This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e3ca71-36f0-4c52-bc01-c6ac4dd7c8e4/1/0lgng2rjDy26wvLpufoJ44YGSa8.roa File: 0lgng2rjDy26wvLpufoJ44YGSa8.roa (raw, json) Hash identifier: Sp2gMQIGghJdGnoU3YO/ErS7zVxVldScly14Bqy0M6k= Subject key identifier: D2:58:27:83:6A:E3:0F:2D:BA:C2:F2:E9:B9:FA:09:E3:86:06:49:AF Certificate issuer: /CN=c0debc8850b690f1232796911bfe3c4c9aa867dc Certificate serial: 019B78A35F3074C01F3D280DDD8D896BB700 Authority key identifier: C0:DE:BC:88:50:B6:90:F1:23:27:96:91:1B:FE:3C:4C:9A:A8:67:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wN68iFC2kPEjJ5aRG_48TJqoZ9w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/e3ca71-36f0-4c52-bc01-c6ac4dd7c8e4/1/0lgng2rjDy26wvLpufoJ44YGSa8.roa Signing time: Thu 01 Jan 2026 08:18:51 +0000 ROA not before: Thu 01 Jan 2026 08:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5524 IP address blocks: 2a14:6ec0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/e3ca71-36f0-4c52-bc01-c6ac4dd7c8e4/1/wN68iFC2kPEjJ5aRG_48TJqoZ9w.crl rsync://rpki.ripe.net/repository/DEFAULT/64/e3ca71-36f0-4c52-bc01-c6ac4dd7c8e4/1/wN68iFC2kPEjJ5aRG_48TJqoZ9w.mft rsync://rpki.ripe.net/repository/DEFAULT/wN68iFC2kPEjJ5aRG_48TJqoZ9w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 17:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:5f:30:74:c0:1f:3d:28:0d:dd:8d:89:6b:b7:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c0debc8850b690f1232796911bfe3c4c9aa867dc Validity Not Before: Jan 1 08:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d25827836ae30f2dbac2f2e9b9fa09e3860649af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f6:f2:d0:9d:1a:ba:e9:cb:d7:98:a4:aa:3d: 1d:e7:70:6c:73:e5:3d:2e:52:29:16:7d:ab:ff:d1: 3a:e1:b7:55:3e:dc:95:b7:fa:cc:3b:68:33:c6:46: 48:2f:cd:ea:fa:cf:e8:b3:cc:46:bc:f6:89:62:ec: 27:b8:a7:7d:e8:a7:aa:80:e4:53:f7:14:20:1d:a1: 69:18:aa:c9:52:94:1e:f0:e8:7b:03:a3:cd:df:0b: 10:b2:35:ef:9e:2b:86:d8:bd:29:88:70:88:b5:1b: f4:ef:6b:bc:4f:54:cb:09:f2:54:fc:d7:7a:83:ec: 7d:54:62:fc:2f:79:f7:51:57:19:13:a2:b8:dd:b6: ff:5f:c3:ab:19:27:e9:5d:3b:10:e3:34:d7:03:4c: a9:b5:85:88:40:a8:6f:ee:8e:d9:45:68:f5:65:c2: 98:fb:0a:df:84:36:50:f4:2c:f7:0a:da:ab:b3:4f: 79:d4:00:5e:05:95:64:1a:0b:ee:58:7d:fc:53:a0: ce:31:c7:51:e2:d8:83:db:85:26:ac:fc:cb:4e:2a: 17:86:33:ce:37:c9:21:7d:86:96:82:6c:b7:11:99: dd:c8:c1:71:7a:6b:ff:8b:31:fe:fb:db:1c:14:20: 56:f1:68:72:6c:35:52:b6:18:4b:b0:0e:95:11:b6: 0b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:58:27:83:6A:E3:0F:2D:BA:C2:F2:E9:B9:FA:09:E3:86:06:49:AF X509v3 Authority Key Identifier: keyid:C0:DE:BC:88:50:B6:90:F1:23:27:96:91:1B:FE:3C:4C:9A:A8:67:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wN68iFC2kPEjJ5aRG_48TJqoZ9w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e3ca71-36f0-4c52-bc01-c6ac4dd7c8e4/1/0lgng2rjDy26wvLpufoJ44YGSa8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e3ca71-36f0-4c52-bc01-c6ac4dd7c8e4/1/wN68iFC2kPEjJ5aRG_48TJqoZ9w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:6ec0::/32 Signature Algorithm: sha256WithRSAEncryption 2f:b9:5c:6b:98:45:dd:ce:89:80:ee:72:da:86:18:f1:32:93: 75:79:a0:0c:9b:4b:1c:28:96:08:fe:88:4a:fa:76:a2:4a:7c: ee:38:66:15:0f:41:39:0d:76:8f:e5:06:fb:d3:62:9a:c6:43: 68:1f:07:6e:b2:e5:25:c9:e5:e6:32:c5:04:9c:69:90:45:e5: 45:7f:1d:35:c1:91:ff:6d:47:eb:32:77:0a:1d:80:46:f3:61: 7e:1c:d6:59:bf:ec:8d:a6:65:1d:e5:32:86:a3:0f:e1:1b:ba: c6:3f:ec:cd:f5:86:85:4b:38:e6:be:43:f5:3a:0c:70:b7:cd: 72:5a:47:32:8c:73:2b:71:ed:a9:9c:38:4e:60:65:40:c8:9e: 7c:5c:b4:04:ee:25:9c:d0:70:d9:5d:35:24:ed:12:1e:e5:e0: b0:f4:1c:49:0f:b1:e5:9c:f3:8a:c4:45:60:a8:12:5b:fe:10: 49:10:4a:55:18:57:46:2a:66:e6:64:97:70:a2:f0:b7:14:7f: d2:78:7c:84:b2:f9:ae:f3:ec:fd:43:aa:2c:01:91:a8:dc:a3: af:6d:0e:4c:3b:0a:60:a3:7c:6b:dc:3d:b5:7e:93:92:74:1f: 4c:dc:6c:ab:b4:64:31:e2:25:5b:71:0f:36:62:8e:60:de:8e: 33:a3:3b:e3 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt4o18wdMAfPSgN3Y2Ja7cAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwZGViYzg4NTBiNjkwZjEyMzI3OTY5MTFiZmUzYzRjOWFh ODY3ZGMwHhcNMjYwMTAxMDgxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjU4Mjc4MzZhZTMwZjJkYmFjMmYyZTliOWZhMDllMzg2MDY0OWFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufby0J0auunL15ikqj0d53Bsc+U9 LlIpFn2r/9E64bdVPtyVt/rMO2gzxkZIL83q+s/os8xGvPaJYuwnuKd96KeqgORT 9xQgHaFpGKrJUpQe8Oh7A6PN3wsQsjXvniuG2L0piHCItRv072u8T1TLCfJU/Nd6 g+x9VGL8L3n3UVcZE6K43bb/X8OrGSfpXTsQ4zTXA0yptYWIQKhv7o7ZRWj1ZcKY +wrfhDZQ9Cz3Ctqrs0951ABeBZVkGgvuWH38U6DOMcdR4tiD24UmrPzLTioXhjPO N8khfYaWgmy3EZndyMFxemv/izH++9scFCBW8WhybDVSthhLsA6VEbYL5QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFNJYJ4Nq4w8tusLy6bn6CeOGBkmvMB8GA1UdIwQY MBaAFMDevIhQtpDxIyeWkRv+PEyaqGfcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd042OGlGQzJrUEVqSjVhUkdfNDhUSnFvWjl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9lM2NhNzEtMzZmMC00YzUyLWJjMDEt YzZhYzRkZDdjOGU0LzEvMGxnbmcycmpEeTI2d3ZMcHVmb0o0NFlHU2E4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC9lM2NhNzEtMzZmMC00YzUyLWJjMDEtYzZhYzRkZDdjOGU0 LzEvd042OGlGQzJrUEVqSjVhUkdfNDhUSnFvWjl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhRuwDAN BgkqhkiG9w0BAQsFAAOCAQEAL7lca5hF3c6JgO5y2oYY8TKTdXmgDJtLHCiWCP6I Svp2okp87jhmFQ9BOQ12j+UG+9NimsZDaB8HbrLlJcnl5jLFBJxpkEXlRX8dNcGR /21H6zJ3Ch2ARvNhfhzWWb/sjaZlHeUyhqMP4Ru6xj/szfWGhUs45r5D9ToMcLfN clpHMoxzK3HtqZw4TmBlQMiefFy0BO4lnNBw2V01JO0SHuXgsPQcSQ+x5ZzzisRF YKgSW/4QSRBKVRhXRipm5mSXcKLwtxR/0nh8hLL5rvPs/UOqLAGRqNyjr20OTDsK YKN8a9w9tX6TknQfTNxsq7RkMeIlW3EPNmKOYN6OM6M74w== -----END CERTIFICATE-----Generated at Thu Jan 1 21:24:00 2026 by rpki-client