This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/zmESgfRJ-FD1Tusx1KEMp0pQKjI.roa File: zmESgfRJ-FD1Tusx1KEMp0pQKjI.roa (raw, json) Hash identifier: dv7xEenVI4QgUQpJMG79Gkh7T1tmiW80YwOBNJdJqZY= Subject key identifier: CE:61:12:81:F4:49:F8:50:F5:4E:EB:31:D4:A1:0C:A7:4A:50:2A:32 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E3956A78964AB9D4C72848277BA08EE Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/zmESgfRJ-FD1Tusx1KEMp0pQKjI.roa Signing time: Fri 02 Jan 2026 10:20:45 +0000 ROA not before: Fri 02 Jan 2026 10:20:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211907 IP address blocks: 2a0c:b641:a40::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:56:a7:89:64:ab:9d:4c:72:84:82:77:ba:08:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ce611281f449f850f54eeb31d4a10ca74a502a32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9f:e4:f7:c4:7b:75:20:65:8a:87:dd:d1:04: 06:3b:e4:d8:6a:d3:e4:84:7d:76:90:6f:a9:02:0d: 9b:cc:ca:f0:48:27:94:ee:94:af:11:07:90:97:d1: 00:dd:f0:f4:bc:68:b2:5a:3a:6a:fa:fb:c8:8c:71: 9a:ef:91:ea:87:d5:40:95:f2:1a:b0:58:af:8d:1b: 1c:30:7d:01:81:2e:56:fb:7e:5f:92:cf:91:37:39: f1:c5:a8:6e:f1:0c:6d:df:a7:e8:03:27:e3:f9:34: cb:c1:b7:85:5d:60:c2:02:73:94:92:b3:57:b1:f6: f3:b2:03:1a:45:4a:13:b2:09:79:64:f0:b9:00:7e: 8a:b2:0a:13:42:26:d6:09:ee:7a:67:d9:9c:6d:bc: b0:90:72:9e:12:2b:1a:48:7a:7a:66:d3:56:ef:f7: 09:79:44:db:05:f7:47:08:a6:79:5e:35:ee:f5:d0: 76:87:c1:08:35:74:ae:a7:02:27:41:45:7c:6a:d5: 25:2e:fc:70:b4:e2:38:e0:c5:09:1e:52:fe:53:49: bd:21:c8:d7:aa:1e:53:c6:64:a8:95:02:5e:ab:9e: e8:aa:21:bd:df:47:30:e6:ba:96:80:54:e6:61:c9: f9:cb:01:95:22:cb:ed:49:d4:72:fe:b5:21:d9:d5: 6c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:61:12:81:F4:49:F8:50:F5:4E:EB:31:D4:A1:0C:A7:4A:50:2A:32 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/zmESgfRJ-FD1Tusx1KEMp0pQKjI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:a40::/44 Signature Algorithm: sha256WithRSAEncryption 56:d2:06:aa:73:55:4a:a7:34:25:00:62:5b:8e:d7:27:fc:a1: eb:08:42:73:f6:5d:a2:be:c2:7f:8f:d8:81:f4:1e:c5:ea:be: 8a:95:3d:61:d0:14:a9:22:4f:f0:a2:7f:f3:96:f3:bf:dc:91: 05:1e:0b:4b:e1:d7:e5:7d:fa:56:1a:5c:9a:d4:78:96:68:8d: ce:01:fd:02:32:30:df:b3:63:8a:19:8f:4d:1f:c8:1b:7b:ea: 41:13:5d:4a:4b:25:23:d6:57:f2:2c:53:1a:8b:38:bd:97:90: fa:ab:59:36:59:43:19:a5:ef:65:69:67:e9:b2:c2:b5:1c:01: 37:86:4d:4b:a2:a8:e6:3b:d4:71:e7:d5:ab:45:68:a5:74:82: 6e:22:b0:03:df:5c:2d:37:00:f3:a0:cc:18:1e:ba:22:56:6e: 6d:d9:c9:a0:4c:e7:65:2f:eb:6f:16:71:bb:4f:27:df:2a:be: 57:65:9b:4b:c8:44:9f:24:a9:3d:1f:42:0c:eb:50:57:e5:0a: 44:a9:99:cf:de:f6:97:08:bc:a0:9f:0e:90:e3:87:7e:2f:f4: 03:76:5a:52:15:08:74:40:b0:e8:45:cf:50:e4:ce:fa:1a:cb: 21:2b:7d:ec:ba:60:dd:f7:cb:26:8d:a9:a5:ac:f7:56:42:d4: a9:52:0c:b0 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OVaniWSrnUxyhIJ3ugjuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZTYxMTI4MWY0NDlmODUwZjU0ZWViMzFkNGExMGNhNzRhNTAyYTMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5/k98R7dSBliofd0QQGO+TYatPk hH12kG+pAg2bzMrwSCeU7pSvEQeQl9EA3fD0vGiyWjpq+vvIjHGa75Hqh9VAlfIa sFivjRscMH0BgS5W+35fks+RNznxxahu8Qxt36foAyfj+TTLwbeFXWDCAnOUkrNX sfbzsgMaRUoTsgl5ZPC5AH6KsgoTQibWCe56Z9mcbbywkHKeEisaSHp6ZtNW7/cJ eUTbBfdHCKZ5XjXu9dB2h8EINXSupwInQUV8atUlLvxwtOI44MUJHlL+U0m9IcjX qh5TxmSolQJeq57oqiG930cw5rqWgFTmYcn5ywGVIsvtSdRy/rUh2dVs0QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFM5hEoH0SfhQ9U7rMdShDKdKUCoyMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvem1FU2dmUkotRkQxVHVzeDFLRU1wMHBRS2pJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQpA MA0GCSqGSIb3DQEBCwUAA4IBAQBW0gaqc1VKpzQlAGJbjtcn/KHrCEJz9l2ivsJ/ j9iB9B7F6r6KlT1h0BSpIk/won/zlvO/3JEFHgtL4dflffpWGlya1HiWaI3OAf0C MjDfs2OKGY9NH8gbe+pBE11KSyUj1lfyLFMaizi9l5D6q1k2WUMZpe9laWfpssK1 HAE3hk1LoqjmO9Rx59WrRWildIJuIrAD31wtNwDzoMwYHroiVm5t2cmgTOdlL+tv FnG7TyffKr5XZZtLyESfJKk9H0IM61BX5QpEqZnP3vaXCLygnw6Q44d+L/QDdlpS FQh0QLDoRc9Q5M76GsshK33sumDd98smjamlrPdWQtSpUgyw -----END CERTIFICATE-----Generated at Tue Jan 20 02:45:04 2026 by rpki-client