This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/u3ssgZXxq02J5ziQoaCeMsAZ6U4.roa File: u3ssgZXxq02J5ziQoaCeMsAZ6U4.roa (raw, json) Hash identifier: QayMukO/osE/d0uW//r2/wd2IiMISUfxnqeFj4ONMD4= Subject key identifier: BB:7B:2C:81:95:F1:AB:4D:89:E7:38:90:A1:A0:9E:32:C0:19:E9:4E Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E392FD9C36E7A70BA33D7A51ED918F1 Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/u3ssgZXxq02J5ziQoaCeMsAZ6U4.roa Signing time: Fri 02 Jan 2026 10:20:35 +0000 ROA not before: Fri 02 Jan 2026 10:20:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199426 IP address blocks: 2a0c:b641:9b0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:2f:d9:c3:6e:7a:70:ba:33:d7:a5:1e:d9:18:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bb7b2c8195f1ab4d89e73890a1a09e32c019e94e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:89:ba:5f:fd:1f:e1:ff:a8:ea:62:37:aa:ee: e2:93:6a:53:1a:9d:d7:c6:36:02:72:3f:80:10:54: ec:af:ab:f9:49:2d:67:16:36:f3:eb:99:29:f8:20: 87:bd:b9:f1:bd:50:ef:6b:28:5e:f2:bb:10:fb:78: a9:42:3e:1c:6c:8b:f3:78:23:0f:d9:f4:ac:9a:76: 4b:b4:a0:fa:aa:e2:b5:8e:33:3f:26:a7:03:ae:e2: bb:67:f3:b1:ff:56:af:0f:2b:bd:66:86:0a:67:52: 61:75:c0:7d:8c:c6:ee:91:d7:a2:f1:15:68:66:cd: 6a:c2:7e:d1:32:4c:9f:7b:24:3f:60:79:57:7a:57: c1:d4:76:c5:bd:04:69:da:52:1d:a5:4d:9a:c4:ef: 45:63:b2:1d:db:1f:99:58:85:46:19:3e:a9:14:01: 2e:07:14:e2:21:d9:73:0c:87:87:58:83:0f:52:7c: aa:29:2a:79:63:9f:31:6c:36:39:65:c8:8a:3d:b4: 26:69:25:da:53:89:8b:47:1c:8f:f1:97:e1:49:67: f0:2c:9d:4c:cc:c9:e9:f9:dd:b0:5f:78:8d:3b:9c: 01:7b:64:a0:7a:07:9e:73:fa:66:31:36:52:7c:73: 07:61:c0:10:32:80:dc:c5:81:68:f6:ce:0b:8d:89: 31:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:7B:2C:81:95:F1:AB:4D:89:E7:38:90:A1:A0:9E:32:C0:19:E9:4E X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/u3ssgZXxq02J5ziQoaCeMsAZ6U4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:9b0::/44 Signature Algorithm: sha256WithRSAEncryption 07:07:84:bb:9a:12:35:53:6a:4c:8e:3b:78:25:6d:6e:ff:da: f0:92:10:90:55:63:43:97:96:f6:ba:6b:af:c8:a8:45:c4:aa: cb:bc:57:47:27:36:a8:79:a2:23:58:f1:f1:40:35:3d:8e:9f: b9:51:bf:8e:a6:4c:42:b8:b6:4f:ca:1d:3a:4c:83:b6:72:f3: df:e6:b9:ef:a1:a1:fa:93:37:2a:86:ca:eb:31:21:f1:38:dc: 87:79:9d:2d:6d:10:96:e7:cb:47:9d:76:4b:3c:86:24:14:5c: 97:3b:cb:13:ce:8b:c7:49:f4:b7:4c:35:12:86:b8:bb:70:69: 37:eb:57:61:99:4e:4c:4a:a1:23:31:d6:8d:0e:c3:34:88:3a: 52:38:64:99:cd:8a:9b:1d:4c:43:5c:1b:bc:0f:a2:d1:a0:c4: 83:3d:b5:4d:d3:0f:5f:f1:52:a7:67:14:1d:b0:20:c9:bb:f5: 48:f3:52:73:a7:08:2c:59:30:df:f6:25:48:8b:30:5c:5e:d3: 0a:90:70:b8:bb:95:9f:de:82:83:fd:63:71:b2:35:45:ba:9d: 4c:bd:c2:aa:ad:60:84:aa:91:93:00:ea:d5:42:23:c9:66:7f: c4:47:9d:f8:0c:17:22:e7:66:99:cf:6f:18:c6:a2:b6:15:94: 57:33:57:82 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OS/Zw256cLoz16Ue2RjxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYjdiMmM4MTk1ZjFhYjRkODllNzM4OTBhMWEwOWUzMmMwMTllOTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA04m6X/0f4f+o6mI3qu7ik2pTGp3X xjYCcj+AEFTsr6v5SS1nFjbz65kp+CCHvbnxvVDvayhe8rsQ+3ipQj4cbIvzeCMP 2fSsmnZLtKD6quK1jjM/JqcDruK7Z/Ox/1avDyu9ZoYKZ1JhdcB9jMbukdei8RVo Zs1qwn7RMkyfeyQ/YHlXelfB1HbFvQRp2lIdpU2axO9FY7Id2x+ZWIVGGT6pFAEu BxTiIdlzDIeHWIMPUnyqKSp5Y58xbDY5ZciKPbQmaSXaU4mLRxyP8ZfhSWfwLJ1M zMnp+d2wX3iNO5wBe2Sgegeec/pmMTZSfHMHYcAQMoDcxYFo9s4LjYkxrwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLt7LIGV8atNiec4kKGgnjLAGelOMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvdTNzc2daWHhxMDJKNXppUW9hQ2VNc0FaNlU0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQmw MA0GCSqGSIb3DQEBCwUAA4IBAQAHB4S7mhI1U2pMjjt4JW1u/9rwkhCQVWNDl5b2 umuvyKhFxKrLvFdHJzaoeaIjWPHxQDU9jp+5Ub+OpkxCuLZPyh06TIO2cvPf5rnv oaH6kzcqhsrrMSHxONyHeZ0tbRCW58tHnXZLPIYkFFyXO8sTzovHSfS3TDUShri7 cGk361dhmU5MSqEjMdaNDsM0iDpSOGSZzYqbHUxDXBu8D6LRoMSDPbVN0w9f8VKn ZxQdsCDJu/VI81JzpwgsWTDf9iVIizBcXtMKkHC4u5Wf3oKD/WNxsjVFup1MvcKq rWCEqpGTAOrVQiPJZn/ER534DBci52aZz28YxqK2FZRXM1eC -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:12 2026 by rpki-client