This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WM2Z2y754KQZBOaEGeI8NxA03iM.roa File: WM2Z2y754KQZBOaEGeI8NxA03iM.roa (raw, json) Hash identifier: 0wmcLxq+rk7t3qDjkakIYmCVFYCJXd1olWXfkdIPMOw= Subject key identifier: 58:CD:99:DB:2E:F9:E0:A4:19:04:E6:84:19:E2:3C:37:10:34:DE:23 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E392DD98B7D6986F8F1E5F11671EA62 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WM2Z2y754KQZBOaEGeI8NxA03iM.roa Signing time: Fri 02 Jan 2026 10:20:35 +0000 ROA not before: Fri 02 Jan 2026 10:20:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197606 IP address blocks: 2a0c:b641:a70::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 00:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:2d:d9:8b:7d:69:86:f8:f1:e5:f1:16:71:ea:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58cd99db2ef9e0a41904e68419e23c371034de23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d7:89:af:86:9c:0a:62:c5:81:76:04:b0:3e: 5d:07:9b:d3:00:43:eb:b5:4b:d1:fe:be:a2:88:ae: 4d:4d:aa:93:38:d1:7e:98:78:18:2c:f8:3c:7c:f7: bc:73:dc:88:60:90:d8:f5:3f:16:a3:6a:24:de:24: d7:9c:27:8d:39:38:74:7f:37:0d:e7:f7:e0:3d:bd: a5:74:9f:51:12:46:6e:99:e7:5a:c5:c6:66:0d:c2: 1b:58:fa:5f:94:e0:82:2a:a9:09:72:48:0d:40:86: 8f:dc:1c:2e:a7:54:45:b2:6a:30:36:ee:0c:b9:36: 20:7a:d4:e5:12:73:a4:37:56:12:62:9f:5c:96:86: dd:62:1a:98:5b:8e:69:b2:67:2f:5a:f9:58:bd:1c: 4c:bc:ac:f1:a8:8c:71:5f:c8:cc:72:bf:39:fa:79: c9:f9:02:14:1e:34:0b:73:b6:e2:ff:7c:fb:aa:ac: e9:20:38:a5:a5:8b:c7:cb:8d:55:a3:36:55:49:15: 1c:9f:fd:70:85:d4:fd:fd:bf:62:67:70:ac:64:30: 13:8a:bb:83:f1:1c:94:ad:84:cf:25:99:fa:30:a9: 2c:c7:ce:a7:11:e1:74:36:d6:61:bf:f9:09:20:9e: 2c:74:57:b7:39:b6:7b:a6:ef:47:f2:35:2a:c5:a1: 5a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:CD:99:DB:2E:F9:E0:A4:19:04:E6:84:19:E2:3C:37:10:34:DE:23 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WM2Z2y754KQZBOaEGeI8NxA03iM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:a70::/44 Signature Algorithm: sha256WithRSAEncryption 3c:16:a9:14:bd:d8:a3:3e:2f:06:ff:41:f0:a4:6f:ab:9e:2a: 63:89:b6:64:10:fa:24:1a:a3:7c:eb:32:d1:1b:95:61:b1:3f: 62:84:ae:87:d9:49:87:da:4e:cd:59:c5:2d:c6:ad:93:01:70: ac:59:4d:70:b0:df:3a:7c:5d:cd:bb:c6:40:2f:6c:80:b2:1c: d5:24:eb:f7:42:78:b2:24:74:ef:ff:15:65:6f:04:19:1c:b7: 28:f3:58:e8:4a:77:cf:6f:11:a8:dd:7d:57:37:8e:36:9b:c9: 2f:d0:5b:aa:06:39:39:bf:ce:99:94:e2:15:ae:5f:c2:c9:f2: 04:d8:52:5e:25:69:53:7f:2b:cf:ef:34:cd:4e:fb:cd:3d:c7: 50:8b:f6:67:e4:58:12:10:a3:14:40:6e:6d:a5:d7:4b:07:25: 3e:65:97:b7:79:d9:49:53:ef:53:28:11:52:46:89:a7:4d:61: 97:76:7c:6e:25:6a:f9:d6:55:3f:c6:02:0b:2c:d2:0e:47:47: fa:86:e9:f1:c8:84:63:b0:4e:7b:ec:ff:68:52:7a:bf:b0:6a: 0f:e1:60:00:c6:7a:89:bf:b7:e7:9f:a9:3d:f2:b7:94:5b:7e: b7:5f:71:43:d6:8e:c7:ef:00:93:be:49:a6:10:50:7f:46:e7: c1:ac:a2:71 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OS3Zi31phvjx5fEWcepiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OGNkOTlkYjJlZjllMGE0MTkwNGU2ODQxOWUyM2MzNzEwMzRkZTIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqteJr4acCmLFgXYEsD5dB5vTAEPr tUvR/r6iiK5NTaqTONF+mHgYLPg8fPe8c9yIYJDY9T8Wo2ok3iTXnCeNOTh0fzcN 5/fgPb2ldJ9REkZumedaxcZmDcIbWPpflOCCKqkJckgNQIaP3Bwup1RFsmowNu4M uTYgetTlEnOkN1YSYp9clobdYhqYW45psmcvWvlYvRxMvKzxqIxxX8jMcr85+nnJ +QIUHjQLc7bi/3z7qqzpIDilpYvHy41VozZVSRUcn/1whdT9/b9iZ3CsZDATiruD 8RyUrYTPJZn6MKksx86nEeF0NtZhv/kJIJ4sdFe3ObZ7pu9H8jUqxaFaOwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFjNmdsu+eCkGQTmhBniPDcQNN4jMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvV00yWjJ5NzU0S1FaQk9hRUdlSThOeEEwM2lNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQpw MA0GCSqGSIb3DQEBCwUAA4IBAQA8FqkUvdijPi8G/0HwpG+rnipjibZkEPokGqN8 6zLRG5VhsT9ihK6H2UmH2k7NWcUtxq2TAXCsWU1wsN86fF3Nu8ZAL2yAshzVJOv3 QniyJHTv/xVlbwQZHLco81joSnfPbxGo3X1XN442m8kv0FuqBjk5v86ZlOIVrl/C yfIE2FJeJWlTfyvP7zTNTvvNPcdQi/Zn5FgSEKMUQG5tpddLByU+ZZe3edlJU+9T KBFSRomnTWGXdnxuJWr51lU/xgILLNIOR0f6hunxyIRjsE577P9oUnq/sGoP4WAA xnqJv7fnn6k98reUW363X3FD1o7H7wCTvkmmEFB/RufBrKJx -----END CERTIFICATE-----Generated at Mon Jan 19 10:37:04 2026 by rpki-client