This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/2s2rH6pJaxJZPmqXWTN1Qb2u4TM.roa File: 2s2rH6pJaxJZPmqXWTN1Qb2u4TM.roa (raw, json) Hash identifier: eBYgPqvoN7v2sT7dcLhSrdB8XLxWgu/+rbJ7+t9oKzo= Subject key identifier: DA:CD:AB:1F:AA:49:6B:12:59:3E:6A:97:59:33:75:41:BD:AE:E1:33 Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c Certificate serial: 019B7DCB7DBC129597590023D322B416B537 Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/2s2rH6pJaxJZPmqXWTN1Qb2u4TM.roa Signing time: Fri 02 Jan 2026 08:20:46 +0000 ROA not before: Fri 02 Jan 2026 08:20:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205866 IP address blocks: 2a0d:6a40::/29 maxlen: 29 2a0d:cc40::/29 maxlen: 29 2a0d:e1c0::/29 maxlen: 29 2a0d:fbc0::/29 maxlen: 29 2a0e:adc0::/29 maxlen: 29 2a0f:9a40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:7d:bc:12:95:97:59:00:23:d3:22:b4:16:b5:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c Validity Not Before: Jan 2 08:20:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dacdab1faa496b12593e6a9759337541bdaee133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7d:63:ad:d3:37:c9:0a:14:69:c6:2d:ad:6a: 0c:fa:ff:58:01:e6:bd:79:08:1d:ff:22:11:a6:7b: 3c:84:4e:71:ff:aa:ec:b9:23:1f:9f:30:31:67:78: e6:9d:d1:3d:f1:64:80:9f:90:f7:5f:8f:34:37:fc: 66:c7:8c:bc:67:7b:c2:7f:73:a6:64:c5:66:33:13: fb:35:ae:9b:2c:cc:b5:0c:e1:9e:94:9f:ab:94:11: 7a:8b:90:51:a3:b2:ea:9d:e8:99:6d:fe:6c:6d:a4: e1:b8:00:d1:86:ad:fa:87:cf:8b:10:e7:62:be:db: 4f:ec:49:d6:40:b8:ce:5d:77:d2:ff:1c:1e:7a:36: 1d:7e:93:50:57:cd:22:1b:f3:a0:f6:0f:ea:8c:b7: a7:ea:04:0e:09:15:e6:4e:74:1c:c3:80:42:ee:17: 90:b0:6a:ad:b0:a2:13:3d:9a:4c:3f:e1:76:cb:a0: de:c9:3c:35:af:8b:d1:ed:c7:2a:b4:5f:d4:d8:69: 65:60:e8:36:1d:8b:51:b8:db:44:f8:79:f7:d5:a6: 79:e1:97:cb:25:90:89:22:17:d9:08:0d:0e:94:f0: 5e:fc:0c:d9:5c:fb:c4:66:56:f8:e6:06:e5:7e:8a: dd:24:45:d1:c9:6d:72:c5:04:de:d7:d4:0e:14:66: b9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:CD:AB:1F:AA:49:6B:12:59:3E:6A:97:59:33:75:41:BD:AE:E1:33 X509v3 Authority Key Identifier: keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/2s2rH6pJaxJZPmqXWTN1Qb2u4TM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0d:6a40::/29 2a0d:cc40::/29 2a0d:e1c0::/29 2a0d:fbc0::/29 2a0e:adc0::/29 2a0f:9a40::/29 Signature Algorithm: sha256WithRSAEncryption 5d:f4:73:a4:a7:e0:8a:d0:9c:d9:c2:99:5d:74:4d:be:6c:94: aa:78:ec:49:a9:a2:3b:e4:b7:18:ae:55:17:bc:67:ad:6f:3e: 70:e5:8b:30:9a:df:99:56:87:14:d2:4a:94:42:5a:4c:76:d0: ce:1f:39:0a:2c:d2:3e:33:55:f8:3b:fe:70:77:62:64:0e:bd: b2:4a:5a:75:9f:d8:18:ce:f1:67:0a:4f:d2:84:e3:3b:c9:7a: bc:86:71:13:8d:18:2b:bb:e1:21:35:02:d4:35:0e:0c:e5:16: 79:25:e4:15:d7:83:96:d0:83:62:da:0a:fe:4e:ac:7c:b2:d4: 21:cc:54:66:59:0d:c5:34:7d:b7:93:98:90:a6:d2:6e:e7:43: c9:d2:1e:1f:aa:98:8b:95:78:d6:60:dc:dc:d1:df:f5:96:64: f6:90:52:a7:e7:bf:ed:15:d5:5d:d7:74:84:24:8d:fd:d4:06: af:70:0b:66:5e:83:67:bb:98:fe:8b:e0:67:c8:e8:8c:d6:77: 95:8c:8e:68:e1:73:86:11:3c:d9:46:f0:ee:f0:e0:bb:d2:eb: 6c:59:61:f1:f1:aa:08:ea:23:85:05:6f:2f:0c:8b:fa:b7:15: 83:64:66:16:ac:a0:8c:88:35:7f:05:1f:d8:58:33:aa:85:a8: 80:3b:70:38 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt9y328EpWXWQAj0yK0FrU3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4 ZmNjNGMwHhcNMjYwMTAyMDgyMDQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYWNkYWIxZmFhNDk2YjEyNTkzZTZhOTc1OTMzNzU0MWJkYWVlMTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArn1jrdM3yQoUacYtrWoM+v9YAea9 eQgd/yIRpns8hE5x/6rsuSMfnzAxZ3jmndE98WSAn5D3X480N/xmx4y8Z3vCf3Om ZMVmMxP7Na6bLMy1DOGelJ+rlBF6i5BRo7LqneiZbf5sbaThuADRhq36h8+LEOdi vttP7EnWQLjOXXfS/xweejYdfpNQV80iG/Og9g/qjLen6gQOCRXmTnQcw4BC7heQ sGqtsKITPZpMP+F2y6DeyTw1r4vR7ccqtF/U2GllYOg2HYtRuNtE+Hn31aZ54ZfL JZCJIhfZCA0OlPBe/AzZXPvEZlb45gblfordJEXRyW1yxQTe19QOFGa54wIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFNrNqx+qSWsSWT5ql1kzdUG9ruEzMB8GA1UdIwQY MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt MjM5ZDJmZTM5OGIxLzEvMnMyckg2cEpheEpaUG1xWFdUTjFRYjJ1NFRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAAjAqAwUDKg1qQAMF AyoNzEADBQMqDeHAAwUDKg37wAMFAyoOrcADBQMqD5pAMA0GCSqGSIb3DQEBCwUA A4IBAQBd9HOkp+CK0JzZwplddE2+bJSqeOxJqaI75LcYrlUXvGetbz5w5Yswmt+Z VocU0kqUQlpMdtDOHzkKLNI+M1X4O/5wd2JkDr2ySlp1n9gYzvFnCk/ShOM7yXq8 hnETjRgru+EhNQLUNQ4M5RZ5JeQV14OW0INi2gr+Tqx8stQhzFRmWQ3FNH23k5iQ ptJu50PJ0h4fqpiLlXjWYNzc0d/1lmT2kFKn57/tFdVd13SEJI391AavcAtmXoNn u5j+i+BnyOiM1neVjI5o4XOGETzZRvDu8OC70utsWWHx8aoI6iOFBW8vDIv6txWD ZGYWrKCMiDV/BR/YWDOqhaiAO3A4 -----END CERTIFICATE-----Generated at Tue Jan 20 02:44:40 2026 by rpki-client