This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/AczQ5m07bagbCSpYHKyOOUGJiuU.roa File: AczQ5m07bagbCSpYHKyOOUGJiuU.roa (raw, json) Hash identifier: ZZkvh7a+nFDXqMju+v84npxtkZQE+y45PmWF7YuV5vg= Subject key identifier: 01:CC:D0:E6:6D:3B:6D:A8:1B:09:2A:58:1C:AC:8E:39:41:89:8A:E5 Certificate issuer: /CN=322639b35e5d9d0fb3696fe2fd61cb6f4c3fa504 Certificate serial: 019B76EAF9311DD36B6586A3E2304D8C6175 Authority key identifier: 32:26:39:B3:5E:5D:9D:0F:B3:69:6F:E2:FD:61:CB:6F:4C:3F:A5:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/AczQ5m07bagbCSpYHKyOOUGJiuU.roa Signing time: Thu 01 Jan 2026 00:17:49 +0000 ROA not before: Thu 01 Jan 2026 00:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 54994 IP address blocks: 2a05:27c0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.mft rsync://rpki.ripe.net/repository/DEFAULT/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:f9:31:1d:d3:6b:65:86:a3:e2:30:4d:8c:61:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=322639b35e5d9d0fb3696fe2fd61cb6f4c3fa504 Validity Not Before: Jan 1 00:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=01ccd0e66d3b6da81b092a581cac8e3941898ae5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:30:85:97:0a:03:e4:97:cc:70:2c:f2:f4:3f: c4:60:8a:63:43:87:3d:c5:b0:6c:f6:2b:94:2e:00: 6a:04:f7:f2:9a:9a:46:f7:91:ac:b5:f8:ac:72:b8: 2e:6f:c3:95:e4:76:b4:a1:9a:76:05:89:99:26:f1: c3:9d:97:5a:49:7d:60:79:dc:bf:b8:7a:f9:d6:7d: 90:ea:bd:2c:2a:1d:f8:0f:53:aa:c0:66:6c:98:05: 62:f0:bd:e5:84:95:23:3a:07:b8:5b:ca:b5:dd:29: 56:63:82:55:c4:9e:18:86:ce:f5:d6:48:92:6f:ed: 99:56:04:60:31:1c:40:ea:24:30:6b:db:0f:3c:49: dc:1b:99:c5:cd:ec:9b:99:6c:87:e8:e9:d9:33:4f: 23:b9:d2:3a:2f:9b:0e:48:7e:ae:26:05:ea:48:e4: a9:b4:2c:19:c1:c4:c9:18:c5:21:5d:fc:b2:86:3b: 3d:fb:4c:ff:a5:54:e2:00:13:bd:ba:bc:0e:22:bc: 9a:b1:10:69:bc:86:80:65:49:28:9e:0e:6b:a2:51: ad:0d:0f:a9:30:de:f1:ce:d3:dd:0d:08:fd:0d:41: a0:c3:5d:4c:9d:92:fa:e1:3e:29:26:e1:f7:f8:ae: 75:26:97:3e:dd:42:99:2c:b9:77:94:2c:27:31:7b: da:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:CC:D0:E6:6D:3B:6D:A8:1B:09:2A:58:1C:AC:8E:39:41:89:8A:E5 X509v3 Authority Key Identifier: keyid:32:26:39:B3:5E:5D:9D:0F:B3:69:6F:E2:FD:61:CB:6F:4C:3F:A5:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/AczQ5m07bagbCSpYHKyOOUGJiuU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:27c0:3::/48 Signature Algorithm: sha256WithRSAEncryption 75:15:8e:24:d9:fd:d3:af:c4:ff:d1:78:ac:ae:ea:5d:89:1d: 0f:de:7f:00:6a:5f:4d:ea:b5:47:e5:5a:08:01:c2:59:e5:84: b1:be:45:fa:67:5b:78:52:6e:d7:6c:24:2a:00:c9:41:88:96: e0:64:7c:21:cc:a3:52:53:1f:c7:f9:1f:20:05:61:b7:9c:5c: 83:d3:df:e8:04:09:4b:9b:1e:1c:18:dd:5c:16:de:4a:c6:60: 67:6b:9a:b5:29:77:8a:59:bf:4a:d8:ec:ee:32:1e:99:02:b5: d2:82:f8:03:5d:72:73:4b:fa:e1:d6:1a:ac:9d:84:89:90:bd: 32:0e:2f:c0:73:ee:1f:c5:c2:66:5a:44:9b:80:17:94:1e:ae: 35:b7:2c:a1:c5:ef:e4:97:fd:14:d5:96:a8:c1:f4:c3:7b:bb: ba:17:ea:9d:91:6a:fc:9b:80:ea:29:91:f5:c2:1c:e5:7f:e0: 5d:53:7e:50:f8:1d:63:f6:aa:93:f6:79:61:e1:a0:10:c4:18: 7b:35:5b:6a:c0:6f:9a:c6:e9:a9:e2:81:b5:20:18:26:df:66: d7:4b:70:7e:19:3f:47:f5:59:29:c8:b9:9e:bc:86:0f:b2:3e: 00:fe:5f:f5:97:60:06:5e:18:2c:c2:bb:b2:5f:8d:af:85:36: 6d:24:84:8e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt26vkxHdNrZYaj4jBNjGF1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyMjYzOWIzNWU1ZDlkMGZiMzY5NmZlMmZkNjFjYjZmNGMz ZmE1MDQwHhcNMjYwMTAxMDAxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMWNjZDBlNjZkM2I2ZGE4MWIwOTJhNTgxY2FjOGUzOTQxODk4YWU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjCFlwoD5JfMcCzy9D/EYIpjQ4c9 xbBs9iuULgBqBPfymppG95Gstfiscrgub8OV5Ha0oZp2BYmZJvHDnZdaSX1gedy/ uHr51n2Q6r0sKh34D1OqwGZsmAVi8L3lhJUjOge4W8q13SlWY4JVxJ4Yhs711kiS b+2ZVgRgMRxA6iQwa9sPPEncG5nFzeybmWyH6OnZM08judI6L5sOSH6uJgXqSOSp tCwZwcTJGMUhXfyyhjs9+0z/pVTiABO9urwOIryasRBpvIaAZUkong5rolGtDQ+p MN7xztPdDQj9DUGgw11MnZL64T4pJuH3+K51Jpc+3UKZLLl3lCwnMXva3QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFAHM0OZtO22oGwkqWBysjjlBiYrlMB8GA1UdIwQY MBaAFDImObNeXZ0Ps2lv4v1hy29MP6UEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWlZNXMxNWRuUS16YVdfaV9XSExiMHdfcFFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy82NjJmYmYtNTU3Ni00NTk1LTg5MmIt YjViM2FlYWU5OGVhLzEvQWN6UTVtMDdiYWdiQ1NwWUhLeU9PVUdKaXVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy82NjJmYmYtNTU3Ni00NTk1LTg5MmItYjViM2FlYWU5OGVh LzEvTWlZNXMxNWRuUS16YVdfaV9XSExiMHdfcFFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgUnwAAD MA0GCSqGSIb3DQEBCwUAA4IBAQB1FY4k2f3Tr8T/0XisrupdiR0P3n8Aal9N6rVH 5VoIAcJZ5YSxvkX6Z1t4Um7XbCQqAMlBiJbgZHwhzKNSUx/H+R8gBWG3nFyD09/o BAlLmx4cGN1cFt5KxmBna5q1KXeKWb9K2OzuMh6ZArXSgvgDXXJzS/rh1hqsnYSJ kL0yDi/Ac+4fxcJmWkSbgBeUHq41tyyhxe/kl/0U1ZaowfTDe7u6F+qdkWr8m4Dq KZH1whzlf+BdU35Q+B1j9qqT9nlh4aAQxBh7NVtqwG+axump4oG1IBgm32bXS3B+ GT9H9VkpyLmevIYPsj4A/l/1l2AGXhgswruyX42vhTZtJISO -----END CERTIFICATE-----Generated at Tue Jan 20 04:46:53 2026 by rpki-client