This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/8-p5z6a3n-5Vbg_FUQcHOfePr1k.roa File: 8-p5z6a3n-5Vbg_FUQcHOfePr1k.roa (raw, json) Hash identifier: T0w7zmmsEVS9b11trnjpNDiN07nDknNytyRJ3xCbFlo= Subject key identifier: F3:EA:79:CF:A6:B7:9F:EE:55:6E:0F:C5:51:07:07:39:F7:8F:AF:59 Certificate issuer: /CN=a85310f503137ae8b35d4f329f46f069dd703815 Certificate serial: 019B7AC7E7784DCCC9EE68C8734F0E020CC8 Authority key identifier: A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/8-p5z6a3n-5Vbg_FUQcHOfePr1k.roa Signing time: Thu 01 Jan 2026 18:17:59 +0000 ROA not before: Thu 01 Jan 2026 18:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215889 IP address blocks: 2a11:a580::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.mft rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:e7:78:4d:cc:c9:ee:68:c8:73:4f:0e:02:0c:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a85310f503137ae8b35d4f329f46f069dd703815 Validity Not Before: Jan 1 18:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f3ea79cfa6b79fee556e0fc551070739f78faf59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:27:91:47:ab:18:ef:b2:cf:6f:31:8f:59:31: a1:d9:ed:11:6c:b9:24:b2:87:37:e5:13:97:9f:14: 4e:d6:7e:0e:20:0a:c6:e4:6b:74:a3:6f:04:85:39: d9:fe:d6:8f:98:28:81:22:f8:87:9c:fd:c9:b7:6e: f0:ad:08:99:f2:95:ac:fe:47:89:c2:ea:f9:5a:4b: 68:06:08:8c:3f:58:44:02:8b:a9:eb:cc:ea:7f:91: a8:75:b3:da:d3:8b:f9:77:0d:61:f3:45:94:ac:30: e0:c8:6c:de:22:a9:e7:db:b1:b7:88:91:13:09:a1: 6d:10:eb:27:24:0b:13:32:79:1a:4f:88:cf:99:66: 2b:83:d1:4d:50:b1:c6:a2:a9:37:6a:4b:62:c1:a9: 1f:63:cc:4a:68:00:2c:7e:c2:80:60:e6:9d:c3:25: 53:f5:72:e9:5e:53:ce:6c:6d:3a:47:cb:b9:1d:25: 70:89:b4:0c:5a:c4:9f:32:a2:84:c4:10:2c:ce:32: bf:c1:f6:b2:90:bf:35:88:d1:73:19:cf:97:28:d4: e0:85:2b:18:85:a4:e1:92:b0:50:e7:fb:60:eb:f7: f5:8b:5a:c6:df:c5:24:ab:31:9a:55:e0:cc:eb:c3: 0b:ff:06:21:7b:1c:3d:65:a4:9f:69:ee:a3:ac:4e: 3c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:EA:79:CF:A6:B7:9F:EE:55:6E:0F:C5:51:07:07:39:F7:8F:AF:59 X509v3 Authority Key Identifier: keyid:A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/8-p5z6a3n-5Vbg_FUQcHOfePr1k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:a580::/32 Signature Algorithm: sha256WithRSAEncryption a4:d8:2c:40:6b:20:04:c6:01:d9:01:d6:31:38:d5:92:fb:5f: ce:c9:7d:79:d0:14:69:41:0c:12:47:60:83:6a:e5:c3:bf:92: 0a:58:a9:a3:3c:45:7f:d1:a4:0d:2c:78:5c:65:2f:c8:76:b1: 9b:99:33:ed:5e:15:b8:0b:82:bd:8b:67:4d:2f:66:32:79:20: b5:dc:e6:74:0e:19:c9:e9:3e:68:00:a1:4a:fe:ec:24:6f:de: 9c:21:74:c9:54:5a:c7:e5:6d:62:bd:3b:5f:d9:b4:fb:c1:e3: a7:fe:27:54:f5:9a:34:68:26:56:ff:01:97:ea:ca:cf:0c:3a: 63:90:6e:9c:24:80:8d:8c:a4:7c:01:f5:b5:47:a8:0a:42:71: d3:8e:6e:4f:f4:67:6c:f7:82:0b:ae:11:d5:1d:0e:0a:70:47: 99:57:2a:ce:22:17:11:a6:5b:48:b7:a7:04:fa:ec:20:df:f8: bd:1b:e0:e5:b8:e7:86:ec:81:ea:75:9c:1f:a0:c1:91:1d:bd: e7:95:09:18:55:fc:f1:4c:ef:ae:66:40:37:b8:57:7d:05:8a: 01:08:16:bb:12:ca:20:e5:53:38:d6:b2:25:1d:d8:60:bd:dc: a4:1e:3e:04:89:7d:bc:06:4f:0f:fc:7d:43:9b:b1:8b:00:d3: 40:eb:50:0a -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt6x+d4TczJ7mjIc08OAgzIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NTMxMGY1MDMxMzdhZThiMzVkNGYzMjlmNDZmMDY5ZGQ3 MDM4MTUwHhcNMjYwMTAxMTgxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmM2VhNzljZmE2Yjc5ZmVlNTU2ZTBmYzU1MTA3MDczOWY3OGZhZjU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkSeRR6sY77LPbzGPWTGh2e0RbLkk soc35ROXnxRO1n4OIArG5Gt0o28EhTnZ/taPmCiBIviHnP3Jt27wrQiZ8pWs/keJ wur5WktoBgiMP1hEAoup68zqf5GodbPa04v5dw1h80WUrDDgyGzeIqnn27G3iJET CaFtEOsnJAsTMnkaT4jPmWYrg9FNULHGoqk3aktiwakfY8xKaAAsfsKAYOadwyVT 9XLpXlPObG06R8u5HSVwibQMWsSfMqKExBAszjK/wfaykL81iNFzGc+XKNTghSsY haThkrBQ5/tg6/f1i1rG38UkqzGaVeDM68ML/wYhexw9ZaSfae6jrE48RQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFPPqec+mt5/uVW4PxVEHBzn3j69ZMB8GA1UdIwQY MBaAFKhTEPUDE3ros11PMp9G8GndcDgVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUZNUTlRTVRldWl6WFU4eW4wYndhZDF3T0JVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iNDI5NDktZWUwYS00MTIzLTg3YmYt MzAxODlhNWE0ZWJhLzEvOC1wNXo2YTNuLTVWYmdfRlVRY0hPZmVQcjFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9iNDI5NDktZWUwYS00MTIzLTg3YmYtMzAxODlhNWE0ZWJh LzEvcUZNUTlRTVRldWl6WFU4eW4wYndhZDF3T0JVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhGlgDAN BgkqhkiG9w0BAQsFAAOCAQEApNgsQGsgBMYB2QHWMTjVkvtfzsl9edAUaUEMEkdg g2rlw7+SClipozxFf9GkDSx4XGUvyHaxm5kz7V4VuAuCvYtnTS9mMnkgtdzmdA4Z yek+aAChSv7sJG/enCF0yVRax+VtYr07X9m0+8Hjp/4nVPWaNGgmVv8Bl+rKzww6 Y5BunCSAjYykfAH1tUeoCkJx045uT/RnbPeCC64R1R0OCnBHmVcqziIXEaZbSLen BPrsIN/4vRvg5bjnhuyB6nWcH6DBkR2955UJGFX88UzvrmZAN7hXfQWKAQgWuxLK IOVTONayJR3YYL3cpB4+BIl9vAZPD/x9Q5uxiwDTQOtQCg== -----END CERTIFICATE-----Generated at Mon Jan 26 01:52:41 2026 by rpki-client