This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/nwqaeG_KCttGLK--ObUOvvs5mUs.roa File: nwqaeG_KCttGLK--ObUOvvs5mUs.roa (raw, json) Hash identifier: ZhJ/o42+I1kNbsr0Zk7hIiJGANbWay6cQkuej8Jwphw= Subject key identifier: 9F:0A:9A:78:6F:CA:0A:DB:46:2C:AF:BE:39:B5:0E:BE:FB:39:99:4B Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Certificate serial: 019B7F82B4F7E6131A1305D6A75F0FF4E105 Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/nwqaeG_KCttGLK--ObUOvvs5mUs.roa Signing time: Fri 02 Jan 2026 16:20:31 +0000 ROA not before: Fri 02 Jan 2026 16:20:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20473 IP address blocks: 2a0b:b86:ffc0::/48 maxlen: 48 2a0b:b87:ffef::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 07:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:b4:f7:e6:13:1a:13:05:d6:a7:5f:0f:f4:e1:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Validity Not Before: Jan 2 16:20:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9f0a9a786fca0adb462cafbe39b50ebefb39994b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:29:25:53:c3:cc:8b:63:65:24:cc:af:81:84: bc:49:de:56:df:50:ed:9e:b9:00:2f:79:71:fa:0e: 08:db:dd:65:65:ba:ae:00:49:54:65:b1:04:53:3b: 69:9c:c1:a6:ac:d7:d1:7e:6f:61:28:4e:5f:09:ad: 1c:6f:e0:49:db:f9:dc:ac:ff:d4:b2:60:e7:11:d3: e6:9f:25:55:63:c1:e0:33:71:87:2e:d8:21:fa:24: 0b:66:75:a3:fb:98:c1:a2:c3:80:0f:c0:86:ef:19: 79:9d:dc:21:f5:c5:52:70:1f:1c:03:ea:d6:b9:e3: b5:a5:62:7d:5d:cf:5a:dc:44:2f:69:5c:ad:c4:dc: 85:14:e7:f4:a5:0d:ec:93:e3:ac:71:c1:d0:0c:79: 8e:80:a9:6d:5d:3d:1c:3c:a6:77:d6:6d:f7:0b:f4: a6:4a:fb:21:19:0c:f4:2c:8a:46:35:cd:c4:f4:ca: 6d:ae:47:b9:43:58:59:07:fa:53:1b:63:9f:b4:aa: c0:45:64:2a:de:3a:55:b8:1b:e9:32:89:17:23:01: 1c:59:8b:df:98:1d:86:88:4c:03:79:7e:0c:81:22: 46:5a:57:28:6e:47:ec:cf:9e:bd:3a:34:f1:42:49: 9e:4d:35:6f:a9:54:a2:9f:9c:31:ce:af:e7:08:69: 81:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:0A:9A:78:6F:CA:0A:DB:46:2C:AF:BE:39:B5:0E:BE:FB:39:99:4B X509v3 Authority Key Identifier: keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/nwqaeG_KCttGLK--ObUOvvs5mUs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:b86:ffc0::/48 2a0b:b87:ffef::/48 Signature Algorithm: sha256WithRSAEncryption cd:76:0c:ab:bc:5c:ef:1a:85:d9:dd:89:d0:0c:7f:9e:f5:a2: d3:9a:02:65:f8:c2:60:4c:f2:40:83:d0:d5:d9:0f:65:5b:90: b6:c3:48:f7:19:45:41:b3:ef:be:89:60:83:39:4b:16:a8:2c: ca:42:c0:75:a0:c1:cb:8a:70:e2:49:d2:ee:47:1f:cd:ca:a8: a2:8d:99:9e:25:d2:79:76:1e:e7:10:dc:b8:b4:ea:45:1e:69: b0:fc:36:41:13:b0:e4:c0:aa:4f:59:5d:16:a6:71:bd:be:4a: c7:43:92:28:74:46:8c:93:80:ab:7d:50:60:13:d2:17:b0:ad: 25:ea:be:35:5c:ea:a4:7c:4b:ed:60:f9:a4:19:a6:d5:26:97: bf:66:7f:e9:78:7e:03:cb:f9:61:b3:2e:ac:3c:10:dc:95:12: 5e:f7:a9:2c:e6:90:46:4b:d4:56:e5:73:47:68:1d:81:97:c7: 59:df:e6:c9:1e:8e:42:55:41:91:6d:35:d8:50:f5:7a:c1:d7: f5:3f:0f:be:fc:2a:69:68:74:ea:e8:a7:38:a1:ff:c5:bb:68: 3e:3d:77:c7:22:a9:ed:99:74:c4:b1:10:bc:0c:de:23:9e:7b: c5:94:33:d9:48:a0:96:2b:4c:70:a4:51:cb:2b:cf:dd:8d:ec: c6:c7:e7:81 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt/grT35hMaEwXWp18P9OEFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz YjUwMzQwHhcNMjYwMTAyMTYyMDMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZjBhOWE3ODZmY2EwYWRiNDYyY2FmYmUzOWI1MGViZWZiMzk5OTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCklU8PMi2NlJMyvgYS8Sd5W31Dt nrkAL3lx+g4I291lZbquAElUZbEEUztpnMGmrNfRfm9hKE5fCa0cb+BJ2/ncrP/U smDnEdPmnyVVY8HgM3GHLtgh+iQLZnWj+5jBosOAD8CG7xl5ndwh9cVScB8cA+rW ueO1pWJ9Xc9a3EQvaVytxNyFFOf0pQ3sk+OsccHQDHmOgKltXT0cPKZ31m33C/Sm SvshGQz0LIpGNc3E9Mptrke5Q1hZB/pTG2OftKrARWQq3jpVuBvpMokXIwEcWYvf mB2GiEwDeX4MgSJGWlcobkfsz569OjTxQkmeTTVvqVSin5wxzq/nCGmBcwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFJ8KmnhvygrbRiyvvjm1Dr77OZlLMB8GA1UdIwQY MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It Mzk0YWNkMjFmMzliLzEvbndxYWVHX0tDdHRHTEstLU9iVU92dnM1bVVzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgsLhv/A AwcAKgsLh//vMA0GCSqGSIb3DQEBCwUAA4IBAQDNdgyrvFzvGoXZ3YnQDH+e9aLT mgJl+MJgTPJAg9DV2Q9lW5C2w0j3GUVBs+++iWCDOUsWqCzKQsB1oMHLinDiSdLu Rx/NyqiijZmeJdJ5dh7nENy4tOpFHmmw/DZBE7DkwKpPWV0WpnG9vkrHQ5IodEaM k4CrfVBgE9IXsK0l6r41XOqkfEvtYPmkGabVJpe/Zn/peH4Dy/lhsy6sPBDclRJe 96ks5pBGS9RW5XNHaB2Bl8dZ3+bJHo5CVUGRbTXYUPV6wdf1Pw++/CppaHTq6Kc4 of/Fu2g+PXfHIqntmXTEsRC8DN4jnnvFlDPZSKCWK0xwpFHLK8/djezGx+eB -----END CERTIFICATE-----Generated at Tue Jan 20 15:18:02 2026 by rpki-client