This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/lEqsPfJ-qWwA6TQd-ohXS0Li1gU.roa File: lEqsPfJ-qWwA6TQd-ohXS0Li1gU.roa (raw, json) Hash identifier: hs8ieBVGRJNin3fquHZxIlGRfOUPqdHhIELx12VmaoE= Subject key identifier: 94:4A:AC:3D:F2:7E:A9:6C:00:E9:34:1D:FA:88:57:4B:42:E2:D6:05 Certificate issuer: /CN=1bc1994ea63d50dbc8b43acecad2842b4dc15759 Certificate serial: 019B7D5C5CB6F6436451E83E7FE16A4A9484 Authority key identifier: 1B:C1:99:4E:A6:3D:50:DB:C8:B4:3A:CE:CA:D2:84:2B:4D:C1:57:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G8GZTqY9UNvItDrOytKEK03BV1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/lEqsPfJ-qWwA6TQd-ohXS0Li1gU.roa Signing time: Fri 02 Jan 2026 06:19:23 +0000 ROA not before: Fri 02 Jan 2026 06:19:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202685 IP address blocks: 2a05:7840::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/G8GZTqY9UNvItDrOytKEK03BV1k.crl rsync://rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/G8GZTqY9UNvItDrOytKEK03BV1k.mft rsync://rpki.ripe.net/repository/DEFAULT/G8GZTqY9UNvItDrOytKEK03BV1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 15:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:5c:b6:f6:43:64:51:e8:3e:7f:e1:6a:4a:94:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1bc1994ea63d50dbc8b43acecad2842b4dc15759 Validity Not Before: Jan 2 06:19:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=944aac3df27ea96c00e9341dfa88574b42e2d605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9f:c3:93:d9:f1:92:27:d6:6e:e2:19:b1:96: 03:39:b5:3c:72:a5:f4:e0:de:7e:fd:00:3e:3a:54: 75:50:ea:b8:7d:00:bd:12:57:63:cd:c0:a1:40:36: 76:da:ac:1a:a0:e2:d1:c6:41:78:80:4f:db:92:a8: 09:c7:cf:63:bb:a3:7a:c5:8e:4b:98:77:42:52:59: 37:a2:55:c4:ea:91:d1:59:74:89:0e:ee:2e:71:ea: a7:d4:75:cf:8a:b9:fb:86:d2:f6:d2:77:4b:c1:c3: 5f:e9:8c:5e:db:7b:27:3c:7f:d9:14:8a:a9:3c:5f: 1a:47:05:75:39:41:87:3f:9c:71:cc:0e:71:9d:23: e7:e7:ea:cb:9a:0a:5d:53:82:1a:7e:96:94:59:95: d4:49:e8:62:ce:d4:6e:85:ad:26:4d:1b:d2:11:d1: 60:ee:68:04:02:c6:07:15:aa:47:ed:bc:03:ed:38: e8:e5:24:74:46:c5:4b:38:14:d4:6f:49:64:fe:3e: e7:6f:a3:90:61:d0:68:5a:68:b5:a8:69:81:72:66: 0d:19:c0:22:65:cc:c7:66:ad:f5:e8:34:d0:c0:d0: 48:f8:43:9b:7e:38:27:36:57:80:8c:fe:f4:99:59: 33:ad:b4:4a:6f:c9:ff:17:41:f4:08:63:44:ad:81: 12:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:4A:AC:3D:F2:7E:A9:6C:00:E9:34:1D:FA:88:57:4B:42:E2:D6:05 X509v3 Authority Key Identifier: keyid:1B:C1:99:4E:A6:3D:50:DB:C8:B4:3A:CE:CA:D2:84:2B:4D:C1:57:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G8GZTqY9UNvItDrOytKEK03BV1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/lEqsPfJ-qWwA6TQd-ohXS0Li1gU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/G8GZTqY9UNvItDrOytKEK03BV1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:7840::/29 Signature Algorithm: sha256WithRSAEncryption 0c:d9:2e:a7:91:28:7c:b3:00:12:f8:2b:99:42:02:a9:66:33: ee:26:3f:74:83:c6:39:d2:d8:6a:16:d4:e9:bd:e7:b0:21:69: c5:75:67:8f:25:a4:c1:2f:57:d8:cc:2e:0f:45:b9:5b:d9:2d: 8d:ee:fe:96:8e:fb:d0:d1:d3:20:a9:dc:64:f9:ef:01:bc:c9: 2e:77:80:9b:d8:3d:bb:a0:45:7b:c9:39:49:d2:3f:a1:f6:5a: 49:57:1c:30:cc:95:f0:bd:05:45:a5:6e:a4:6d:13:e1:68:cf: f4:1f:74:3f:20:42:74:9f:89:5d:2e:bc:d6:83:23:7c:f5:bf: 92:ec:ef:8a:f0:29:05:a0:9c:13:be:59:1b:53:ea:a1:c4:61: 53:97:69:b5:f6:88:84:c2:6d:60:07:e7:4c:fe:85:c1:ec:3f: 43:28:dc:19:c7:8f:23:7c:49:da:75:5e:54:57:c6:ab:85:20: 61:f0:c5:63:b9:1a:4a:21:bb:ce:f2:03:c9:f2:78:c5:8e:c9: f4:8c:a1:8b:cd:fd:de:38:d2:8f:6f:29:34:dc:5e:7a:c5:0d: c9:36:d2:bf:81:c1:a7:c2:3f:22:a9:b8:63:bd:b0:67:43:41: c1:2c:57:86:dd:b5:14:30:1c:91:f5:71:67:0a:3f:b6:5a:e8: 84:64:19:98 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt9XFy29kNkUeg+f+FqSpSEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiYzE5OTRlYTYzZDUwZGJjOGI0M2FjZWNhZDI4NDJiNGRj MTU3NTkwHhcNMjYwMTAyMDYxOTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NDRhYWMzZGYyN2VhOTZjMDBlOTM0MWRmYTg4NTc0YjQyZTJkNjA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZ/Dk9nxkifWbuIZsZYDObU8cqX0 4N5+/QA+OlR1UOq4fQC9EldjzcChQDZ22qwaoOLRxkF4gE/bkqgJx89ju6N6xY5L mHdCUlk3olXE6pHRWXSJDu4uceqn1HXPirn7htL20ndLwcNf6Yxe23snPH/ZFIqp PF8aRwV1OUGHP5xxzA5xnSPn5+rLmgpdU4IafpaUWZXUSehiztRuha0mTRvSEdFg 7mgEAsYHFapH7bwD7Tjo5SR0RsVLOBTUb0lk/j7nb6OQYdBoWmi1qGmBcmYNGcAi ZczHZq316DTQwNBI+EObfjgnNleAjP70mVkzrbRKb8n/F0H0CGNErYESzwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFJRKrD3yfqlsAOk0HfqIV0tC4tYFMB8GA1UdIwQY MBaAFBvBmU6mPVDbyLQ6zsrShCtNwVdZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzhHWlRxWTlVTnZJdERyT3l0S0VLMDNCVjFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8xM2JkYmEtMDcxNS00ZTI2LWIwNzYt YWY1ODY3NDc2MzA5LzEvbEVxc1BmSi1xV3dBNlRRZC1vaFhTMExpMWdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC8xM2JkYmEtMDcxNS00ZTI2LWIwNzYtYWY1ODY3NDc2MzA5 LzEvRzhHWlRxWTlVTnZJdERyT3l0S0VLMDNCVjFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgV4QDAN BgkqhkiG9w0BAQsFAAOCAQEADNkup5EofLMAEvgrmUICqWYz7iY/dIPGOdLYahbU 6b3nsCFpxXVnjyWkwS9X2MwuD0W5W9ktje7+lo770NHTIKncZPnvAbzJLneAm9g9 u6BFe8k5SdI/ofZaSVccMMyV8L0FRaVupG0T4WjP9B90PyBCdJ+JXS681oMjfPW/ kuzvivApBaCcE75ZG1PqocRhU5dptfaIhMJtYAfnTP6Fwew/QyjcGcePI3xJ2nVe VFfGq4UgYfDFY7kaSiG7zvIDyfJ4xY7J9Iyhi8393jjSj28pNNxeesUNyTbSv4HB p8I/Iqm4Y72wZ0NBwSxXht21FDAckfVxZwo/tlrohGQZmA== -----END CERTIFICATE-----Generated at Tue Feb 3 02:09:25 2026 by rpki-client