This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Ii0hWF8dYi9eP75zUO0_6Dgo6H4.roa File: Ii0hWF8dYi9eP75zUO0_6Dgo6H4.roa (raw, json) Hash identifier: 9circOlPYJeB6a+DeXwIb0N97sQPYfryEm9/kXW4P4U= Subject key identifier: 22:2D:21:58:5F:1D:62:2F:5E:3F:BE:73:50:ED:3F:E8:38:28:E8:7E Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E395DCF3301778CECA3354068900069 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Ii0hWF8dYi9eP75zUO0_6Dgo6H4.roa Signing time: Fri 02 Jan 2026 10:20:47 +0000 ROA not before: Fri 02 Jan 2026 10:20:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213190 IP address blocks: 2a0c:b642:fc0::/43 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:5d:cf:33:01:77:8c:ec:a3:35:40:68:90:00:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=222d21585f1d622f5e3fbe7350ed3fe83828e87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:91:eb:02:03:c2:38:8b:3e:84:3a:78:77:b4: 4f:ed:b5:f8:a4:c5:9a:09:7a:e4:82:1d:9e:d0:8c: f3:1c:6c:11:da:b3:34:1a:fe:a4:d5:2c:89:a5:b5: 66:81:be:b5:b5:8b:3f:8b:76:ed:21:c7:09:4f:33: 26:15:8f:c0:0e:e7:53:c3:7a:6c:2c:80:74:20:81: 9d:df:a7:06:12:ba:8a:f3:09:f2:46:45:23:8f:22: 12:39:16:83:0c:5b:43:1c:0e:d4:14:8a:33:ba:83: 82:f4:25:7a:23:ef:d1:19:bf:b1:b5:9e:b2:65:35: 82:24:22:fd:a3:48:19:7e:44:12:7d:ed:c5:b7:36: de:0a:0c:8d:0c:aa:72:f3:3a:35:f6:36:b7:5f:10: 93:75:4d:dc:ea:21:15:83:77:b5:0c:95:d9:ae:fb: 08:f2:ec:f3:e6:e1:e2:fe:3c:bd:99:05:ae:b1:54: eb:6d:8c:79:47:6e:19:73:8e:52:c6:83:3a:18:c6: 6d:8b:50:15:95:75:a0:49:b8:fd:c1:23:fc:44:59: a2:43:0a:9e:b8:c6:6d:a3:ad:aa:c9:54:09:59:d6: 87:b2:7c:05:53:f0:ce:70:45:a4:12:5c:0e:37:cb: 15:39:a6:0f:a3:25:aa:16:05:fc:68:eb:fd:a0:8f: 94:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:2D:21:58:5F:1D:62:2F:5E:3F:BE:73:50:ED:3F:E8:38:28:E8:7E X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Ii0hWF8dYi9eP75zUO0_6Dgo6H4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b642:fc0::/43 Signature Algorithm: sha256WithRSAEncryption 46:1d:af:64:7e:ff:65:fb:39:bd:3b:c3:62:2a:ed:06:f5:6f: a8:bf:63:bb:65:27:07:a4:08:02:e4:e6:9a:70:d6:6f:7f:6f: 04:35:4e:3b:d1:95:b4:f4:f8:20:02:e4:d3:f4:4e:cb:e4:ba: 10:6b:64:ca:4f:01:47:e0:e5:8d:b0:fe:e0:2f:7a:30:68:c7: 6d:0d:71:fb:50:36:c9:62:5e:ec:44:fe:cc:c5:5d:79:77:0d: c6:e1:77:3c:ed:3a:28:36:53:8f:ea:8b:5c:2e:5c:12:13:ca: 58:54:87:d0:f9:b6:41:10:c3:2a:aa:14:b3:2c:70:b6:ea:e2: ec:22:94:39:24:ce:73:d1:a5:62:fa:04:54:fe:33:75:50:3e: 12:20:0e:78:ea:69:a8:d2:8a:58:2f:c6:cd:40:8a:c7:2d:c7: 92:b0:9a:4f:0d:7d:f9:cc:c3:bf:5b:c3:48:e6:b9:e2:21:cb: 0e:bb:6a:c6:95:5a:56:d5:9d:2b:af:0f:d6:c7:1c:c4:18:3f: 1b:46:ae:f5:44:6f:c1:2f:f7:ad:1e:2b:6c:af:2c:84:a3:43: a4:70:c7:9c:75:e4:e2:b6:b6:8f:e2:f3:c6:86:34:48:0c:b9: 12:e7:b8:66:42:8e:20:22:11:32:29:4e:ac:03:26:51:8e:60: 90:41:7e:df -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OV3PMwF3jOyjNUBokABpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMjJkMjE1ODVmMWQ2MjJmNWUzZmJlNzM1MGVkM2ZlODM4MjhlODdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk5HrAgPCOIs+hDp4d7RP7bX4pMWa CXrkgh2e0IzzHGwR2rM0Gv6k1SyJpbVmgb61tYs/i3btIccJTzMmFY/ADudTw3ps LIB0IIGd36cGErqK8wnyRkUjjyISORaDDFtDHA7UFIozuoOC9CV6I+/RGb+xtZ6y ZTWCJCL9o0gZfkQSfe3FtzbeCgyNDKpy8zo19ja3XxCTdU3c6iEVg3e1DJXZrvsI 8uzz5uHi/jy9mQWusVTrbYx5R24Zc45SxoM6GMZti1AVlXWgSbj9wSP8RFmiQwqe uMZto62qyVQJWdaHsnwFU/DOcEWkElwON8sVOaYPoyWqFgX8aOv9oI+UkQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFCItIVhfHWIvXj++c1DtP+g4KOh+MB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvSWkwaFdGOGRZaTllUDc1elVPMF82RGdvNkg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcFKgy2Qg/A MA0GCSqGSIb3DQEBCwUAA4IBAQBGHa9kfv9l+zm9O8NiKu0G9W+ov2O7ZScHpAgC 5OaacNZvf28ENU470ZW09PggAuTT9E7L5LoQa2TKTwFH4OWNsP7gL3owaMdtDXH7 UDbJYl7sRP7MxV15dw3G4Xc87TooNlOP6otcLlwSE8pYVIfQ+bZBEMMqqhSzLHC2 6uLsIpQ5JM5z0aVi+gRU/jN1UD4SIA546mmo0opYL8bNQIrHLceSsJpPDX35zMO/ W8NI5rniIcsOu2rGlVpW1Z0rrw/WxxzEGD8bRq71RG/BL/etHitsryyEo0OkcMec deTitraP4vPGhjRIDLkS57hmQo4gIhEyKU6sAyZRjmCQQX7f -----END CERTIFICATE-----Generated at Tue Jan 20 02:45:57 2026 by rpki-client