This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/9J2k_v-AhLXeWsx0gyZ7MSycihA.roa File: 9J2k_v-AhLXeWsx0gyZ7MSycihA.roa (raw, json) Hash identifier: KdEABeI7OUulamOMnpjJAOHhCOTUaC4bju9UuYK4BXI= Subject key identifier: F4:9D:A4:FE:FF:80:84:B5:DE:5A:CC:74:83:26:7B:31:2C:9C:8A:10 Certificate issuer: /CN=fe5b4d508bdc21415b4752eebc448d4aaac635d9 Certificate serial: 019B77C770D1D143858749F351BA3C7AD57D Authority key identifier: FE:5B:4D:50:8B:DC:21:41:5B:47:52:EE:BC:44:8D:4A:AA:C6:35:D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/9J2k_v-AhLXeWsx0gyZ7MSycihA.roa Signing time: Thu 01 Jan 2026 04:18:37 +0000 ROA not before: Thu 01 Jan 2026 04:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 64289 IP address blocks: 2a04:2500::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.mft rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 01:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:70:d1:d1:43:85:87:49:f3:51:ba:3c:7a:d5:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe5b4d508bdc21415b4752eebc448d4aaac635d9 Validity Not Before: Jan 1 04:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f49da4feff8084b5de5acc7483267b312c9c8a10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bf:3d:c6:a7:ca:45:d2:dc:4d:84:78:4e:86: c5:26:e4:39:f8:ca:17:10:50:8e:dc:d4:c6:b9:5e: 29:b0:99:6e:3f:74:00:00:fb:da:32:82:ab:37:ee: 32:65:53:cd:5e:42:85:d4:21:24:e2:f2:03:29:5a: 75:05:e9:a9:ac:9d:bd:42:27:1d:d8:a7:bf:83:af: ec:32:d6:2b:48:6c:76:74:c7:25:8d:33:12:c7:58: db:8d:b3:fa:35:6d:4f:67:06:fa:a6:8d:a4:81:38: b3:df:ac:1b:16:fd:f8:43:95:a9:7d:d9:9e:f2:a8: b0:e0:ce:05:9b:31:a6:74:9a:e1:be:76:a0:f1:8c: 6e:29:aa:18:b4:75:d3:92:fa:47:ea:12:f5:f2:d9: d0:6d:59:df:4c:19:22:3f:a2:a0:9a:df:f5:95:cb: 5e:ff:e4:a6:49:a1:ed:db:fb:d6:50:80:64:07:33: c2:f2:6a:29:28:c5:3e:2d:b8:61:7b:a0:72:40:10: ad:7a:75:02:e7:c0:83:13:ac:5a:46:6a:99:57:09: 5b:0e:02:94:3d:bd:5e:0e:31:d5:a1:c0:90:49:50: 80:57:38:20:4e:ab:6b:55:c1:8c:46:d5:f7:72:eb: 83:c6:79:99:72:95:84:b9:6a:cf:e9:d2:fb:72:a3: 2e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:9D:A4:FE:FF:80:84:B5:DE:5A:CC:74:83:26:7B:31:2C:9C:8A:10 X509v3 Authority Key Identifier: keyid:FE:5B:4D:50:8B:DC:21:41:5B:47:52:EE:BC:44:8D:4A:AA:C6:35:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ltNUIvcIUFbR1LuvESNSqrGNdk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/9J2k_v-AhLXeWsx0gyZ7MSycihA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/c9f7ab-3fa0-471f-bb95-00b4fbb3849d/1/_ltNUIvcIUFbR1LuvESNSqrGNdk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a04:2500::/29 Signature Algorithm: sha256WithRSAEncryption 40:19:5a:53:4a:3b:7c:b2:b2:e4:3e:5e:4d:20:35:9a:df:7d: be:82:cf:ec:89:95:1a:a8:64:d9:54:c9:b2:93:0c:0c:3c:64: 66:56:22:15:4a:e6:e6:66:77:b3:92:be:4e:e3:f7:4c:bf:b8: 50:45:ac:2e:db:a5:02:0b:e5:58:4c:32:65:2f:3f:63:60:22: 52:6b:bb:01:f4:8b:10:57:b1:59:9d:02:b6:73:1e:7c:2d:7c: bf:29:13:24:be:1a:20:21:f2:94:14:3c:11:e9:c9:1b:05:19: ff:24:f0:20:a9:5e:b8:59:23:5c:23:de:cc:3c:46:f1:71:93: 17:72:dd:be:6b:b0:fa:4b:3f:68:55:f4:23:e9:cb:1e:7f:3b: 5a:97:62:f8:1f:0c:44:18:7a:27:b2:ac:18:41:61:c2:f9:07: a3:7f:39:8e:79:a3:0e:72:a7:1d:90:b0:02:ab:c6:27:81:0c: 63:84:90:da:1c:b7:48:13:95:f5:fd:c9:d5:e2:db:cb:c7:44: a2:b3:5c:f9:45:b6:b6:d3:8f:69:3f:0e:b8:5e:67:da:f1:3f: 0d:96:d8:ef:5a:cd:02:e5:04:af:ae:69:33:60:a2:82:8a:14: 2c:71:a4:2f:53:87:74:28:fe:35:c2:77:3e:4a:c8:f8:87:03: 83:dd:5a:a8 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt3x3DR0UOFh0nzUbo8etV9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlNWI0ZDUwOGJkYzIxNDE1YjQ3NTJlZWJjNDQ4ZDRhYWFj NjM1ZDkwHhcNMjYwMTAxMDQxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNDlkYTRmZWZmODA4NGI1ZGU1YWNjNzQ4MzI2N2IzMTJjOWM4YTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs789xqfKRdLcTYR4TobFJuQ5+MoX EFCO3NTGuV4psJluP3QAAPvaMoKrN+4yZVPNXkKF1CEk4vIDKVp1BemprJ29Qicd 2Ke/g6/sMtYrSGx2dMcljTMSx1jbjbP6NW1PZwb6po2kgTiz36wbFv34Q5Wpfdme 8qiw4M4FmzGmdJrhvnag8YxuKaoYtHXTkvpH6hL18tnQbVnfTBkiP6Kgmt/1lcte /+SmSaHt2/vWUIBkBzPC8mopKMU+Lbhhe6ByQBCtenUC58CDE6xaRmqZVwlbDgKU Pb1eDjHVocCQSVCAVzggTqtrVcGMRtX3cuuDxnmZcpWEuWrP6dL7cqMu+wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFPSdpP7/gIS13lrMdIMmezEsnIoQMB8GA1UdIwQY MBaAFP5bTVCL3CFBW0dS7rxEjUqqxjXZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2x0TlVJdmNJVUZiUjFMdXZFU05TcXJHTmRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9jOWY3YWItM2ZhMC00NzFmLWJiOTUt MDBiNGZiYjM4NDlkLzEvOUoya192LUFoTFhlV3N4MGd5WjdNU3ljaWhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS9jOWY3YWItM2ZhMC00NzFmLWJiOTUtMDBiNGZiYjM4NDlk LzEvX2x0TlVJdmNJVUZiUjFMdXZFU05TcXJHTmRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgQlADAN BgkqhkiG9w0BAQsFAAOCAQEAQBlaU0o7fLKy5D5eTSA1mt99voLP7ImVGqhk2VTJ spMMDDxkZlYiFUrm5mZ3s5K+TuP3TL+4UEWsLtulAgvlWEwyZS8/Y2AiUmu7AfSL EFexWZ0CtnMefC18vykTJL4aICHylBQ8EenJGwUZ/yTwIKleuFkjXCPezDxG8XGT F3Ldvmuw+ks/aFX0I+nLHn87Wpdi+B8MRBh6J7KsGEFhwvkHo385jnmjDnKnHZCw AqvGJ4EMY4SQ2hy3SBOV9f3J1eLby8dEorNc+UW2ttOPaT8OuF5n2vE/DZbY71rN AuUEr65pM2CigooULHGkL1OHdCj+NcJ3PkrI+IcDg91aqA== -----END CERTIFICATE-----Generated at Mon Feb 2 14:22:55 2026 by rpki-client