This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/oH1r4igjZpHu8rKsfXxiqzBUl84.roa File: oH1r4igjZpHu8rKsfXxiqzBUl84.roa (raw, json) Hash identifier: X0wT9e0aq2sCh5h0E8HXfviT92xXoJ7QSCDrREimpr8= Subject key identifier: A0:7D:6B:E2:28:23:66:91:EE:F2:B2:AC:7D:7C:62:AB:30:54:97:CE Certificate issuer: /CN=4021dff35edf0ce6e428d6affc212c4717679ee1 Certificate serial: 019B78A343C498BA2E4B47966B1AE7C7A838 Authority key identifier: 40:21:DF:F3:5E:DF:0C:E6:E4:28:D6:AF:FC:21:2C:47:17:67:9E:E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QCHf817fDObkKNav_CEsRxdnnuE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/oH1r4igjZpHu8rKsfXxiqzBUl84.roa Signing time: Thu 01 Jan 2026 08:18:44 +0000 ROA not before: Thu 01 Jan 2026 08:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204137 IP address blocks: 2a02:6860::/34 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/QCHf817fDObkKNav_CEsRxdnnuE.crl rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/QCHf817fDObkKNav_CEsRxdnnuE.mft rsync://rpki.ripe.net/repository/DEFAULT/QCHf817fDObkKNav_CEsRxdnnuE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:43:c4:98:ba:2e:4b:47:96:6b:1a:e7:c7:a8:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4021dff35edf0ce6e428d6affc212c4717679ee1 Validity Not Before: Jan 1 08:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a07d6be228236691eef2b2ac7d7c62ab305497ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:18:55:e0:4b:51:0d:98:d2:64:5f:2b:7b:02: 0c:c4:6b:20:b0:45:a4:d2:4a:04:3d:09:b3:80:68: e9:77:1f:3f:63:3d:2e:2f:31:78:89:48:ec:93:c0: 80:5a:9d:f8:c7:e1:d9:11:75:fd:70:02:c0:b9:85: 78:6a:53:aa:e2:7f:cb:10:dd:f3:78:2d:7f:db:d5: 48:b4:18:b0:4f:a9:6a:8b:34:11:85:ea:a9:c3:87: 98:5d:a6:dd:cf:14:ab:84:14:8f:6c:14:7c:53:55: bf:17:5e:51:ea:0d:76:cf:db:0e:f5:cb:58:ed:26: b4:43:43:1d:2e:9d:14:71:f6:12:ab:24:d3:13:9e: ba:69:67:70:e0:0d:02:40:e4:dc:55:c1:1a:62:56: e0:a4:9b:01:0a:e1:c0:a0:c5:af:3d:0a:36:a3:dd: b3:05:a8:99:8c:19:b7:bb:b9:ff:4a:71:85:0f:2b: 85:eb:6f:b9:ee:81:fc:60:b0:fe:c7:0a:71:6f:80: be:eb:76:f6:df:c4:12:cf:10:56:17:b8:2c:18:64: 82:ce:7f:5f:c9:d7:e1:7c:d5:2e:1a:fa:cd:55:d3: 67:f5:61:32:ea:cf:65:7d:54:4c:3b:4f:f5:10:95: 2e:b2:73:3a:c1:76:18:f9:63:2f:49:9f:b4:53:e4: 61:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:7D:6B:E2:28:23:66:91:EE:F2:B2:AC:7D:7C:62:AB:30:54:97:CE X509v3 Authority Key Identifier: keyid:40:21:DF:F3:5E:DF:0C:E6:E4:28:D6:AF:FC:21:2C:47:17:67:9E:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QCHf817fDObkKNav_CEsRxdnnuE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/oH1r4igjZpHu8rKsfXxiqzBUl84.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/014088-5684-49c2-b630-eb53a518c263/1/QCHf817fDObkKNav_CEsRxdnnuE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:6860::/34 Signature Algorithm: sha256WithRSAEncryption 71:5e:c0:8e:a5:19:cd:b4:6d:10:ab:48:9c:14:75:10:88:15: 2a:a1:77:f9:1b:5f:11:39:91:87:a3:cd:e3:de:c5:f2:c6:ca: 0e:c2:ec:e7:3a:ca:6c:2b:01:c0:56:73:4c:ae:c6:e7:3e:79: 6a:86:51:ed:61:99:93:45:44:08:f5:5a:ed:22:55:d2:a4:4f: 35:26:b8:12:86:73:59:be:05:1f:f0:70:16:6d:1c:23:21:29: fc:16:b6:d9:82:d9:8d:b1:73:1e:ff:67:b3:a5:02:fc:6d:5e: 27:1a:ca:3c:de:2d:70:a2:48:9f:97:7b:ad:40:88:fa:aa:76: ec:1d:d2:a0:b7:2a:27:aa:84:7d:bf:85:a8:8f:1f:51:43:9b: 23:38:c6:fa:c3:cd:cc:f2:a1:6b:04:4e:89:62:05:41:ea:43: 42:de:d5:86:63:46:d2:4a:e7:61:54:82:9f:3a:66:27:69:f6: 45:50:c2:de:8f:77:10:69:d9:04:9e:a0:dd:a2:a9:a7:eb:95: 6e:07:50:45:78:a0:9b:97:d2:32:58:6a:f6:23:c2:9b:0a:ba: a6:35:cb:31:b1:ef:64:67:02:6c:28:a5:bc:84:8a:b3:d6:b6: 3f:be:95:6d:55:af:e7:1d:88:b7:2f:0b:70:db:31:94:1b:81: dd:9e:44:fd -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt4o0PEmLouS0eWaxrnx6g4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwMjFkZmYzNWVkZjBjZTZlNDI4ZDZhZmZjMjEyYzQ3MTc2 NzllZTEwHhcNMjYwMTAxMDgxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMDdkNmJlMjI4MjM2NjkxZWVmMmIyYWM3ZDdjNjJhYjMwNTQ5N2NlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxhV4EtRDZjSZF8rewIMxGsgsEWk 0koEPQmzgGjpdx8/Yz0uLzF4iUjsk8CAWp34x+HZEXX9cALAuYV4alOq4n/LEN3z eC1/29VItBiwT6lqizQRheqpw4eYXabdzxSrhBSPbBR8U1W/F15R6g12z9sO9ctY 7Sa0Q0MdLp0UcfYSqyTTE566aWdw4A0CQOTcVcEaYlbgpJsBCuHAoMWvPQo2o92z BaiZjBm3u7n/SnGFDyuF62+57oH8YLD+xwpxb4C+63b238QSzxBWF7gsGGSCzn9f ydfhfNUuGvrNVdNn9WEy6s9lfVRMO0/1EJUusnM6wXYY+WMvSZ+0U+RhkQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFKB9a+IoI2aR7vKyrH18YqswVJfOMB8GA1UdIwQY MBaAFEAh3/Ne3wzm5CjWr/whLEcXZ57hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUNIZjgxN2ZET2JrS05hdl9DRXNSeGRubnVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8wMTQwODgtNTY4NC00OWMyLWI2MzAt ZWI1M2E1MThjMjYzLzEvb0gxcjRpZ2pacEh1OHJLc2ZYeGlxekJVbDg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS8wMTQwODgtNTY4NC00OWMyLWI2MzAtZWI1M2E1MThjMjYz LzEvUUNIZjgxN2ZET2JrS05hdl9DRXNSeGRubnVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGKgJoYAAw DQYJKoZIhvcNAQELBQADggEBAHFewI6lGc20bRCrSJwUdRCIFSqhd/kbXxE5kYej zePexfLGyg7C7Oc6ymwrAcBWc0yuxuc+eWqGUe1hmZNFRAj1Wu0iVdKkTzUmuBKG c1m+BR/wcBZtHCMhKfwWttmC2Y2xcx7/Z7OlAvxtXicayjzeLXCiSJ+Xe61AiPqq duwd0qC3KieqhH2/haiPH1FDmyM4xvrDzczyoWsEToliBUHqQ0Le1YZjRtJK52FU gp86Zidp9kVQwt6PdxBp2QSeoN2iqafrlW4HUEV4oJuX0jJYavYjwpsKuqY1yzGx 72RnAmwopbyEirPWtj++lW1Vr+cdiLcvC3DbMZQbgd2eRP0= -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:14 2026 by rpki-client