This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/IMoGaiROnW6LTILmyh94FF46a9s.roa File: IMoGaiROnW6LTILmyh94FF46a9s.roa (raw, json) Hash identifier: YGEQqYNkK01s4h4tP2/taaUxOF3aULWqQu6lncXBybs= Subject key identifier: 20:CA:06:6A:24:4E:9D:6E:8B:4C:82:E6:CA:1F:78:14:5E:3A:6B:DB Certificate issuer: /CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1 Certificate serial: 019B7E39195E97D7C176FD2A07501200DFE1 Authority key identifier: 6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/IMoGaiROnW6LTILmyh94FF46a9s.roa Signing time: Fri 02 Jan 2026 10:20:29 +0000 ROA not before: Fri 02 Jan 2026 10:20:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212238 IP address blocks: 2a0b:2dc0::/29 maxlen: 29 2a12:1c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/axBPHkq67B7_gPJixi-WwlQ4yOE.crl rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/axBPHkq67B7_gPJixi-WwlQ4yOE.mft rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:19:5e:97:d7:c1:76:fd:2a:07:50:12:00:df:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1 Validity Not Before: Jan 2 10:20:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=20ca066a244e9d6e8b4c82e6ca1f78145e3a6bdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ff:5d:b4:dd:9c:3b:fa:31:b7:e9:e8:a8:8c: d3:2a:5a:a1:51:be:17:c4:11:eb:c9:1b:84:39:a8: 53:9c:4f:4d:e3:bb:ff:1c:ee:7a:ce:d4:f7:23:3d: 34:2a:2a:55:b6:64:b1:da:21:1d:3f:8d:1e:fa:a6: c5:c3:65:80:cb:fe:9f:1b:20:b6:15:4d:d9:73:ae: 9a:fd:ee:5d:96:26:8b:00:c5:c6:95:56:fa:2c:5a: 92:3e:6b:45:bc:6c:48:e6:a4:ec:e4:39:38:34:75: a3:6d:5b:5f:8b:b6:bb:50:36:a9:85:d2:b0:c7:88: 48:3a:1e:d0:ca:46:ab:9a:9a:7b:ff:02:56:3f:b0: 99:e5:18:cf:bb:ff:5c:46:e6:e5:db:e7:c6:3b:ce: 97:00:13:09:be:21:f8:3a:e7:60:5b:de:8a:b5:f4: 6e:bf:e3:a7:f4:b2:98:4c:8e:0a:cc:d1:e5:2b:95: 71:9a:7f:b0:d1:96:6f:09:21:55:98:8d:f8:90:0a: f4:ab:0b:7a:43:9a:ea:22:e4:6a:ef:99:08:b9:d3: 09:b4:05:71:14:bd:a6:00:63:24:f2:0c:5f:cb:be: 3c:c2:7a:3a:6a:99:eb:d7:2f:c9:ee:48:12:16:58: 3d:55:fd:08:ad:fa:7c:97:12:39:52:d2:6c:49:14: 55:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:CA:06:6A:24:4E:9D:6E:8B:4C:82:E6:CA:1F:78:14:5E:3A:6B:DB X509v3 Authority Key Identifier: keyid:6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/IMoGaiROnW6LTILmyh94FF46a9s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/axBPHkq67B7_gPJixi-WwlQ4yOE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:2dc0::/29 2a12:1c0::/29 Signature Algorithm: sha256WithRSAEncryption 56:41:d5:e8:31:b6:b9:e7:68:87:fc:8d:fa:6b:a4:05:17:55: 59:e3:68:c8:70:67:c6:42:74:59:5e:b4:a8:0c:fe:01:a1:86: 92:74:f9:d9:2a:41:2f:fb:05:fc:2e:92:81:7e:06:83:62:27: 6b:55:bd:1f:5d:4d:3d:4f:de:94:ab:9a:9e:63:3c:9c:d9:ec: ac:94:03:a9:34:5b:ba:e4:4e:47:d0:c4:5c:44:4b:c4:38:40: b4:84:48:72:61:80:18:17:12:f3:ad:84:41:10:91:26:fc:25: c7:87:bd:41:4b:c6:06:0b:84:02:b4:6b:df:b3:eb:9c:d2:c8: b6:76:2f:b4:59:8a:40:45:6d:c3:91:aa:7d:ec:f9:58:4a:51: c3:53:38:6a:cf:37:85:bd:b0:7a:5e:74:4b:9b:6b:5d:6e:72: 23:6e:25:ef:aa:e7:57:8c:e7:f5:92:40:f3:e7:93:eb:3a:f3: 4b:5f:12:65:de:3f:2e:4e:84:9e:24:de:b2:c5:01:1d:eb:05: af:d3:74:39:3e:ea:03:15:5b:34:89:b1:f2:8b:d9:34:36:eb: 75:63:4b:c6:ca:00:6f:ed:fb:77:12:35:d8:ee:f4:10:6c:86: 8b:e7:aa:a1:e4:5b:99:43:91:d1:84:24:16:82:be:8e:1a:dc: 4f:cc:1b:c1 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt+ORlel9fBdv0qB1ASAN/hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiMTA0ZjFlNGFiYWVjMWVmZjgwZjI2MmM2MmY5NmMyNTQz OGM4ZTEwHhcNMjYwMTAyMTAyMDI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMGNhMDY2YTI0NGU5ZDZlOGI0YzgyZTZjYTFmNzgxNDVlM2E2YmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtf9dtN2cO/oxt+noqIzTKlqhUb4X xBHryRuEOahTnE9N47v/HO56ztT3Iz00KipVtmSx2iEdP40e+qbFw2WAy/6fGyC2 FU3Zc66a/e5dliaLAMXGlVb6LFqSPmtFvGxI5qTs5Dk4NHWjbVtfi7a7UDaphdKw x4hIOh7Qykarmpp7/wJWP7CZ5RjPu/9cRubl2+fGO86XABMJviH4OudgW96KtfRu v+On9LKYTI4KzNHlK5Vxmn+w0ZZvCSFVmI34kAr0qwt6Q5rqIuRq75kIudMJtAVx FL2mAGMk8gxfy748wno6apnr1y/J7kgSFlg9Vf0Irfp8lxI5UtJsSRRVqwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFCDKBmokTp1ui0yC5sofeBReOmvbMB8GA1UdIwQY MBaAFGsQTx5Kuuwe/4DyYsYvlsJUOMjhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXhCUEhrcTY3QjdfZ1BKaXhpLVd3bFE0eU9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS82NTNjMjQtNjhlNS00YWQ4LWI3NjMt MzBjOWRlMjA1YWZjLzEvSU1vR2FpUk9uVzZMVElMbXloOTRGRjQ2YTlzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS82NTNjMjQtNjhlNS00YWQ4LWI3NjMtMzBjOWRlMjA1YWZj LzEvYXhCUEhrcTY3QjdfZ1BKaXhpLVd3bFE0eU9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUDKgstwAMF AyoSAcAwDQYJKoZIhvcNAQELBQADggEBAFZB1egxtrnnaIf8jfprpAUXVVnjaMhw Z8ZCdFletKgM/gGhhpJ0+dkqQS/7BfwukoF+BoNiJ2tVvR9dTT1P3pSrmp5jPJzZ 7KyUA6k0W7rkTkfQxFxES8Q4QLSESHJhgBgXEvOthEEQkSb8JceHvUFLxgYLhAK0 a9+z65zSyLZ2L7RZikBFbcORqn3s+VhKUcNTOGrPN4W9sHpedEuba11uciNuJe+q 51eM5/WSQPPnk+s680tfEmXePy5OhJ4k3rLFAR3rBa/TdDk+6gMVWzSJsfKL2TQ2 63VjS8bKAG/t+3cSNdju9BBshovnqqHkW5lDkdGEJBaCvo4a3E/MG8E= -----END CERTIFICATE-----Generated at Sun Jan 25 15:13:22 2026 by rpki-client