This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2f541c-ea12-446f-bea4-a82a153ab13e/1/KbZLx2_rFtlHuG7zcnRaRaQol2w.roa File: KbZLx2_rFtlHuG7zcnRaRaQol2w.roa (raw, json) Hash identifier: +PvTCrqc0M/beR/HvEF/hRLA4hC3UuAO8zDUgE+xCOs= Subject key identifier: 29:B6:4B:C7:6F:EB:16:D9:47:B8:6E:F3:72:74:5A:45:A4:28:97:6C Certificate issuer: /CN=e5d7f13d91676eec1dc9acc872316d62ac779d7b Certificate serial: 019B7AC8F3E3F48F4159490E036C82666EC4 Authority key identifier: E5:D7:F1:3D:91:67:6E:EC:1D:C9:AC:C8:72:31:6D:62:AC:77:9D:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dfxPZFnbuwdyazIcjFtYqx3nXs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2f541c-ea12-446f-bea4-a82a153ab13e/1/KbZLx2_rFtlHuG7zcnRaRaQol2w.roa Signing time: Thu 01 Jan 2026 18:19:08 +0000 ROA not before: Thu 01 Jan 2026 18:19:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206513 IP address blocks: 2a0a:4840::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/2f541c-ea12-446f-bea4-a82a153ab13e/1/5dfxPZFnbuwdyazIcjFtYqx3nXs.crl rsync://rpki.ripe.net/repository/DEFAULT/30/2f541c-ea12-446f-bea4-a82a153ab13e/1/5dfxPZFnbuwdyazIcjFtYqx3nXs.mft rsync://rpki.ripe.net/repository/DEFAULT/5dfxPZFnbuwdyazIcjFtYqx3nXs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:f3:e3:f4:8f:41:59:49:0e:03:6c:82:66:6e:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5d7f13d91676eec1dc9acc872316d62ac779d7b Validity Not Before: Jan 1 18:19:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=29b64bc76feb16d947b86ef372745a45a428976c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:88:4e:c5:93:62:4a:77:37:07:f6:19:2f:17: e6:35:f0:1a:fd:4b:03:40:bb:fc:4c:43:ea:4a:fc: 50:51:16:95:57:13:93:de:90:3a:5e:85:f5:d1:8a: 75:96:11:a7:d1:09:59:5f:4f:4c:1a:4e:6a:39:94: 05:ac:3c:22:62:92:6b:3e:a1:7d:56:42:f5:47:ff: b9:c5:70:0d:00:6e:a5:46:14:3c:81:20:be:ac:e9: 6c:db:48:1e:9a:f2:9a:a2:9e:69:21:01:f5:6a:20: 39:f9:da:bc:01:3c:2b:7a:de:ae:31:07:f5:99:bf: 2e:6c:2f:4c:e2:a0:33:04:9b:98:7a:3f:05:cd:cd: ed:be:23:6e:18:a7:7d:89:8b:cb:7b:66:e9:27:a0: 40:48:a5:f7:66:82:4b:37:4e:b0:51:60:95:18:de: ee:b8:c6:f7:b0:8f:4e:ab:4b:e6:7c:2c:ea:cf:a0: 79:94:16:9c:9a:87:0a:fb:7b:43:2b:66:b8:6e:ab: 2c:f1:10:cc:a0:56:98:ac:47:6d:5d:36:ea:f5:94: 33:a2:ea:4e:4a:63:b4:c5:e3:9d:c0:b6:62:da:b6: 4d:8c:46:6c:81:d6:a3:73:8a:2c:94:16:fd:93:0f: 6a:dc:57:dd:78:9a:dc:d0:8f:12:67:cf:a4:80:1b: 4d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B6:4B:C7:6F:EB:16:D9:47:B8:6E:F3:72:74:5A:45:A4:28:97:6C X509v3 Authority Key Identifier: keyid:E5:D7:F1:3D:91:67:6E:EC:1D:C9:AC:C8:72:31:6D:62:AC:77:9D:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dfxPZFnbuwdyazIcjFtYqx3nXs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2f541c-ea12-446f-bea4-a82a153ab13e/1/KbZLx2_rFtlHuG7zcnRaRaQol2w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2f541c-ea12-446f-bea4-a82a153ab13e/1/5dfxPZFnbuwdyazIcjFtYqx3nXs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:4840::/29 Signature Algorithm: sha256WithRSAEncryption 68:43:39:7f:67:38:e8:a7:05:fe:84:9e:b0:ca:88:da:b5:14: e5:27:02:43:eb:16:d3:18:6a:23:4a:be:22:69:41:4d:e0:5f: 3a:f3:fc:15:22:39:e5:f8:4f:00:cb:61:29:bd:21:49:1e:54: 84:ca:c7:27:de:1f:cd:b6:8a:27:f0:f2:0d:7d:c3:53:6a:fc: 85:a8:f9:f6:c5:e4:78:c9:88:64:4d:1f:62:b1:82:1b:d6:1d: 07:94:ad:8f:d0:6c:11:52:96:fd:19:26:44:e3:ae:cc:c4:fd: 00:53:51:25:01:74:17:a8:e8:56:a8:9f:bc:c1:bd:01:8f:53: 98:ec:22:37:5d:bf:42:22:88:68:1a:f1:70:41:e3:e0:6c:e4: 82:5a:39:53:9d:a1:0e:4c:5a:ae:65:9e:38:ce:33:a1:50:db: 16:84:00:c2:e2:da:d7:77:11:44:2b:71:a5:42:67:44:38:72: ce:94:54:b7:aa:cc:63:1c:7a:a4:0d:87:fc:bb:57:7f:1d:f4: eb:15:43:ff:89:a5:87:84:a5:a1:3c:f5:f6:3a:2a:b6:df:d6: 46:5e:b7:db:16:f1:6c:0e:b4:9c:3f:9d:f4:c3:be:b3:f1:4e: 34:6a:37:10:db:1e:cd:30:a2:62:22:85:09:bf:b4:df:03:30: 46:0c:9a:7c -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt6yPPj9I9BWUkOA2yCZm7EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ZDdmMTNkOTE2NzZlZWMxZGM5YWNjODcyMzE2ZDYyYWM3 NzlkN2IwHhcNMjYwMTAxMTgxOTA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOWI2NGJjNzZmZWIxNmQ5NDdiODZlZjM3Mjc0NWE0NWE0Mjg5NzZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvIhOxZNiSnc3B/YZLxfmNfAa/UsD QLv8TEPqSvxQURaVVxOT3pA6XoX10Yp1lhGn0QlZX09MGk5qOZQFrDwiYpJrPqF9 VkL1R/+5xXANAG6lRhQ8gSC+rOls20gemvKaop5pIQH1aiA5+dq8ATwret6uMQf1 mb8ubC9M4qAzBJuYej8Fzc3tviNuGKd9iYvLe2bpJ6BASKX3ZoJLN06wUWCVGN7u uMb3sI9Oq0vmfCzqz6B5lBacmocK+3tDK2a4bqss8RDMoFaYrEdtXTbq9ZQzoupO SmO0xeOdwLZi2rZNjEZsgdajc4oslBb9kw9q3FfdeJrc0I8SZ8+kgBtNlwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFCm2S8dv6xbZR7hu83J0WkWkKJdsMB8GA1UdIwQY MBaAFOXX8T2RZ27sHcmsyHIxbWKsd517MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWRmeFBaRm5idXdkeWF6SWNqRnRZcXgzblhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yZjU0MWMtZWExMi00NDZmLWJlYTQt YTgyYTE1M2FiMTNlLzEvS2JaTHgyX3JGdGxIdUc3emNuUmFSYVFvbDJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8yZjU0MWMtZWExMi00NDZmLWJlYTQtYTgyYTE1M2FiMTNl LzEvNWRmeFBaRm5idXdkeWF6SWNqRnRZcXgzblhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgpIQDAN BgkqhkiG9w0BAQsFAAOCAQEAaEM5f2c46KcF/oSesMqI2rUU5ScCQ+sW0xhqI0q+ ImlBTeBfOvP8FSI55fhPAMthKb0hSR5UhMrHJ94fzbaKJ/DyDX3DU2r8haj59sXk eMmIZE0fYrGCG9YdB5Stj9BsEVKW/RkmROOuzMT9AFNRJQF0F6joVqifvMG9AY9T mOwiN12/QiKIaBrxcEHj4Gzkglo5U52hDkxarmWeOM4zoVDbFoQAwuLa13cRRCtx pUJnRDhyzpRUt6rMYxx6pA2H/LtXfx306xVD/4mlh4SloTz19joqtt/WRl632xbx bA60nD+d9MO+s/FONGo3ENsezTCiYiKFCb+03wMwRgyafA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:54:26 2026 by rpki-client