This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/BCgdicO3c4ClbvGM9oMFRWz3Uaw.roa File: BCgdicO3c4ClbvGM9oMFRWz3Uaw.roa (raw, json) Hash identifier: /lCIFnbxpveNg9Y1pRAeSol68M9HARHhrgf8zJH3k38= Subject key identifier: 04:28:1D:89:C3:B7:73:80:A5:6E:F1:8C:F6:83:05:45:6C:F7:51:AC Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Certificate serial: 019B7EA6C223B2C60F215C6F1C6B1C562D5F Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/BCgdicO3c4ClbvGM9oMFRWz3Uaw.roa Signing time: Fri 02 Jan 2026 12:20:16 +0000 ROA not before: Fri 02 Jan 2026 12:20:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7489 IP address blocks: 2a0c:9a40:8085::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:c2:23:b2:c6:0f:21:5c:6f:1c:6b:1c:56:2d:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Validity Not Before: Jan 2 12:20:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=04281d89c3b77380a56ef18cf68305456cf751ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3e:a7:f7:e8:70:90:f0:67:8f:c2:0d:17:79: 23:1d:db:90:78:7b:22:a5:7e:97:4a:05:d4:d9:3d: df:f6:af:0d:15:35:e6:4a:e4:e5:b9:e5:e2:ee:75: 35:e1:4b:19:8f:94:94:83:08:c9:bd:62:fc:b7:8b: 00:bb:f5:cb:08:97:79:6e:c8:f8:d5:1c:43:6d:cc: a3:09:fe:78:a6:15:a0:a0:c6:88:da:21:38:2e:63: f7:06:85:28:39:38:25:91:95:bd:0a:5d:da:a3:8c: ec:bc:7e:91:40:47:36:2b:59:85:a9:cc:a8:13:f8: 0b:17:dd:ce:b2:13:9e:8e:b8:4a:1d:8f:46:e9:08: c6:22:b9:dd:1e:bc:d3:18:00:61:f7:92:97:6e:ea: 26:98:dc:53:92:53:d8:c8:73:db:fa:dc:3a:e4:a7: 7f:9c:32:3f:e9:e2:4d:48:e8:c1:9f:3a:c6:b8:93: ec:24:92:93:0f:cf:fd:5d:70:51:3e:8a:e9:b8:2f: e7:df:db:8e:bd:22:8c:a2:3f:5c:b1:e4:9b:d7:85: 80:16:df:88:af:2d:4b:8f:24:94:68:32:f0:9a:4a: 47:2e:11:16:ce:83:d0:51:98:cf:a9:3d:a4:49:28: e1:23:4b:ad:fe:e7:64:29:a6:ed:e2:28:32:a6:aa: 6f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:28:1D:89:C3:B7:73:80:A5:6E:F1:8C:F6:83:05:45:6C:F7:51:AC X509v3 Authority Key Identifier: keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/BCgdicO3c4ClbvGM9oMFRWz3Uaw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:9a40:8085::/48 Signature Algorithm: sha256WithRSAEncryption 22:c0:01:67:aa:10:b0:bf:bd:0b:8f:eb:15:de:24:d7:f2:a6: 89:32:1b:5e:7d:af:d7:96:54:77:fe:9d:b6:1a:d1:52:d1:77: 92:5d:7a:69:ec:89:bf:a3:30:90:fe:c9:fa:21:84:7a:6a:a1: dc:41:4a:ea:25:f4:8d:9b:43:99:65:cb:a3:03:9a:85:56:e2: ef:3f:7c:bc:d8:18:88:1e:ee:c7:cc:07:7b:20:06:e1:b7:23: 27:7f:88:f9:89:1b:d9:e1:a4:2c:9e:3e:0d:f2:d1:f8:a5:26: 0c:f2:b1:c6:91:c0:32:78:58:67:b0:d7:0e:00:e3:f7:27:80: 49:92:21:c5:e6:a2:dc:06:53:92:cf:fc:6c:15:60:60:80:b8: 60:57:0e:32:e1:89:43:41:3d:f1:78:a7:fe:6a:e2:c5:d7:05: 32:b8:b4:1d:55:f6:e3:66:d8:f1:7d:ba:30:eb:7b:fd:13:49: 59:11:46:5d:fd:b5:19:26:9b:d1:ce:aa:19:b8:ea:d5:9b:bc: 97:7f:df:cf:ef:2e:dd:2e:fa:97:7e:a0:3f:9f:f2:b6:b0:59: f8:9e:7b:75:e8:1d:02:8a:d3:e7:e0:f4:17:9c:d1:c6:64:0d: 0b:76:98:e6:ff:bf:a5:62:39:78:7d:eb:88:1e:ad:3b:25:b4: cd:12:84:d9 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+psIjssYPIVxvHGscVi1fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl NDgwMDgwHhcNMjYwMTAyMTIyMDE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNDI4MWQ4OWMzYjc3MzgwYTU2ZWYxOGNmNjgzMDU0NTZjZjc1MWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxj6n9+hwkPBnj8INF3kjHduQeHsi pX6XSgXU2T3f9q8NFTXmSuTlueXi7nU14UsZj5SUgwjJvWL8t4sAu/XLCJd5bsj4 1RxDbcyjCf54phWgoMaI2iE4LmP3BoUoOTglkZW9Cl3ao4zsvH6RQEc2K1mFqcyo E/gLF93OshOejrhKHY9G6QjGIrndHrzTGABh95KXbuommNxTklPYyHPb+tw65Kd/ nDI/6eJNSOjBnzrGuJPsJJKTD8/9XXBRPorpuC/n39uOvSKMoj9cseSb14WAFt+I ry1LjySUaDLwmkpHLhEWzoPQUZjPqT2kSSjhI0ut/udkKabt4igypqpvnQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFAQoHYnDt3OApW7xjPaDBUVs91GsMB8GA1UdIwQY MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt YmY0ZTUyN2I5ZmE4LzEvQkNnZGljTzNjNENsYnZHTTlvTUZSV3ozVWF3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4 LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgyaQICF MA0GCSqGSIb3DQEBCwUAA4IBAQAiwAFnqhCwv70Lj+sV3iTX8qaJMhtefa/XllR3 /p22GtFS0XeSXXpp7Im/ozCQ/sn6IYR6aqHcQUrqJfSNm0OZZcujA5qFVuLvP3y8 2BiIHu7HzAd7IAbhtyMnf4j5iRvZ4aQsnj4N8tH4pSYM8rHGkcAyeFhnsNcOAOP3 J4BJkiHF5qLcBlOSz/xsFWBggLhgVw4y4YlDQT3xeKf+auLF1wUyuLQdVfbjZtjx fbow63v9E0lZEUZd/bUZJpvRzqoZuOrVm7yXf9/P7y7dLvqXfqA/n/K2sFn4nnt1 6B0CitPn4PQXnNHGZA0Ldpjm/7+lYjl4feuIHq07JbTNEoTZ -----END CERTIFICATE-----Generated at Fri Jan 9 01:36:50 2026 by rpki-client