This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/rwmE2iMSB6eoWUgDGOgm1L0FHk0.roa File: rwmE2iMSB6eoWUgDGOgm1L0FHk0.roa (raw, json) Hash identifier: iDpV+nubNEvFOl8BkBdQN/m1H2gsJV6q+eRS62zWNLg= Subject key identifier: AF:09:84:DA:23:12:07:A7:A8:59:48:03:18:E8:26:D4:BD:05:1E:4D Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E3947780C4D653CB79DB86FB89323F9 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/rwmE2iMSB6eoWUgDGOgm1L0FHk0.roa Signing time: Fri 02 Jan 2026 10:20:41 +0000 ROA not before: Fri 02 Jan 2026 10:20:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209300 IP address blocks: 2a0c:b641:570::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:47:78:0c:4d:65:3c:b7:9d:b8:6f:b8:93:23:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af0984da231207a7a859480318e826d4bd051e4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f9:85:b7:13:79:75:d8:02:29:5b:5c:7e:73: ea:a0:20:d0:db:1b:16:7d:92:bc:41:87:c5:45:4c: de:82:8b:45:c8:3a:cc:01:63:94:c5:e5:86:69:22: bb:24:ba:f0:c7:23:9e:94:9d:9f:67:5f:7d:95:d3: d1:8b:32:b0:d9:09:e6:57:aa:13:fd:14:db:53:3b: 81:d4:52:9d:7d:74:16:8e:75:d0:d0:22:3d:37:19: 70:b9:1c:73:1d:ba:15:c3:05:ae:f8:f3:e7:04:ab: 6e:d8:9b:39:76:ae:c9:e3:4b:28:09:28:42:ea:c9: 7e:eb:d4:29:02:5d:31:e0:07:a0:47:33:08:55:9a: 21:84:1f:7a:6d:5c:4f:8d:b4:b7:e6:47:d6:fb:a1: 74:41:fd:85:f2:5b:8a:d5:60:40:24:42:bf:0a:c1: d3:9e:04:40:74:06:26:2a:a3:7f:af:10:17:1b:ac: 7f:cc:4e:17:73:ec:65:12:27:e1:8f:a6:d0:cd:5e: 24:72:cc:60:bb:e2:e4:ca:45:75:1f:d3:b5:a2:00: c0:44:1b:b9:78:87:d6:3a:1f:6a:56:6e:1e:fa:ce: 88:db:0c:af:16:ff:a5:ee:6b:9f:ed:c7:f1:94:74: d9:63:dc:08:d9:10:0b:98:e7:1c:bc:c6:13:d5:3d: be:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:09:84:DA:23:12:07:A7:A8:59:48:03:18:E8:26:D4:BD:05:1E:4D X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/rwmE2iMSB6eoWUgDGOgm1L0FHk0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:570::/44 Signature Algorithm: sha256WithRSAEncryption 38:cb:4c:40:c7:70:e4:a7:2a:49:b2:4a:5b:b6:d4:f7:61:50: 7a:76:2e:4c:2f:b3:e4:83:02:38:d8:9e:5a:53:d6:bb:db:52: ce:23:97:62:73:55:72:e7:c1:2a:1f:dc:fb:3a:ce:2f:c0:ec: 94:38:6c:4b:a4:03:72:9a:23:2b:6d:13:7e:91:f6:c3:b4:69: f0:97:c2:57:e4:25:84:d8:47:bd:7e:e2:c6:e0:92:40:4e:e4: 03:ae:c1:4a:b1:b3:e6:6e:52:2d:91:d9:f6:15:07:5a:9a:6a: 0d:c3:b2:91:81:16:99:3a:b1:82:8a:bc:22:22:2c:b8:47:6e: 9c:f1:ee:a6:f7:09:77:44:75:49:d0:5d:f6:29:7c:fe:7a:fa: 0e:c9:b9:33:f8:43:b9:c0:e9:9c:80:6e:c6:85:1c:66:69:b2: 42:0e:24:8a:4f:10:1b:da:3e:28:73:f1:95:23:6f:62:1a:25: 8a:9f:ee:f8:3b:b8:c9:35:30:f2:82:de:94:d9:7c:04:c5:bf: 69:62:94:d7:e2:c9:60:f0:bb:b1:a3:1e:1f:a0:60:5a:2f:8f: 62:d6:e1:75:62:d7:31:a7:96:54:f7:c0:03:de:8f:79:87:24: ca:3a:2a:30:52:37:e9:f2:95:7a:3c:71:f2:fc:ee:be:78:56: 9c:81:fc:15 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OUd4DE1lPLeduG+4kyP5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjA5ODRkYTIzMTIwN2E3YTg1OTQ4MDMxOGU4MjZkNGJkMDUxZTRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqPmFtxN5ddgCKVtcfnPqoCDQ2xsW fZK8QYfFRUzegotFyDrMAWOUxeWGaSK7JLrwxyOelJ2fZ199ldPRizKw2QnmV6oT /RTbUzuB1FKdfXQWjnXQ0CI9NxlwuRxzHboVwwWu+PPnBKtu2Js5dq7J40soCShC 6sl+69QpAl0x4AegRzMIVZohhB96bVxPjbS35kfW+6F0Qf2F8luK1WBAJEK/CsHT ngRAdAYmKqN/rxAXG6x/zE4Xc+xlEifhj6bQzV4kcsxgu+LkykV1H9O1ogDARBu5 eIfWOh9qVm4e+s6I2wyvFv+l7muf7cfxlHTZY9wI2RALmOccvMYT1T2+7wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFK8JhNojEgenqFlIAxjoJtS9BR5NMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvcndtRTJpTVNCNmVvV1VnREdPZ20xTDBGSGswLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQVw MA0GCSqGSIb3DQEBCwUAA4IBAQA4y0xAx3DkpypJskpbttT3YVB6di5ML7PkgwI4 2J5aU9a721LOI5dic1Vy58EqH9z7Os4vwOyUOGxLpANymiMrbRN+kfbDtGnwl8JX 5CWE2Ee9fuLG4JJATuQDrsFKsbPmblItkdn2FQdammoNw7KRgRaZOrGCirwiIiy4 R26c8e6m9wl3RHVJ0F32KXz+evoOybkz+EO5wOmcgG7GhRxmabJCDiSKTxAb2j4o c/GVI29iGiWKn+74O7jJNTDygt6U2XwExb9pYpTX4slg8Luxox4foGBaL49i1uF1 Ytcxp5ZU98AD3o95hyTKOiowUjfp8pV6PHHy/O6+eFacgfwV -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:08 2026 by rpki-client