This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/841257-9d93-4918-a8ae-72ca13dfad2b/1/STO2kom-zBw1tRgfWNcBAQ37NC8.roa File: STO2kom-zBw1tRgfWNcBAQ37NC8.roa (raw, json) Hash identifier: a0Fmrw1wcNVYzRWWKC14G0JJl+6PihD7ZzdaxPHGENs= Subject key identifier: 49:33:B6:92:89:BE:CC:1C:35:B5:18:1F:58:D7:01:01:0D:FB:34:2F Certificate issuer: /CN=e721d0ea683cc675942c098f59c411c860e8aeda Certificate serial: 019B7EA6AA7296705ACF2D28C960FA6C989E Authority key identifier: E7:21:D0:EA:68:3C:C6:75:94:2C:09:8F:59:C4:11:C8:60:E8:AE:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5yHQ6mg8xnWULAmPWcQRyGDorto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/841257-9d93-4918-a8ae-72ca13dfad2b/1/STO2kom-zBw1tRgfWNcBAQ37NC8.roa Signing time: Fri 02 Jan 2026 12:20:10 +0000 ROA not before: Fri 02 Jan 2026 12:20:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213514 IP address blocks: 2a14:cd00::/48 maxlen: 48 2a14:cd00:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/841257-9d93-4918-a8ae-72ca13dfad2b/1/5yHQ6mg8xnWULAmPWcQRyGDorto.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/841257-9d93-4918-a8ae-72ca13dfad2b/1/5yHQ6mg8xnWULAmPWcQRyGDorto.mft rsync://rpki.ripe.net/repository/DEFAULT/5yHQ6mg8xnWULAmPWcQRyGDorto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:aa:72:96:70:5a:cf:2d:28:c9:60:fa:6c:98:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e721d0ea683cc675942c098f59c411c860e8aeda Validity Not Before: Jan 2 12:20:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4933b69289becc1c35b5181f58d701010dfb342f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:60:b5:64:9b:92:49:09:c4:09:ad:8e:42:38: 10:fd:97:98:5b:ea:76:04:9d:19:8d:f8:94:51:7a: 47:0f:0e:cd:bb:70:c8:f3:a4:b1:be:c8:fd:48:ac: f8:5c:cc:48:4b:8e:db:dd:df:05:2c:c1:ed:35:a9: df:15:db:6e:00:3f:a8:33:94:76:ad:e0:b4:f4:33: 5e:6a:53:4e:be:5b:c0:d5:2c:f4:c8:fd:03:47:33: 68:e9:6b:63:9d:ac:1b:92:b2:70:19:6e:67:4e:22: 16:f5:4e:90:76:61:71:a2:ba:34:c7:90:61:83:e4: 28:84:13:a7:3a:6a:ad:5e:5a:b7:36:27:3a:1a:d4: 03:e2:64:a6:4f:69:89:00:85:08:7f:6b:df:71:66: df:ef:f3:72:50:ee:b7:9c:c9:26:36:9e:59:43:d2: 11:74:93:3b:a8:85:96:cd:79:68:a6:02:8d:36:61: f2:19:c0:bf:24:bd:3a:b5:7c:dc:58:b7:88:af:7f: 8a:09:c5:0f:eb:47:24:ad:1d:e8:7f:34:83:72:14: b5:53:10:c0:82:40:8e:e3:4b:3e:92:0a:88:e3:a6: 7f:17:2d:bd:cd:7a:b5:2c:40:af:de:2d:c6:61:82: d4:87:26:74:af:1d:91:eb:d7:69:9d:d4:f5:24:20: a5:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:33:B6:92:89:BE:CC:1C:35:B5:18:1F:58:D7:01:01:0D:FB:34:2F X509v3 Authority Key Identifier: keyid:E7:21:D0:EA:68:3C:C6:75:94:2C:09:8F:59:C4:11:C8:60:E8:AE:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5yHQ6mg8xnWULAmPWcQRyGDorto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/841257-9d93-4918-a8ae-72ca13dfad2b/1/STO2kom-zBw1tRgfWNcBAQ37NC8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/841257-9d93-4918-a8ae-72ca13dfad2b/1/5yHQ6mg8xnWULAmPWcQRyGDorto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:cd00::/47 Signature Algorithm: sha256WithRSAEncryption 87:17:5b:67:33:1b:e2:da:fe:bc:0d:76:4c:40:28:59:df:3e: 9e:3a:36:ef:3c:14:bd:b9:05:63:9a:9b:37:0f:58:e4:21:ff: 8f:42:95:4f:cd:22:ef:ab:51:f8:61:9d:6f:a3:7c:f2:37:36: a9:3d:b3:bc:ec:99:34:ab:09:20:f1:8a:ea:ff:e3:0f:79:04: 75:fb:f8:98:18:16:8e:a4:49:1e:0b:92:eb:70:38:2d:36:2e: 8a:d8:21:2f:16:c7:8d:a5:f1:a9:af:5e:8e:6c:7c:b0:23:73: 83:80:9c:5c:f5:95:c6:8b:3f:0e:54:6d:40:4c:e2:c6:f7:cd: 9a:03:d4:9d:0a:a5:5e:d7:bd:ca:c1:57:54:35:81:6a:8c:85: 91:b9:66:1d:c2:0b:d7:8f:b0:18:eb:06:67:66:a7:7e:03:89: 7c:d9:e0:dc:5e:2e:67:03:98:1d:54:93:83:95:99:b7:ac:0b: df:af:b5:92:1e:9a:89:f8:10:bc:fc:32:95:5a:fb:60:52:ca: a7:51:32:c1:25:8e:31:b5:b6:1e:18:92:28:97:f6:52:d7:7a: 68:58:91:b9:88:b9:34:27:68:65:a4:05:98:ee:69:73:e4:ad: 33:bb:d3:02:83:3d:d8:38:5e:81:20:08:1a:0e:6d:30:1c:a4: 5f:ce:bd:40 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+pqpylnBazy0oyWD6bJieMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3MjFkMGVhNjgzY2M2NzU5NDJjMDk4ZjU5YzQxMWM4NjBl OGFlZGEwHhcNMjYwMTAyMTIyMDEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OTMzYjY5Mjg5YmVjYzFjMzViNTE4MWY1OGQ3MDEwMTBkZmIzNDJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm2C1ZJuSSQnECa2OQjgQ/ZeYW+p2 BJ0ZjfiUUXpHDw7Nu3DI86Sxvsj9SKz4XMxIS47b3d8FLMHtNanfFdtuAD+oM5R2 reC09DNealNOvlvA1Sz0yP0DRzNo6WtjnawbkrJwGW5nTiIW9U6QdmFxoro0x5Bh g+QohBOnOmqtXlq3Nic6GtQD4mSmT2mJAIUIf2vfcWbf7/NyUO63nMkmNp5ZQ9IR dJM7qIWWzXlopgKNNmHyGcC/JL06tXzcWLeIr3+KCcUP60ckrR3ofzSDchS1UxDA gkCO40s+kgqI46Z/Fy29zXq1LECv3i3GYYLUhyZ0rx2R69dpndT1JCCllwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFEkztpKJvswcNbUYH1jXAQEN+zQvMB8GA1UdIwQY MBaAFOch0OpoPMZ1lCwJj1nEEchg6K7aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNXlIUTZtZzh4bldVTEFtUFdjUVJ5R0RvcnRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS84NDEyNTctOWQ5My00OTE4LWE4YWUt NzJjYTEzZGZhZDJiLzEvU1RPMmtvbS16QncxdFJnZldOY0JBUTM3TkM4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS84NDEyNTctOWQ5My00OTE4LWE4YWUtNzJjYTEzZGZhZDJi LzEvNXlIUTZtZzh4bldVTEFtUFdjUVJ5R0RvcnRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBKhTNAAAA MA0GCSqGSIb3DQEBCwUAA4IBAQCHF1tnMxvi2v68DXZMQChZ3z6eOjbvPBS9uQVj mps3D1jkIf+PQpVPzSLvq1H4YZ1vo3zyNzapPbO87Jk0qwkg8Yrq/+MPeQR1+/iY GBaOpEkeC5LrcDgtNi6K2CEvFseNpfGpr16ObHywI3ODgJxc9ZXGiz8OVG1ATOLG 982aA9SdCqVe173KwVdUNYFqjIWRuWYdwgvXj7AY6wZnZqd+A4l82eDcXi5nA5gd VJODlZm3rAvfr7WSHpqJ+BC8/DKVWvtgUsqnUTLBJY4xtbYeGJIol/ZS13poWJG5 iLk0J2hlpAWY7mlz5K0zu9MCgz3YOF6BIAgaDm0wHKRfzr1A -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:43 2026 by rpki-client