This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/AGpvATvMNlCWX19w2S7Du5QgI1s.roa File: AGpvATvMNlCWX19w2S7Du5QgI1s.roa (raw, json) Hash identifier: PijD7OVgXT0Wq/SnlsqhX6fTVLhNNJPGPJpJbVG3v/E= Subject key identifier: 00:6A:6F:01:3B:CC:36:50:96:5F:5F:70:D9:2E:C3:BB:94:20:23:5B Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E39554F92E90AAEC952268A5554A32B Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/AGpvATvMNlCWX19w2S7Du5QgI1s.roa Signing time: Fri 02 Jan 2026 10:20:45 +0000 ROA not before: Fri 02 Jan 2026 10:20:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211364 IP address blocks: 2a0c:b641:170::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:55:4f:92:e9:0a:ae:c9:52:26:8a:55:54:a3:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=006a6f013bcc3650965f5f70d92ec3bb9420235b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:8b:77:fa:9d:7b:e6:b4:62:b8:6e:bf:de:70: fd:0f:09:00:86:5d:4c:b5:d2:27:cc:48:00:d4:67: 9e:50:15:a3:05:e3:db:fe:90:71:76:79:75:55:28: 70:ac:0a:b3:83:3e:46:c2:19:b3:64:54:66:20:bc: 7b:fc:69:38:1e:c2:65:bb:17:29:e4:22:1c:93:a8: 56:95:1c:9e:94:5a:4f:2d:25:6e:f8:6c:b9:39:28: dc:ac:19:c9:14:74:40:83:74:0f:e0:75:75:2c:ee: b9:2b:c8:fa:45:e5:13:0f:cf:07:80:b0:6b:a5:37: a0:90:05:c1:bf:40:e6:67:7f:e9:da:2e:3f:43:49: 66:c9:99:7c:72:99:fc:ee:6f:3b:49:ce:e3:95:15: ab:e4:2f:0b:1e:8c:97:8f:6b:c6:4b:5a:d7:28:49: af:da:c8:1e:64:d5:0e:23:c1:7a:2d:f9:9c:4e:09: dc:9a:f3:a2:db:de:48:47:ae:75:43:4e:d0:1b:3e: 52:77:5b:b9:6d:7f:58:59:8e:ed:cb:83:2a:8a:3c: 49:e2:91:46:14:4a:5e:0d:18:d8:d5:4e:76:13:13: f0:ac:4c:42:77:57:15:89:07:64:58:83:fb:a3:25: ec:51:93:0b:56:34:50:d5:a5:fe:fd:4f:d6:c4:d7: c8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:6A:6F:01:3B:CC:36:50:96:5F:5F:70:D9:2E:C3:BB:94:20:23:5B X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/AGpvATvMNlCWX19w2S7Du5QgI1s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:170::/44 Signature Algorithm: sha256WithRSAEncryption 70:fa:d9:5d:a8:64:99:e7:f2:62:85:05:db:7a:68:0d:1a:a7: 3b:d8:4a:e2:fd:bd:fa:16:ee:ae:3d:30:69:13:cb:86:66:11: c5:aa:2d:e8:65:a2:8c:04:db:af:cb:b5:2a:dd:dc:64:fa:c8: dd:e8:5b:13:3f:b3:97:1e:66:5f:4e:71:04:dc:f0:63:e2:bc: 08:a6:bd:64:32:6b:12:aa:26:84:2d:fd:7f:e8:a7:9e:a2:6b: c1:03:ee:5c:aa:84:a6:cc:b7:5d:92:8b:62:d5:87:7d:3e:76: 3b:a3:32:f1:ac:8d:50:92:c6:e7:30:85:4d:05:ad:ea:e7:e6: 4f:b7:5a:6a:ae:fd:7f:17:82:05:fd:f5:a9:e5:10:d7:bc:f6: eb:bc:b0:e9:00:09:9a:5e:08:dc:50:81:e2:e1:71:68:9d:c1: 4f:78:bb:e5:d3:77:6f:54:df:80:6a:7f:6a:9e:49:99:c9:46: 41:00:ea:e6:4f:84:7e:d3:f8:0a:8c:15:66:3e:27:0f:49:8c: 97:0d:6b:45:4a:dd:14:f4:c5:9d:c8:f8:7d:e1:a7:85:80:49: 1e:a7:87:74:61:6d:4a:e7:5f:34:92:e1:eb:3a:8b:62:b6:d9: 41:44:b4:7f:2a:02:2f:48:e5:0d:a5:fa:9c:84:f3:35:0b:be: 66:3b:e4:f0 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OVVPkukKrslSJopVVKMrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMDZhNmYwMTNiY2MzNjUwOTY1ZjVmNzBkOTJlYzNiYjk0MjAyMzViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkYt3+p175rRiuG6/3nD9DwkAhl1M tdInzEgA1GeeUBWjBePb/pBxdnl1VShwrAqzgz5GwhmzZFRmILx7/Gk4HsJluxcp 5CIck6hWlRyelFpPLSVu+Gy5OSjcrBnJFHRAg3QP4HV1LO65K8j6ReUTD88HgLBr pTegkAXBv0DmZ3/p2i4/Q0lmyZl8cpn87m87Sc7jlRWr5C8LHoyXj2vGS1rXKEmv 2sgeZNUOI8F6LfmcTgncmvOi295IR651Q07QGz5Sd1u5bX9YWY7ty4MqijxJ4pFG FEpeDRjY1U52ExPwrExCd1cViQdkWIP7oyXsUZMLVjRQ1aX+/U/WxNfIBwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFABqbwE7zDZQll9fcNkuw7uUICNbMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvQUdwdkFUdk1ObENXWDE5dzJTN0R1NVFnSTFzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQFw MA0GCSqGSIb3DQEBCwUAA4IBAQBw+tldqGSZ5/JihQXbemgNGqc72Eri/b36Fu6u PTBpE8uGZhHFqi3oZaKMBNuvy7Uq3dxk+sjd6FsTP7OXHmZfTnEE3PBj4rwIpr1k MmsSqiaELf1/6KeeomvBA+5cqoSmzLddkoti1Yd9PnY7ozLxrI1QksbnMIVNBa3q 5+ZPt1pqrv1/F4IF/fWp5RDXvPbrvLDpAAmaXgjcUIHi4XFoncFPeLvl03dvVN+A an9qnkmZyUZBAOrmT4R+0/gKjBVmPicPSYyXDWtFSt0U9MWdyPh94aeFgEkep4d0 YW1K5180kuHrOotittlBRLR/KgIvSOUNpfqchPM1C75mO+Tw -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:07 2026 by rpki-client