This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/2a-ajfpkZAsjReLLQ1xduA5jH68.roa File: 2a-ajfpkZAsjReLLQ1xduA5jH68.roa (raw, json) Hash identifier: lQdPyjxms9XmoRw9yTquBchApgiBDYUsw2V+v//4ubw= Subject key identifier: D9:AF:9A:8D:FA:64:64:0B:23:45:E2:CB:43:5C:5D:B8:0E:63:1F:AF Certificate issuer: /CN=d04079bb7070ed0eeea3a1a467c79462bcc5455f Certificate serial: 019B7C7FBF879E8550A355CD00D4082C1026 Authority key identifier: D0:40:79:BB:70:70:ED:0E:EE:A3:A1:A4:67:C7:94:62:BC:C5:45:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/2a-ajfpkZAsjReLLQ1xduA5jH68.roa Signing time: Fri 02 Jan 2026 02:18:25 +0000 ROA not before: Fri 02 Jan 2026 02:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 193.162.44.0/24 maxlen: 32 2a10:f0c0::/29 maxlen: 128 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.crl rsync://rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.mft rsync://rpki.ripe.net/repository/DEFAULT/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:bf:87:9e:85:50:a3:55:cd:00:d4:08:2c:10:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d04079bb7070ed0eeea3a1a467c79462bcc5455f Validity Not Before: Jan 2 02:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d9af9a8dfa64640b2345e2cb435c5db80e631faf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:88:2e:7e:d3:ec:ad:e8:01:bc:1b:89:1f:e9: 15:64:ec:ab:d9:7b:bb:0c:86:d5:fc:11:02:70:88: fb:d5:0f:2b:25:1a:e5:ba:fb:20:a0:ac:09:1d:38: 9b:80:89:ff:e9:b7:33:a5:92:51:7a:b5:66:bb:96: aa:cf:c9:75:a6:26:1d:5f:f0:46:92:05:26:e2:9f: 49:f0:08:b7:22:6c:80:85:a7:f2:4c:06:30:f0:28: 73:8d:f3:ed:ac:e3:8d:95:05:ad:bd:1c:db:7c:3a: 21:89:76:0f:56:dd:6d:63:7e:d6:c5:f3:6c:08:fd: f3:be:64:ab:ae:90:0b:9e:9f:59:2f:44:8d:67:38: 3c:cc:7b:e8:dd:b2:5c:ee:ce:cd:3a:20:99:1f:bb: 45:76:b3:4e:2b:2c:fa:04:40:ae:df:d9:f8:25:d4: 62:a0:2a:43:15:f0:73:22:77:63:6e:8d:a2:18:c1: 51:b7:53:96:c4:ae:c7:bc:9f:c8:87:c1:8c:58:f1: ed:84:2b:20:2d:50:34:44:79:5a:05:32:ea:0a:5f: d9:0f:04:7e:9d:7e:ef:a3:82:a7:1e:8a:9c:43:af: 33:35:70:18:99:0b:40:1d:e7:7f:46:bc:62:00:7f: b2:5b:94:dc:a2:09:50:83:01:46:2c:25:d8:1c:a1: f8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:AF:9A:8D:FA:64:64:0B:23:45:E2:CB:43:5C:5D:B8:0E:63:1F:AF X509v3 Authority Key Identifier: keyid:D0:40:79:BB:70:70:ED:0E:EE:A3:A1:A4:67:C7:94:62:BC:C5:45:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/2a-ajfpkZAsjReLLQ1xduA5jH68.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.162.44.0/24 IPv6: 2a10:f0c0::/29 Signature Algorithm: sha256WithRSAEncryption 72:31:73:94:a9:ab:27:4d:07:de:3e:72:8c:60:8e:61:2f:4a: 20:90:fa:9a:45:c7:e6:97:39:e9:b2:4c:27:42:6e:cb:d9:15: 8c:11:ed:ce:43:78:38:d6:20:36:75:79:21:d2:76:f0:9a:b6: 2b:d3:3a:8e:c2:3f:4d:a1:a9:80:70:8e:a1:20:99:cf:fd:c5: b7:8f:07:bd:ec:70:5a:b8:6c:2d:0c:2d:21:75:0e:68:74:71: 19:6c:a6:25:db:bf:9f:3b:f5:07:53:7a:06:12:f8:44:ff:7c: 82:e2:93:65:b9:87:0e:0d:47:3b:fc:70:4d:54:59:71:f1:c2: a6:f5:a8:1c:f9:07:de:09:32:88:f1:9c:9b:c8:52:6f:a5:39: 12:14:78:4e:ad:97:76:c3:e1:ed:e1:73:93:84:75:01:35:d9: 65:dc:68:69:62:52:45:b0:4c:0f:3f:87:f5:b3:e2:3d:8a:7a: 59:63:35:77:35:a8:e9:fe:12:24:06:1c:55:78:a8:f6:47:88: cf:ea:e4:b5:96:42:88:47:c3:0d:96:99:89:f5:ba:fd:1f:b7: e7:d2:c7:1b:72:a1:8d:66:7c:a3:b2:5c:bb:0d:82:e1:18:87: b0:8a:ad:52:a9:c9:20:ee:26:55:b5:16:59:f9:93:d7:95:12: d6:52:db:4b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8f7+HnoVQo1XNANQILBAmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwNDA3OWJiNzA3MGVkMGVlZWEzYTFhNDY3Yzc5NDYyYmNj NTQ1NWYwHhcNMjYwMTAyMDIxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOWFmOWE4ZGZhNjQ2NDBiMjM0NWUyY2I0MzVjNWRiODBlNjMxZmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYguftPsregBvBuJH+kVZOyr2Xu7 DIbV/BECcIj71Q8rJRrluvsgoKwJHTibgIn/6bczpZJRerVmu5aqz8l1piYdX/BG kgUm4p9J8Ai3ImyAhafyTAYw8ChzjfPtrOONlQWtvRzbfDohiXYPVt1tY37WxfNs CP3zvmSrrpALnp9ZL0SNZzg8zHvo3bJc7s7NOiCZH7tFdrNOKyz6BECu39n4JdRi oCpDFfBzIndjbo2iGMFRt1OWxK7HvJ/Ih8GMWPHthCsgLVA0RHlaBTLqCl/ZDwR+ nX7vo4KnHoqcQ68zNXAYmQtAHed/RrxiAH+yW5TcoglQgwFGLCXYHKH4WQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNmvmo36ZGQLI0Xiy0NcXbgOYx+vMB8GA1UdIwQY MBaAFNBAebtwcO0O7qOhpGfHlGK8xUVfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEVCNXUzQnc3UTd1bzZHa1o4ZVVZcnpGUlY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9hOTNkYTAtZTE1NS00MzI0LTliYTkt NjIwOThkMWVjMWU2LzEvMmEtYWpmcGtaQXNqUmVMTFExeGR1QTVqSDY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS9hOTNkYTAtZTE1NS00MzI0LTliYTktNjIwOThkMWVjMWU2 LzEvMEVCNXUzQnc3UTd1bzZHa1o4ZVVZcnpGUlY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwaIsMA0E AgACMAcDBQMqEPDAMA0GCSqGSIb3DQEBCwUAA4IBAQByMXOUqasnTQfePnKMYI5h L0ogkPqaRcfmlznpskwnQm7L2RWMEe3OQ3g41iA2dXkh0nbwmrYr0zqOwj9NoamA cI6hIJnP/cW3jwe97HBauGwtDC0hdQ5odHEZbKYl27+fO/UHU3oGEvhE/3yC4pNl uYcODUc7/HBNVFlx8cKm9agc+QfeCTKI8ZybyFJvpTkSFHhOrZd2w+Ht4XOThHUB Ndll3GhpYlJFsEwPP4f1s+I9inpZYzV3Najp/hIkBhxVeKj2R4jP6uS1lkKIR8MN lpmJ9br9H7fn0scbcqGNZnyjsly7DYLhGIewiq1Sqckg7iZVtRZZ+ZPXlRLWUttL -----END CERTIFICATE-----Generated at Fri Jan 9 00:56:53 2026 by rpki-client