This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fb9215-d1d1-47c2-ac81-84712c9f3464/1/BA0F46EGJQuUOd55Cm90LRIzBhc.roa File: BA0F46EGJQuUOd55Cm90LRIzBhc.roa (raw, json) Hash identifier: t9yTmpbFuYaGrvuLwRkAmJ665/pQoOz5cLGXg8ZoDjo= Subject key identifier: 04:0D:05:E3:A1:06:25:0B:94:39:DE:79:0A:6F:74:2D:12:33:06:17 Certificate issuer: /CN=3a0429b5aecac8364544bf623f94f163afdce561 Certificate serial: 019B7DCACAB4EF928972033F7B8245876013 Authority key identifier: 3A:04:29:B5:AE:CA:C8:36:45:44:BF:62:3F:94:F1:63:AF:DC:E5:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgQpta7KyDZFRL9iP5TxY6_c5WE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fb9215-d1d1-47c2-ac81-84712c9f3464/1/BA0F46EGJQuUOd55Cm90LRIzBhc.roa Signing time: Fri 02 Jan 2026 08:20:00 +0000 ROA not before: Fri 02 Jan 2026 08:20:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197938 IP address blocks: 2a04:e540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/fb9215-d1d1-47c2-ac81-84712c9f3464/1/OgQpta7KyDZFRL9iP5TxY6_c5WE.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/fb9215-d1d1-47c2-ac81-84712c9f3464/1/OgQpta7KyDZFRL9iP5TxY6_c5WE.mft rsync://rpki.ripe.net/repository/DEFAULT/OgQpta7KyDZFRL9iP5TxY6_c5WE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 20:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:ca:b4:ef:92:89:72:03:3f:7b:82:45:87:60:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a0429b5aecac8364544bf623f94f163afdce561 Validity Not Before: Jan 2 08:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=040d05e3a106250b9439de790a6f742d12330617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e8:d4:22:5f:02:88:55:db:b1:74:87:11:93: 4c:01:63:a8:17:dd:64:de:f5:6a:aa:d9:41:5a:ae: 95:7f:ea:96:54:7d:ce:c0:2a:9c:b5:67:38:ad:a2: 99:51:ea:a2:85:52:34:89:84:14:24:b7:4e:18:4d: ef:43:a4:7f:78:24:6c:87:be:c4:ad:02:c3:f8:97: b0:f3:c5:cb:bb:27:fa:4a:ac:b0:9f:9c:1c:c7:25: 2f:64:10:b6:1d:ac:2a:b7:23:f6:b3:a2:aa:63:ea: b6:f2:69:f7:0e:47:ba:a2:c1:b6:57:a1:76:3d:74: 8e:eb:f2:14:1f:22:1e:8f:f3:f0:23:f2:24:eb:c8: 16:bc:f9:ec:48:ab:3a:bd:dd:ee:83:71:f5:ed:17: 11:21:fd:1e:c5:3b:30:1d:c8:4e:fc:8e:c5:66:83: 53:80:77:be:49:36:1e:3c:c1:ab:b8:ba:17:11:a9: f5:80:ff:a8:eb:3c:fe:10:d4:05:34:05:d4:26:a3: f1:5e:33:d0:7c:fe:24:12:ba:2c:ac:35:05:12:a0: 12:37:34:db:63:bd:25:2d:6e:40:db:84:ea:d8:70: 58:4c:37:73:96:d1:52:fe:d0:c1:e9:ea:48:b1:32: d0:a1:6e:91:20:75:04:37:1d:08:e3:25:60:d0:c5: 33:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:0D:05:E3:A1:06:25:0B:94:39:DE:79:0A:6F:74:2D:12:33:06:17 X509v3 Authority Key Identifier: keyid:3A:04:29:B5:AE:CA:C8:36:45:44:BF:62:3F:94:F1:63:AF:DC:E5:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgQpta7KyDZFRL9iP5TxY6_c5WE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fb9215-d1d1-47c2-ac81-84712c9f3464/1/BA0F46EGJQuUOd55Cm90LRIzBhc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fb9215-d1d1-47c2-ac81-84712c9f3464/1/OgQpta7KyDZFRL9iP5TxY6_c5WE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a04:e540::/32 Signature Algorithm: sha256WithRSAEncryption 10:ed:82:6c:76:8d:1f:60:52:f3:cd:57:8a:bc:6d:1c:5d:81: 50:ba:0b:e9:e4:2a:38:24:de:a9:30:43:67:84:91:00:b0:2a: f3:cf:13:5a:c2:b5:b8:4a:26:58:3e:45:ae:a1:f4:7d:71:3d: 78:f2:4c:6c:b3:fa:8e:e3:bb:25:cd:df:da:79:cb:e8:af:86: 45:ba:6f:9b:19:e8:7b:33:f9:46:73:b5:f7:94:99:71:dc:3d: 05:5a:3a:8c:e6:bc:0e:fb:96:5d:31:a8:9e:ba:ac:80:40:db: dd:3a:ad:2d:20:fa:89:44:4b:0f:c7:cb:7e:89:84:43:11:8d: 77:5b:b7:6c:f7:6c:1c:e6:b8:9d:ef:e1:6b:64:37:09:85:11: d3:6d:92:2d:35:37:5d:19:b1:39:93:c4:7e:ee:4c:45:47:01: 04:43:a5:c3:4d:a9:4f:21:87:80:9f:79:d7:82:44:a8:05:ed: 4a:82:c1:df:50:d3:35:70:30:13:74:fc:b5:2b:b3:d6:15:f4: 3e:27:c2:5f:63:6d:93:37:70:fb:56:5a:8c:3e:17:16:ed:06: 3e:1d:c2:66:7c:22:c3:bf:03:c7:d1:81:f0:03:61:f6:2c:5b: c5:66:05:93:4d:f3:5e:4e:d5:fa:bd:1c:93:8d:4a:c4:22:ea: e2:ad:7f:52 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt9ysq075KJcgM/e4JFh2ATMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhMDQyOWI1YWVjYWM4MzY0NTQ0YmY2MjNmOTRmMTYzYWZk Y2U1NjEwHhcNMjYwMTAyMDgyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNDBkMDVlM2ExMDYyNTBiOTQzOWRlNzkwYTZmNzQyZDEyMzMwNjE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzujUIl8CiFXbsXSHEZNMAWOoF91k 3vVqqtlBWq6Vf+qWVH3OwCqctWc4raKZUeqihVI0iYQUJLdOGE3vQ6R/eCRsh77E rQLD+Jew88XLuyf6Sqywn5wcxyUvZBC2HawqtyP2s6KqY+q28mn3Dke6osG2V6F2 PXSO6/IUHyIej/PwI/Ik68gWvPnsSKs6vd3ug3H17RcRIf0exTswHchO/I7FZoNT gHe+STYePMGruLoXEan1gP+o6zz+ENQFNAXUJqPxXjPQfP4kErosrDUFEqASNzTb Y70lLW5A24Tq2HBYTDdzltFS/tDB6epIsTLQoW6RIHUENx0I4yVg0MUzQQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFAQNBeOhBiULlDneeQpvdC0SMwYXMB8GA1UdIwQY MBaAFDoEKbWuysg2RUS/Yj+U8WOv3OVhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2dRcHRhN0t5RFpGUkw5aVA1VHhZNl9jNVdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9mYjkyMTUtZDFkMS00N2MyLWFjODEt ODQ3MTJjOWYzNDY0LzEvQkEwRjQ2RUdKUXVVT2Q1NUNtOTBMUkl6QmhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC9mYjkyMTUtZDFkMS00N2MyLWFjODEtODQ3MTJjOWYzNDY0 LzEvT2dRcHRhN0t5RFpGUkw5aVA1VHhZNl9jNVdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgTlQDAN BgkqhkiG9w0BAQsFAAOCAQEAEO2CbHaNH2BS881XirxtHF2BULoL6eQqOCTeqTBD Z4SRALAq888TWsK1uEomWD5FrqH0fXE9ePJMbLP6juO7Jc3f2nnL6K+GRbpvmxno ezP5RnO195SZcdw9BVo6jOa8DvuWXTGonrqsgEDb3TqtLSD6iURLD8fLfomEQxGN d1u3bPdsHOa4ne/ha2Q3CYUR022SLTU3XRmxOZPEfu5MRUcBBEOlw02pTyGHgJ95 14JEqAXtSoLB31DTNXAwE3T8tSuz1hX0PifCX2Ntkzdw+1ZajD4XFu0GPh3CZnwi w78Dx9GB8ANh9ixbxWYFk03zXk7V+r0ck41KxCLq4q1/Ug== -----END CERTIFICATE-----Generated at Sat Jan 10 06:59:45 2026 by rpki-client