This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/rlGWAgfAA94vdNw8Yce_2JC5ZQ0.roa File: rlGWAgfAA94vdNw8Yce_2JC5ZQ0.roa (raw, json) Hash identifier: mDS85C7fKFjtrZ9jEwtQ1X6vTpwU05nL4sqzCM649dA= Subject key identifier: AE:51:96:02:07:C0:03:DE:2F:74:DC:3C:61:C7:BF:D8:90:B9:65:0D Certificate issuer: /CN=25776c77f8ebe7094ca007ace1a9c0bfdc2b3aec Certificate serial: 019B7DC9E8D85C7DDAE170BEA5C34D1EF669 Authority key identifier: 25:77:6C:77:F8:EB:E7:09:4C:A0:07:AC:E1:A9:C0:BF:DC:2B:3A:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/rlGWAgfAA94vdNw8Yce_2JC5ZQ0.roa Signing time: Fri 02 Jan 2026 08:19:02 +0000 ROA not before: Fri 02 Jan 2026 08:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 151373 IP address blocks: 2a0b:21c1:6028::/48 maxlen: 48 2a0b:21c1:6029::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/JXdsd_jr5wlMoAes4anAv9wrOuw.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/JXdsd_jr5wlMoAes4anAv9wrOuw.mft rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 08:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:e8:d8:5c:7d:da:e1:70:be:a5:c3:4d:1e:f6:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25776c77f8ebe7094ca007ace1a9c0bfdc2b3aec Validity Not Before: Jan 2 08:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae51960207c003de2f74dc3c61c7bfd890b9650d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bc:07:be:4d:b7:a4:0a:ce:91:94:17:2f:1e: 06:d7:44:62:2f:c5:f9:70:d6:e8:07:a9:cb:ae:22: cc:ff:97:7e:2e:92:00:9a:67:3a:d9:f0:9e:a0:bb: 9a:42:47:71:50:c9:b0:f0:40:94:d3:12:0b:4a:69: 90:a0:24:72:9f:69:37:17:23:2e:f7:9d:a2:f2:bd: 1e:c8:77:fa:e8:29:2c:e8:6c:f3:09:f0:1b:c2:32: 4d:6c:08:e9:08:e5:0a:3b:b9:ca:54:9a:86:73:08: 12:ce:65:c3:ab:36:c1:65:48:20:0c:30:87:5e:b7: db:eb:65:c1:6d:89:d0:37:b2:e3:e5:bc:ea:83:c1: a3:04:a1:8a:02:0a:fb:09:bf:93:d6:cd:70:81:cc: 6f:e1:8c:e2:6c:99:3d:92:1c:94:e2:41:68:d3:08: cc:9a:00:18:e4:1e:4a:8d:a3:78:a5:27:b5:7b:79: e9:5d:6a:e6:f6:de:b4:98:a2:1a:c6:66:28:ce:cd: 89:a4:ca:70:fe:12:89:72:0a:6d:88:56:86:c2:fc: a7:5b:10:09:b9:8e:72:0c:b3:a5:a3:d5:82:05:63: a5:d7:c8:34:62:31:6f:c9:44:63:52:41:d7:e4:b3: 3d:16:12:52:68:03:59:54:27:dc:d8:e7:d1:52:1a: 2c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:51:96:02:07:C0:03:DE:2F:74:DC:3C:61:C7:BF:D8:90:B9:65:0D X509v3 Authority Key Identifier: keyid:25:77:6C:77:F8:EB:E7:09:4C:A0:07:AC:E1:A9:C0:BF:DC:2B:3A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/rlGWAgfAA94vdNw8Yce_2JC5ZQ0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/JXdsd_jr5wlMoAes4anAv9wrOuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:21c1:6028::/47 Signature Algorithm: sha256WithRSAEncryption 80:a8:80:08:05:05:8b:7e:6f:26:48:e8:3e:42:2c:a0:58:ae: 3c:03:3d:9f:a4:1f:ae:6e:d6:5f:88:29:f8:b5:da:cd:b7:cf: 39:a3:ca:ac:fa:8b:99:56:cc:5c:71:76:c9:06:19:c1:31:15: 34:75:31:aa:c3:60:76:20:6b:7b:fc:88:67:25:a8:68:94:02: 02:3c:ca:51:6f:e2:05:0a:58:a5:fa:a3:de:9a:66:42:3f:bb: 42:d3:48:8c:60:d8:66:2e:f1:90:6f:ae:f3:19:f2:15:5b:52: 5f:9d:52:40:99:0b:02:f4:a3:a7:54:0c:cd:db:12:c7:30:22: 78:28:b1:af:54:d3:38:15:9a:71:2c:26:2f:ec:e1:ea:ba:e4: 39:27:bb:04:c4:b9:d6:9f:ac:90:82:bb:c9:a0:c2:a5:0a:1d: 06:f3:62:cc:30:e1:18:19:66:19:99:62:b2:f1:da:d9:9b:7f: 80:e3:06:75:d1:3e:4b:a9:e9:64:bf:ee:49:44:f0:ca:22:b6: 42:ce:7b:02:71:d7:93:05:52:76:9b:fb:56:9e:8f:b7:f0:27: e0:7e:f6:93:ab:35:53:63:18:a9:f5:27:1e:90:69:d4:72:32: 6d:e1:39:93:4e:c1:8c:bb:4c:cb:52:f2:19:f4:88:60:8a:e4: 1f:f7:07:73 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9yejYXH3a4XC+pcNNHvZpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1Nzc2Yzc3ZjhlYmU3MDk0Y2EwMDdhY2UxYTljMGJmZGMy YjNhZWMwHhcNMjYwMTAyMDgxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTUxOTYwMjA3YzAwM2RlMmY3NGRjM2M2MWM3YmZkODkwYjk2NTBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrwHvk23pArOkZQXLx4G10RiL8X5 cNboB6nLriLM/5d+LpIAmmc62fCeoLuaQkdxUMmw8ECU0xILSmmQoCRyn2k3FyMu 952i8r0eyHf66Cks6GzzCfAbwjJNbAjpCOUKO7nKVJqGcwgSzmXDqzbBZUggDDCH Xrfb62XBbYnQN7Lj5bzqg8GjBKGKAgr7Cb+T1s1wgcxv4YzibJk9khyU4kFo0wjM mgAY5B5KjaN4pSe1e3npXWrm9t60mKIaxmYozs2JpMpw/hKJcgptiFaGwvynWxAJ uY5yDLOlo9WCBWOl18g0YjFvyURjUkHX5LM9FhJSaANZVCfc2OfRUhos/wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFK5RlgIHwAPeL3TcPGHHv9iQuWUNMB8GA1UdIwQY MBaAFCV3bHf46+cJTKAHrOGpwL/cKzrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlhkc2RfanI1d2xNb0FlczRhbkF2OXdyT3V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS81N2UwOGMtY2EzYS00MDk5LWFlNzQt ZTdkYWVjMTk0YTY5LzEvcmxHV0FnZkFBOTR2ZE53OFljZV8ySkM1WlEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS81N2UwOGMtY2EzYS00MDk5LWFlNzQtZTdkYWVjMTk0YTY5 LzEvSlhkc2RfanI1d2xNb0FlczRhbkF2OXdyT3V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBKgshwWAo MA0GCSqGSIb3DQEBCwUAA4IBAQCAqIAIBQWLfm8mSOg+QiygWK48Az2fpB+ubtZf iCn4tdrNt885o8qs+ouZVsxccXbJBhnBMRU0dTGqw2B2IGt7/IhnJaholAICPMpR b+IFClil+qPemmZCP7tC00iMYNhmLvGQb67zGfIVW1JfnVJAmQsC9KOnVAzN2xLH MCJ4KLGvVNM4FZpxLCYv7OHquuQ5J7sExLnWn6yQgrvJoMKlCh0G82LMMOEYGWYZ mWKy8drZm3+A4wZ10T5Lqelkv+5JRPDKIrZCznsCcdeTBVJ2m/tWno+38CfgfvaT qzVTYxip9ScekGnUcjJt4TmTTsGMu0zLUvIZ9IhgiuQf9wdz -----END CERTIFICATE-----Generated at Tue Jan 20 18:01:37 2026 by rpki-client