This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/sYm7_xaAFm8oni92c2q0lGgvq3w.roa File: sYm7_xaAFm8oni92c2q0lGgvq3w.roa (raw, json) Hash identifier: BNZc8+4QG5k+bTIxJVaSo4AcPiT7CKduXhmgu11rnBY= Subject key identifier: B1:89:BB:FF:16:80:16:6F:28:9E:2F:76:73:6A:B4:94:68:2F:AB:7C Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E396DC3BBE160B6D2F8A17A0B2E8C64 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/sYm7_xaAFm8oni92c2q0lGgvq3w.roa Signing time: Fri 02 Jan 2026 10:20:51 +0000 ROA not before: Fri 02 Jan 2026 10:20:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215189 IP address blocks: 2a0c:b641:c20::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:6d:c3:bb:e1:60:b6:d2:f8:a1:7a:0b:2e:8c:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b189bbff1680166f289e2f76736ab494682fab7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c0:d7:71:a3:e2:90:be:0e:7c:2d:29:bf:a5: a9:30:5b:50:67:58:74:23:e4:9b:5a:51:64:8c:6c: 00:63:c3:21:58:c1:45:cd:49:cc:16:75:ec:9d:44: 64:b5:1c:ac:fd:59:89:64:0a:6f:d5:d1:f1:01:c1: 41:f6:4a:95:65:1b:75:51:3a:86:7f:34:60:a7:7c: 0e:b1:a7:ee:11:f4:5b:29:6e:20:60:11:84:f5:57: dc:3a:64:dc:48:2e:2d:59:a5:15:ab:2b:56:ed:0c: 79:49:61:14:20:b2:8c:01:63:13:6a:7d:ee:60:fe: 08:12:7a:03:70:cd:e1:ce:20:aa:93:49:6f:a2:02: c4:4e:ad:b5:f8:03:48:94:e3:18:46:f9:e5:55:e3: 1c:7c:fc:33:e0:2c:48:75:e7:44:db:f9:8f:f3:21: 88:bb:81:35:75:f5:45:62:b4:60:4c:bc:5f:04:b5: 3d:4e:93:65:36:76:72:6b:e2:50:34:8e:df:08:d0: 2b:99:e9:45:c5:fe:70:19:88:81:77:43:8e:5a:74: d7:cb:82:10:1d:a3:75:c2:30:95:e9:ec:34:9c:26: 26:00:14:0d:23:82:0a:72:a5:eb:ec:f0:6a:3a:41: 24:71:d5:82:df:94:5f:20:db:60:c2:c0:a7:b7:21: 3b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:89:BB:FF:16:80:16:6F:28:9E:2F:76:73:6A:B4:94:68:2F:AB:7C X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/sYm7_xaAFm8oni92c2q0lGgvq3w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:c20::/44 Signature Algorithm: sha256WithRSAEncryption 03:9a:be:7f:11:f0:5c:6e:6f:08:fa:5d:df:07:db:65:dd:46: 9c:5d:fa:fe:a0:98:11:6c:37:67:a0:1f:75:2d:48:7f:7d:3d: bc:6d:b6:d7:ac:86:04:5d:0e:a5:4a:86:d4:4d:66:80:f3:b1: 57:85:be:bc:5a:80:6c:e1:cf:a8:f2:fc:e6:db:8d:e6:01:57: 5f:97:e0:91:92:a6:d9:ff:24:08:65:a5:74:39:7e:96:ff:26: fb:79:93:78:4c:2a:61:df:ac:1f:de:2b:45:0f:1b:ea:2e:6a: 38:ac:34:f8:d1:91:ae:79:1d:bf:56:e5:4d:ef:ba:97:36:c9: bf:88:87:46:e2:52:39:2a:39:72:c1:66:db:c1:27:9b:6d:06: 45:bd:56:bb:7c:6e:60:43:e4:71:09:c7:83:f8:41:e6:fd:41: 71:bb:aa:a6:c3:56:45:09:54:c5:80:b9:10:7e:20:f7:20:0b: 3d:dc:3b:a8:22:bc:b7:28:b5:09:ec:c0:e3:73:d0:5e:94:7f: 49:42:85:b3:47:84:be:3e:67:ef:1e:2d:a1:9d:f4:cb:f4:c4: 76:e1:a4:9d:bb:c7:cd:76:34:80:c8:9c:3a:7a:43:c5:9b:7f: 8a:96:fa:58:2d:e2:52:3e:8f:95:d4:76:fa:9e:29:b3:32:ea: 10:95:5f:1f -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OW3Du+FgttL4oXoLLoxkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTg5YmJmZjE2ODAxNjZmMjg5ZTJmNzY3MzZhYjQ5NDY4MmZhYjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8DXcaPikL4OfC0pv6WpMFtQZ1h0 I+SbWlFkjGwAY8MhWMFFzUnMFnXsnURktRys/VmJZApv1dHxAcFB9kqVZRt1UTqG fzRgp3wOsafuEfRbKW4gYBGE9VfcOmTcSC4tWaUVqytW7Qx5SWEUILKMAWMTan3u YP4IEnoDcM3hziCqk0lvogLETq21+ANIlOMYRvnlVeMcfPwz4CxIdedE2/mP8yGI u4E1dfVFYrRgTLxfBLU9TpNlNnZya+JQNI7fCNArmelFxf5wGYiBd0OOWnTXy4IQ HaN1wjCV6ew0nCYmABQNI4IKcqXr7PBqOkEkcdWC35RfINtgwsCntyE7QQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLGJu/8WgBZvKJ4vdnNqtJRoL6t8MB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvc1ltN194YUFGbThvbmk5MmMycTBsR2d2cTN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQwg MA0GCSqGSIb3DQEBCwUAA4IBAQADmr5/EfBcbm8I+l3fB9tl3UacXfr+oJgRbDdn oB91LUh/fT28bbbXrIYEXQ6lSobUTWaA87FXhb68WoBs4c+o8vzm243mAVdfl+CR kqbZ/yQIZaV0OX6W/yb7eZN4TCph36wf3itFDxvqLmo4rDT40ZGueR2/VuVN77qX Nsm/iIdG4lI5KjlywWbbwSebbQZFvVa7fG5gQ+RxCceD+EHm/UFxu6qmw1ZFCVTF gLkQfiD3IAs93DuoIry3KLUJ7MDjc9BelH9JQoWzR4S+PmfvHi2hnfTL9MR24aSd u8fNdjSAyJw6ekPFm3+KlvpYLeJSPo+V1Hb6nimzMuoQlV8f -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:12 2026 by rpki-client