This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/kGnavoxmmZYIHcjKwJNxPG0Ktzk.roa File: kGnavoxmmZYIHcjKwJNxPG0Ktzk.roa (raw, json) Hash identifier: siZcIUlonw/wkGDUXfskCTpBjBAR7kzTju6ObIq5uGI= Subject key identifier: 90:69:DA:BE:8C:66:99:96:08:1D:C8:CA:C0:93:71:3C:6D:0A:B7:39 Certificate issuer: /CN=884bf80e72f50f09bf563493ebdb11a34bba312d Certificate serial: 019B7EA59479E6C58CA60800227BED2D4E01 Authority key identifier: 88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/kGnavoxmmZYIHcjKwJNxPG0Ktzk.roa Signing time: Fri 02 Jan 2026 12:18:59 +0000 ROA not before: Fri 02 Jan 2026 12:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209112 IP address blocks: 2a0e:1200::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iEv4DnL1Dwm_VjST69sRo0u6MS0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iEv4DnL1Dwm_VjST69sRo0u6MS0.mft rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:94:79:e6:c5:8c:a6:08:00:22:7b:ed:2d:4e:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=884bf80e72f50f09bf563493ebdb11a34bba312d Validity Not Before: Jan 2 12:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9069dabe8c669996081dc8cac093713c6d0ab739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ba:8e:3e:a8:e6:7b:87:92:d2:ba:f8:8d:64: 78:19:1c:e4:d0:7e:22:d4:26:99:70:4e:00:9b:d8: d5:ff:33:44:98:36:3b:28:82:7a:a0:3e:61:e6:35: fd:16:e1:ac:75:5b:dd:a6:65:7f:85:bb:d2:03:b7: 04:61:e4:7f:16:54:1a:21:0c:c0:40:6e:d2:b4:31: 1d:89:c4:b8:70:b4:ab:9f:ba:02:16:f2:34:3f:e1: e5:c6:35:23:32:c2:1a:2d:5c:5e:cb:31:9b:67:dd: c4:85:f1:a4:2e:6f:3a:44:85:82:68:98:f3:09:a0: 54:17:5b:50:74:0b:54:74:ec:6b:44:28:f7:65:27: b0:56:c3:68:13:ff:08:78:cb:ae:71:ce:3c:99:f5: 18:8b:40:e1:4d:42:4b:fa:5d:5d:b3:5c:77:72:73: 11:22:0e:8e:a1:87:56:39:fa:8d:06:e9:8d:a2:4a: de:1a:ed:b4:2a:1d:d6:02:23:7a:4e:d3:68:62:3c: 20:12:25:8e:e7:82:c8:30:00:fc:2e:82:00:21:6f: 7d:f6:d8:39:da:da:6b:36:04:dc:62:2f:cb:58:cf: 33:97:be:db:49:5a:dd:35:60:bd:13:46:96:71:c8: ce:36:fc:13:6b:19:bc:54:15:96:35:75:b0:ef:f2: c8:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:69:DA:BE:8C:66:99:96:08:1D:C8:CA:C0:93:71:3C:6D:0A:B7:39 X509v3 Authority Key Identifier: keyid:88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/kGnavoxmmZYIHcjKwJNxPG0Ktzk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iEv4DnL1Dwm_VjST69sRo0u6MS0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:1200::/29 Signature Algorithm: sha256WithRSAEncryption 36:94:76:54:41:41:04:7a:ce:5f:bc:48:48:34:26:06:3d:14: b0:45:f1:1d:f8:6f:be:5a:36:89:e8:2c:63:4b:df:22:36:68: 36:91:f2:3f:c4:ed:a9:58:39:df:a4:ee:90:26:87:7c:c3:d4: ff:4f:21:b2:4d:45:83:e7:2a:32:38:1b:74:1f:19:b3:18:61: 7f:c9:b4:97:26:5d:aa:73:cc:a2:e3:e0:b7:9c:cc:d2:eb:cf: b4:f9:3b:2a:d8:79:3f:5d:9a:3b:18:a6:58:f1:47:87:4c:37: 06:65:1c:10:04:2e:98:ee:d5:b6:31:ce:8f:8c:34:df:a3:7a: 17:fe:89:81:cf:03:c3:c7:6b:c8:81:94:a8:9a:f8:f2:21:f0: c2:12:8e:61:df:d2:d7:b0:7e:9d:c7:3b:76:35:08:92:41:94: 1b:7c:15:1b:d7:5d:f7:fe:f7:ac:59:34:f9:c0:62:a3:7b:e1: 3b:ea:1b:c3:0b:6e:f8:dd:54:ca:2d:69:73:d2:e5:3e:6d:c5: 81:86:47:ca:37:60:fb:04:b6:ad:b5:20:d7:df:8d:f9:1e:db: e7:16:1c:99:75:54:42:e0:67:98:75:14:db:d5:e9:36:df:67: 5f:b7:d5:41:c4:6b:0d:c9:1b:d6:04:f6:e8:1c:b2:66:21:88: d7:3c:26:b1 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt+pZR55sWMpggAInvtLU4BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4NGJmODBlNzJmNTBmMDliZjU2MzQ5M2ViZGIxMWEzNGJi YTMxMmQwHhcNMjYwMTAyMTIxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDY5ZGFiZThjNjY5OTk2MDgxZGM4Y2FjMDkzNzEzYzZkMGFiNzM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbqOPqjme4eS0rr4jWR4GRzk0H4i 1CaZcE4Am9jV/zNEmDY7KIJ6oD5h5jX9FuGsdVvdpmV/hbvSA7cEYeR/FlQaIQzA QG7StDEdicS4cLSrn7oCFvI0P+HlxjUjMsIaLVxeyzGbZ93EhfGkLm86RIWCaJjz CaBUF1tQdAtUdOxrRCj3ZSewVsNoE/8IeMuucc48mfUYi0DhTUJL+l1ds1x3cnMR Ig6OoYdWOfqNBumNokreGu20Kh3WAiN6TtNoYjwgEiWO54LIMAD8LoIAIW999tg5 2tprNgTcYi/LWM8zl77bSVrdNWC9E0aWccjONvwTaxm8VBWWNXWw7/LIYwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFJBp2r6MZpmWCB3IysCTcTxtCrc5MB8GA1UdIwQY MBaAFIhL+A5y9Q8Jv1Y0k+vbEaNLujEtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUV2NERuTDFEd21fVmpTVDY5c1JvMHU2TVMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9iMTJlNGQtOGExYS00MDEwLTlhOGIt MzZmOTg0N2FjMzViLzEva0duYXZveG1tWllJSGNqS3dKTnhQRzBLdHprLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9iMTJlNGQtOGExYS00MDEwLTlhOGItMzZmOTg0N2FjMzVi LzEvaUV2NERuTDFEd21fVmpTVDY5c1JvMHU2TVMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg4SADAN BgkqhkiG9w0BAQsFAAOCAQEANpR2VEFBBHrOX7xISDQmBj0UsEXxHfhvvlo2iegs Y0vfIjZoNpHyP8TtqVg536TukCaHfMPU/08hsk1Fg+cqMjgbdB8Zsxhhf8m0lyZd qnPMouPgt5zM0uvPtPk7Kth5P12aOximWPFHh0w3BmUcEAQumO7VtjHOj4w036N6 F/6Jgc8Dw8dryIGUqJr48iHwwhKOYd/S17B+ncc7djUIkkGUG3wVG9dd9/73rFk0 +cBio3vhO+obwwtu+N1Uyi1pc9LlPm3FgYZHyjdg+wS2rbUg19+N+R7b5xYcmXVU QuBnmHUU29XpNt9nX7fVQcRrDckb1gT26ByyZiGI1zwmsQ== -----END CERTIFICATE-----Generated at Tue Feb 10 02:58:52 2026 by rpki-client