This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/rPnkzMR46g2upeGLwnbyd0fXnb4.roa File: rPnkzMR46g2upeGLwnbyd0fXnb4.roa (raw, json) Hash identifier: flmLV+/lWpi4M1ZIkwy5iom73MDu5dXcw9z52gR1sjM= Subject key identifier: AC:F9:E4:CC:C4:78:EA:0D:AE:A5:E1:8B:C2:76:F2:77:47:D7:9D:BE Certificate issuer: /CN=20aa60cb0024332a2db68993f3357158af60c8de Certificate serial: 019B7910B44476C82424B6ACDB486C04066F Authority key identifier: 20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/rPnkzMR46g2upeGLwnbyd0fXnb4.roa Signing time: Thu 01 Jan 2026 10:18:16 +0000 ROA not before: Thu 01 Jan 2026 10:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 2a02:3040:43:ff00::/56 maxlen: 56 2a02:3040:4d::/48 maxlen: 48 2a02:3040:4e::/48 maxlen: 48 2a02:3040:4f::/50 maxlen: 50 2a02:3040:4f:8000::/50 maxlen: 50 2a02:3040:4f:c000::/50 maxlen: 50 2a02:3040:50::/48 maxlen: 48 2a02:3040:58::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 07:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:b4:44:76:c8:24:24:b6:ac:db:48:6c:04:06:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20aa60cb0024332a2db68993f3357158af60c8de Validity Not Before: Jan 1 10:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=acf9e4ccc478ea0daea5e18bc276f27747d79dbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:56:da:af:a5:17:28:35:71:53:b6:5b:19:ce: 0e:b0:eb:76:2e:4a:12:65:50:ef:50:67:44:c0:7d: 45:c2:a5:66:60:47:c4:2e:77:a3:31:2f:d0:38:76: 37:dd:2f:23:2f:c3:29:60:70:6e:db:e9:3c:61:c9: 50:8f:80:e8:66:5b:a5:5f:24:e9:8c:59:e6:7a:4a: 8a:39:f1:6b:32:14:1b:f6:01:70:80:98:ff:22:8d: 62:55:41:25:5c:ac:c8:87:dc:b8:a6:73:f3:8f:d7: f4:a0:47:56:fe:ad:cd:b5:16:f6:1c:20:39:09:23: b7:da:8a:58:54:4e:1f:e4:ce:e5:da:13:78:5c:94: 16:69:f8:56:39:11:42:28:f2:0c:cc:b1:01:6c:f8: b1:7c:ad:8e:08:1d:0d:c4:bb:d9:14:0b:2a:5b:fb: ba:38:9e:88:29:45:39:a4:e1:dc:3e:83:64:14:ea: c4:31:a3:cc:1b:2f:d1:ab:37:e7:45:bf:82:6f:08: 61:f5:b6:02:c8:ca:cf:92:f7:20:de:bd:3e:1a:eb: 0f:78:62:f0:5a:c5:f5:60:df:7e:b3:56:3d:ec:6d: 96:2c:9a:65:a2:0a:f8:fa:09:ec:56:1c:e1:27:b7: 2c:e1:8a:24:80:14:7c:05:0a:c2:d0:e9:53:5f:50: a3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:F9:E4:CC:C4:78:EA:0D:AE:A5:E1:8B:C2:76:F2:77:47:D7:9D:BE X509v3 Authority Key Identifier: keyid:20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/rPnkzMR46g2upeGLwnbyd0fXnb4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:3040:43:ff00::/56 2a02:3040:4d::-2a02:3040:4f:3fff:ffff:ffff:ffff:ffff 2a02:3040:4f:8000::-2a02:3040:50:ffff:ffff:ffff:ffff:ffff 2a02:3040:58::/48 Signature Algorithm: sha256WithRSAEncryption b5:7a:84:44:50:aa:ea:a9:53:8c:3e:c9:8c:f5:0c:88:22:a8: 58:04:99:21:a9:8b:02:30:f9:09:40:57:99:cc:5b:45:15:6d: da:7f:d5:9a:4f:a3:6c:d4:cd:22:ed:3f:f1:d7:3a:9e:47:b6: ee:e8:9b:53:d6:a6:8b:be:7f:a4:2e:8f:20:63:e8:4b:b2:eb: 8f:f7:9c:35:46:74:4c:0f:1c:e0:5d:ea:0d:94:d8:d3:24:7e: de:41:30:e8:6e:ed:2a:d9:88:b5:c6:9d:f3:99:be:6f:4a:e3: e4:4c:a0:f1:9e:03:ed:f4:94:f2:d1:9f:99:e3:a9:18:0c:f2: 15:ad:24:cd:82:10:40:3e:9b:b2:df:2b:da:9f:96:8f:74:f8: ad:cb:08:54:90:ac:0e:16:df:2a:30:3d:79:a1:f0:98:4c:11: 51:12:3c:c6:14:11:44:71:83:04:9e:75:ee:70:8c:a8:7f:31: d0:81:0f:de:14:9b:9b:2d:1a:2f:5f:b2:ec:b7:4d:d3:8b:03: f2:18:70:7c:bb:7f:8e:90:3e:c7:88:fe:84:6f:83:e9:d7:31: 00:ea:cd:55:45:cc:ef:c0:28:b0:b1:8b:87:2b:b3:5d:14:4b: 0e:d1:f0:a4:60:c7:70:24:8e:27:66:c6:ab:d8:f2:5c:85:34: 74:41:99:ae -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgISAZt5ELREdsgkJLas20hsBAZvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwYWE2MGNiMDAyNDMzMmEyZGI2ODk5M2YzMzU3MTU4YWY2 MGM4ZGUwHhcNMjYwMTAxMTAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhY2Y5ZTRjY2M0NzhlYTBkYWVhNWUxOGJjMjc2ZjI3NzQ3ZDc5ZGJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAklbar6UXKDVxU7ZbGc4OsOt2LkoS ZVDvUGdEwH1FwqVmYEfELnejMS/QOHY33S8jL8MpYHBu2+k8YclQj4DoZlulXyTp jFnmekqKOfFrMhQb9gFwgJj/Io1iVUElXKzIh9y4pnPzj9f0oEdW/q3NtRb2HCA5 CSO32opYVE4f5M7l2hN4XJQWafhWORFCKPIMzLEBbPixfK2OCB0NxLvZFAsqW/u6 OJ6IKUU5pOHcPoNkFOrEMaPMGy/RqzfnRb+Cbwhh9bYCyMrPkvcg3r0+GusPeGLw WsX1YN9+s1Y97G2WLJplogr4+gnsVhzhJ7cs4YokgBR8BQrC0OlTX1CjmQIDAQAB o4ICQDCCAjwwHQYDVR0OBBYEFKz55MzEeOoNrqXhi8J28ndH152+MB8GA1UdIwQY MBaAFCCqYMsAJDMqLbaJk/M1cVivYMjeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYt NzNmN2QxMTBiODJhLzEvclBua3pNUjQ2ZzJ1cGVHTHduYnlkMGZYbmI0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYtNzNmN2QxMTBiODJh LzEvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFYGCCsGAQUFBwEHAQH/BEcwRTBDBAIAAjA9AwgAKgIwQABD /zATAwcAKgIwQABNAwgGKgIwQABPADATAwgHKgIwQABPgAMHACoCMEAAUAMHACoC MEAAWDANBgkqhkiG9w0BAQsFAAOCAQEAtXqERFCq6qlTjD7JjPUMiCKoWASZIamL AjD5CUBXmcxbRRVt2n/Vmk+jbNTNIu0/8dc6nke27uibU9ami75/pC6PIGPoS7Lr j/ecNUZ0TA8c4F3qDZTY0yR+3kEw6G7tKtmItcad85m+b0rj5Eyg8Z4D7fSU8tGf meOpGAzyFa0kzYIQQD6bst8r2p+Wj3T4rcsIVJCsDhbfKjA9eaHwmEwRURI8xhQR RHGDBJ517nCMqH8x0IEP3hSbmy0aL1+y7LdN04sD8hhwfLt/jpA+x4j+hG+D6dcx AOrNVUXM78AosLGLhyuzXRRLDtHwpGDHcCSOJ2bGq9jyXIU0dEGZrg== -----END CERTIFICATE-----Generated at Fri Jan 9 17:06:36 2026 by rpki-client