This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/A2grCLm4EzUAhvZDFjw6I3ET34Q.roa File: A2grCLm4EzUAhvZDFjw6I3ET34Q.roa (raw, json) Hash identifier: mM6RZu3nTkcS3jxtoLVk1fUoaQPDZ1MXwzoN6gZLdjo= Subject key identifier: 03:68:2B:08:B9:B8:13:35:00:86:F6:43:16:3C:3A:23:71:13:DF:84 Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde Certificate serial: 019B7C801A029D015429B32E85A6D9296153 Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/A2grCLm4EzUAhvZDFjw6I3ET34Q.roa Signing time: Fri 02 Jan 2026 02:18:48 +0000 ROA not before: Fri 02 Jan 2026 02:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 40970 IP address blocks: 2a0d:98c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.mft rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:1a:02:9d:01:54:29:b3:2e:85:a6:d9:29:61:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde Validity Not Before: Jan 2 02:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=03682b08b9b813350086f643163c3a237113df84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f8:5b:a9:c9:88:b2:4f:91:5e:e3:fe:a6:72: de:15:e4:ca:13:c2:b8:73:ef:2d:e6:34:71:3b:bc: e9:4f:0f:9a:48:d6:b8:04:53:33:c0:2d:38:64:bf: db:a9:c0:1d:a4:64:3d:f0:d7:6b:38:5c:7b:0f:60: 47:67:00:35:10:b2:89:5b:7b:54:e0:45:4c:34:ba: 4f:c0:cb:02:e7:b5:8a:48:1a:05:ed:b8:b2:e3:65: b2:bd:6c:c3:fd:41:45:2c:c8:51:45:96:8e:e4:2d: c2:ae:7a:2a:83:86:9f:51:4c:1d:a0:de:31:5d:b0: dc:43:fa:d2:fa:ac:2b:54:23:82:26:09:42:eb:09: d2:2d:8e:b2:f1:b4:39:7e:c8:12:71:cf:a2:c1:85: e6:0f:01:08:58:0c:29:2d:7a:ad:34:76:fe:88:1f: aa:04:53:a2:c7:53:7f:9b:1c:d0:17:ac:48:d9:fb: e3:20:36:7b:5b:05:88:a0:ee:94:01:86:29:5c:b4: 95:56:db:cd:bb:b1:54:23:a8:4e:be:e2:cc:91:f4: c6:60:88:fa:4b:72:c4:50:38:3a:e9:02:ef:78:bc: e8:04:03:4c:83:19:7a:68:77:df:32:e7:5f:16:a2: 92:81:8b:af:67:25:08:9b:d8:7e:5c:6b:36:64:a4: 22:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:68:2B:08:B9:B8:13:35:00:86:F6:43:16:3C:3A:23:71:13:DF:84 X509v3 Authority Key Identifier: keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/A2grCLm4EzUAhvZDFjw6I3ET34Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0d:98c0::/29 Signature Algorithm: sha256WithRSAEncryption 0c:ae:54:96:9c:ad:b9:e0:3b:99:77:32:a5:79:be:a9:f0:b6: d7:f7:68:1f:c1:df:ce:ad:eb:a4:80:3e:39:52:96:25:a3:a2: 1d:30:9e:f1:8b:54:d5:55:5e:61:a8:45:9e:da:a6:b5:c9:f5: 50:26:17:6c:fc:67:ac:2e:c1:08:f5:20:83:fe:cd:75:6e:37: 61:e4:11:02:a9:af:85:b6:6b:31:20:65:ce:f9:df:3f:30:90: d8:af:94:2d:06:4e:de:18:0b:4b:0d:5b:35:f1:06:c9:7f:01: 6f:44:0f:9c:45:8e:a7:26:5e:38:97:13:99:5f:61:6c:63:7d: 1b:1b:4e:35:4e:86:50:fb:c6:11:e0:48:1e:00:f1:2f:42:d1: f7:09:3d:78:04:f0:ad:f3:11:c4:e7:23:c1:8d:36:5b:d2:a3: b9:93:87:b4:36:e4:3d:c4:cf:cf:bb:a7:f8:56:3f:37:ef:b5: ae:9d:ae:48:2d:7e:41:6c:06:b4:b2:25:59:c6:98:a2:33:75: 99:98:65:a2:e0:df:52:e5:d7:b9:d4:d6:14:c6:2e:38:c0:3c: cf:fd:61:16:e7:e8:c4:3e:01:fe:93:92:6f:bb:39:de:ea:8a: 4c:4b:e5:04:a4:92:32:7d:29:6a:2c:2c:53:6c:23:fa:39:e3: 43:df:5c:c8 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt8gBoCnQFUKbMuhabZKWFTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3 NTJmZGUwHhcNMjYwMTAyMDIxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzY4MmIwOGI5YjgxMzM1MDA4NmY2NDMxNjNjM2EyMzcxMTNkZjg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwPhbqcmIsk+RXuP+pnLeFeTKE8K4 c+8t5jRxO7zpTw+aSNa4BFMzwC04ZL/bqcAdpGQ98NdrOFx7D2BHZwA1ELKJW3tU 4EVMNLpPwMsC57WKSBoF7biy42WyvWzD/UFFLMhRRZaO5C3Crnoqg4afUUwdoN4x XbDcQ/rS+qwrVCOCJglC6wnSLY6y8bQ5fsgScc+iwYXmDwEIWAwpLXqtNHb+iB+q BFOix1N/mxzQF6xI2fvjIDZ7WwWIoO6UAYYpXLSVVtvNu7FUI6hOvuLMkfTGYIj6 S3LEUDg66QLveLzoBANMgxl6aHffMudfFqKSgYuvZyUIm9h+XGs2ZKQiLwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFANoKwi5uBM1AIb2QxY8OiNxE9+EMB8GA1UdIwQY MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt YTNjYTBkYjgzMjU0LzEvQTJnckNMbTRFelVBaHZaREZqdzZJM0VUMzRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0 LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg2YwDAN BgkqhkiG9w0BAQsFAAOCAQEADK5UlpytueA7mXcypXm+qfC21/doH8Hfzq3rpIA+ OVKWJaOiHTCe8YtU1VVeYahFntqmtcn1UCYXbPxnrC7BCPUgg/7NdW43YeQRAqmv hbZrMSBlzvnfPzCQ2K+ULQZO3hgLSw1bNfEGyX8Bb0QPnEWOpyZeOJcTmV9hbGN9 GxtONU6GUPvGEeBIHgDxL0LR9wk9eATwrfMRxOcjwY02W9KjuZOHtDbkPcTPz7un +FY/N++1rp2uSC1+QWwGtLIlWcaYojN1mZhlouDfUuXXudTWFMYuOMA8z/1hFufo xD4B/pOSb7s53uqKTEvlBKSSMn0paiwsU2wj+jnjQ99cyA== -----END CERTIFICATE-----Generated at Mon Jan 19 19:58:19 2026 by rpki-client