This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Kv3C_iPgdtHBDnpFTf422MXBVOM.roa File: Kv3C_iPgdtHBDnpFTf422MXBVOM.roa (raw, json) Hash identifier: 2yI6E/out3bfPZU/ZqcZ4r4vNEox01ZX+Pko2CXW5W8= Subject key identifier: 2A:FD:C2:FE:23:E0:76:D1:C1:0E:7A:45:4D:FE:36:D8:C5:C1:54:E3 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E395956E121BDA03E922BFA12296796 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Kv3C_iPgdtHBDnpFTf422MXBVOM.roa Signing time: Fri 02 Jan 2026 10:20:46 +0000 ROA not before: Fri 02 Jan 2026 10:20:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212510 IP address blocks: 2a0c:b641:2c0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:59:56:e1:21:bd:a0:3e:92:2b:fa:12:29:67:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2afdc2fe23e076d1c10e7a454dfe36d8c5c154e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b5:31:28:9b:d7:b1:f0:3a:2f:42:a7:d4:74: 57:cb:31:7a:5f:7d:53:18:56:82:48:18:4c:ba:cc: 85:16:33:76:f7:8c:67:e8:9d:f4:2e:11:b2:3d:32: 7d:ba:82:1b:7f:26:47:5a:b2:bb:0b:ec:75:da:af: fb:80:a2:ec:ca:96:49:99:64:9a:da:b6:3c:dc:2c: fd:1a:e0:05:f2:42:98:e9:0a:d6:99:d4:25:b2:d9: 07:92:c0:8d:8b:7d:bc:94:a0:1d:81:97:d0:a5:ea: b5:82:25:89:7e:23:0b:a6:ca:1d:eb:2e:38:ac:6d: 96:e2:63:3e:15:89:f5:2f:91:f9:a0:41:23:45:66: 68:1e:2f:71:bd:01:a1:71:dd:44:87:9c:0a:54:a4: fe:68:ae:c3:19:ab:76:36:f7:69:11:6f:f1:13:a8: 90:85:f9:7f:00:b6:fd:bd:5c:f9:63:e1:5c:f7:c1: c3:cc:2a:aa:42:00:0a:2c:cc:d8:df:19:94:c0:46: 54:48:64:1f:36:10:9b:1f:58:dc:ce:eb:f9:14:ad: 72:98:89:b7:c8:5d:69:f8:1d:31:a7:0c:5a:ac:7d: 08:79:e9:c4:7c:dc:14:d0:cf:b7:c3:2e:93:06:55: 89:6a:97:16:ef:9a:fa:96:d8:91:e7:65:f1:7a:45: 34:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:FD:C2:FE:23:E0:76:D1:C1:0E:7A:45:4D:FE:36:D8:C5:C1:54:E3 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Kv3C_iPgdtHBDnpFTf422MXBVOM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:2c0::/44 Signature Algorithm: sha256WithRSAEncryption 7f:1d:66:ea:c7:b8:f6:08:38:30:0d:82:38:38:66:85:7d:72: 35:df:8a:1f:f9:b2:bb:d0:37:2b:06:c1:99:e2:a8:eb:f5:0b: 73:dc:ba:3c:01:de:71:f2:24:40:63:93:49:e7:d4:cc:21:e3: 0b:43:11:f5:21:18:af:57:0f:1a:f5:1d:5f:a1:9c:77:22:e3: a3:f3:bf:0d:02:db:ed:9a:bf:a6:ca:ed:1d:cf:53:03:d7:7b: e1:68:93:4b:64:6a:15:0a:ce:4b:d9:1b:91:46:ed:e9:b1:ea: 1b:97:b8:23:ec:d4:78:88:52:2d:2d:ef:34:39:5e:5f:96:d0: a7:69:90:e3:8a:ca:36:ce:d8:3a:4a:7c:c3:5a:44:5d:d6:6e: e0:db:24:c6:ac:2f:4e:5c:13:8c:03:72:f1:33:14:ce:aa:26: c7:8f:5d:ee:8b:03:e2:1c:54:61:a5:7f:f8:29:7c:a7:51:1a: 4c:4b:20:e9:81:ee:53:04:70:61:c5:59:31:c4:6a:aa:a1:32: f0:7a:14:ef:fc:33:98:13:74:33:c2:46:d0:94:dd:11:85:65: 9f:67:56:e4:31:ad:bd:f2:89:74:ce:ff:2f:a9:dd:ab:f4:2d: 5b:0a:f3:4d:f9:7f:59:48:6c:fb:cc:cf:84:c4:90:10:77:57: 96:49:96:f0 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OVlW4SG9oD6SK/oSKWeWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYWZkYzJmZTIzZTA3NmQxYzEwZTdhNDU0ZGZlMzZkOGM1YzE1NGUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4rUxKJvXsfA6L0Kn1HRXyzF6X31T GFaCSBhMusyFFjN294xn6J30LhGyPTJ9uoIbfyZHWrK7C+x12q/7gKLsypZJmWSa 2rY83Cz9GuAF8kKY6QrWmdQlstkHksCNi328lKAdgZfQpeq1giWJfiMLpsod6y44 rG2W4mM+FYn1L5H5oEEjRWZoHi9xvQGhcd1Eh5wKVKT+aK7DGat2NvdpEW/xE6iQ hfl/ALb9vVz5Y+Fc98HDzCqqQgAKLMzY3xmUwEZUSGQfNhCbH1jczuv5FK1ymIm3 yF1p+B0xpwxarH0IeenEfNwU0M+3wy6TBlWJapcW75r6ltiR52XxekU0uQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFCr9wv4j4HbRwQ56RU3+NtjFwVTjMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvS3YzQ19pUGdkdEhCRG5wRlRmNDIyTVhCVk9NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQLA MA0GCSqGSIb3DQEBCwUAA4IBAQB/HWbqx7j2CDgwDYI4OGaFfXI134of+bK70Dcr BsGZ4qjr9Qtz3Lo8Ad5x8iRAY5NJ59TMIeMLQxH1IRivVw8a9R1foZx3IuOj878N Atvtmr+myu0dz1MD13vhaJNLZGoVCs5L2RuRRu3pseobl7gj7NR4iFItLe80OV5f ltCnaZDjiso2ztg6SnzDWkRd1m7g2yTGrC9OXBOMA3LxMxTOqibHj13uiwPiHFRh pX/4KXynURpMSyDpge5TBHBhxVkxxGqqoTLwehTv/DOYE3QzwkbQlN0RhWWfZ1bk Ma298ol0zv8vqd2r9C1bCvNN+X9ZSGz7zM+ExJAQd1eWSZbw -----END CERTIFICATE-----Generated at Tue Jan 20 02:45:59 2026 by rpki-client