This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/0geZMvmwvZ4SsgUxE-raaM8yExg.roa File: 0geZMvmwvZ4SsgUxE-raaM8yExg.roa (raw, json) Hash identifier: wGsmWUUx+InKH/pHEB+22Iwd2em8rXE3d7MMVtqDdGg= Subject key identifier: D2:07:99:32:F9:B0:BD:9E:12:B2:05:31:13:EA:DA:68:CF:32:13:18 Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071 Certificate serial: 019B7E38972D66D28F06EB5FAC1300B2C8F0 Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/0geZMvmwvZ4SsgUxE-raaM8yExg.roa Signing time: Fri 02 Jan 2026 10:19:56 +0000 ROA not before: Fri 02 Jan 2026 10:19:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20559 IP address blocks: 2a07:3502:1160::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.mft rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 19:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:97:2d:66:d2:8f:06:eb:5f:ac:13:00:b2:c8:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071 Validity Not Before: Jan 2 10:19:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d2079932f9b0bd9e12b2053113eada68cf321318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:4d:80:37:39:dd:b8:18:31:48:48:50:de:08: 54:6f:30:36:e5:d7:be:91:94:a3:a5:72:2f:ae:20: 9e:fe:ba:bc:67:49:6e:dd:3e:6d:99:5a:71:3f:dc: 83:ff:41:0a:a0:b1:be:cf:a4:3f:ca:07:89:9f:13: bd:02:47:27:3f:5d:33:b3:06:81:80:73:e7:bb:56: 8c:06:6f:47:d8:fc:51:0d:9f:c6:9c:fc:47:1d:bc: bc:04:a7:77:e5:72:88:95:03:c2:02:d1:9c:22:43: b3:7f:4c:dd:80:4a:b5:f4:bd:5d:14:fa:60:49:6e: 29:76:1c:71:56:bd:a1:fb:91:a7:ba:63:e5:64:bf: df:bb:7b:ab:8f:4f:ef:83:27:17:8d:c1:82:ab:f2: 63:f7:23:07:76:e9:7f:5e:27:33:d8:59:d2:17:77: 51:38:c5:2f:c5:2d:38:29:53:78:c2:35:b3:80:8b: 82:ba:8a:da:36:b1:51:43:98:fd:71:66:dc:26:b9: c2:9f:74:13:bc:42:55:a2:80:fb:9a:6e:50:b7:7a: 6c:ca:2a:e5:30:18:a5:f3:84:90:f1:1c:bd:ea:c0: f7:f0:73:40:8a:12:ce:86:d2:51:b2:9e:cd:4b:39: a9:1e:99:8e:ba:64:cc:5b:fb:ee:c1:e6:dc:39:58: 7b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:07:99:32:F9:B0:BD:9E:12:B2:05:31:13:EA:DA:68:CF:32:13:18 X509v3 Authority Key Identifier: keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/0geZMvmwvZ4SsgUxE-raaM8yExg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:3502:1160::/48 Signature Algorithm: sha256WithRSAEncryption ce:39:35:26:9a:80:88:dc:f6:21:c7:75:bc:85:f4:b8:08:ab: b0:2d:8a:15:89:94:b9:7d:22:53:24:f1:bb:a0:5b:17:89:6e: 5c:66:e0:94:f3:37:13:2b:a7:74:3d:ec:b8:31:6c:bc:de:4b: c0:db:8e:1c:f0:9e:de:b5:c9:4e:01:21:33:e5:cc:9b:1f:9f: f6:fa:63:ad:f4:8c:38:67:3e:8c:09:b8:08:9a:0d:52:9f:67: ef:5a:0b:2f:c6:a4:55:90:a8:39:e1:83:85:21:2f:07:c7:bb: 70:41:1a:4a:88:4c:56:ad:f8:ca:fd:17:a4:ce:28:ff:57:86: 18:ee:eb:06:e1:eb:03:f5:d2:51:88:af:69:22:47:75:4e:9d: b2:da:11:f4:09:9c:f8:a4:47:45:5a:74:4e:fd:7b:f7:50:f0: e0:8c:e2:35:c8:2a:07:cf:99:16:de:28:cf:3d:a7:43:77:73: 75:ab:5a:19:7c:ad:b6:c0:9f:fd:63:88:30:69:ea:6f:62:4f: a3:b6:8b:15:c6:b9:76:f3:d6:67:9e:20:fc:ba:0f:80:b0:60: 2b:e7:30:6d:98:38:7a:cd:cf:3b:33:f2:98:cc:9c:64:2b:1b: 4b:0a:5a:10:50:d8:77:3a:b9:39:63:2f:bc:e0:a0:55:aa:c4: e8:bc:57:45 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OJctZtKPButfrBMAssjwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwNWQyOGQxNjYyNmJjNWRjYWJmMmU5MTU0MzU3ODJiOTZl MTQwNzEwHhcNMjYwMTAyMTAxOTU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjA3OTkzMmY5YjBiZDllMTJiMjA1MzExM2VhZGE2OGNmMzIxMzE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA802ANznduBgxSEhQ3ghUbzA25de+ kZSjpXIvriCe/rq8Z0lu3T5tmVpxP9yD/0EKoLG+z6Q/ygeJnxO9AkcnP10zswaB gHPnu1aMBm9H2PxRDZ/GnPxHHby8BKd35XKIlQPCAtGcIkOzf0zdgEq19L1dFPpg SW4pdhxxVr2h+5GnumPlZL/fu3urj0/vgycXjcGCq/Jj9yMHdul/Xicz2FnSF3dR OMUvxS04KVN4wjWzgIuCuoraNrFRQ5j9cWbcJrnCn3QTvEJVooD7mm5Qt3psyirl MBil84SQ8Ry96sD38HNAihLOhtJRsp7NSzmpHpmOumTMW/vuwebcOVh7swIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNIHmTL5sL2eErIFMRPq2mjPMhMYMB8GA1UdIwQY MBaAFLBdKNFmJrxdyr8ukVQ1eCuW4UBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEt YWQ1NzU1MjJiMzY1LzEvMGdlWk12bXd2WjRTc2dVeEUtcmFhTTh5RXhnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEtYWQ1NzU1MjJiMzY1 LzEvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgc1AhFg MA0GCSqGSIb3DQEBCwUAA4IBAQDOOTUmmoCI3PYhx3W8hfS4CKuwLYoViZS5fSJT JPG7oFsXiW5cZuCU8zcTK6d0Pey4MWy83kvA244c8J7etclOASEz5cybH5/2+mOt 9Iw4Zz6MCbgImg1Sn2fvWgsvxqRVkKg54YOFIS8Hx7twQRpKiExWrfjK/Rekzij/ V4YY7usG4esD9dJRiK9pIkd1Tp2y2hH0CZz4pEdFWnRO/Xv3UPDgjOI1yCoHz5kW 3ijPPadDd3N1q1oZfK22wJ/9Y4gwaepvYk+jtosVxrl289ZnniD8ug+AsGAr5zBt mDh6zc87M/KYzJxkKxtLCloQUNh3Ork5Yy+84KBVqsTovFdF -----END CERTIFICATE-----Generated at Tue Jan 20 04:47:58 2026 by rpki-client