This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/OkUJCIiPShppkj70VSUqsP6uhyI.roa File: OkUJCIiPShppkj70VSUqsP6uhyI.roa (raw, json) Hash identifier: eo/GKS0Yb/GF5otZtz02AX4NM5DfCqulmM6cNJqmvmU= Subject key identifier: 3A:45:09:08:88:8F:4A:1A:69:92:3E:F4:55:25:2A:B0:FE:AE:87:22 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E392F482986FD8CB460794F1E377403 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/OkUJCIiPShppkj70VSUqsP6uhyI.roa Signing time: Fri 02 Jan 2026 10:20:35 +0000 ROA not before: Fri 02 Jan 2026 10:20:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199258 IP address blocks: 2a0c:b641:9d0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:2f:48:29:86:fd:8c:b4:60:79:4f:1e:37:74:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3a450908888f4a1a69923ef455252ab0feae8722 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ee:80:6f:a6:b5:63:ee:fd:0c:d7:48:44:19: d9:6a:3f:7c:8d:b7:72:97:15:f4:50:5d:77:fe:d7: fe:10:16:d2:d5:25:f0:28:c8:55:33:77:a7:de:4a: 1d:fc:a0:8b:77:4d:2a:26:4c:8d:0e:68:72:ef:1d: 70:36:22:cd:5b:ac:2a:42:8f:8c:a3:81:a8:2d:7b: c3:38:4e:fe:d0:56:94:1f:39:11:15:e6:fa:dd:14: ce:f5:7c:64:0a:7c:d0:37:e7:30:02:f4:66:a1:73: 0b:75:1f:79:07:e3:aa:ba:69:dd:79:0a:64:17:de: b4:cf:c1:c8:b6:49:b1:04:1e:65:fe:3a:23:4e:eb: 4b:db:f0:6a:ef:89:83:e7:19:c0:51:bc:93:c4:ef: f9:40:a4:43:a0:18:d9:44:c3:71:36:43:b0:5f:bf: 7d:20:a0:78:d7:4a:d5:2b:d5:01:78:00:83:65:90: 0a:7d:2c:d5:70:fb:b9:5e:cf:1c:17:32:f4:89:c0: 11:70:da:dc:48:41:3b:43:d0:5e:67:ad:ff:f7:bc: 1d:89:54:f6:fc:a5:50:bc:57:b0:8f:62:9a:91:6d: b8:33:3d:12:a1:84:d7:28:92:09:5c:7c:51:a8:b2: 88:01:40:b6:95:f2:44:54:c5:94:5b:41:1a:4f:40: ef:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:45:09:08:88:8F:4A:1A:69:92:3E:F4:55:25:2A:B0:FE:AE:87:22 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/OkUJCIiPShppkj70VSUqsP6uhyI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:9d0::/44 Signature Algorithm: sha256WithRSAEncryption 98:64:a7:d5:4d:22:f3:16:22:91:c1:51:6b:70:a2:33:54:79: e3:60:20:3c:44:27:5c:84:0b:72:4a:85:5d:1d:96:3a:9c:49: f0:5c:9c:64:e3:cf:e1:d5:31:8f:52:85:c7:74:07:eb:bb:a5: 05:38:a6:cf:b1:c0:97:f0:ce:0f:c8:28:c9:61:01:29:c7:a7: ce:2d:12:0d:9f:78:99:ef:71:01:51:97:e1:99:ea:5e:6a:45: 8c:40:d0:c6:e2:9b:0a:3b:7d:7b:92:c9:21:08:04:f3:45:89: 40:00:e8:f2:1e:62:57:e6:e5:c7:c1:35:8c:7b:94:67:b9:d5: 58:6c:74:ce:1b:2b:78:48:37:20:98:05:a4:20:d7:88:dd:6d: 69:fd:b8:11:7e:c9:de:cf:55:03:ad:af:c4:b7:67:b8:2a:79: db:04:3b:3c:77:a8:c0:b2:bc:06:23:d5:87:84:c7:fd:84:e5: f0:37:f9:a7:92:a8:b3:18:34:4b:7a:b4:9d:56:8e:bc:fd:08: c5:a7:0e:24:22:2b:f8:8f:84:07:7a:54:2a:2b:75:9f:b6:d7: 04:39:27:bc:20:45:34:44:a9:63:aa:f2:76:4f:fe:77:bf:3f: 46:c6:68:df:4e:54:c9:20:d0:f1:3e:fc:b8:68:6b:ad:a0:57: 99:73:56:b3 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OS9IKYb9jLRgeU8eN3QDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYTQ1MDkwODg4OGY0YTFhNjk5MjNlZjQ1NTI1MmFiMGZlYWU4NzIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+6Ab6a1Y+79DNdIRBnZaj98jbdy lxX0UF13/tf+EBbS1SXwKMhVM3en3kod/KCLd00qJkyNDmhy7x1wNiLNW6wqQo+M o4GoLXvDOE7+0FaUHzkRFeb63RTO9XxkCnzQN+cwAvRmoXMLdR95B+OqumndeQpk F960z8HItkmxBB5l/jojTutL2/Bq74mD5xnAUbyTxO/5QKRDoBjZRMNxNkOwX799 IKB410rVK9UBeACDZZAKfSzVcPu5Xs8cFzL0icARcNrcSEE7Q9BeZ63/97wdiVT2 /KVQvFewj2KakW24Mz0SoYTXKJIJXHxRqLKIAUC2lfJEVMWUW0EaT0DvKwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDpFCQiIj0oaaZI+9FUlKrD+rociMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvT2tVSkNJaVBTaHBwa2o3MFZTVXFzUDZ1aHlJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQnQ MA0GCSqGSIb3DQEBCwUAA4IBAQCYZKfVTSLzFiKRwVFrcKIzVHnjYCA8RCdchAty SoVdHZY6nEnwXJxk48/h1TGPUoXHdAfru6UFOKbPscCX8M4PyCjJYQEpx6fOLRIN n3iZ73EBUZfhmepeakWMQNDG4psKO317kskhCATzRYlAAOjyHmJX5uXHwTWMe5Rn udVYbHTOGyt4SDcgmAWkINeI3W1p/bgRfsnez1UDra/Et2e4KnnbBDs8d6jAsrwG I9WHhMf9hOXwN/mnkqizGDRLerSdVo68/QjFpw4kIiv4j4QHelQqK3WfttcEOSe8 IEU0RKljqvJ2T/53vz9GxmjfTlTJINDxPvy4aGutoFeZc1az -----END CERTIFICATE-----Generated at Tue Jan 20 02:45:52 2026 by rpki-client