This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/59c4b8-87f4-4f2f-a449-aabb062e40db/1/Sompo4sxvvROdjoZfiDq50faXfk.roa File: Sompo4sxvvROdjoZfiDq50faXfk.roa (raw, json) Hash identifier: gEMQmsxvILpWDS8TIsfBnFHT3cfYRB4Lsa8x41J62hY= Subject key identifier: 4A:89:A9:A3:8B:31:BE:F4:4E:76:3A:19:7E:20:EA:E7:47:DA:5D:F9 Certificate issuer: /CN=3545a7200164912041bb931efb1feac123b43a18 Certificate serial: 019B7AC814CCAC4D811A7D07C60A7B35E011 Authority key identifier: 35:45:A7:20:01:64:91:20:41:BB:93:1E:FB:1F:EA:C1:23:B4:3A:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NUWnIAFkkSBBu5Me-x_qwSO0Ohg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/59c4b8-87f4-4f2f-a449-aabb062e40db/1/Sompo4sxvvROdjoZfiDq50faXfk.roa Signing time: Thu 01 Jan 2026 18:18:11 +0000 ROA not before: Thu 01 Jan 2026 18:18:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9186 IP address blocks: 2a09:58c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/59c4b8-87f4-4f2f-a449-aabb062e40db/1/NUWnIAFkkSBBu5Me-x_qwSO0Ohg.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/59c4b8-87f4-4f2f-a449-aabb062e40db/1/NUWnIAFkkSBBu5Me-x_qwSO0Ohg.mft rsync://rpki.ripe.net/repository/DEFAULT/NUWnIAFkkSBBu5Me-x_qwSO0Ohg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:14:cc:ac:4d:81:1a:7d:07:c6:0a:7b:35:e0:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3545a7200164912041bb931efb1feac123b43a18 Validity Not Before: Jan 1 18:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4a89a9a38b31bef44e763a197e20eae747da5df9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e0:9d:f0:55:85:2d:f9:72:5d:b1:cd:85:49: 47:2b:8e:51:1f:9e:4f:55:5c:83:d2:b8:32:9a:88: 3f:d6:16:bf:89:14:6b:1b:6d:2a:f3:37:54:b5:a1: f0:dd:ab:86:86:cf:de:b3:2f:e3:8f:d7:09:af:85: 4e:b0:9c:ac:a4:95:45:44:78:16:eb:36:2d:15:35: 5c:7e:40:e7:c9:17:c2:3e:2a:0b:66:d4:4f:f2:25: c7:cd:5f:b6:71:a2:39:9c:5b:d7:07:8d:ea:e6:35: 36:83:ac:4c:ce:92:43:e0:0d:d8:e3:42:47:50:3c: 1f:34:aa:f6:3f:3f:f7:5d:bb:4c:4a:4f:de:0a:8e: 18:72:c9:f7:80:15:8a:88:be:f2:94:7a:8f:6c:22: ea:d5:49:ce:fc:e8:66:fc:3f:06:3c:f2:a4:67:3b: a0:f9:87:05:72:8a:40:b5:ca:f7:3a:38:9f:52:5c: 36:f5:01:73:49:3d:bb:63:cc:41:4d:95:f6:b7:83: 8b:e1:9b:a4:3b:4f:ca:34:20:03:22:1d:df:11:6d: 70:76:90:06:7f:86:53:f2:3b:77:c0:89:7d:59:ed: 3c:11:29:20:08:dd:38:f7:37:bc:3d:31:a9:3a:54: 60:9a:48:66:b6:c6:6d:25:df:9c:29:e6:46:0d:ea: d2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:89:A9:A3:8B:31:BE:F4:4E:76:3A:19:7E:20:EA:E7:47:DA:5D:F9 X509v3 Authority Key Identifier: keyid:35:45:A7:20:01:64:91:20:41:BB:93:1E:FB:1F:EA:C1:23:B4:3A:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NUWnIAFkkSBBu5Me-x_qwSO0Ohg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/59c4b8-87f4-4f2f-a449-aabb062e40db/1/Sompo4sxvvROdjoZfiDq50faXfk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/59c4b8-87f4-4f2f-a449-aabb062e40db/1/NUWnIAFkkSBBu5Me-x_qwSO0Ohg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:58c0:1::/48 Signature Algorithm: sha256WithRSAEncryption 46:2a:00:19:1a:fc:2b:79:46:61:8b:23:fd:bf:0e:f2:5b:1a: d5:23:4d:20:33:7d:6b:ff:de:32:b4:c3:1e:cf:04:86:99:d8: 2f:0d:68:69:98:61:21:c9:1d:0f:6a:b7:cd:58:80:0f:c8:0a: 66:a0:21:63:86:84:7f:3b:2f:47:ca:37:bb:b2:0f:b1:f9:26: d5:3f:04:ab:54:a1:1d:62:8e:33:a3:94:9f:f5:64:51:4c:96: af:cc:39:78:32:3d:c1:e2:e8:bd:4b:84:9d:f7:93:47:c0:9f: 3b:7e:d8:82:fc:65:27:b9:39:cc:3a:8c:40:89:81:a8:bc:a3: 71:41:08:89:fa:c5:c5:a3:0f:7e:62:e6:81:20:be:26:ef:de: 5c:77:79:d0:ea:ae:ec:54:7b:0a:9f:14:c8:22:c8:60:94:5b: a5:de:42:05:11:0e:40:5c:55:3e:a9:91:0d:e2:92:36:55:d4: db:24:3c:d7:39:b6:8a:bb:6a:4f:bf:6b:9b:86:4e:d8:1b:c9: 96:63:dc:7f:28:55:b3:af:93:9e:f0:5a:f9:a7:87:90:1e:ef: c7:50:e2:09:d8:53:53:6e:eb:e4:29:18:37:bf:b9:54:e1:6e: 30:04:6f:4f:77:fa:51:3d:eb:01:3e:53:a3:49:be:79:68:da: 9a:ca:f9:94 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt6yBTMrE2BGn0Hxgp7NeARMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1NDVhNzIwMDE2NDkxMjA0MWJiOTMxZWZiMWZlYWMxMjNi NDNhMTgwHhcNMjYwMTAxMTgxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YTg5YTlhMzhiMzFiZWY0NGU3NjNhMTk3ZTIwZWFlNzQ3ZGE1ZGY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+Cd8FWFLflyXbHNhUlHK45RH55P VVyD0rgymog/1ha/iRRrG20q8zdUtaHw3auGhs/esy/jj9cJr4VOsJyspJVFRHgW 6zYtFTVcfkDnyRfCPioLZtRP8iXHzV+2caI5nFvXB43q5jU2g6xMzpJD4A3Y40JH UDwfNKr2Pz/3XbtMSk/eCo4Ycsn3gBWKiL7ylHqPbCLq1UnO/Ohm/D8GPPKkZzug +YcFcopAtcr3OjifUlw29QFzST27Y8xBTZX2t4OL4ZukO0/KNCADIh3fEW1wdpAG f4ZT8jt3wIl9We08ESkgCN049ze8PTGpOlRgmkhmtsZtJd+cKeZGDerSYwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFEqJqaOLMb70TnY6GX4g6udH2l35MB8GA1UdIwQY MBaAFDVFpyABZJEgQbuTHvsf6sEjtDoYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlVXbklBRmtrU0JCdTVNZS14X3F3U08wT2hnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy81OWM0YjgtODdmNC00ZjJmLWE0NDkt YWFiYjA2MmU0MGRiLzEvU29tcG80c3h2dlJPZGpvWmZpRHE1MGZhWGZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy81OWM0YjgtODdmNC00ZjJmLWE0NDktYWFiYjA2MmU0MGRi LzEvTlVXbklBRmtrU0JCdTVNZS14X3F3U08wT2hnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKglYwAAB MA0GCSqGSIb3DQEBCwUAA4IBAQBGKgAZGvwreUZhiyP9vw7yWxrVI00gM31r/94y tMMezwSGmdgvDWhpmGEhyR0ParfNWIAPyApmoCFjhoR/Oy9Hyje7sg+x+SbVPwSr VKEdYo4zo5Sf9WRRTJavzDl4Mj3B4ui9S4Sd95NHwJ87ftiC/GUnuTnMOoxAiYGo vKNxQQiJ+sXFow9+YuaBIL4m795cd3nQ6q7sVHsKnxTIIshglFul3kIFEQ5AXFU+ qZEN4pI2VdTbJDzXObaKu2pPv2ubhk7YG8mWY9x/KFWzr5Oe8Fr5p4eQHu/HUOIJ 2FNTbuvkKRg3v7lU4W4wBG9Pd/pRPesBPlOjSb55aNqayvmU -----END CERTIFICATE-----Generated at Mon Jan 26 18:10:06 2026 by rpki-client