This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/6e5dc3-c7fa-4d36-9095-c19232bda430/1/ng9Xwpw4kTndq_afGB7nkkVST_Q.roa File: ng9Xwpw4kTndq_afGB7nkkVST_Q.roa (raw, json) Hash identifier: EnVisylVrMLRpq23iMqP/krYezkyFTHOer8sFdAaBdo= Subject key identifier: 9E:0F:57:C2:9C:38:91:39:DD:AB:F6:9F:18:1E:E7:92:45:52:4F:F4 Certificate issuer: /CN=13b89b80186332d441bb0515c47261c5ffa0616b Certificate serial: 019B7D5D28FDE3FE3B0A55E5B480A308AB19 Authority key identifier: 13:B8:9B:80:18:63:32:D4:41:BB:05:15:C4:72:61:C5:FF:A0:61:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E7ibgBhjMtRBuwUVxHJhxf-gYWs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/6e5dc3-c7fa-4d36-9095-c19232bda430/1/ng9Xwpw4kTndq_afGB7nkkVST_Q.roa Signing time: Fri 02 Jan 2026 06:20:15 +0000 ROA not before: Fri 02 Jan 2026 06:20:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39018 IP address blocks: 2a10:8f00::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/6e5dc3-c7fa-4d36-9095-c19232bda430/1/E7ibgBhjMtRBuwUVxHJhxf-gYWs.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/6e5dc3-c7fa-4d36-9095-c19232bda430/1/E7ibgBhjMtRBuwUVxHJhxf-gYWs.mft rsync://rpki.ripe.net/repository/DEFAULT/E7ibgBhjMtRBuwUVxHJhxf-gYWs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:28:fd:e3:fe:3b:0a:55:e5:b4:80:a3:08:ab:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13b89b80186332d441bb0515c47261c5ffa0616b Validity Not Before: Jan 2 06:20:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9e0f57c29c389139ddabf69f181ee79245524ff4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:17:e2:cb:4b:20:f6:d4:2d:cf:14:1b:b2:9f: f1:a9:7a:70:d2:47:87:93:98:dd:3a:b1:a2:09:52: be:81:3a:ff:e9:b2:70:9d:a4:11:d6:a8:ce:b9:2d: 75:89:cf:53:53:ea:e5:89:4d:14:a0:59:3c:8b:a8: cd:76:6e:fb:1a:2e:24:67:e9:02:3d:1b:54:fe:db: 84:ab:e3:15:c6:45:4f:41:6e:c6:d5:76:d5:05:47: f6:41:73:7e:32:20:f6:da:20:a9:62:23:6a:09:92: 03:8e:1a:93:df:54:01:00:46:d7:ab:8f:02:1a:62: bd:af:75:d3:98:98:1c:36:d3:34:37:38:74:be:fa: 9d:04:27:d4:b5:7b:b9:9f:98:6f:2c:af:cf:e3:53: 2b:94:8c:5e:b9:fe:ec:67:96:0e:fd:fd:1e:b1:06: 3a:cb:97:e1:d5:d6:53:39:a4:f8:b3:9e:09:d0:e6: 35:18:17:55:4d:a4:f6:7a:a1:13:ed:ec:0c:f3:27: 0c:a6:c7:20:04:97:fd:bf:b9:a5:99:39:36:40:86: 16:11:95:b0:ed:73:c0:e7:a2:9c:65:7a:c2:c5:b0: 81:bd:93:84:e8:cd:ab:3d:fd:34:34:7d:4f:6f:f9: c1:bf:4f:7a:32:86:91:50:83:a0:2b:27:07:a8:ff: e3:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:0F:57:C2:9C:38:91:39:DD:AB:F6:9F:18:1E:E7:92:45:52:4F:F4 X509v3 Authority Key Identifier: keyid:13:B8:9B:80:18:63:32:D4:41:BB:05:15:C4:72:61:C5:FF:A0:61:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E7ibgBhjMtRBuwUVxHJhxf-gYWs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/6e5dc3-c7fa-4d36-9095-c19232bda430/1/ng9Xwpw4kTndq_afGB7nkkVST_Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/6e5dc3-c7fa-4d36-9095-c19232bda430/1/E7ibgBhjMtRBuwUVxHJhxf-gYWs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:8f00::/29 Signature Algorithm: sha256WithRSAEncryption b1:0f:de:e1:21:8b:5c:34:c8:a6:bc:9a:52:a0:6b:01:35:51: f1:12:96:08:16:f2:47:28:d9:5b:1a:5f:18:c5:cf:c4:cf:16: 14:bc:c7:93:da:b9:d5:1a:58:08:bd:d0:1c:65:28:eb:63:a6: 9e:8f:07:4f:8c:06:47:87:67:ef:03:1c:cb:28:a7:8a:2a:8b: 93:0c:71:7a:20:cb:ea:3f:0a:29:91:fe:b3:81:24:bb:e6:1c: af:3f:c3:a9:ff:2c:4c:3a:83:fc:e5:46:06:a4:38:c3:dc:a4: 17:f3:6e:0d:2f:b8:f2:92:c5:4c:05:b4:50:a3:bd:64:c1:2d: cc:7d:dd:ba:ff:f3:1a:f3:a3:c1:71:a8:63:ff:79:c9:7e:12: c1:2a:99:a8:a4:72:0c:eb:cd:5d:ef:44:d6:d9:73:f1:00:a8: 57:74:e1:25:dd:4a:aa:0f:df:5d:4a:2d:f9:28:71:5d:ed:fd: 3a:c3:c1:c3:6d:1d:65:0c:0d:02:7f:d5:f9:bb:4e:14:d6:2b: 62:60:9f:fc:3c:3a:4a:32:71:e2:82:13:81:0b:aa:fa:c4:95: 98:3a:16:53:2e:55:56:d6:7a:b5:12:6b:ac:15:aa:e4:89:0b: 67:37:fd:f8:b3:a8:81:19:2e:e1:47:81:45:87:7a:61:c8:82: dd:0e:5c:58 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt9XSj94/47ClXltICjCKsZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEzYjg5YjgwMTg2MzMyZDQ0MWJiMDUxNWM0NzI2MWM1ZmZh MDYxNmIwHhcNMjYwMTAyMDYyMDE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZTBmNTdjMjljMzg5MTM5ZGRhYmY2OWYxODFlZTc5MjQ1NTI0ZmY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRfiy0sg9tQtzxQbsp/xqXpw0keH k5jdOrGiCVK+gTr/6bJwnaQR1qjOuS11ic9TU+rliU0UoFk8i6jNdm77Gi4kZ+kC PRtU/tuEq+MVxkVPQW7G1XbVBUf2QXN+MiD22iCpYiNqCZIDjhqT31QBAEbXq48C GmK9r3XTmJgcNtM0Nzh0vvqdBCfUtXu5n5hvLK/P41MrlIxeuf7sZ5YO/f0esQY6 y5fh1dZTOaT4s54J0OY1GBdVTaT2eqET7ewM8ycMpscgBJf9v7mlmTk2QIYWEZWw 7XPA56KcZXrCxbCBvZOE6M2rPf00NH1Pb/nBv096MoaRUIOgKycHqP/jdQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFJ4PV8KcOJE53av2nxge55JFUk/0MB8GA1UdIwQY MBaAFBO4m4AYYzLUQbsFFcRyYcX/oGFrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRTdpYmdCaGpNdFJCdXdVVnhISmh4Zi1nWVdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS82ZTVkYzMtYzdmYS00ZDM2LTkwOTUt YzE5MjMyYmRhNDMwLzEvbmc5WHdwdzRrVG5kcV9hZkdCN25ra1ZTVF9RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS82ZTVkYzMtYzdmYS00ZDM2LTkwOTUtYzE5MjMyYmRhNDMw LzEvRTdpYmdCaGpNdFJCdXdVVnhISmh4Zi1nWVdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhCPADAN BgkqhkiG9w0BAQsFAAOCAQEAsQ/e4SGLXDTIpryaUqBrATVR8RKWCBbyRyjZWxpf GMXPxM8WFLzHk9q51RpYCL3QHGUo62Omno8HT4wGR4dn7wMcyyiniiqLkwxxeiDL 6j8KKZH+s4Eku+Ycrz/Dqf8sTDqD/OVGBqQ4w9ykF/NuDS+48pLFTAW0UKO9ZMEt zH3duv/zGvOjwXGoY/95yX4SwSqZqKRyDOvNXe9E1tlz8QCoV3ThJd1Kqg/fXUot +ShxXe39OsPBw20dZQwNAn/V+btOFNYrYmCf/Dw6SjJx4oITgQuq+sSVmDoWUy5V VtZ6tRJrrBWq5IkLZzf9+LOogRku4UeBRYd6YciC3Q5cWA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:36 2026 by rpki-client