This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/pMF5LYhwPEDcSpgBratszAel7yg.roa File: pMF5LYhwPEDcSpgBratszAel7yg.roa (raw, json) Hash identifier: 3N6yRSKCgo3HF60/JL1Brx/xQfzL0NfNIguGF+iG8Ug= Subject key identifier: A4:C1:79:2D:88:70:3C:40:DC:4A:98:01:AD:AB:6C:CC:07:A5:EF:28 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E392D71367D98D3308F7CFEDDFB8F5A Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/pMF5LYhwPEDcSpgBratszAel7yg.roa Signing time: Fri 02 Jan 2026 10:20:35 +0000 ROA not before: Fri 02 Jan 2026 10:20:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 142438 IP address blocks: 2a0c:b641:130::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:2d:71:36:7d:98:d3:30:8f:7c:fe:dd:fb:8f:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a4c1792d88703c40dc4a9801adab6ccc07a5ef28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:7c:6e:36:63:ae:1e:c6:39:01:60:b9:6d:a4: 0c:29:80:eb:ee:27:2e:55:4c:b1:0d:73:ca:83:5a: 45:6a:26:54:00:18:b2:e4:83:fe:f1:9c:ae:75:aa: 3d:41:5e:84:a3:2b:94:ee:10:79:68:41:88:4d:4c: a3:75:8c:da:8d:57:8b:69:f6:4e:9d:0f:54:53:73: 9a:6d:af:7b:49:f8:df:6a:4e:13:28:48:11:d9:69: 38:a8:0c:8c:f1:3e:1b:e3:56:33:b7:66:f3:ee:13: 30:b3:6a:ac:2a:ff:5f:6d:79:2b:36:0c:f4:5c:19: 5d:37:97:22:5d:f2:4c:30:7c:8b:45:ca:6e:17:e0: 22:dc:16:81:9b:b8:a8:97:d4:c7:c0:78:be:38:c0: 13:20:de:27:5b:d0:f0:b7:fd:3a:20:b3:ce:86:08: 55:3a:ab:05:77:60:4e:ce:b5:7d:50:34:a7:9f:bf: 18:44:bb:da:77:05:b1:13:bc:af:dd:b5:36:a3:fb: 04:62:5b:85:e1:03:98:54:c2:d5:09:09:8c:7b:4a: d2:8e:e0:a9:e6:9d:69:c6:3d:b0:e1:d9:c0:3d:22: 32:d5:18:c2:79:7c:1e:29:e1:df:86:fd:23:a8:0e: 17:3c:87:82:a5:2c:5c:6a:af:f6:94:38:2c:7c:0e: b7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:C1:79:2D:88:70:3C:40:DC:4A:98:01:AD:AB:6C:CC:07:A5:EF:28 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/pMF5LYhwPEDcSpgBratszAel7yg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:130::/44 Signature Algorithm: sha256WithRSAEncryption 9a:45:52:e0:29:2b:d8:61:02:36:8c:39:43:9d:f9:46:45:9f: e7:a7:ed:45:1e:61:aa:5b:4c:78:82:da:15:35:fb:47:7f:d3: 1b:d8:e3:d4:aa:14:1f:43:e0:79:3e:7f:5b:b2:14:c3:af:e4: fa:eb:df:66:e5:cb:bc:1d:e9:13:8d:52:59:d2:f0:c4:60:21: d7:9d:8a:97:e6:b4:f1:20:50:18:20:76:7f:f9:c7:2e:2c:23: f1:7b:ae:04:cb:f3:95:da:bd:d3:62:96:65:a1:5b:fd:f0:ca: 1f:ea:11:23:ec:c1:16:bd:b6:40:fb:d7:c9:15:a2:c1:10:3f: d7:5b:b1:a7:f0:8e:d2:16:96:2a:3a:0d:a7:f4:3a:d6:01:06: 4c:76:a8:98:58:3d:a0:1e:e8:b5:20:40:7c:72:0a:a9:ae:c1: f3:64:08:a6:bd:1e:3d:eb:84:fc:da:c4:7a:3e:75:41:db:b7: 39:e9:c8:2f:1a:7c:30:c1:6d:3e:fe:3f:bf:6f:46:fb:84:9d: ca:9d:ef:ee:f8:21:c1:0f:8b:82:4c:55:7b:ac:32:d3:14:df: e8:80:5c:50:a6:84:77:c5:81:13:b5:b4:4b:f2:bf:03:63:df: 67:11:5e:b5:00:6d:ce:07:4c:ff:ca:e6:f6:3c:fc:fa:2f:f9: eb:f3:b4:0a -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OS1xNn2Y0zCPfP7d+49aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNGMxNzkyZDg4NzAzYzQwZGM0YTk4MDFhZGFiNmNjYzA3YTVlZjI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlHxuNmOuHsY5AWC5baQMKYDr7icu VUyxDXPKg1pFaiZUABiy5IP+8Zyudao9QV6EoyuU7hB5aEGITUyjdYzajVeLafZO nQ9UU3Oaba97Sfjfak4TKEgR2Wk4qAyM8T4b41Yzt2bz7hMws2qsKv9fbXkrNgz0 XBldN5ciXfJMMHyLRcpuF+Ai3BaBm7iol9THwHi+OMATIN4nW9Dwt/06ILPOhghV OqsFd2BOzrV9UDSnn78YRLvadwWxE7yv3bU2o/sEYluF4QOYVMLVCQmMe0rSjuCp 5p1pxj2w4dnAPSIy1RjCeXweKeHfhv0jqA4XPIeCpSxcaq/2lDgsfA639wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFKTBeS2IcDxA3EqYAa2rbMwHpe8oMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvcE1GNUxZaHdQRURjU3BnQnJhdHN6QWVsN3lnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQEw MA0GCSqGSIb3DQEBCwUAA4IBAQCaRVLgKSvYYQI2jDlDnflGRZ/np+1FHmGqW0x4 gtoVNftHf9Mb2OPUqhQfQ+B5Pn9bshTDr+T6699m5cu8HekTjVJZ0vDEYCHXnYqX 5rTxIFAYIHZ/+ccuLCPxe64Ey/OV2r3TYpZloVv98Mof6hEj7MEWvbZA+9fJFaLB ED/XW7Gn8I7SFpYqOg2n9DrWAQZMdqiYWD2gHui1IEB8cgqprsHzZAimvR4964T8 2sR6PnVB27c56cgvGnwwwW0+/j+/b0b7hJ3Kne/u+CHBD4uCTFV7rDLTFN/ogFxQ poR3xYETtbRL8r8DY99nEV61AG3OB0z/yub2PPz6L/nr87QK -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:08 2026 by rpki-client