV8kJ/wx04WcP mTEo -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:51 2026 by rpki-client