This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ERNTGeOEWhI_2ULStrdzu7z-gHo.roa File: ERNTGeOEWhI_2ULStrdzu7z-gHo.roa (raw, json) Hash identifier: i6eRgqidlVI09OlXG4XcrlSwJAhsYaRb3wwWtrAWH9E= Subject key identifier: 11:13:53:19:E3:84:5A:12:3F:D9:42:D2:B6:B7:73:BB:BC:FE:80:7A Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E394367D13E91F131D6DA6208D9F463 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ERNTGeOEWhI_2ULStrdzu7z-gHo.roa Signing time: Fri 02 Jan 2026 10:20:40 +0000 ROA not before: Fri 02 Jan 2026 10:20:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208210 IP address blocks: 2a0c:b641:870::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:43:67:d1:3e:91:f1:31:d6:da:62:08:d9:f4:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=11135319e3845a123fd942d2b6b773bbbcfe807a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ce:30:9b:c5:3b:bd:3b:e1:f3:e0:6a:ed:e7: 52:93:b0:7d:06:1f:2e:6d:a8:e9:8b:c6:70:d7:c7: 9f:9c:08:85:7e:c1:b2:8a:7b:8f:36:04:6a:77:c8: fb:de:9e:b1:be:da:84:b4:d3:63:85:c5:a5:4c:5b: fc:39:80:5e:0f:15:8f:52:4e:47:52:3e:d0:77:88: e1:35:d1:cb:b0:da:70:02:4b:f3:40:b6:93:28:53: be:32:84:55:94:be:ac:94:94:4b:a2:4b:c4:d4:cf: a4:5a:8d:76:48:53:1d:22:72:57:52:27:cb:6e:4a: b9:63:11:1e:0a:94:81:89:08:98:d2:5a:6f:ad:03: be:d2:59:65:9b:1b:af:88:e6:c1:d3:82:b1:44:1d: 6e:97:2f:e5:cf:e4:55:b0:0d:f4:80:6b:4d:36:f2: da:c1:67:a2:1c:03:76:74:e1:76:00:d1:5d:e8:2f: 5c:8c:14:fe:40:57:e2:88:91:f3:b4:7d:ff:e5:6b: c6:4b:11:b6:e6:07:84:e5:67:b6:39:f9:f2:25:4d: 58:46:f5:9d:5e:9d:06:e7:db:bc:07:ed:0f:ed:39: 3b:88:75:39:79:f4:e8:23:cb:f5:d7:be:f1:1c:d7: b4:d9:f6:c5:c0:5d:46:98:b2:f8:9f:61:b8:63:bf: cb:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:13:53:19:E3:84:5A:12:3F:D9:42:D2:B6:B7:73:BB:BC:FE:80:7A X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ERNTGeOEWhI_2ULStrdzu7z-gHo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:870::/44 Signature Algorithm: sha256WithRSAEncryption 23:96:86:f2:23:02:78:7c:df:d9:ea:6e:b2:b3:43:43:a5:7c: 28:c9:09:b8:80:60:74:c9:f9:a4:bb:8b:f5:20:e2:73:e5:f3: 38:2e:b3:33:ba:b7:15:fc:c7:ed:54:73:37:16:30:72:bb:c4: e9:cc:e5:78:e4:ae:54:20:39:a1:26:de:f1:c6:7b:1d:af:6c: c5:9d:cd:3c:72:f7:c2:60:e8:5f:da:d9:6b:69:94:96:26:d4: dd:a1:91:6c:6c:18:49:0b:a0:fa:b8:29:0b:bb:6d:13:3a:72: ad:b8:9a:96:4d:6e:62:66:6b:be:7c:92:cd:11:e7:c1:5a:48: 95:8a:cb:c0:79:4b:c5:4d:6d:8f:04:29:34:a6:e9:9b:71:21: fc:0c:2c:84:e0:e5:bd:70:0b:ba:cb:c2:b4:50:0e:b3:5a:80: 4f:31:56:43:5f:09:99:f3:08:4a:f6:03:60:7c:bd:19:c4:2d: 3c:ae:e8:4e:46:b4:92:a4:18:7f:b9:b2:3c:40:d3:66:9f:9e: c0:cc:3b:f2:f0:90:7c:94:2d:b4:18:bd:95:41:4b:a2:41:aa: 71:f8:17:d8:7f:0f:e0:10:f5:67:5a:0e:e9:32:f6:7c:f3:b0: d6:ef:b5:b2:24:8c:1f:12:07:84:6a:bf:9d:3d:5d:a9:d8:ff: c7:95:cd:ee -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OUNn0T6R8THW2mII2fRjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMTEzNTMxOWUzODQ1YTEyM2ZkOTQyZDJiNmI3NzNiYmJjZmU4MDdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk84wm8U7vTvh8+Bq7edSk7B9Bh8u bajpi8Zw18efnAiFfsGyinuPNgRqd8j73p6xvtqEtNNjhcWlTFv8OYBeDxWPUk5H Uj7Qd4jhNdHLsNpwAkvzQLaTKFO+MoRVlL6slJRLokvE1M+kWo12SFMdInJXUifL bkq5YxEeCpSBiQiY0lpvrQO+0lllmxuviObB04KxRB1uly/lz+RVsA30gGtNNvLa wWeiHAN2dOF2ANFd6C9cjBT+QFfiiJHztH3/5WvGSxG25geE5We2OfnyJU1YRvWd Xp0G59u8B+0P7Tk7iHU5efToI8v1177xHNe02fbFwF1GmLL4n2G4Y7/LmQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFBETUxnjhFoSP9lC0ra3c7u8/oB6MB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvRVJOVEdlT0VXaElfMlVMU3RyZHp1N3otZ0hvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQhw MA0GCSqGSIb3DQEBCwUAA4IBAQAjlobyIwJ4fN/Z6m6ys0NDpXwoyQm4gGB0yfmk u4v1IOJz5fM4LrMzurcV/MftVHM3FjByu8TpzOV45K5UIDmhJt7xxnsdr2zFnc08 cvfCYOhf2tlraZSWJtTdoZFsbBhJC6D6uCkLu20TOnKtuJqWTW5iZmu+fJLNEefB WkiVisvAeUvFTW2PBCk0pumbcSH8DCyE4OW9cAu6y8K0UA6zWoBPMVZDXwmZ8whK 9gNgfL0ZxC08ruhORrSSpBh/ubI8QNNmn57AzDvy8JB8lC20GL2VQUuiQapx+BfY fw/gEPVnWg7pMvZ887DW77WyJIwfEgeEar+dPV2p2P/Hlc3u -----END CERTIFICATE-----Generated at Tue Jan 20 04:28:22 2026 by rpki-client