This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/cskslkhJpOgW-j6B9ZZm3UiJ1tk.roa File: cskslkhJpOgW-j6B9ZZm3UiJ1tk.roa (raw, json) Hash identifier: +SyQSahoP1Wr2Ipu2jvKSDkRGNlBWF7uxYMC+oETCCs= Subject key identifier: 72:C9:2C:96:48:49:A4:E8:16:FA:3E:81:F5:96:66:DD:48:89:D6:D9 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E396A75B2F217BA47DD3ABC99279669 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/cskslkhJpOgW-j6B9ZZm3UiJ1tk.roa Signing time: Fri 02 Jan 2026 10:20:50 +0000 ROA not before: Fri 02 Jan 2026 10:20:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214508 IP address blocks: 2a0c:b641:ca0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:6a:75:b2:f2:17:ba:47:dd:3a:bc:99:27:96:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=72c92c964849a4e816fa3e81f59666dd4889d6d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c6:c5:9e:fe:17:e5:fe:46:bc:9b:96:08:e8: 8a:a5:da:31:2f:71:60:1e:f8:4d:36:cd:34:25:34: d2:e0:12:d3:41:47:ae:44:83:28:52:9c:db:61:ad: c9:a1:f5:74:b7:47:66:15:3e:19:f5:22:86:5c:53: f6:f4:ac:4a:ce:ff:53:5c:02:87:75:99:68:c5:bc: 4a:10:b4:0a:84:33:ac:23:87:32:33:94:e7:db:35: 28:c8:8f:97:f2:bb:19:a4:c9:75:f2:73:9c:44:7c: ca:f4:9f:d7:ca:b1:db:cc:f5:3e:5c:c9:ee:70:d8: b4:28:21:07:b6:7c:3c:aa:61:0d:64:15:26:93:e1: d1:ab:f8:ce:8a:d4:91:fb:6c:d9:e5:be:79:cf:ee: 0a:37:f8:7e:6d:a5:bc:2d:1b:9f:f6:8c:c2:22:8d: b7:9c:98:82:be:30:1a:e2:c0:33:ca:35:3c:5b:fc: 60:c9:84:e1:f2:7e:d6:c8:d6:5a:43:80:4a:73:68: 94:ca:6d:b3:89:7f:04:bd:24:5d:33:34:86:ae:81: 4d:58:3d:ac:2a:a7:d2:82:e4:2e:94:b7:41:46:a3: d0:6f:92:44:fa:49:92:20:8b:32:a8:b7:d1:57:d7: bf:82:a0:29:e3:17:b5:6f:d7:97:b6:61:51:4c:a9: 78:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:C9:2C:96:48:49:A4:E8:16:FA:3E:81:F5:96:66:DD:48:89:D6:D9 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/cskslkhJpOgW-j6B9ZZm3UiJ1tk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:ca0::/44 Signature Algorithm: sha256WithRSAEncryption 1c:f7:6a:b4:9f:84:a9:c1:fa:ab:0f:b3:00:5d:da:0d:18:ee: 13:9e:4e:c1:c7:27:11:1d:58:5b:49:8a:b0:e8:c2:a6:a2:24: b8:3a:a3:99:62:fa:a2:c9:63:e1:25:97:06:1a:a8:d6:34:29: a7:d9:4e:ee:7a:b5:95:ff:1e:86:ee:22:a7:4a:87:97:26:72: 97:a8:0e:5a:00:db:86:5e:47:f0:26:d2:03:73:19:26:49:f3: be:52:6f:88:02:25:83:06:93:1d:4e:1c:c4:28:88:8b:04:cd: f9:8d:ef:24:2b:0f:17:d6:90:1a:0b:29:ee:85:5f:e5:5c:1f: 2c:a6:d1:9b:f8:ef:75:04:c0:86:7c:f5:ee:14:61:14:66:7b: ae:d4:a0:d1:b0:21:1e:07:ac:78:f4:56:2b:95:37:81:6d:8b: 51:f2:01:85:c0:24:8c:4c:3e:0e:0a:c9:de:5e:9f:40:33:27: 52:0a:8a:68:d1:74:b0:84:9f:5a:2f:ec:de:1c:35:32:f9:85: 80:eb:5b:c9:8b:34:a5:08:c9:7f:c9:e0:5a:75:d0:0a:5f:41: a1:4d:3e:76:db:83:77:01:d5:08:39:09:3e:a1:d9:1e:25:58: 27:30:38:45:0c:64:af:54:f6:e1:14:97:1b:6e:10:92:31:de: cb:3e:dc:e0 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OWp1svIXukfdOryZJ5ZpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MmM5MmM5NjQ4NDlhNGU4MTZmYTNlODFmNTk2NjZkZDQ4ODlkNmQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx8bFnv4X5f5GvJuWCOiKpdoxL3Fg HvhNNs00JTTS4BLTQUeuRIMoUpzbYa3JofV0t0dmFT4Z9SKGXFP29KxKzv9TXAKH dZloxbxKELQKhDOsI4cyM5Tn2zUoyI+X8rsZpMl18nOcRHzK9J/XyrHbzPU+XMnu cNi0KCEHtnw8qmENZBUmk+HRq/jOitSR+2zZ5b55z+4KN/h+baW8LRuf9ozCIo23 nJiCvjAa4sAzyjU8W/xgyYTh8n7WyNZaQ4BKc2iUym2ziX8EvSRdMzSGroFNWD2s KqfSguQulLdBRqPQb5JE+kmSIIsyqLfRV9e/gqAp4xe1b9eXtmFRTKl4qwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFHLJLJZISaToFvo+gfWWZt1IidbZMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvY3Nrc2xraEpwT2dXLWo2QjlaWm0zVWlKMXRrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQyg MA0GCSqGSIb3DQEBCwUAA4IBAQAc92q0n4SpwfqrD7MAXdoNGO4Tnk7BxycRHVhb SYqw6MKmoiS4OqOZYvqiyWPhJZcGGqjWNCmn2U7uerWV/x6G7iKnSoeXJnKXqA5a ANuGXkfwJtIDcxkmSfO+Um+IAiWDBpMdThzEKIiLBM35je8kKw8X1pAaCynuhV/l XB8sptGb+O91BMCGfPXuFGEUZnuu1KDRsCEeB6x49FYrlTeBbYtR8gGFwCSMTD4O CsneXp9AMydSCopo0XSwhJ9aL+zeHDUy+YWA61vJizSlCMl/yeBaddAKX0GhTT52 24N3AdUIOQk+odkeJVgnMDhFDGSvVPbhFJcbbhCSMd7LPtzg -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:36 2026 by rpki-client