This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/14hfjY2WkrgN5t9cuXJnG0nZrEQ.roa File: 14hfjY2WkrgN5t9cuXJnG0nZrEQ.roa (raw, json) Hash identifier: bhmxqB04HtMkmgQafxfb1gd0aHjxAPtZqvxQPaHlqtI= Subject key identifier: D7:88:5F:8D:8D:96:92:B8:0D:E6:DF:5C:B9:72:67:1B:49:D9:AC:44 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E396323DF78D9A9140A8BF6D3AAC3C4 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/14hfjY2WkrgN5t9cuXJnG0nZrEQ.roa Signing time: Fri 02 Jan 2026 10:20:48 +0000 ROA not before: Fri 02 Jan 2026 10:20:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213548 IP address blocks: 2a0c:b641:1f0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:63:23:df:78:d9:a9:14:0a:8b:f6:d3:aa:c3:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d7885f8d8d9692b80de6df5cb972671b49d9ac44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:63:20:a8:1a:2e:28:cd:61:c7:ca:f9:54:33: d6:3f:55:36:87:61:96:e9:82:72:df:a3:cf:57:26: f0:7f:60:b2:d3:f7:ef:8c:71:5a:48:51:34:12:bf: 9f:a3:a0:60:a3:09:ca:81:dc:98:83:10:94:20:37: 86:c5:c6:1a:ca:dc:c2:27:e1:52:b5:64:bd:8f:3d: d6:f5:a4:a4:ed:15:30:79:62:43:8a:11:01:1a:0d: 94:21:0e:98:38:e1:a6:64:87:56:85:7f:8c:c4:de: 25:95:f4:50:14:74:f1:79:64:9f:0d:7a:54:2a:65: 36:55:71:0e:e9:a6:8a:5c:54:ed:0e:ee:f2:b1:a3: 43:dd:93:16:63:4e:e9:49:43:5c:37:80:62:39:0e: 4c:8f:89:6f:56:e7:a3:74:e9:92:d6:c0:b6:ca:03: 7f:50:36:40:ca:1c:ad:11:b4:a8:17:ad:a1:8a:57: b7:90:65:9f:71:5c:c4:e2:96:ba:e3:83:9d:f0:fd: 74:b3:a1:26:33:33:19:54:02:bf:06:ff:6d:a9:e2: 47:5a:32:e7:51:d8:5e:2d:e4:f2:ff:69:0d:14:e5: 46:08:8f:99:4d:f7:b5:fd:96:33:57:4b:08:4f:31: 89:01:a2:e7:e5:08:ac:07:44:8b:b2:c5:27:7a:fb: c8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:88:5F:8D:8D:96:92:B8:0D:E6:DF:5C:B9:72:67:1B:49:D9:AC:44 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/14hfjY2WkrgN5t9cuXJnG0nZrEQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:1f0::/44 Signature Algorithm: sha256WithRSAEncryption 61:84:99:59:27:69:33:7e:e6:73:ef:18:5c:35:80:55:8f:0c: db:63:f4:8d:81:a5:28:e3:f7:03:d4:fa:82:ed:23:de:0f:72: 00:5e:32:47:d2:2a:56:81:f1:b2:20:ad:3f:9e:a4:de:9f:07: 47:0a:da:6a:1b:bd:51:2d:fa:86:85:21:cc:3d:22:af:4d:ee: 2e:b9:3d:5b:d1:67:91:67:22:1c:68:da:8c:f4:6a:fe:0a:54: cd:4d:7b:a5:06:cb:d6:3c:fc:54:ed:d5:c0:98:59:79:0e:94: d9:0b:f9:dc:05:b9:9b:44:56:c3:94:d1:46:a8:f8:88:f4:ca: f7:ee:f9:a1:06:ae:d8:29:67:06:dc:04:46:10:12:41:37:48: e9:73:8f:90:8d:8b:83:fe:81:c6:2b:3a:6b:2e:40:43:54:4c: 38:b6:ae:39:32:99:ca:de:97:cc:41:83:04:7e:d4:89:81:bc: 8a:63:46:1a:d3:7a:82:be:ea:80:9b:f7:e3:9d:82:18:ed:2f: 58:63:75:8c:27:c0:26:45:73:30:c6:5c:07:b3:c4:f5:de:fe: 9e:21:ef:2f:a1:bf:79:a2:90:70:bc:59:8b:a7:27:7d:ae:95: d4:cc:46:8d:b7:be:1a:af:eb:52:8d:e4:d0:b1:a9:e4:04:ec: 9b:7b:d5:4d -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OWMj33jZqRQKi/bTqsPEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNzg4NWY4ZDhkOTY5MmI4MGRlNmRmNWNiOTcyNjcxYjQ5ZDlhYzQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1GMgqBouKM1hx8r5VDPWP1U2h2GW 6YJy36PPVybwf2Cy0/fvjHFaSFE0Er+fo6BgownKgdyYgxCUIDeGxcYaytzCJ+FS tWS9jz3W9aSk7RUweWJDihEBGg2UIQ6YOOGmZIdWhX+MxN4llfRQFHTxeWSfDXpU KmU2VXEO6aaKXFTtDu7ysaND3ZMWY07pSUNcN4BiOQ5Mj4lvVuejdOmS1sC2ygN/ UDZAyhytEbSoF62hile3kGWfcVzE4pa644Od8P10s6EmMzMZVAK/Bv9tqeJHWjLn UdheLeTy/2kNFOVGCI+ZTfe1/ZYzV0sITzGJAaLn5QisB0SLssUnevvIkQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNeIX42NlpK4DebfXLlyZxtJ2axEMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvMTRoZmpZMldrcmdONXQ5Y3VYSm5HMG5ackVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQHw MA0GCSqGSIb3DQEBCwUAA4IBAQBhhJlZJ2kzfuZz7xhcNYBVjwzbY/SNgaUo4/cD 1PqC7SPeD3IAXjJH0ipWgfGyIK0/nqTenwdHCtpqG71RLfqGhSHMPSKvTe4uuT1b 0WeRZyIcaNqM9Gr+ClTNTXulBsvWPPxU7dXAmFl5DpTZC/ncBbmbRFbDlNFGqPiI 9Mr37vmhBq7YKWcG3ARGEBJBN0jpc4+QjYuD/oHGKzprLkBDVEw4tq45MpnK3pfM QYMEftSJgbyKY0Ya03qCvuqAm/fjnYIY7S9YY3WMJ8AmRXMwxlwHs8T13v6eIe8v ob95opBwvFmLpyd9rpXUzEaNt74ar+tSjeTQsankBOybe9VN -----END CERTIFICATE-----Generated at Tue Jan 20 02:47:47 2026 by rpki-client