This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/7Oy7E8JfcaH9-Q7THj3GR6KizGo.roa File: 7Oy7E8JfcaH9-Q7THj3GR6KizGo.roa (raw, json) Hash identifier: W8kdbho/I1XMKMGfyf0wsnKxueiPSdkfJkmnpSjS5iE= Subject key identifier: EC:EC:BB:13:C2:5F:71:A1:FD:F9:0E:D3:1E:3D:C6:47:A2:A2:CC:6A Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E396C0A6596EC3B2C185137C746A24C Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/7Oy7E8JfcaH9-Q7THj3GR6KizGo.roa Signing time: Fri 02 Jan 2026 10:20:51 +0000 ROA not before: Fri 02 Jan 2026 10:20:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214879 IP address blocks: 2a0c:b641:c60::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:6c:0a:65:96:ec:3b:2c:18:51:37:c7:46:a2:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ececbb13c25f71a1fdf90ed31e3dc647a2a2cc6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:96:71:81:cb:6c:42:ec:54:41:63:41:da:fe: a9:87:c9:6c:65:56:70:55:62:b8:bf:90:98:f2:3d: a9:7f:4a:ba:9e:fc:7c:c3:e2:26:b9:97:a5:25:31: d8:fc:c8:ff:b6:87:68:7d:58:75:80:84:c5:e8:74: 36:52:36:07:b4:fd:ef:3c:7d:6e:4b:63:71:88:4c: 3a:ee:fd:42:a7:17:4e:cf:2b:17:b1:38:11:2c:30: 10:39:30:b0:08:02:52:ba:ef:18:c1:27:5b:cf:4b: c6:63:34:fc:fe:39:7e:de:e0:c2:9f:1f:5c:ca:08: 79:58:91:45:a9:18:bc:bf:44:00:68:81:89:5d:43: 61:e5:cb:3b:6b:e9:c2:e0:e5:fb:9c:05:95:63:1a: c5:74:a7:f7:c2:96:ae:8c:da:43:06:67:00:ae:b9: 79:20:7b:dc:46:e0:83:dd:11:e8:29:0c:b1:72:76: 73:cb:a7:d9:85:b8:04:d8:78:76:f4:46:94:15:b4: 5f:d6:92:a5:b1:87:a9:00:7c:d3:a4:78:7d:dc:97: 2a:79:9e:82:f8:9b:4b:88:ea:e9:51:c5:06:2c:ac: d3:4c:06:d4:e1:4a:94:31:ff:62:2f:86:b6:63:fb: 62:47:f0:4d:2a:eb:cc:da:72:58:a9:e2:0e:5f:9c: b5:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:EC:BB:13:C2:5F:71:A1:FD:F9:0E:D3:1E:3D:C6:47:A2:A2:CC:6A X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/7Oy7E8JfcaH9-Q7THj3GR6KizGo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:c60::/44 Signature Algorithm: sha256WithRSAEncryption 90:ae:66:4c:40:51:b2:0e:aa:91:c0:e6:6a:16:c7:fc:47:ef: 25:76:83:69:ba:cb:31:e2:70:33:ea:e5:2f:b9:11:ae:f3:4d: e8:7e:07:af:bc:3c:03:23:89:d1:59:84:1b:a5:51:78:0f:52: 7b:8b:17:c5:05:5a:29:4c:6e:18:e8:03:ed:a7:17:c1:59:7d: ad:72:15:3b:bd:c3:59:28:a3:73:e4:0d:b9:31:9e:b2:d3:82: 70:f5:fd:18:85:7e:28:27:ec:99:17:59:ba:0a:26:88:3c:ed: 85:ec:a5:1e:a0:e0:d9:df:c5:1c:fc:d0:2b:57:20:27:57:4d: 5b:b9:02:2b:ed:cc:69:25:bb:11:7b:71:59:03:76:2b:9e:7c: 20:9d:31:b0:36:a4:81:4b:12:ba:f0:d9:9a:c2:87:21:bc:01: c0:6f:48:ef:af:e9:cd:0c:7f:26:51:35:73:1b:36:ce:6b:d7: 30:59:9e:91:0e:2f:7a:75:6f:06:24:2a:ff:e1:84:c9:aa:85: 21:79:c7:b6:22:df:24:5b:03:b0:81:17:47:7f:65:59:be:f6: 22:2c:16:c1:11:48:90:dd:f8:85:a1:b0:58:02:e8:37:58:00: 28:30:e1:d0:2d:bc:0f:d9:1c:4a:71:cb:5e:29:29:e0:f0:30: 48:50:62:91 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OWwKZZbsOywYUTfHRqJMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlY2VjYmIxM2MyNWY3MWExZmRmOTBlZDMxZTNkYzY0N2EyYTJjYzZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA05ZxgctsQuxUQWNB2v6ph8lsZVZw VWK4v5CY8j2pf0q6nvx8w+ImuZelJTHY/Mj/todofVh1gITF6HQ2UjYHtP3vPH1u S2NxiEw67v1CpxdOzysXsTgRLDAQOTCwCAJSuu8YwSdbz0vGYzT8/jl+3uDCnx9c ygh5WJFFqRi8v0QAaIGJXUNh5cs7a+nC4OX7nAWVYxrFdKf3wpaujNpDBmcArrl5 IHvcRuCD3RHoKQyxcnZzy6fZhbgE2Hh29EaUFbRf1pKlsYepAHzTpHh93JcqeZ6C +JtLiOrpUcUGLKzTTAbU4UqUMf9iL4a2Y/tiR/BNKuvM2nJYqeIOX5y19QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFOzsuxPCX3Gh/fkO0x49xkeiosxqMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvN095N0U4SmZjYUg5LVE3VEhqM0dSNktpekdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQxg MA0GCSqGSIb3DQEBCwUAA4IBAQCQrmZMQFGyDqqRwOZqFsf8R+8ldoNpussx4nAz 6uUvuRGu803ofgevvDwDI4nRWYQbpVF4D1J7ixfFBVopTG4Y6APtpxfBWX2tchU7 vcNZKKNz5A25MZ6y04Jw9f0YhX4oJ+yZF1m6CiaIPO2F7KUeoODZ38Uc/NArVyAn V01buQIr7cxpJbsRe3FZA3YrnnwgnTGwNqSBSxK68NmawochvAHAb0jvr+nNDH8m UTVzGzbOa9cwWZ6RDi96dW8GJCr/4YTJqoUhece2It8kWwOwgRdHf2VZvvYiLBbB EUiQ3fiFobBYAug3WAAoMOHQLbwP2RxKccteKSng8DBIUGKR -----END CERTIFICATE-----Generated at Tue Jan 20 04:28:23 2026 by rpki-client