This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/OzG2suVwPT7NAtGEhv0BQnd0-UU.roa File: OzG2suVwPT7NAtGEhv0BQnd0-UU.roa (raw, json) Hash identifier: OTgwN4HqqYWsHjlnruPw/pi9/g8vgZ7Z7QoREf+9YOA= Subject key identifier: 3B:31:B6:B2:E5:70:3D:3E:CD:02:D1:84:86:FD:01:42:77:74:F9:45 Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Certificate serial: 019B502FB06DB35794FD8E1866D449BAB07E Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/OzG2suVwPT7NAtGEhv0BQnd0-UU.roa Signing time: Wed 24 Dec 2025 11:47:41 +0000 ROA not before: Wed 24 Dec 2025 11:47:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215967 IP address blocks: 2a0c:9a40:8960::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 15:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:50:2f:b0:6d:b3:57:94:fd:8e:18:66:d4:49:ba:b0:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Validity Not Before: Dec 24 11:47:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=3b31b6b2e5703d3ecd02d18486fd01427774f945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0e:9d:88:27:27:bd:a9:c9:ab:50:d4:82:5d: 1e:80:c0:54:bd:06:3d:96:95:6c:20:f6:6c:d9:20: 16:81:75:03:49:9c:7e:0d:9a:73:98:22:ec:59:e3: 83:60:1c:4f:39:0a:fd:32:aa:3c:09:f3:e7:15:82: a9:cf:0d:09:2f:bd:8b:4d:d7:d0:bc:c0:b3:da:04: 36:c7:f0:6c:93:e2:0a:f7:a7:9f:10:48:3c:0d:60: f8:c0:34:a2:12:51:bc:25:f4:e0:0d:b3:70:d3:74: bb:3f:c2:62:19:4f:9b:2a:b1:52:1b:43:38:7b:01: 3b:20:19:5e:7b:23:4a:de:0a:41:10:d1:7b:59:02: cd:0c:7a:9e:66:49:b2:ea:ac:d8:e5:21:88:31:82: f8:5a:b9:3e:9a:e3:f0:5c:36:1b:97:63:a5:82:c6: 8b:c0:cb:6f:6e:6d:19:67:0f:d4:cf:11:8e:ba:b6: 72:b8:c6:4a:8f:b3:27:82:1f:3b:a6:ff:0a:c4:fb: c4:82:00:75:32:a7:24:de:cb:63:25:28:ac:54:57: 74:63:3e:75:e9:aa:98:fd:e5:eb:40:42:04:99:7b: 83:42:f9:61:c1:40:d8:86:00:14:1a:ac:63:03:d7: c0:4b:a0:2b:2c:9c:0f:97:4d:c6:2c:0d:49:b5:77: 3e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:31:B6:B2:E5:70:3D:3E:CD:02:D1:84:86:FD:01:42:77:74:F9:45 X509v3 Authority Key Identifier: keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/OzG2suVwPT7NAtGEhv0BQnd0-UU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:9a40:8960::/48 Signature Algorithm: sha256WithRSAEncryption 3a:8a:cb:c2:ab:bd:0b:40:09:bf:c1:9a:45:ae:a3:08:ff:6c: 76:f5:b7:6f:e9:66:b1:a2:19:5e:5b:81:6b:09:a6:a5:86:12: f9:ee:fe:72:e6:5a:c6:52:7a:01:5f:9d:09:be:42:16:1e:4d: 10:5b:0a:6d:e1:d4:20:ce:7e:4e:00:61:46:9a:87:7d:90:75: ec:15:d9:19:f0:ac:24:aa:e4:79:40:d6:7a:54:38:08:ac:d0: 76:08:33:b3:5d:c6:e3:6b:18:8c:8e:bd:71:e5:1c:b9:c2:d9: e5:c8:16:5d:a6:42:f2:c6:42:2f:7c:da:06:1c:7f:91:43:fe: 77:82:7b:7f:4d:bc:74:85:cb:eb:d9:0e:a1:af:af:a5:94:bb: db:f6:d8:fe:13:55:06:75:44:eb:b5:b1:f7:57:47:94:a7:c3: 75:cc:da:29:9f:67:b8:f3:92:20:e3:c2:c9:0d:af:83:03:48: 44:77:27:74:48:20:5d:fe:fd:5d:c6:67:78:b2:f4:1f:73:a6: 6c:33:92:86:72:be:29:13:06:a1:91:e0:0c:e9:87:5e:2a:91: 7a:81:86:bf:b4:25:01:9b:6e:4a:8f:43:36:ee:43:27:46:9f: 0c:d9:e3:ca:70:69:c1:53:9a:4a:26:3b:24:0f:3e:1b:0a:cd: 9e:cc:6f:0a -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZtQL7Bts1eU/Y4YZtRJurB+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl NDgwMDgwHhcNMjUxMjI0MTE0NzQxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYjMxYjZiMmU1NzAzZDNlY2QwMmQxODQ4NmZkMDE0Mjc3NzRmOTQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvA6diCcnvanJq1DUgl0egMBUvQY9 lpVsIPZs2SAWgXUDSZx+DZpzmCLsWeODYBxPOQr9Mqo8CfPnFYKpzw0JL72LTdfQ vMCz2gQ2x/Bsk+IK96efEEg8DWD4wDSiElG8JfTgDbNw03S7P8JiGU+bKrFSG0M4 ewE7IBleeyNK3gpBENF7WQLNDHqeZkmy6qzY5SGIMYL4Wrk+muPwXDYbl2OlgsaL wMtvbm0ZZw/UzxGOurZyuMZKj7Mngh87pv8KxPvEggB1Mqck3stjJSisVFd0Yz51 6aqY/eXrQEIEmXuDQvlhwUDYhgAUGqxjA9fAS6ArLJwPl03GLA1JtXc+ywIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDsxtrLlcD0+zQLRhIb9AUJ3dPlFMB8GA1UdIwQY MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt YmY0ZTUyN2I5ZmE4LzEvT3pHMnN1VndQVDdOQXRHRWh2MEJRbmQwLVVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4 LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgyaQIlg MA0GCSqGSIb3DQEBCwUAA4IBAQA6isvCq70LQAm/wZpFrqMI/2x29bdv6Waxohle W4FrCaalhhL57v5y5lrGUnoBX50JvkIWHk0QWwpt4dQgzn5OAGFGmod9kHXsFdkZ 8KwkquR5QNZ6VDgIrNB2CDOzXcbjaxiMjr1x5Ry5wtnlyBZdpkLyxkIvfNoGHH+R Q/53gnt/Tbx0hcvr2Q6hr6+llLvb9tj+E1UGdUTrtbH3V0eUp8N1zNopn2e485Ig 48LJDa+DA0hEdyd0SCBd/v1dxmd4svQfc6ZsM5KGcr4pEwahkeAM6YdeKpF6gYa/ tCUBm25Kj0M27kMnRp8M2ePKcGnBU5pKJjskDz4bCs2ezG8K -----END CERTIFICATE-----Generated at Sat Dec 27 00:40:35 2025 by rpki-client