This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/faDlJ8zEHSmp0ULG1SpCHamc3vY.roa File: faDlJ8zEHSmp0ULG1SpCHamc3vY.roa (raw, json) Hash identifier: CaI4w5AHsiilepwgbowhmDbx77qQenCDsuYkY4RkFuA= Subject key identifier: 7D:A0:E5:27:CC:C4:1D:29:A9:D1:42:C6:D5:2A:42:1D:A9:9C:DE:F6 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E39363E8D7236BA765CC189C23ED6C7 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/faDlJ8zEHSmp0ULG1SpCHamc3vY.roa Signing time: Fri 02 Jan 2026 10:20:37 +0000 ROA not before: Fri 02 Jan 2026 10:20:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203674 IP address blocks: 2a0c:b641:7e0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:36:3e:8d:72:36:ba:76:5c:c1:89:c2:3e:d6:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7da0e527ccc41d29a9d142c6d52a421da99cdef6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:31:2c:43:33:27:20:ed:5d:c3:a4:2e:e0:51: 76:8a:d7:fe:f0:4c:f3:32:8d:2a:f9:e0:76:d1:76: 10:2b:c9:89:14:ae:c9:7b:07:a0:34:64:49:63:7a: 10:93:8c:53:43:fb:20:de:15:d3:d7:53:13:ab:30: 9b:22:23:5b:b3:25:f1:2d:db:d2:4d:77:fa:02:19: 69:30:55:ec:97:76:06:7d:5d:40:93:d3:04:88:e4: 8e:5a:0f:07:bd:b1:a7:fb:b2:30:dc:f2:ea:5d:c1: 4a:65:e5:40:6a:2f:78:10:e8:61:9c:a5:c9:c2:0c: 73:96:5a:59:a9:da:2b:38:17:9d:2a:ff:43:37:c8: aa:3c:a0:19:4d:28:f5:ca:a6:a9:a7:2d:e4:5b:7c: d3:29:3f:63:1a:0c:9a:21:f6:21:49:64:fa:37:12: f2:f1:71:9e:70:c8:7a:6d:62:90:8d:a5:4f:41:66: 29:d2:e3:96:84:27:c5:e3:91:17:28:dd:65:1e:21: 6d:1e:0a:7f:6a:0e:53:63:63:f9:18:88:94:79:d5: c2:51:25:07:7d:b3:7e:f2:2a:8c:e8:8b:39:e3:af: da:49:6c:72:94:f2:a0:81:9e:e2:3c:0c:05:01:99: dd:f3:ec:61:ec:d4:81:18:57:8d:32:63:13:44:c4: ef:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A0:E5:27:CC:C4:1D:29:A9:D1:42:C6:D5:2A:42:1D:A9:9C:DE:F6 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/faDlJ8zEHSmp0ULG1SpCHamc3vY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:7e0::/44 Signature Algorithm: sha256WithRSAEncryption 99:51:23:2a:41:bc:0d:da:41:82:4a:e9:57:22:9b:1d:bc:8a: fb:df:fb:df:df:0e:e8:76:04:25:81:bb:f2:cb:0a:60:1f:34: 91:ba:9a:96:92:62:ed:2c:5c:63:13:3e:db:2b:03:14:31:16: 24:c6:a3:6a:a7:fa:10:9e:6a:ad:83:fb:5a:88:1a:1a:9b:af: 04:9c:70:42:a1:41:7c:bf:df:0b:3e:9e:11:3d:e9:af:56:f0: 72:44:d8:7f:58:0d:f3:f2:39:51:7d:91:1f:b2:a1:a3:3e:bd: 42:0b:ca:24:de:62:1e:28:a1:8f:de:71:c4:22:b8:02:9f:b3: f7:3b:47:78:ea:5a:13:35:be:a1:34:c7:65:c6:70:9f:c8:3a: c3:45:66:36:3a:bb:af:99:28:ad:b3:73:1f:9d:5e:7e:f5:91: e1:ed:29:6c:74:f9:63:69:0d:a1:16:b1:0f:1f:22:b1:79:6d: e5:7d:1d:ec:34:0a:42:b6:e1:65:37:89:fb:00:94:9c:f1:9a: 93:1c:64:f5:d4:ea:ae:dd:c4:f1:e7:91:89:24:81:05:32:e3: 8d:97:c5:2a:ea:5a:32:67:fa:7a:d6:dc:72:ac:ef:d2:8c:5c: 61:40:a9:55:91:0a:ef:02:43:ca:f3:4d:4b:0c:d7:5f:8d:19: 5b:64:73:59 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OTY+jXI2unZcwYnCPtbHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZGEwZTUyN2NjYzQxZDI5YTlkMTQyYzZkNTJhNDIxZGE5OWNkZWY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTEsQzMnIO1dw6Qu4FF2itf+8Ezz Mo0q+eB20XYQK8mJFK7JewegNGRJY3oQk4xTQ/sg3hXT11MTqzCbIiNbsyXxLdvS TXf6AhlpMFXsl3YGfV1Ak9MEiOSOWg8HvbGn+7Iw3PLqXcFKZeVAai94EOhhnKXJ wgxzllpZqdorOBedKv9DN8iqPKAZTSj1yqappy3kW3zTKT9jGgyaIfYhSWT6NxLy 8XGecMh6bWKQjaVPQWYp0uOWhCfF45EXKN1lHiFtHgp/ag5TY2P5GIiUedXCUSUH fbN+8iqM6Is546/aSWxylPKggZ7iPAwFAZnd8+xh7NSBGFeNMmMTRMTvRQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFH2g5SfMxB0pqdFCxtUqQh2pnN72MB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvZmFEbEo4ekVIU21wMFVMRzFTcENIYW1jM3ZZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQfg MA0GCSqGSIb3DQEBCwUAA4IBAQCZUSMqQbwN2kGCSulXIpsdvIr73/vf3w7odgQl gbvyywpgHzSRupqWkmLtLFxjEz7bKwMUMRYkxqNqp/oQnmqtg/taiBoam68EnHBC oUF8v98LPp4RPemvVvByRNh/WA3z8jlRfZEfsqGjPr1CC8ok3mIeKKGP3nHEIrgC n7P3O0d46loTNb6hNMdlxnCfyDrDRWY2OruvmSits3MfnV5+9ZHh7SlsdPljaQ2h FrEPHyKxeW3lfR3sNApCtuFlN4n7AJSc8ZqTHGT11Oqu3cTx55GJJIEFMuONl8Uq 6loyZ/p61txyrO/SjFxhQKlVkQrvAkPK801LDNdfjRlbZHNZ -----END CERTIFICATE-----Generated at Tue Jan 20 04:28:18 2026 by rpki-client