This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/kIDgGMW1uXNaj9KusJXcTTlIh7c.roa File: kIDgGMW1uXNaj9KusJXcTTlIh7c.roa (raw, json) Hash identifier: PwAEtgyKC+fUUIGh92oSv3jyXm09MobuWsRtDnHhYsA= Subject key identifier: 90:80:E0:18:C5:B5:B9:73:5A:8F:D2:AE:B0:95:DC:4D:39:48:87:B7 Certificate issuer: /CN=6aa8fa75c5020cd6218cf7f109de420265204bac Certificate serial: 019B7FF20561ECBF94B54FCF0A264DE5E3E3 Authority key identifier: 6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/kIDgGMW1uXNaj9KusJXcTTlIh7c.roa Signing time: Fri 02 Jan 2026 18:22:06 +0000 ROA not before: Fri 02 Jan 2026 18:22:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 46.29.36.0/24 maxlen: 24 2a13:d040:1::/48 maxlen: 48 2a13:d040:2::/48 maxlen: 48 2a13:d040:3::/48 maxlen: 48 2a13:d040:10::/48 maxlen: 48 2a13:d040:11::/48 maxlen: 48 2a13:d040:12::/48 maxlen: 48 2a13:d040:13::/48 maxlen: 48 2a13:d040:14::/48 maxlen: 48 2a13:d040:15::/48 maxlen: 48 2a13:d040:16::/48 maxlen: 48 2a13:d040:17::/48 maxlen: 48 2a13:d040:18::/48 maxlen: 48 2a13:d040:19::/48 maxlen: 48 2a13:d040:1a::/48 maxlen: 48 2a13:d040:1b::/48 maxlen: 48 2a13:d040:1c::/48 maxlen: 48 2a13:d040:1d::/48 maxlen: 48 2a13:d040:1e::/48 maxlen: 48 2a13:d040:1f::/48 maxlen: 48 2a13:d040:20::/48 maxlen: 48 2a13:d040:21::/48 maxlen: 48 2a13:d040:22::/48 maxlen: 48 2a13:d040:23::/48 maxlen: 48 2a13:d040:24::/48 maxlen: 48 2a13:d040:25::/48 maxlen: 48 2a13:d040:26::/48 maxlen: 48 2a13:d040:27::/48 maxlen: 48 2a13:d040:28::/48 maxlen: 48 2a13:d040:29::/48 maxlen: 48 2a13:d040:2a::/48 maxlen: 48 2a13:d040:2b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.mft rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:05:61:ec:bf:94:b5:4f:cf:0a:26:4d:e5:e3:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6aa8fa75c5020cd6218cf7f109de420265204bac Validity Not Before: Jan 2 18:22:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9080e018c5b5b9735a8fd2aeb095dc4d394887b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b7:f5:89:9d:38:36:3d:d8:3b:85:9b:b2:ea: 18:3a:e0:77:8d:95:e1:76:b3:71:c4:f9:00:e7:18: 9b:d6:4e:ef:9e:fe:f1:80:4a:49:24:fe:18:80:6a: 78:aa:81:e8:1e:0d:de:40:32:22:20:32:3b:a2:e7: 61:2e:dc:e2:a4:33:f1:61:96:bb:af:55:6b:73:26: c5:28:80:6c:c4:b1:1c:3d:2d:54:11:82:31:f6:9b: c5:7a:b1:cd:a5:86:83:f5:27:09:5d:ac:f6:18:71: ea:08:50:74:07:2e:53:3d:d8:e0:03:2f:e1:9c:6e: ed:6f:d6:09:2f:10:f7:9d:11:97:fb:03:91:ad:a2: 12:9c:cd:22:28:01:36:2a:1c:06:7f:8c:e4:f7:2c: df:39:d2:62:de:92:d0:e1:d6:92:40:fe:7e:be:ce: 39:79:ce:17:0d:d6:77:cd:6a:1d:fb:3c:eb:01:53: d4:48:18:bd:b8:16:1b:3c:ee:60:1b:7e:56:b9:03: a2:74:6f:6e:88:a8:0f:f0:b5:4f:4a:88:a2:dd:06: ad:aa:3e:b6:24:b5:ea:c4:f2:8f:85:c6:2e:5f:bc: ec:6b:36:00:e9:7e:07:36:60:ed:42:70:67:a1:4e: 4b:ee:27:50:64:fb:29:ed:8d:db:c4:9b:04:38:74: 84:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:80:E0:18:C5:B5:B9:73:5A:8F:D2:AE:B0:95:DC:4D:39:48:87:B7 X509v3 Authority Key Identifier: keyid:6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/kIDgGMW1uXNaj9KusJXcTTlIh7c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.29.36.0/24 IPv6: 2a13:d040:1::-2a13:d040:3:ffff:ffff:ffff:ffff:ffff 2a13:d040:10::-2a13:d040:2b:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 06:0d:55:78:63:7c:b9:76:98:1a:79:e0:f2:53:4c:64:ba:41: 5d:02:03:41:f4:4f:76:c8:5f:3a:a7:b6:56:2a:9a:91:18:63: 73:7d:64:2a:06:38:2b:bd:b3:6a:6e:84:40:f6:9a:3e:36:4d: fa:9a:09:5b:38:d0:c1:a8:a8:32:2a:29:66:38:91:f0:2a:ab: ed:fc:4c:70:67:ba:a5:1e:a5:ee:fb:cb:31:02:5a:00:0f:51: aa:2a:46:d0:ea:3d:1b:a4:ce:2c:9a:44:91:57:2b:b4:bb:12: 90:5f:bf:bc:7d:b5:38:83:d1:8e:b8:1d:06:fc:0c:43:6f:cc: 2d:72:55:0b:09:ec:9f:4b:f0:8f:63:a3:45:33:16:f1:92:63: 6a:80:ef:7b:42:de:bb:dd:1d:91:88:ab:f8:7a:2c:fd:e4:a2: ea:2f:81:08:3f:79:47:9b:95:79:18:e2:e8:0e:60:8a:84:5a: 60:51:52:60:26:bd:47:88:fa:e2:31:29:08:fd:e6:ce:54:5b: 09:b4:3e:4e:08:33:0e:bd:80:04:d2:53:42:d0:54:34:c7:64: ea:3e:9d:18:cb:d4:7b:57:18:89:67:89:19:61:70:cf:0f:79: d1:50:4d:80:4a:94:17:bc:91:5a:20:6c:e8:f0:15:39:5d:66: 17:5e:b7:f4 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISAZt/8gVh7L+UtU/PCiZN5ePjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhYThmYTc1YzUwMjBjZDYyMThjZjdmMTA5ZGU0MjAyNjUy MDRiYWMwHhcNMjYwMTAyMTgyMjA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDgwZTAxOGM1YjViOTczNWE4ZmQyYWViMDk1ZGM0ZDM5NDg4N2I3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAorf1iZ04Nj3YO4WbsuoYOuB3jZXh drNxxPkA5xib1k7vnv7xgEpJJP4YgGp4qoHoHg3eQDIiIDI7oudhLtzipDPxYZa7 r1VrcybFKIBsxLEcPS1UEYIx9pvFerHNpYaD9ScJXaz2GHHqCFB0By5TPdjgAy/h nG7tb9YJLxD3nRGX+wORraISnM0iKAE2KhwGf4zk9yzfOdJi3pLQ4daSQP5+vs45 ec4XDdZ3zWod+zzrAVPUSBi9uBYbPO5gG35WuQOidG9uiKgP8LVPSoii3Qatqj62 JLXqxPKPhcYuX7zsazYA6X4HNmDtQnBnoU5L7idQZPsp7Y3bxJsEOHSElQIDAQAB o4ICOTCCAjUwHQYDVR0OBBYEFJCA4BjFtblzWo/SrrCV3E05SIe3MB8GA1UdIwQY MBaAFGqo+nXFAgzWIYz38QneQgJlIEusMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXFqNmRjVUNETlloalBmeENkNUNBbVVnUzZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy83MDEyZDgtYWZhMS00MTliLThiNjAt MzVjNjNmYTc2NWEyLzEva0lEZ0dNVzF1WE5hajlLdXNKWGNUVGxJaDdjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy83MDEyZDgtYWZhMS00MTliLThiNjAtMzVjNjNmYTc2NWEy LzEvYXFqNmRjVUNETlloalBmeENkNUNBbVVnUzZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjAMBAIAATAGAwQALh0kMC4E AgACMCgwEgMHACoT0EAAAQMHAioT0EAAADASAwcEKhPQQAAQAwcCKhPQQAAoMA0G CSqGSIb3DQEBCwUAA4IBAQAGDVV4Y3y5dpgaeeDyU0xkukFdAgNB9E92yF86p7ZW KpqRGGNzfWQqBjgrvbNqboRA9po+Nk36mglbONDBqKgyKilmOJHwKqvt/ExwZ7ql HqXu+8sxAloAD1GqKkbQ6j0bpM4smkSRVyu0uxKQX7+8fbU4g9GOuB0G/AxDb8wt clULCeyfS/CPY6NFMxbxkmNqgO97Qt673R2RiKv4eiz95KLqL4EIP3lHm5V5GOLo DmCKhFpgUVJgJr1HiPriMSkI/ebOVFsJtD5OCDMOvYAE0lNC0FQ0x2TqPp0Yy9R7 VxiJZ4kZYXDPD3nRUE2ASpQXvJFaIGzo8BU5XWYXXrf0 -----END CERTIFICATE-----Generated at Fri Jan 9 17:06:57 2026 by rpki-client