This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/reMHDBrRwAryHEzkq01qVb7UIa4.roa File: reMHDBrRwAryHEzkq01qVb7UIa4.roa (raw, json) Hash identifier: I0uhIzoQ7Jn9fP+8bbaEyeMYMfE1gOeZ9qMTMiJx0Lw= Subject key identifier: AD:E3:07:0C:1A:D1:C0:0A:F2:1C:4C:E4:AB:4D:6A:55:BE:D4:21:AE Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E394CB2AE0E1CA501B151FC6E7605C6 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/reMHDBrRwAryHEzkq01qVb7UIa4.roa Signing time: Fri 02 Jan 2026 10:20:43 +0000 ROA not before: Fri 02 Jan 2026 10:20:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210233 IP address blocks: 2a0c:b641:870::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:4c:b2:ae:0e:1c:a5:01:b1:51:fc:6e:76:05:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ade3070c1ad1c00af21c4ce4ab4d6a55bed421ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:cf:2f:ae:b8:4d:31:56:49:40:1f:86:30:49: a5:ae:90:1b:7c:50:df:61:46:f6:d4:14:f2:9e:45: 0c:f5:0f:7e:10:33:81:38:46:ef:40:20:02:ef:0a: 67:44:6e:5e:57:39:eb:b0:7e:6d:3d:94:5c:1d:94: 58:b3:ce:5c:e2:a0:ba:2f:46:63:9d:53:48:4b:fa: b7:a4:d0:e9:84:b0:83:1c:d0:22:3f:80:a4:2f:f0: 54:d3:73:72:a8:2d:98:46:0c:f2:57:a8:d4:86:f0: 14:4b:56:ad:6e:38:49:28:00:c8:b0:ef:54:8d:c2: 84:4c:c7:64:10:18:ce:87:99:b9:4b:e6:43:ae:22: 0c:42:55:47:56:30:4d:d3:df:f0:ad:1b:b3:c0:29: 33:0c:f6:dd:70:3b:03:fa:ca:8b:78:7f:24:19:02: 33:64:71:92:31:47:f1:cf:ca:95:c3:6e:3f:ce:ef: 57:cd:13:27:91:23:9d:83:8e:f6:a9:00:66:59:4d: c2:db:30:91:71:1b:3d:5b:91:9c:44:dc:f4:1e:37: c8:d2:da:fe:8b:f2:3d:6c:7e:4d:67:ad:ba:fa:ac: c2:50:74:56:53:89:b6:ec:e6:cf:f2:57:49:23:ba: df:8f:f9:6a:8f:76:94:a3:67:0c:b3:67:e4:37:ab: e6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:E3:07:0C:1A:D1:C0:0A:F2:1C:4C:E4:AB:4D:6A:55:BE:D4:21:AE X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/reMHDBrRwAryHEzkq01qVb7UIa4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:870::/44 Signature Algorithm: sha256WithRSAEncryption 08:02:67:cd:ec:b1:2f:24:a6:b9:c1:35:e1:51:53:82:a1:51: 63:cd:8d:d1:08:e2:f8:7c:4e:69:3a:81:8a:1a:08:17:07:c2: 06:5a:0c:59:b0:03:03:2d:44:0f:87:d0:7c:f6:84:54:a9:aa: 69:ec:69:91:02:f5:86:f9:e8:eb:ec:8f:a1:81:e7:82:3d:d1: 11:37:20:65:ea:6d:38:79:00:14:db:69:08:06:9c:1d:d4:0f: 0a:ea:30:c7:a0:94:11:7c:2e:07:ad:93:f7:0b:c4:c6:4b:2f: f6:15:6e:af:a0:10:9d:29:e6:50:20:38:87:a7:ba:12:75:7b: 69:70:3b:04:26:e9:0e:e0:a9:eb:cb:f8:f9:c7:54:42:4c:8f: 8e:41:28:ad:47:4f:ad:d7:d2:09:07:f1:ec:81:d1:d6:ac:35: 19:a7:bb:b7:f5:df:db:f1:bd:9d:4a:5a:76:a3:95:36:e3:62: 0b:05:a3:52:4d:47:c9:3a:87:cb:9e:94:9b:39:e2:25:a4:34: e7:f8:1a:4c:3e:fc:67:2a:a7:1a:ce:52:ac:0f:46:c5:f0:42: 96:67:9a:0e:2e:e2:bd:40:f7:08:15:c2:99:0b:4e:9a:e9:51: 5f:83:82:68:78:14:35:f1:33:0f:c8:bd:5a:df:af:ba:93:03: a8:1f:8a:0d -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OUyyrg4cpQGxUfxudgXGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZGUzMDcwYzFhZDFjMDBhZjIxYzRjZTRhYjRkNmE1NWJlZDQyMWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6s8vrrhNMVZJQB+GMEmlrpAbfFDf YUb21BTynkUM9Q9+EDOBOEbvQCAC7wpnRG5eVznrsH5tPZRcHZRYs85c4qC6L0Zj nVNIS/q3pNDphLCDHNAiP4CkL/BU03NyqC2YRgzyV6jUhvAUS1atbjhJKADIsO9U jcKETMdkEBjOh5m5S+ZDriIMQlVHVjBN09/wrRuzwCkzDPbdcDsD+sqLeH8kGQIz ZHGSMUfxz8qVw24/zu9XzRMnkSOdg472qQBmWU3C2zCRcRs9W5GcRNz0HjfI0tr+ i/I9bH5NZ626+qzCUHRWU4m27ObP8ldJI7rfj/lqj3aUo2cMs2fkN6vmsQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFK3jBwwa0cAK8hxM5KtNalW+1CGuMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvcmVNSERCclJ3QXJ5SEV6a3EwMXFWYjdVSWE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQhw MA0GCSqGSIb3DQEBCwUAA4IBAQAIAmfN7LEvJKa5wTXhUVOCoVFjzY3RCOL4fE5p OoGKGggXB8IGWgxZsAMDLUQPh9B89oRUqapp7GmRAvWG+ejr7I+hgeeCPdERNyBl 6m04eQAU22kIBpwd1A8K6jDHoJQRfC4HrZP3C8TGSy/2FW6voBCdKeZQIDiHp7oS dXtpcDsEJukO4Knry/j5x1RCTI+OQSitR0+t19IJB/HsgdHWrDUZp7u39d/b8b2d Slp2o5U242ILBaNSTUfJOofLnpSbOeIlpDTn+BpMPvxnKqcazlKsD0bF8EKWZ5oO LuK9QPcIFcKZC06a6VFfg4JoeBQ18TMPyL1a36+6kwOoH4oN -----END CERTIFICATE-----Generated at Tue Jan 20 02:45:57 2026 by rpki-client