This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/mK4COGe7UMIoWZgtB81q3YSvY-4.roa File: mK4COGe7UMIoWZgtB81q3YSvY-4.roa (raw, json) Hash identifier: 60KFG+HlZYR7J0A0S8rlzM/Aj+X7s/2Ys9EQBEu/1aQ= Subject key identifier: 98:AE:02:38:67:BB:50:C2:28:59:98:2D:07:CD:6A:DD:84:AF:63:EE Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E393EB0F21220045931C15CB8FB470F Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/mK4COGe7UMIoWZgtB81q3YSvY-4.roa Signing time: Fri 02 Jan 2026 10:20:39 +0000 ROA not before: Fri 02 Jan 2026 10:20:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207149 IP address blocks: 2a0c:b641:270::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:3e:b0:f2:12:20:04:59:31:c1:5c:b8:fb:47:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=98ae023867bb50c22859982d07cd6add84af63ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:07:1f:ec:67:5c:64:cf:47:54:f5:07:f6:18: 8f:3e:25:a0:19:84:fa:f8:b2:76:05:a6:3a:73:05: 8d:df:91:a6:fc:d2:84:54:fe:6c:c3:e2:52:9b:3f: 47:4f:64:74:2d:12:ad:13:6d:a5:aa:ad:a3:fa:36: 5c:78:0b:b5:5b:54:4c:ee:88:d1:23:61:da:91:31: f0:5f:c0:7e:0e:5a:56:f3:57:fc:11:b0:8e:41:d2: e5:9f:ee:cb:79:9c:15:b2:f9:c4:92:72:8d:0f:cb: 45:93:40:a3:85:be:8a:9a:c3:37:92:7b:46:3c:66: 1e:01:de:3a:c8:86:3c:d4:50:be:cf:11:02:8e:55: 7f:7d:1d:96:fd:b0:1a:f7:a2:4a:be:6a:a5:4f:e0: 6e:2f:8c:2d:29:58:a7:1e:f3:e4:18:66:ea:98:d8: 19:da:b0:d6:9a:3d:f6:00:55:de:f0:67:6a:44:f0: c9:d7:4c:79:9b:c8:bd:b7:b6:77:01:e6:0e:86:0b: f5:7e:d5:0b:53:2c:da:b4:ec:91:f7:f3:30:7b:15: f9:af:21:65:c7:9f:c4:02:2b:8d:2c:82:06:16:c7: 52:82:d4:30:4a:05:7d:65:a1:ff:8d:eb:bc:bf:a7: 28:d1:a8:75:63:f5:27:27:02:e7:33:df:50:de:92: 93:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:AE:02:38:67:BB:50:C2:28:59:98:2D:07:CD:6A:DD:84:AF:63:EE X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/mK4COGe7UMIoWZgtB81q3YSvY-4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:270::/44 Signature Algorithm: sha256WithRSAEncryption 51:68:92:34:7f:b6:cf:09:ca:29:dd:39:bb:9c:e4:ac:fd:02: 47:a2:e0:f0:31:fd:32:3b:50:05:ca:9a:5c:78:d4:f7:3d:07: 32:af:fa:79:4c:cb:21:bd:91:15:b5:64:8b:55:22:4a:51:90: 0b:13:af:82:d3:96:e9:fa:d6:3b:e7:ae:f4:c3:ee:19:f4:0d: 09:01:c6:ec:91:ff:5a:c9:b5:1e:40:7d:e5:cb:33:f6:3b:66: ea:29:4c:02:f6:65:65:87:36:f2:22:2c:fe:3a:e2:b4:a4:07: 2a:4a:ec:e2:90:40:2e:14:87:50:d0:1c:64:27:b0:6f:15:cb: 1b:ee:f8:05:c5:2d:58:36:0f:bd:6c:7e:d1:9d:4e:5c:bb:31: f5:d1:9b:4d:28:f1:7f:59:cd:a2:28:1a:ed:e4:12:06:d7:fa: 38:71:81:fd:82:37:85:7a:5f:d5:85:19:28:f8:af:07:a2:48: 61:89:48:e2:9f:c1:c1:33:ed:82:76:71:4b:b2:2d:27:64:11: a2:eb:97:91:50:62:b1:ec:67:cc:c1:a0:05:ac:2d:ff:f1:2b: 32:e0:6f:95:b4:c4:86:a7:4f:c6:da:17:f6:0e:1b:3f:52:f8: fb:47:1c:e9:96:f2:e3:81:bc:01:25:93:b1:f8:f4:60:98:c1: f3:11:a1:a5 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OT6w8hIgBFkxwVy4+0cPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OGFlMDIzODY3YmI1MGMyMjg1OTk4MmQwN2NkNmFkZDg0YWY2M2VlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogcf7GdcZM9HVPUH9hiPPiWgGYT6 +LJ2BaY6cwWN35Gm/NKEVP5sw+JSmz9HT2R0LRKtE22lqq2j+jZceAu1W1RM7ojR I2HakTHwX8B+DlpW81f8EbCOQdLln+7LeZwVsvnEknKND8tFk0Cjhb6KmsM3kntG PGYeAd46yIY81FC+zxECjlV/fR2W/bAa96JKvmqlT+BuL4wtKVinHvPkGGbqmNgZ 2rDWmj32AFXe8GdqRPDJ10x5m8i9t7Z3AeYOhgv1ftULUyzatOyR9/MwexX5ryFl x5/EAiuNLIIGFsdSgtQwSgV9ZaH/jeu8v6co0ah1Y/UnJwLnM99Q3pKT5QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJiuAjhnu1DCKFmYLQfNat2Er2PuMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvbUs0Q09HZTdVTUlvV1pndEI4MXEzWVN2WS00LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQJw MA0GCSqGSIb3DQEBCwUAA4IBAQBRaJI0f7bPCcop3Tm7nOSs/QJHouDwMf0yO1AF yppceNT3PQcyr/p5TMshvZEVtWSLVSJKUZALE6+C05bp+tY75670w+4Z9A0JAcbs kf9aybUeQH3lyzP2O2bqKUwC9mVlhzbyIiz+OuK0pAcqSuzikEAuFIdQ0BxkJ7Bv Fcsb7vgFxS1YNg+9bH7RnU5cuzH10ZtNKPF/Wc2iKBrt5BIG1/o4cYH9gjeFel/V hRko+K8HokhhiUjin8HBM+2CdnFLsi0nZBGi65eRUGKx7GfMwaAFrC3/8Ssy4G+V tMSGp0/G2hf2Dhs/Uvj7RxzplvLjgbwBJZOx+PRgmMHzEaGl -----END CERTIFICATE-----Generated at Tue Jan 20 02:45:56 2026 by rpki-client