This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2iDN05uSq0ol30Boqq292O8hl4w.roa File: 2iDN05uSq0ol30Boqq292O8hl4w.roa (raw, json) Hash identifier: /yvDilMky3xNO6oMx1wmAxjj1Dh8TVWdR92wXw9xSFU= Subject key identifier: DA:20:CD:D3:9B:92:AB:4A:25:DF:40:68:AA:AD:BD:D8:EF:21:97:8C Certificate issuer: /CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc Certificate serial: 019B7BA37BF8DDCFEF1200EAB8FD7F990DC8 Authority key identifier: DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2iDN05uSq0ol30Boqq292O8hl4w.roa Signing time: Thu 01 Jan 2026 22:17:50 +0000 ROA not before: Thu 01 Jan 2026 22:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20473 IP address blocks: 2a12:fc0:10::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 16:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:7b:f8:dd:cf:ef:12:00:ea:b8:fd:7f:99:0d:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc Validity Not Before: Jan 1 22:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=da20cdd39b92ab4a25df4068aaadbdd8ef21978c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:19:49:c6:b0:84:7e:6c:5c:a3:6f:fd:17:7b: 9a:25:e2:46:15:4a:77:57:bf:b9:e8:e1:f0:c5:a8: c5:fb:de:19:ed:8b:ea:e0:8f:1b:23:31:1a:8c:01: f5:72:2b:13:2f:be:2e:db:fc:9e:d9:c0:8a:d4:8b: 3c:c3:1a:69:41:7c:a5:c6:ca:58:e0:3d:3b:12:ca: 61:32:c2:70:a0:a4:80:aa:7e:84:d0:bd:00:f8:05: af:f2:b8:32:4d:96:d5:c6:57:98:ed:18:ab:af:da: 12:96:93:16:a7:cf:5e:df:0e:76:1b:a6:ec:45:0a: 10:d5:ca:a4:b8:4d:04:39:7b:3c:0d:68:57:98:52: 75:95:cd:26:47:58:0b:3d:f7:1e:f2:28:a4:af:6a: d8:eb:12:fe:7d:18:8e:a5:8e:6b:99:ff:66:94:4c: 5c:eb:64:65:86:7f:df:05:84:17:33:39:69:fd:af: 4b:b6:5f:03:7a:9f:89:e0:38:c8:5b:8e:7d:24:88: 2f:1c:6f:af:ae:e5:59:3c:56:f3:87:50:a3:dd:49: 70:4c:47:04:70:9c:4e:ee:f9:90:4e:9b:8e:66:a1: 9b:8f:c9:52:54:27:95:20:dd:a4:fb:f1:2a:f6:e0: 50:30:a3:ac:f9:4d:ab:98:de:82:20:b7:a8:48:5f: b4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:20:CD:D3:9B:92:AB:4A:25:DF:40:68:AA:AD:BD:D8:EF:21:97:8C X509v3 Authority Key Identifier: keyid:DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2iDN05uSq0ol30Boqq292O8hl4w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:fc0:10::/44 Signature Algorithm: sha256WithRSAEncryption a5:16:4f:e9:71:2a:4a:26:b0:dc:5e:af:11:32:8c:f3:c0:fe: 41:ec:49:e8:59:62:8d:ad:00:d3:37:2a:27:4c:24:cb:e7:21: ad:4f:7f:66:e6:da:21:4b:30:96:3b:e3:cb:49:37:a5:e3:9b: e3:12:83:51:78:d2:f5:51:ca:37:b1:fe:29:0a:32:ac:a7:2f: 15:76:d9:79:53:f2:6f:d5:fe:d8:de:e4:4c:4b:63:fe:3b:d0: 1e:f7:9c:b4:b7:d0:43:6c:84:cb:c8:0a:5f:93:1f:b5:59:9f: 3c:da:1a:22:db:a1:ae:72:1f:a8:bc:5f:c3:7c:26:3f:ed:5e: 1b:6f:58:bc:78:6a:fa:66:f7:bf:96:8f:e8:bf:ea:e6:82:f2: 68:bc:6e:80:a1:0d:a8:18:53:66:ea:58:d9:ab:3b:12:ff:ff: 7e:1b:6d:2e:b1:f5:0d:d9:78:a8:5e:fe:e9:be:63:eb:74:ad: 95:e1:9d:79:1a:6a:de:2b:de:a9:20:84:3f:de:5c:61:1a:2d: 55:36:3b:0d:84:28:fe:2c:a0:c3:ce:69:77:aa:f6:2f:8e:79: 65:32:d9:24:8a:46:88:69:6b:a3:60:4a:a9:f6:98:b6:da:fb: 93:4e:65:2e:a1:fa:67:b8:e1:3b:01:b5:98:ce:3d:12:86:02: 98:f7:e7:1d -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7o3v43c/vEgDquP1/mQ3IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYzMyNjMyYWE5MTU0MjUzYzZkY2QyMzMxZTlhZDY5MjBi NmJkY2MwHhcNMjYwMTAxMjIxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYTIwY2RkMzliOTJhYjRhMjVkZjQwNjhhYWFkYmRkOGVmMjE5NzhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuRlJxrCEfmxco2/9F3uaJeJGFUp3 V7+56OHwxajF+94Z7Yvq4I8bIzEajAH1cisTL74u2/ye2cCK1Is8wxppQXylxspY 4D07EsphMsJwoKSAqn6E0L0A+AWv8rgyTZbVxleY7Rirr9oSlpMWp89e3w52G6bs RQoQ1cqkuE0EOXs8DWhXmFJ1lc0mR1gLPfce8iikr2rY6xL+fRiOpY5rmf9mlExc 62Rlhn/fBYQXMzlp/a9Ltl8Dep+J4DjIW459JIgvHG+vruVZPFbzh1Cj3UlwTEcE cJxO7vmQTpuOZqGbj8lSVCeVIN2k+/Eq9uBQMKOs+U2rmN6CILeoSF+0BwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNogzdObkqtKJd9AaKqtvdjvIZeMMB8GA1UdIwQY MBaAFNrDJjKqkVQlPG3NIzHprWkgtr3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi80OTQyNGEtYWE1Zi00YjlmLWE2Mjct MjQ2NTRlOTQxYzEyLzEvMmlETjA1dVNxMG9sMzBCb3FxMjkyTzhobDR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi80OTQyNGEtYWE1Zi00YjlmLWE2MjctMjQ2NTRlOTQxYzEy LzEvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhIPwAAQ MA0GCSqGSIb3DQEBCwUAA4IBAQClFk/pcSpKJrDcXq8RMozzwP5B7EnoWWKNrQDT NyonTCTL5yGtT39m5tohSzCWO+PLSTel45vjEoNReNL1Uco3sf4pCjKspy8Vdtl5 U/Jv1f7Y3uRMS2P+O9Ae95y0t9BDbITLyApfkx+1WZ882hoi26Guch+ovF/DfCY/ 7V4bb1i8eGr6Zve/lo/ov+rmgvJovG6AoQ2oGFNm6ljZqzsS//9+G20usfUN2Xio Xv7pvmPrdK2V4Z15GmreK96pIIQ/3lxhGi1VNjsNhCj+LKDDzml3qvYvjnllMtkk ikaIaWujYEqp9pi22vuTTmUuofpnuOE7AbWYzj0ShgKY9+cd -----END CERTIFICATE-----Generated at Sat Jan 3 01:33:26 2026 by rpki-client