This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/bWc2GsQGD-gjAdJwCoMcYqLJqeU.roa File: bWc2GsQGD-gjAdJwCoMcYqLJqeU.roa (raw, json) Hash identifier: Jf6e3PcsrzLYYa9Mfhpd6ffcIQ3eEEXH3Cqyt7VCO2s= Subject key identifier: 6D:67:36:1A:C4:06:0F:E8:23:01:D2:70:0A:83:1C:62:A2:C9:A9:E5 Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704 Certificate serial: 019B76EADB4A9429F5A6259C7E9B3FDC509D Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/bWc2GsQGD-gjAdJwCoMcYqLJqeU.roa Signing time: Thu 01 Jan 2026 00:17:41 +0000 ROA not before: Thu 01 Jan 2026 00:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215310 IP address blocks: 2a11:f080::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:db:4a:94:29:f5:a6:25:9c:7e:9b:3f:dc:50:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704 Validity Not Before: Jan 1 00:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d67361ac4060fe82301d2700a831c62a2c9a9e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b0:34:90:c8:a5:be:4f:61:bb:ef:94:9c:38: 29:f2:dc:19:85:b3:31:60:76:90:0d:cd:88:57:bd: 10:6a:42:c9:ac:3c:92:5c:fa:5d:10:f2:d7:a8:f2: 3f:23:62:b5:72:38:cd:68:bb:98:aa:b7:8d:87:4f: 9d:88:26:25:ac:44:c4:21:9d:72:f8:e5:9a:df:11: c5:8f:fd:f7:b0:93:10:31:d1:22:2f:c9:38:55:72: 3f:2b:1f:bc:06:8e:83:b2:76:81:80:df:1e:2c:d0: 21:cc:e9:f3:1c:6f:4d:29:99:9b:d6:58:2f:46:87: f3:64:ee:bd:26:fc:f5:ae:9b:9a:ad:1f:6f:8a:45: d6:1f:a1:94:30:6c:c9:73:d7:6d:a0:12:ec:b3:02: 16:2c:06:1a:e7:f6:11:9b:47:b6:84:2d:14:53:ab: 84:4a:4a:cb:4f:5f:d2:50:b0:5c:72:f3:6e:a2:2b: 29:9d:b0:4f:cd:03:f1:59:de:50:c9:da:7e:50:77: 35:0c:d5:74:c0:4d:c0:f1:b1:58:7a:a2:f4:8d:0f: 2c:98:30:d1:18:c7:e4:52:bf:68:db:7d:c6:0e:72: 16:39:0c:c4:bf:54:65:e1:cd:4d:69:ea:62:fd:84: b7:e1:46:0c:2a:2b:c0:00:f3:17:0a:b9:d7:24:aa: 6f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:67:36:1A:C4:06:0F:E8:23:01:D2:70:0A:83:1C:62:A2:C9:A9:E5 X509v3 Authority Key Identifier: keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/bWc2GsQGD-gjAdJwCoMcYqLJqeU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f080::/32 Signature Algorithm: sha256WithRSAEncryption 1c:f8:8a:6a:0c:ae:1e:13:41:7a:7b:c7:d3:9e:27:08:94:2b: 5c:ee:4c:8e:aa:92:ca:89:ba:1c:37:bc:61:55:0f:9e:f0:ec: ee:16:bc:56:77:f4:87:cf:fb:a8:ce:97:51:f2:4b:7d:b2:a1: 9e:3d:ba:99:aa:a1:26:73:3c:b1:0d:78:b2:f1:fa:0d:4a:e9: e2:c7:62:c4:16:cb:1e:c7:28:74:63:d9:33:8c:a9:85:0c:80: c8:41:23:af:83:dd:91:ff:10:2d:2a:1d:6e:f9:72:b8:c0:89: d4:05:aa:0d:28:f1:de:73:b7:d8:0a:9e:84:c6:3c:34:60:0e: ea:48:99:bf:87:fa:a2:34:3d:07:3e:88:81:b0:90:5c:51:ba: 17:99:9c:b2:54:34:b1:15:d5:4c:aa:76:83:ce:a1:f7:67:18: f5:a4:49:58:c4:f7:69:2c:42:f2:9d:a6:2b:81:eb:d5:7b:f1: a0:e3:36:03:b9:c3:7d:30:c2:2b:e9:41:ed:c4:23:f2:8d:e0: 00:41:1c:33:90:a7:71:2c:15:8f:02:f1:d8:70:18:60:96:e1: b6:29:d9:53:04:10:68:09:84:c7:b1:e0:62:51:be:21:80:08: 39:66:cb:ce:29:5c:b6:24:9d:a9:d1:e8:7e:84:2d:38:df:a4: c4:9e:bd:df -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt26ttKlCn1piWcfps/3FCdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj Zjk3MDQwHhcNMjYwMTAxMDAxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDY3MzYxYWM0MDYwZmU4MjMwMWQyNzAwYTgzMWM2MmEyYzlhOWU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7A0kMilvk9hu++UnDgp8twZhbMx YHaQDc2IV70QakLJrDySXPpdEPLXqPI/I2K1cjjNaLuYqreNh0+diCYlrETEIZ1y +OWa3xHFj/33sJMQMdEiL8k4VXI/Kx+8Bo6DsnaBgN8eLNAhzOnzHG9NKZmb1lgv RofzZO69Jvz1rpuarR9vikXWH6GUMGzJc9dtoBLsswIWLAYa5/YRm0e2hC0UU6uE SkrLT1/SULBccvNuoispnbBPzQPxWd5Qydp+UHc1DNV0wE3A8bFYeqL0jQ8smDDR GMfkUr9o233GDnIWOQzEv1Rl4c1Naepi/YS34UYMKivAAPMXCrnXJKpvoQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFG1nNhrEBg/oIwHScAqDHGKiyanlMB8GA1UdIwQY MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct ZTg2MTIxYzU5NGRmLzEvYldjMkdzUUdELWdqQWRKd0NvTWNZcUxKcWVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhHwgDAN BgkqhkiG9w0BAQsFAAOCAQEAHPiKagyuHhNBenvH054nCJQrXO5MjqqSyom6HDe8 YVUPnvDs7ha8Vnf0h8/7qM6XUfJLfbKhnj26maqhJnM8sQ14svH6DUrp4sdixBbL HscodGPZM4yphQyAyEEjr4Pdkf8QLSodbvlyuMCJ1AWqDSjx3nO32AqehMY8NGAO 6kiZv4f6ojQ9Bz6IgbCQXFG6F5mcslQ0sRXVTKp2g86h92cY9aRJWMT3aSxC8p2m K4Hr1XvxoOM2A7nDfTDCK+lB7cQj8o3gAEEcM5CncSwVjwLx2HAYYJbhtinZUwQQ aAmEx7HgYlG+IYAIOWbLzilctiSdqdHofoQtON+kxJ693w== -----END CERTIFICATE-----Generated at Sun Jan 18 15:40:51 2026 by rpki-client