This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/AlXg91UMAygxLeoq_VpzKVSK-zI.roa File: AlXg91UMAygxLeoq_VpzKVSK-zI.roa (raw, json) Hash identifier: eUqHFEnUoHvc5mCAUj3SUrBYfTcyscIn0nZYAYnkeo8= Subject key identifier: 02:55:E0:F7:55:0C:03:28:31:2D:EA:2A:FD:5A:73:29:54:8A:FB:32 Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362 Certificate serial: 019B7C7F78B9B33DB017FB60542E109126E4 Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/AlXg91UMAygxLeoq_VpzKVSK-zI.roa Signing time: Fri 02 Jan 2026 02:18:07 +0000 ROA not before: Fri 02 Jan 2026 02:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3356 IP address blocks: 2a0e:1b40::/32 maxlen: 32 2a0e:1b41::/32 maxlen: 32 2a0e:1b42::/32 maxlen: 32 2a0e:1b43::/32 maxlen: 32 2a0e:1b44::/32 maxlen: 32 2a0e:1b45::/32 maxlen: 32 2a0e:1b46::/32 maxlen: 32 2a0e:1b47::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.mft rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:78:b9:b3:3d:b0:17:fb:60:54:2e:10:91:26:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362 Validity Not Before: Jan 2 02:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0255e0f7550c0328312dea2afd5a7329548afb32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:14:16:3f:1d:d3:7f:0b:c7:c2:b2:9c:37:2a: 9e:02:c3:30:fd:e9:5b:3f:79:03:aa:f8:6b:40:c1: 44:38:54:fc:3d:0b:80:90:19:c8:0e:ed:64:14:75: 09:0c:e6:9a:ad:ac:ea:87:93:cf:16:f6:c6:17:4c: 2b:f4:9e:d3:8a:9d:79:29:c4:e4:3d:f1:74:e7:0f: 32:3f:f8:84:32:b9:02:6b:b4:d9:b7:91:b9:57:44: 29:2a:c3:63:01:7a:17:7f:8b:85:21:f5:9f:03:2a: 11:ce:d9:31:c1:8c:f2:97:b7:ec:82:e1:f2:d4:04: ce:95:83:79:f5:44:aa:b4:38:1f:92:21:a1:ee:0d: fd:a2:81:75:62:a5:dd:6f:26:a4:04:7e:07:f9:ed: af:7f:c5:70:91:14:eb:60:13:d1:4b:dc:30:c4:1b: 61:29:b6:b1:fe:53:56:c3:0e:e7:f3:2a:84:d5:8c: e1:99:5a:99:e5:90:10:b3:24:10:cd:7f:e3:64:e0: 42:3a:09:20:f6:24:fe:85:0c:e5:a5:06:ed:cf:10: de:b3:8a:cb:f5:ec:47:4c:90:43:2d:47:90:2a:84: fc:14:5b:43:88:8a:1c:5c:3a:6f:f6:0b:3c:7f:a4: ad:7f:e9:bd:1d:3b:e1:bb:3e:98:16:bb:42:69:b8: 1b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:55:E0:F7:55:0C:03:28:31:2D:EA:2A:FD:5A:73:29:54:8A:FB:32 X509v3 Authority Key Identifier: keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/AlXg91UMAygxLeoq_VpzKVSK-zI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:1b40::/29 Signature Algorithm: sha256WithRSAEncryption 30:3e:ce:8c:6b:d5:82:d3:26:4d:dc:83:20:45:af:2e:5b:5c: 08:89:fd:c8:94:65:7d:88:18:26:c0:c2:bf:0a:af:23:8a:77: f2:ba:10:c0:db:12:46:ed:2e:38:78:7e:5a:92:b8:31:b4:98: a5:ce:96:70:1b:56:cd:9b:8e:b4:c7:34:c7:f0:72:56:51:13: db:13:12:2d:53:dd:a4:a8:d0:d3:5e:4c:c7:35:e0:29:35:28: 14:fb:22:88:49:dc:c8:55:b1:f6:4d:35:29:cb:95:d3:ae:37: 10:e9:06:d0:f3:81:3d:18:3a:b5:22:d4:92:7c:31:eb:a8:9b: 0a:31:04:aa:ac:8c:c5:8b:9a:ed:f8:4d:10:3e:ad:7c:35:50: 37:dd:83:67:13:78:01:5b:51:b2:16:54:42:d7:b3:92:46:8a: d6:7c:7c:24:06:64:5d:1f:fd:04:c9:aa:c9:2d:26:0d:18:2c: 22:43:98:5c:f7:a4:c6:01:b1:4d:11:2c:0c:47:9a:74:99:67: 20:b6:dd:31:4c:e6:90:6a:8b:77:f3:a8:40:67:60:77:21:e0: 3c:0f:56:e2:f7:69:b6:2c:21:ae:35:db:f1:6c:91:7f:bc:89: a3:41:8b:a3:25:bb:88:b0:d1:a7:8c:02:d0:b3:77:52:78:3e: 80:ea:0b:aa -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt8f3i5sz2wF/tgVC4QkSbkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyNzYwM2E5M2JjYTMxYjAxOGY1MTFmNmQ0YjBiNzU0NmU5 NjMzNjIwHhcNMjYwMTAyMDIxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMjU1ZTBmNzU1MGMwMzI4MzEyZGVhMmFmZDVhNzMyOTU0OGFmYjMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAphQWPx3TfwvHwrKcNyqeAsMw/elb P3kDqvhrQMFEOFT8PQuAkBnIDu1kFHUJDOaarazqh5PPFvbGF0wr9J7Tip15KcTk PfF05w8yP/iEMrkCa7TZt5G5V0QpKsNjAXoXf4uFIfWfAyoRztkxwYzyl7fsguHy 1ATOlYN59USqtDgfkiGh7g39ooF1YqXdbyakBH4H+e2vf8VwkRTrYBPRS9wwxBth Kbax/lNWww7n8yqE1YzhmVqZ5ZAQsyQQzX/jZOBCOgkg9iT+hQzlpQbtzxDes4rL 9exHTJBDLUeQKoT8FFtDiIocXDpv9gs8f6Stf+m9HTvhuz6YFrtCabgbrwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFAJV4PdVDAMoMS3qKv1acylUivsyMB8GA1UdIwQY MBaAFIJ2A6k7yjGwGPUR9tSwt1RuljNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ25ZRHFUdktNYkFZOVJIMjFMQzNWRzZXTTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi85MWFmNjYtZDM5NC00MmZhLWEwYzYt YjE2Y2I0ZGZhZGQzLzEvQWxYZzkxVU1BeWd4TGVvcV9WcHpLVlNLLXpJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi85MWFmNjYtZDM5NC00MmZhLWEwYzYtYjE2Y2I0ZGZhZGQz LzEvZ25ZRHFUdktNYkFZOVJIMjFMQzNWRzZXTTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg4bQDAN BgkqhkiG9w0BAQsFAAOCAQEAMD7OjGvVgtMmTdyDIEWvLltcCIn9yJRlfYgYJsDC vwqvI4p38roQwNsSRu0uOHh+WpK4MbSYpc6WcBtWzZuOtMc0x/ByVlET2xMSLVPd pKjQ015MxzXgKTUoFPsiiEncyFWx9k01KcuV0643EOkG0POBPRg6tSLUknwx66ib CjEEqqyMxYua7fhNED6tfDVQN92DZxN4AVtRshZUQtezkkaK1nx8JAZkXR/9BMmq yS0mDRgsIkOYXPekxgGxTREsDEeadJlnILbdMUzmkGqLd/OoQGdgdyHgPA9W4vdp tiwhrjXb8WyRf7yJo0GLoyW7iLDRp4wC0LN3Ung+gOoLqg== -----END CERTIFICATE-----Generated at Fri Jan 23 16:05:00 2026 by rpki-client