This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/k0GmBB89CaLLFu5ajoFas0h4kQg.roa File: k0GmBB89CaLLFu5ajoFas0h4kQg.roa (raw, json) Hash identifier: tXcsn8oRhTa+QeLXw6cERZTAqGAj9DehNwFaYvMD7tc= Subject key identifier: 93:41:A6:04:1F:3D:09:A2:CB:16:EE:5A:8E:81:5A:B3:48:78:91:08 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E3936984670A8C2B85F67E6F02F1766 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/k0GmBB89CaLLFu5ajoFas0h4kQg.roa Signing time: Fri 02 Jan 2026 10:20:37 +0000 ROA not before: Fri 02 Jan 2026 10:20:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203679 IP address blocks: 2a0c:b641:7d0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:36:98:46:70:a8:c2:b8:5f:67:e6:f0:2f:17:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9341a6041f3d09a2cb16ee5a8e815ab348789108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d7:93:0f:66:0f:7a:d0:34:7a:6a:34:82:76: ad:35:04:05:a2:1c:ae:b7:5c:e6:b3:a6:c9:53:05: de:83:ee:41:c8:97:3c:f7:b0:b9:f1:17:de:10:cb: 24:55:9b:1b:4c:4e:9a:af:92:d7:3e:33:26:11:f3: 3e:95:e2:09:bc:b1:b0:aa:32:20:ea:80:9c:24:d9: f9:46:2b:ba:4d:41:ab:b7:52:2e:ea:b9:94:ba:e4: ad:12:ad:36:82:59:df:bd:6c:e0:bb:9e:6f:c5:f3: fb:61:ba:07:66:bc:fa:b7:09:99:8c:28:82:b8:1e: 06:69:3e:7c:f6:fc:00:e6:15:eb:bb:3c:bd:00:ba: 18:6e:bc:4e:18:23:7a:c6:59:be:5e:19:4e:32:5e: 8e:9a:1e:ca:f3:f3:0a:f5:e5:38:1a:ea:63:8a:82: c6:31:eb:13:6b:c4:75:e5:bc:01:a8:51:12:15:ef: 5a:5a:72:d4:51:a0:9a:29:29:3d:cb:65:cb:0c:a7: 62:c4:0d:15:d0:fc:20:47:94:a3:fe:22:29:47:04: 76:0e:0a:f2:aa:95:35:c3:65:70:b2:a2:1c:ca:e6: a0:29:0b:04:e9:13:8b:5e:6c:fc:8d:79:70:2e:95: fc:82:44:2b:12:f8:0e:5f:2f:b3:92:ba:e4:35:2a: 76:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:41:A6:04:1F:3D:09:A2:CB:16:EE:5A:8E:81:5A:B3:48:78:91:08 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/k0GmBB89CaLLFu5ajoFas0h4kQg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:7d0::/44 Signature Algorithm: sha256WithRSAEncryption 90:13:d0:21:85:91:b3:c6:f5:b8:13:cc:f7:1f:bd:78:8e:7b: 73:2a:3f:a9:f9:52:99:c1:b3:d8:a6:8d:44:67:c3:ba:50:7a: 68:1e:86:c1:e4:fd:b5:97:5b:34:b9:10:09:87:b5:a0:fe:8c: 3a:ef:00:16:9f:19:be:bb:ee:e8:de:ef:d0:2b:d0:d6:b3:92: bb:f8:82:0c:cc:a1:04:14:e2:ef:28:cf:df:a5:90:54:e0:33: 38:bc:b1:b7:ab:bd:e6:60:eb:43:08:c2:1a:90:7d:02:78:e5: 4a:fb:53:26:21:04:0f:de:2e:dc:a1:04:2e:f7:fe:c2:d6:c1: 03:07:02:1d:6d:88:5a:a5:a5:33:e8:83:7b:84:de:96:49:ef: 7a:70:ed:c8:00:21:2a:bd:ab:9e:69:5d:51:42:fb:d5:a8:52: c2:36:75:5e:5b:f1:1f:a6:5e:25:0d:2c:84:67:3b:8e:09:d0: 87:23:41:11:b8:a7:b8:79:ee:ab:96:a1:b0:62:6d:3c:fe:97: a2:fd:72:7f:c4:4c:f0:97:11:c0:48:91:61:22:93:90:ff:9a: 83:ad:da:4f:20:4a:37:dd:6b:37:26:7c:a5:aa:25:4d:df:11: 9f:68:f7:16:ab:05:a5:47:6a:22:c8:e1:ee:ae:e5:16:b4:dc: 61:f6:6b:fb -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OTaYRnCowrhfZ+bwLxdmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MzQxYTYwNDFmM2QwOWEyY2IxNmVlNWE4ZTgxNWFiMzQ4Nzg5MTA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdeTD2YPetA0emo0gnatNQQFohyu t1zms6bJUwXeg+5ByJc897C58RfeEMskVZsbTE6ar5LXPjMmEfM+leIJvLGwqjIg 6oCcJNn5Riu6TUGrt1Iu6rmUuuStEq02glnfvWzgu55vxfP7YboHZrz6twmZjCiC uB4GaT589vwA5hXruzy9ALoYbrxOGCN6xlm+XhlOMl6Omh7K8/MK9eU4GupjioLG MesTa8R15bwBqFESFe9aWnLUUaCaKSk9y2XLDKdixA0V0PwgR5Sj/iIpRwR2Dgry qpU1w2VwsqIcyuagKQsE6ROLXmz8jXlwLpX8gkQrEvgOXy+zkrrkNSp2+wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJNBpgQfPQmiyxbuWo6BWrNIeJEIMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvazBHbUJCODlDYUxMRnU1YWpvRmFzMGg0a1FnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQfQ MA0GCSqGSIb3DQEBCwUAA4IBAQCQE9AhhZGzxvW4E8z3H714jntzKj+p+VKZwbPY po1EZ8O6UHpoHobB5P21l1s0uRAJh7Wg/ow67wAWnxm+u+7o3u/QK9DWs5K7+IIM zKEEFOLvKM/fpZBU4DM4vLG3q73mYOtDCMIakH0CeOVK+1MmIQQP3i7coQQu9/7C 1sEDBwIdbYhapaUz6IN7hN6WSe96cO3IACEqvaueaV1RQvvVqFLCNnVeW/Efpl4l DSyEZzuOCdCHI0ERuKe4ee6rlqGwYm08/pei/XJ/xEzwlxHASJFhIpOQ/5qDrdpP IEo33Ws3JnylqiVN3xGfaPcWqwWlR2oiyOHuruUWtNxh9mv7 -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:00 2026 by rpki-client