This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/nEszfTthcXeUeUFw44iL8_VrPgA.roa File: nEszfTthcXeUeUFw44iL8_VrPgA.roa (raw, json) Hash identifier: VWj9cVzZ1iSC6IAcI7Kfaotda1dsh7ecU9KYJmTU3pQ= Subject key identifier: 9C:4B:33:7D:3B:61:71:77:94:79:41:70:E3:88:8B:F3:F5:6B:3E:00 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E3941EC5FE5C5669B7D74C1935ECA77 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/nEszfTthcXeUeUFw44iL8_VrPgA.roa Signing time: Fri 02 Jan 2026 10:20:40 +0000 ROA not before: Fri 02 Jan 2026 10:20:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207860 IP address blocks: 2a0c:b641:490::/44 maxlen: 128 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 03:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:41:ec:5f:e5:c5:66:9b:7d:74:c1:93:5e:ca:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9c4b337d3b61717794794170e3888bf3f56b3e00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d3:74:88:57:98:70:ff:69:34:b5:a6:57:46: 95:b4:b0:a7:b2:d2:c1:12:ed:82:82:f0:43:04:d3: 30:cb:96:98:b2:90:6d:cb:4e:2e:b9:cf:bc:59:48: 9a:2b:bc:e2:54:20:e9:d7:5c:5d:b1:6d:0c:47:56: d9:a4:1d:bc:17:1f:55:23:43:f8:4f:9a:74:86:c3: 68:ea:4d:28:27:3d:d5:20:32:3f:f3:5a:07:32:59: 7d:31:48:f7:17:84:c4:58:36:f4:c5:d6:d0:78:86: 1c:9e:6e:f4:94:be:c0:40:ca:c0:0a:dc:4e:0f:95: 46:4c:d3:b9:c5:2f:d7:ac:86:91:6f:d6:12:14:2a: 60:b1:10:5b:64:d7:e0:4b:2c:09:f1:ad:ad:44:a0: 00:f4:d4:a8:a7:e7:d6:79:fc:e2:e6:c8:61:2a:9e: b7:e8:14:0e:cd:67:1f:d5:1e:f2:ce:c0:22:c8:31: 7b:e4:4c:ce:1c:88:ff:02:77:82:5d:28:30:27:b7: 7c:d5:99:ab:0b:7d:bf:85:1f:61:0e:4d:7b:ee:30: 0d:17:e9:b2:38:38:4d:4a:3a:40:6c:bf:9a:03:39: 7a:5a:cd:58:99:2b:f2:26:61:bf:91:d8:b7:e5:c9: f4:39:b0:aa:cd:f2:5a:ee:ce:a3:1d:90:d7:9a:86: e6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:4B:33:7D:3B:61:71:77:94:79:41:70:E3:88:8B:F3:F5:6B:3E:00 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/nEszfTthcXeUeUFw44iL8_VrPgA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:490::/44 Signature Algorithm: sha256WithRSAEncryption 39:89:70:a9:89:6c:16:26:0b:10:ac:f4:ef:12:1b:cc:ca:fd: 45:42:03:9a:1a:6b:a7:fd:a4:24:a9:b0:f4:c0:a0:c2:6e:8a: 93:3d:68:b9:24:17:48:c5:27:d5:1a:3d:67:f5:04:6b:5a:55: 1b:80:e4:a6:83:24:8f:d2:33:1e:df:18:30:bc:a7:a1:8c:79: 74:c2:47:2f:49:02:c5:c5:2e:8b:cf:d1:2f:66:77:a8:a8:5e: 64:ac:36:ba:16:cc:4d:d8:a1:0b:ef:01:04:b8:3e:6a:90:c3: 09:28:08:fb:c0:36:fe:34:7a:06:55:21:23:3c:29:3f:c3:89: 90:5a:82:62:c6:14:ed:c6:aa:44:3e:5e:d9:e0:15:30:5e:f3: 71:90:c9:f6:75:4f:db:8d:34:4d:37:e6:97:3a:41:c9:5c:a4: 53:1d:9b:0e:dc:68:4c:d2:96:b6:a4:2f:5e:65:f0:1b:f4:9b: 02:9a:67:ff:d5:0f:9d:ad:87:71:5d:73:27:65:c8:60:72:8b: e6:a2:02:0f:57:df:e4:cb:b7:a2:80:81:67:8d:ba:b2:eb:77: 96:d0:92:3d:db:3c:15:74:e8:6a:28:54:23:a6:5e:59:07:4f: 42:50:d1:75:c5:59:c9:c2:65:b1:14:e2:a3:cb:1f:ea:22:40: 9f:08:f3:ef -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OUHsX+XFZpt9dMGTXsp3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YzRiMzM3ZDNiNjE3MTc3OTQ3OTQxNzBlMzg4OGJmM2Y1NmIzZTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA09N0iFeYcP9pNLWmV0aVtLCnstLB Eu2CgvBDBNMwy5aYspBty04uuc+8WUiaK7ziVCDp11xdsW0MR1bZpB28Fx9VI0P4 T5p0hsNo6k0oJz3VIDI/81oHMll9MUj3F4TEWDb0xdbQeIYcnm70lL7AQMrACtxO D5VGTNO5xS/XrIaRb9YSFCpgsRBbZNfgSywJ8a2tRKAA9NSop+fWefzi5shhKp63 6BQOzWcf1R7yzsAiyDF75EzOHIj/AneCXSgwJ7d81ZmrC32/hR9hDk177jANF+my ODhNSjpAbL+aAzl6Ws1YmSvyJmG/kdi35cn0ObCqzfJa7s6jHZDXmobmjwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFJxLM307YXF3lHlBcOOIi/P1az4AMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvbkVzemZUdGhjWGVVZVVGdzQ0aUw4X1ZyUGdBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQSQ MA0GCSqGSIb3DQEBCwUAA4IBAQA5iXCpiWwWJgsQrPTvEhvMyv1FQgOaGmun/aQk qbD0wKDCboqTPWi5JBdIxSfVGj1n9QRrWlUbgOSmgySP0jMe3xgwvKehjHl0wkcv SQLFxS6Lz9EvZneoqF5krDa6FsxN2KEL7wEEuD5qkMMJKAj7wDb+NHoGVSEjPCk/ w4mQWoJixhTtxqpEPl7Z4BUwXvNxkMn2dU/bjTRNN+aXOkHJXKRTHZsO3GhM0pa2 pC9eZfAb9JsCmmf/1Q+drYdxXXMnZchgcovmogIPV9/ky7eigIFnjbqy63eW0JI9 2zwVdOhqKFQjpl5ZB09CUNF1xVnJwmWxFOKjyx/qIkCfCPPv -----END CERTIFICATE-----Generated at Mon Jan 19 11:22:31 2026 by rpki-client