This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/JXnp6HlQC-5SqdfjYLJsbtC_UIQ.roa File: JXnp6HlQC-5SqdfjYLJsbtC_UIQ.roa (raw, json) Hash identifier: YlECxxfSPVhcfaZ4wCUWJKldj0fpn0G8ae7MLGJ3YLI= Subject key identifier: 25:79:E9:E8:79:50:0B:EE:52:A9:D7:E3:60:B2:6C:6E:D0:BF:50:84 Certificate issuer: /CN=a566d8337776c98746bd231e69e185db2a9a5be2 Certificate serial: 019B7BA349E36E4A74EA136F3C3EB418702F Authority key identifier: A5:66:D8:33:77:76:C9:87:46:BD:23:1E:69:E1:85:DB:2A:9A:5B:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWbYM3d2yYdGvSMeaeGF2yqaW-I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/JXnp6HlQC-5SqdfjYLJsbtC_UIQ.roa Signing time: Thu 01 Jan 2026 22:17:37 +0000 ROA not before: Thu 01 Jan 2026 22:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208084 IP address blocks: 2a0e:3bc0:3::/48 maxlen: 48 2a0e:3bc0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/pWbYM3d2yYdGvSMeaeGF2yqaW-I.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/pWbYM3d2yYdGvSMeaeGF2yqaW-I.mft rsync://rpki.ripe.net/repository/DEFAULT/pWbYM3d2yYdGvSMeaeGF2yqaW-I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:49:e3:6e:4a:74:ea:13:6f:3c:3e:b4:18:70:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a566d8337776c98746bd231e69e185db2a9a5be2 Validity Not Before: Jan 1 22:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2579e9e879500bee52a9d7e360b26c6ed0bf5084 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:be:5d:d8:ad:57:ed:ce:11:84:a0:f8:b0:a7: 67:ff:05:c7:ac:36:6a:18:67:45:2f:43:10:65:bf: 8c:b2:bf:fa:57:83:01:eb:da:53:a1:ae:90:63:4b: d2:92:b9:25:61:7e:7f:8c:5d:46:12:a2:a4:8c:e3: 29:1f:fc:b4:fd:2b:2a:cf:ca:1e:f6:e8:91:ea:68: fa:15:d2:a1:03:e5:98:85:3e:59:fb:0e:88:52:ad: c7:ac:08:cb:58:95:c8:db:87:39:19:1c:5b:68:0f: 68:f1:37:e1:72:be:d5:b6:2b:83:cc:f3:80:70:a4: af:ed:7e:65:3d:40:c0:1b:5c:69:0d:2b:62:77:55: 8f:8c:f1:ce:89:3a:a5:da:57:be:f8:57:ad:9b:0a: 51:cc:b7:66:97:75:02:80:ac:b3:93:96:5c:9b:95: 74:be:d6:7e:bf:c2:dd:17:03:36:de:6f:fe:de:b2: 4d:1a:7f:13:94:12:70:cb:77:92:b2:a2:16:91:c2: 98:3e:40:fd:94:7b:c5:43:d5:89:b8:e7:34:ea:fe: 7d:d5:a7:14:e7:55:91:b3:dc:1a:de:8f:3b:fb:00: fb:08:42:4a:57:91:ca:32:50:d3:10:01:d5:ca:12: 40:ec:45:c8:90:49:c8:2d:a4:ff:2a:22:65:8d:6c: ce:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:79:E9:E8:79:50:0B:EE:52:A9:D7:E3:60:B2:6C:6E:D0:BF:50:84 X509v3 Authority Key Identifier: keyid:A5:66:D8:33:77:76:C9:87:46:BD:23:1E:69:E1:85:DB:2A:9A:5B:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWbYM3d2yYdGvSMeaeGF2yqaW-I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/JXnp6HlQC-5SqdfjYLJsbtC_UIQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0168ac-342c-4dd0-91a8-1b75867e8dff/1/pWbYM3d2yYdGvSMeaeGF2yqaW-I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:3bc0:3::-2a0e:3bc0:4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption c4:b7:98:db:5f:29:bf:a4:65:43:53:cd:e1:71:ef:2e:4c:ce: 5b:a1:a9:65:16:99:b8:04:e5:9b:d7:71:99:d3:3d:54:18:e5: e7:71:94:f0:6f:48:47:ed:8d:c8:a3:27:82:ae:2d:da:16:f7: 2c:8c:c9:dc:81:61:1b:18:84:26:93:ca:de:aa:75:43:35:cb: ab:b5:70:8c:1a:8d:0e:35:fd:21:0c:cc:d3:54:1f:0a:2d:fa: e8:5f:97:30:97:e7:b8:c3:95:84:dd:76:20:18:96:eb:33:59: 43:76:b0:bb:ec:90:94:be:8a:43:72:28:3f:b2:ba:00:02:be: e0:f7:71:16:55:72:bd:6d:65:be:a9:25:c0:34:fb:42:f5:50: 8d:08:1b:6b:28:54:d1:8d:3f:e6:dd:cd:45:04:08:44:ad:ab: b1:b6:eb:df:03:de:5f:28:16:4b:b7:18:16:b5:92:09:fd:44: 12:29:c7:c8:f0:4c:e3:cf:10:7c:6e:ac:35:38:40:c7:b3:c6: b7:98:de:fd:e8:ed:1c:21:e3:e0:9e:20:9f:06:7f:b0:bb:b4: 9e:ef:95:18:fd:f4:26:69:66:77:52:0d:67:7b:b8:92:69:17: f4:4c:f0:f8:78:00:7a:e5:d4:53:54:d9:2b:a7:ac:69:09:c4: d7:b7:d7:30 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt7o0njbkp06hNvPD60GHAvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1NjZkODMzNzc3NmM5ODc0NmJkMjMxZTY5ZTE4NWRiMmE5 YTViZTIwHhcNMjYwMTAxMjIxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNTc5ZTllODc5NTAwYmVlNTJhOWQ3ZTM2MGIyNmM2ZWQwYmY1MDg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyr5d2K1X7c4RhKD4sKdn/wXHrDZq GGdFL0MQZb+Msr/6V4MB69pToa6QY0vSkrklYX5/jF1GEqKkjOMpH/y0/Ssqz8oe 9uiR6mj6FdKhA+WYhT5Z+w6IUq3HrAjLWJXI24c5GRxbaA9o8Tfhcr7VtiuDzPOA cKSv7X5lPUDAG1xpDStid1WPjPHOiTql2le++FetmwpRzLdml3UCgKyzk5Zcm5V0 vtZ+v8LdFwM23m/+3rJNGn8TlBJwy3eSsqIWkcKYPkD9lHvFQ9WJuOc06v591acU 51WRs9wa3o87+wD7CEJKV5HKMlDTEAHVyhJA7EXIkEnILaT/KiJljWzOawIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFCV56eh5UAvuUqnX42CybG7Qv1CEMB8GA1UdIwQY MBaAFKVm2DN3dsmHRr0jHmnhhdsqmlviMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFdiWU0zZDJ5WWRHdlNNZWFlR0YyeXFhVy1JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8wMTY4YWMtMzQyYy00ZGQwLTkxYTgt MWI3NTg2N2U4ZGZmLzEvSlhucDZIbFFDLTVTcWRmallMSnNidENfVUlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS8wMTY4YWMtMzQyYy00ZGQwLTkxYTgtMWI3NTg2N2U4ZGZm LzEvcFdiWU0zZDJ5WWRHdlNNZWFlR0YyeXFhVy1JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAqDjvA AAMDBwAqDjvAAAQwDQYJKoZIhvcNAQELBQADggEBAMS3mNtfKb+kZUNTzeFx7y5M zluhqWUWmbgE5ZvXcZnTPVQY5edxlPBvSEftjcijJ4KuLdoW9yyMydyBYRsYhCaT yt6qdUM1y6u1cIwajQ41/SEMzNNUHwot+uhflzCX57jDlYTddiAYluszWUN2sLvs kJS+ikNyKD+yugACvuD3cRZVcr1tZb6pJcA0+0L1UI0IG2soVNGNP+bdzUUECESt q7G2698D3l8oFku3GBa1kgn9RBIpx8jwTOPPEHxurDU4QMezxreY3v3o7Rwh4+Ce IJ8Gf7C7tJ7vlRj99CZpZndSDWd7uJJpF/RM8Ph4AHrl1FNU2SunrGkJxNe31zA= -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:43 2026 by rpki-client