This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/nAnt1rNkQuEa-JK2yetZ7Kp2f-0.roa File: nAnt1rNkQuEa-JK2yetZ7Kp2f-0.roa (raw, json) Hash identifier: S196tUzNJ8R+OK2t41zyhVf1hnz048jF7VW6Y4sxqEc= Subject key identifier: 9C:09:ED:D6:B3:64:42:E1:1A:F8:92:B6:C9:EB:59:EC:AA:76:7F:ED Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E3967C814CEFAFCE60AD1F691B3D23C Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/nAnt1rNkQuEa-JK2yetZ7Kp2f-0.roa Signing time: Fri 02 Jan 2026 10:20:49 +0000 ROA not before: Fri 02 Jan 2026 10:20:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214043 IP address blocks: 2a0c:b641:d30::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:67:c8:14:ce:fa:fc:e6:0a:d1:f6:91:b3:d2:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9c09edd6b36442e11af892b6c9eb59ecaa767fed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d2:13:76:6d:92:e0:0b:36:d6:1a:51:85:6c: c8:9a:3c:ab:0b:6d:2c:d0:cc:8a:c5:0e:80:0e:69: 34:8f:34:4d:42:e2:98:9e:a7:1b:d7:20:dc:c1:1d: f6:ed:30:e5:a6:b6:97:f2:c9:d5:b7:5f:a8:90:61: f9:e7:28:64:97:3c:55:05:8b:7a:c0:20:89:2f:cb: e5:36:0a:d9:8f:7f:2a:a3:d6:34:41:6b:c8:d0:92: 5d:97:29:eb:2e:75:05:56:3d:47:d0:85:b2:ca:b5: 22:fc:28:9e:47:97:7c:34:f4:ed:e3:4c:a5:62:32: 5a:90:30:2c:25:5f:60:63:15:4a:a5:f0:0d:85:6b: 9a:8c:c7:0e:b0:cb:e2:93:61:77:68:de:ea:c6:89: dd:17:cf:2e:07:10:9b:99:68:b3:e8:52:9c:51:4e: 5c:d9:cb:b5:c3:61:a9:52:e7:15:0e:c8:8b:e7:68: 86:31:8c:8a:2c:88:b5:ee:c0:00:db:0a:ae:00:3f: 2b:33:38:35:19:6e:47:40:94:72:32:91:98:89:c9: 40:76:63:7a:b4:98:8f:df:a6:96:69:ee:9e:11:68: b7:7a:da:10:11:ea:f8:68:93:ad:1c:55:92:b8:49: f3:7c:ca:1a:ad:b5:ce:f2:17:0a:b1:58:9d:5c:a8: b1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:09:ED:D6:B3:64:42:E1:1A:F8:92:B6:C9:EB:59:EC:AA:76:7F:ED X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/nAnt1rNkQuEa-JK2yetZ7Kp2f-0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:d30::/44 Signature Algorithm: sha256WithRSAEncryption 68:62:cb:b1:15:4e:c5:37:89:09:cd:f4:a2:3e:e7:de:b6:41: 55:7c:96:14:23:6c:50:c2:12:49:1c:17:49:6b:e9:fc:ac:d5: 80:88:49:34:56:de:10:87:cc:7d:b1:d8:cc:ed:8e:08:3f:ad: 13:1b:42:ce:49:44:26:7c:be:d3:30:c7:44:75:83:73:40:59: 25:11:f1:40:a3:3b:4e:08:c3:21:e8:b5:53:2d:07:32:1f:38: 86:13:6c:70:b0:00:2a:b5:0d:dd:13:5f:8f:28:d0:3a:ff:af: a3:b4:b4:ff:61:90:75:ec:24:b4:b2:84:be:02:c5:87:59:63: f7:31:25:6b:1c:71:95:8f:fa:9a:0f:0f:fc:02:2a:5f:cc:31: 21:b3:6b:92:6f:5d:a0:c3:5b:d1:12:c6:23:2f:51:4a:a7:07: be:b1:ca:37:ea:cd:80:58:e0:0f:f8:4f:d8:98:b6:72:bc:3d: f0:52:b7:1d:e8:f3:7c:f6:c7:60:cf:76:17:5f:00:35:be:f4: 6d:bd:5a:26:cd:83:3f:f5:98:4d:5a:43:51:09:1a:46:fa:fb: 96:d4:91:c0:49:81:be:13:86:f1:65:08:96:5d:cd:a8:a3:a6: 82:a1:29:43:cd:41:ac:70:fb:c6:b9:88:94:c8:21:6a:0a:b1: 97:c4:96:07 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OWfIFM76/OYK0faRs9I8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YzA5ZWRkNmIzNjQ0MmUxMWFmODkyYjZjOWViNTllY2FhNzY3ZmVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2tITdm2S4As21hpRhWzImjyrC20s 0MyKxQ6ADmk0jzRNQuKYnqcb1yDcwR327TDlpraX8snVt1+okGH55yhklzxVBYt6 wCCJL8vlNgrZj38qo9Y0QWvI0JJdlynrLnUFVj1H0IWyyrUi/CieR5d8NPTt40yl YjJakDAsJV9gYxVKpfANhWuajMcOsMvik2F3aN7qxondF88uBxCbmWiz6FKcUU5c 2cu1w2GpUucVDsiL52iGMYyKLIi17sAA2wquAD8rMzg1GW5HQJRyMpGYiclAdmN6 tJiP36aWae6eEWi3etoQEer4aJOtHFWSuEnzfMoarbXO8hcKsVidXKixuQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJwJ7dazZELhGviStsnrWeyqdn/tMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvbkFudDFyTmtRdUVhLUpLMnlldFo3S3AyZi0wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQ0w MA0GCSqGSIb3DQEBCwUAA4IBAQBoYsuxFU7FN4kJzfSiPufetkFVfJYUI2xQwhJJ HBdJa+n8rNWAiEk0Vt4Qh8x9sdjM7Y4IP60TG0LOSUQmfL7TMMdEdYNzQFklEfFA oztOCMMh6LVTLQcyHziGE2xwsAAqtQ3dE1+PKNA6/6+jtLT/YZB17CS0soS+AsWH WWP3MSVrHHGVj/qaDw/8AipfzDEhs2uSb12gw1vREsYjL1FKpwe+sco36s2AWOAP +E/YmLZyvD3wUrcd6PN89sdgz3YXXwA1vvRtvVomzYM/9ZhNWkNRCRpG+vuW1JHA SYG+E4bxZQiWXc2oo6aCoSlDzUGscPvGuYiUyCFqCrGXxJYH -----END CERTIFICATE-----Generated at Tue Jan 20 02:45:58 2026 by rpki-client