This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/05HgK9Pbq_X6f4W_AzeE2mTlZbE.roa File: 05HgK9Pbq_X6f4W_AzeE2mTlZbE.roa (raw, json) Hash identifier: buN/Ij6KRsg7qeC26hVfrI5nLFPtHl3lI39CUoOuFqM= Subject key identifier: D3:91:E0:2B:D3:DB:AB:F5:FA:7F:85:BF:03:37:84:DA:64:E5:65:B1 Certificate issuer: /CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Certificate serial: 019A9D2B14C23DCFEFB0238A2FD492F81D2B Authority key identifier: BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/05HgK9Pbq_X6f4W_AzeE2mTlZbE.roa Signing time: Wed 19 Nov 2025 17:30:37 +0000 ROA not before: Wed 19 Nov 2025 17:30:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215290 IP address blocks: 2a11:9f40::/29 maxlen: 29 2a12:2040::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:9d:2b:14:c2:3d:cf:ef:b0:23:8a:2f:d4:92:f8:1d:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Validity Not Before: Nov 19 17:30:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=d391e02bd3dbabf5fa7f85bf033784da64e565b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:98:31:bf:07:7c:3e:35:10:6a:62:39:0f:9c: 08:05:ac:83:b9:79:68:e9:50:7d:15:e7:d9:a8:98: c2:69:0c:76:e2:a1:0a:37:96:ad:bd:94:1a:e7:01: af:06:38:c8:e7:97:cd:8e:18:65:07:bf:20:ba:37: 87:b3:fd:dd:0c:1d:db:72:34:b7:ff:72:89:34:82: 24:99:48:77:34:44:a0:e5:9c:e3:7a:b6:f7:ce:1e: 85:fa:03:f4:fb:73:34:e5:e0:6d:99:91:b0:75:5c: 0c:11:85:a6:69:c8:a3:30:ff:a7:9e:e8:c1:93:e8: ff:29:6b:c4:83:d7:33:42:79:e7:03:42:d7:f4:b7: 29:8c:7d:4b:66:51:ae:89:8d:75:e8:ae:f5:3d:93: 45:14:df:0c:2a:a2:a8:6f:e7:29:6a:9e:eb:1a:d6: e3:cf:4c:b3:36:6a:73:3c:ba:a4:bf:ec:d0:08:40: 59:3e:d1:92:4f:c2:5f:c1:00:e1:c6:9d:9e:1a:c1: b7:e4:75:76:0e:62:19:67:22:45:99:26:c7:95:91: ec:ea:9e:64:71:18:b2:47:21:b2:f2:c8:d0:d5:6f: f9:04:ad:e5:e9:e2:66:6f:f5:fa:f2:0a:cc:f7:85: 06:c4:3a:f2:2c:cc:24:a5:c0:a8:a9:45:2d:bd:31: ce:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:91:E0:2B:D3:DB:AB:F5:FA:7F:85:BF:03:37:84:DA:64:E5:65:B1 X509v3 Authority Key Identifier: keyid:BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/05HgK9Pbq_X6f4W_AzeE2mTlZbE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:9f40::/29 2a12:2040::/29 Signature Algorithm: sha256WithRSAEncryption bc:db:7b:68:64:d1:e6:25:7e:d0:a3:6c:53:75:2f:c3:f5:13: 7d:c0:6a:d8:40:5f:d2:7a:29:a9:d9:26:b2:4d:82:10:a0:2c: c9:67:e9:03:61:bc:1a:4c:a6:e6:07:4a:e0:b4:82:44:cf:fc: 61:93:35:52:5d:58:06:f8:d0:1e:bd:63:1a:e1:55:8e:02:60: 28:11:49:9d:c0:28:97:66:b2:ce:6b:ed:21:e5:f1:5a:01:d6: a9:69:63:62:75:58:a9:b6:ab:8f:9a:3c:51:81:a1:b2:6c:2f: 04:e2:c1:de:b7:54:da:3f:83:6d:e1:8f:de:a8:a1:c7:4f:98: d7:18:e6:75:c8:f1:08:c5:c5:f0:1e:d8:e9:c4:99:7d:39:63: 3d:1c:cd:b3:ba:52:0c:97:8f:77:06:bd:d0:6a:5f:d1:43:38: 29:3d:45:2c:45:73:1e:7b:de:0e:f6:81:94:8a:0b:9d:04:74: f2:7f:3f:4f:7f:20:65:0d:6b:12:80:91:37:58:09:dd:41:88: 55:eb:1c:cb:35:ee:31:47:c4:a2:fb:2b:5f:f5:dc:4e:1d:e0: 0d:2f:06:70:6c:77:fb:ca:61:e0:f6:0d:94:eb:7a:f0:b8:28: 33:be:e0:55:bf:7b:a7:d8:fd:7f:3f:b2:df:17:ba:58:05:e9: e6:e4:0e:01 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZqdKxTCPc/vsCOKL9SS+B0rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYTBmMjU4ZWVmNGIyYmY0YmJhYTg0MzBjMWU1OGNhOGMx ODhlYTcwHhcNMjUxMTE5MTczMDM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzkxZTAyYmQzZGJhYmY1ZmE3Zjg1YmYwMzM3ODRkYTY0ZTU2NWIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5gxvwd8PjUQamI5D5wIBayDuXlo 6VB9FefZqJjCaQx24qEKN5atvZQa5wGvBjjI55fNjhhlB78gujeHs/3dDB3bcjS3 /3KJNIIkmUh3NESg5Zzjerb3zh6F+gP0+3M05eBtmZGwdVwMEYWmacijMP+nnujB k+j/KWvEg9czQnnnA0LX9LcpjH1LZlGuiY116K71PZNFFN8MKqKob+cpap7rGtbj z0yzNmpzPLqkv+zQCEBZPtGST8JfwQDhxp2eGsG35HV2DmIZZyJFmSbHlZHs6p5k cRiyRyGy8sjQ1W/5BK3l6eJmb/X68grM94UGxDryLMwkpcCoqUUtvTHOqQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFNOR4CvT26v1+n+FvwM3hNpk5WWxMB8GA1UdIwQY MBaAFLqg8lju9LK/S7qoQwweWMqMGI6nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEt ZTU3NjhkNmIxODJjLzEvMDVIZ0s5UGJxX1g2ZjRXX0F6ZUUybVRsWmJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEtZTU3NjhkNmIxODJj LzEvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUDKhGfQAMF AyoSIEAwDQYJKoZIhvcNAQELBQADggEBALzbe2hk0eYlftCjbFN1L8P1E33AathA X9J6KanZJrJNghCgLMln6QNhvBpMpuYHSuC0gkTP/GGTNVJdWAb40B69YxrhVY4C YCgRSZ3AKJdmss5r7SHl8VoB1qlpY2J1WKm2q4+aPFGBobJsLwTiwd63VNo/g23h j96oocdPmNcY5nXI8QjFxfAe2OnEmX05Yz0czbO6UgyXj3cGvdBqX9FDOCk9RSxF cx573g72gZSKC50EdPJ/P09/IGUNaxKAkTdYCd1BiFXrHMs17jFHxKL7K1/13E4d 4A0vBnBsd/vKYeD2DZTrevC4KDO+4FW/e6fY/X8/st8XulgF6ebkDgE= -----END CERTIFICATE-----Generated at Sat Dec 6 12:43:48 2025 by rpki-client