This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/1-_85ETz5jkHerkVT2dRSmXtqgNo.roa File: 1-_85ETz5jkHerkVT2dRSmXtqgNo.roa (raw, json) Hash identifier: NQXJJj/OBTH49mc/x3onWdcUiAdq+Dhq5KpAVGXEyBc= Subject key identifier: FB:FF:39:11:3C:F9:8E:41:DE:AE:45:53:D9:D4:52:99:7B:6A:80:DA Certificate issuer: /CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03 Certificate serial: 019B7FF2B97A55B10089D20FF4F4300A01B2 Authority key identifier: 33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/1-_85ETz5jkHerkVT2dRSmXtqgNo.roa Signing time: Fri 02 Jan 2026 18:22:52 +0000 ROA not before: Fri 02 Jan 2026 18:22:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206226 IP address blocks: 2a14:9d07:100::/44 maxlen: 44 2a14:9d07:120::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 03:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:b9:7a:55:b1:00:89:d2:0f:f4:f4:30:0a:01:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03 Validity Not Before: Jan 2 18:22:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fbff39113cf98e41deae4553d9d452997b6a80da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a2:b5:31:23:e5:8f:3e:92:77:ea:96:a9:ee: 1c:d1:34:48:ff:6d:c4:f1:e6:2d:50:8b:d0:fd:08: 2f:c6:ac:0d:ca:56:16:7f:40:d2:44:fb:aa:43:4a: 27:5c:c4:76:f4:b7:22:50:12:5c:03:78:dd:13:eb: 98:26:ba:59:09:5f:69:f6:44:ff:1d:56:9c:fa:d6: f4:5c:57:60:e4:66:41:c2:1f:67:e9:8e:10:b5:d8: ed:17:c2:ff:07:4a:7e:f8:9d:6c:1b:86:6c:e5:80: 44:ed:73:10:63:b6:47:df:19:31:c7:32:9b:a6:da: c1:98:91:e6:b9:74:43:22:af:a1:50:d1:ec:8f:25: 77:2d:7b:41:2b:e5:3d:08:09:89:9a:e7:22:25:4e: e4:9b:49:72:c4:65:c7:fc:2e:76:84:a4:15:aa:59: 3d:01:a8:10:25:5d:5b:f0:cf:13:65:e9:b5:65:17: 49:9d:45:27:14:a8:ab:4b:d9:74:d1:3e:21:c8:88: 9e:7c:94:a0:c9:4a:32:45:17:dc:26:41:f1:3f:a7: 2c:b7:e4:74:b4:a4:28:bf:3a:2f:54:d1:f2:2a:fd: 68:d7:40:3b:22:68:88:af:1b:15:6a:18:6e:43:ee: cc:a8:42:5e:fd:6d:fa:88:25:6e:4f:e6:fa:fb:31: cb:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:FF:39:11:3C:F9:8E:41:DE:AE:45:53:D9:D4:52:99:7B:6A:80:DA X509v3 Authority Key Identifier: keyid:33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/1-_85ETz5jkHerkVT2dRSmXtqgNo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:9d07:100::/44 2a14:9d07:120::/44 Signature Algorithm: sha256WithRSAEncryption 40:87:b6:33:15:26:96:90:91:c1:55:94:c7:b9:82:61:2c:87: 7b:65:ba:43:57:b7:b1:70:08:1a:aa:8e:cf:6c:9b:9d:d0:47: c6:ec:fb:c6:f7:cb:0d:c1:cc:5f:4a:38:29:97:e7:a2:6a:01: d7:3d:f1:22:0f:27:ce:ab:c9:68:c8:e1:b0:49:97:fd:fc:bb: 43:f2:c1:ed:e2:28:bc:5f:bd:b0:3d:65:f8:66:a1:e2:f7:73: f4:54:7a:ba:94:40:b3:08:d9:83:03:21:dc:f3:4d:89:3c:bd: 8b:4d:1b:da:e9:49:36:d8:50:2d:94:e6:7b:90:a2:03:d3:47: be:64:e7:bb:77:c7:32:ce:89:fc:66:00:c2:9a:ca:92:da:b1: 6c:8a:49:3f:6b:0e:c2:6c:39:ac:59:6a:ac:8a:a6:14:d3:bc: d5:41:03:6f:98:4d:c3:c4:e0:7d:d1:5b:84:84:42:be:2e:00: 9b:1d:f1:2b:7c:f1:d6:bc:71:3b:09:71:a2:b3:a6:a5:6c:75: ee:5d:96:19:e6:db:74:5c:03:58:36:b8:08:dd:88:f1:f2:e3: 34:b1:c7:e5:61:20:0e:53:b7:1a:b4:84:26:32:f8:88:0c:1e: b7:87:78:a3:4b:51:30:4f:56:cc:35:dc:7a:3a:9a:6f:36:bc: a9:bc:30:ca -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgISAZt/8rl6VbEAidIP9PQwCgGyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzYjY1YThiYWViYTRmZjYyMTQ5MmViZWU2ZmMxZTg4YWRi MjFiMDMwHhcNMjYwMTAyMTgyMjUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYmZmMzkxMTNjZjk4ZTQxZGVhZTQ1NTNkOWQ0NTI5OTdiNmE4MGRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6aK1MSPljz6Sd+qWqe4c0TRI/23E 8eYtUIvQ/QgvxqwNylYWf0DSRPuqQ0onXMR29LciUBJcA3jdE+uYJrpZCV9p9kT/ HVac+tb0XFdg5GZBwh9n6Y4QtdjtF8L/B0p++J1sG4Zs5YBE7XMQY7ZH3xkxxzKb ptrBmJHmuXRDIq+hUNHsjyV3LXtBK+U9CAmJmuciJU7km0lyxGXH/C52hKQVqlk9 AagQJV1b8M8TZem1ZRdJnUUnFKirS9l00T4hyIiefJSgyUoyRRfcJkHxP6cst+R0 tKQovzovVNHyKv1o10A7ImiIrxsVahhuQ+7MqEJe/W36iCVuT+b6+zHLiwIDAQAB o4ICFjCCAhIwHQYDVR0OBBYEFPv/ORE8+Y5B3q5FU9nUUpl7aoDaMB8GA1UdIwQY MBaAFDO2Wouuuk/2IUkuvub8HoitshsDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTdaYWk2NjZUX1loU1M2LTV2d2VpSzJ5R3dNLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9hYWJjNmMtMDQ1Ni00OTM1LWE0Njkt ZDU0NzE4NTUxMmRlLzEvMS1fODVFVHo1amtIZXJrVlQyZFJTbVh0cWdOby5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvYWEvYWFiYzZjLTA0NTYtNDkzNS1hNDY5LWQ1NDcxODU1MTJk ZS8xL003WmFpNjY2VF9ZaFNTNi01dndlaUsyeUd3TS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBowGAQCAAIwEgMHBCoUnQcB AAMHBCoUnQcBIDANBgkqhkiG9w0BAQsFAAOCAQEAQIe2MxUmlpCRwVWUx7mCYSyH e2W6Q1e3sXAIGqqOz2ybndBHxuz7xvfLDcHMX0o4KZfnomoB1z3xIg8nzqvJaMjh sEmX/fy7Q/LB7eIovF+9sD1l+Gah4vdz9FR6upRAswjZgwMh3PNNiTy9i00b2ulJ NthQLZTme5CiA9NHvmTnu3fHMs6J/GYAwprKktqxbIpJP2sOwmw5rFlqrIqmFNO8 1UEDb5hNw8TgfdFbhIRCvi4Amx3xK3zx1rxxOwlxorOmpWx17l2WGebbdFwDWDa4 CN2I8fLjNLHH5WEgDlO3GrSEJjL4iAwet4d4o0tRME9WzDXcejqabza8qbwwyg== -----END CERTIFICATE-----Generated at Sun Jan 18 12:05:46 2026 by rpki-client