This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/Dx-Vy-swUiVNsZKUlolPXBZOZMI.roa File: Dx-Vy-swUiVNsZKUlolPXBZOZMI.roa (raw, json) Hash identifier: 5aft0BRUbiVKXn588IybsdkKIbt9YKxjDesbktvL34g= Subject key identifier: 0F:1F:95:CB:EB:30:52:25:4D:B1:92:94:96:89:4F:5C:16:4E:64:C2 Certificate issuer: /CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Certificate serial: 019B77C6B011EEF21DE7AFC68987EBA3EB44 Authority key identifier: BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/Dx-Vy-swUiVNsZKUlolPXBZOZMI.roa Signing time: Thu 01 Jan 2026 04:17:48 +0000 ROA not before: Thu 01 Jan 2026 04:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57271 IP address blocks: 2a14:a404::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:b0:11:ee:f2:1d:e7:af:c6:89:87:eb:a3:eb:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Validity Not Before: Jan 1 04:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0f1f95cbeb3052254db1929496894f5c164e64c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:99:ff:9d:97:22:f4:c7:47:f5:40:e2:b5:f2: 04:4e:85:84:a7:91:81:ca:71:ce:57:fb:29:03:89: f3:99:dc:f3:66:72:a5:45:83:63:66:2f:cb:6b:d0: 1e:05:c2:ca:fd:8c:4f:27:1d:7a:ea:ae:0e:67:aa: 92:66:76:65:29:3b:93:cb:31:7e:05:e5:c5:dc:61: 47:5d:6c:70:42:c1:de:43:c7:02:72:e6:81:72:16: 2c:38:2a:fa:e7:4b:fd:3d:df:96:e8:60:e7:f9:d4: 67:12:7d:be:4e:b5:b6:ef:05:b1:5e:90:98:c5:27: 09:03:47:be:9d:ff:9e:b5:42:e8:d8:e2:7b:63:79: a1:46:ee:1c:5b:13:87:16:e9:59:60:c9:cc:26:18: 26:9d:56:b2:8e:ec:75:6f:79:e3:6e:f6:8c:af:2a: 09:c9:d2:ff:f6:bc:36:7a:54:54:46:75:48:53:c7: e5:f5:c9:05:d6:06:0c:0b:6c:90:06:e2:55:37:f0: 5c:1a:37:1d:a1:2b:cc:b9:5a:1c:66:57:f9:ec:05: e7:e7:e6:7d:82:9b:e2:aa:ab:dc:86:03:06:41:9c: c9:56:07:97:e5:f4:b7:cf:81:73:1a:17:9f:45:88: a2:74:9d:44:c0:34:f2:64:8b:29:55:56:0a:bf:e2: db:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:1F:95:CB:EB:30:52:25:4D:B1:92:94:96:89:4F:5C:16:4E:64:C2 X509v3 Authority Key Identifier: keyid:BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/Dx-Vy-swUiVNsZKUlolPXBZOZMI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:a404::/32 Signature Algorithm: sha256WithRSAEncryption 7c:1a:d2:5e:14:58:82:47:6f:4d:ac:67:e8:1e:b4:49:51:53: 99:3e:5c:74:82:89:88:43:af:9a:e0:57:4f:cc:9d:c2:1a:7c: a5:4d:17:80:91:d0:a5:59:bb:c8:cf:e9:92:c7:0d:ca:89:84: 3b:83:a7:6d:6a:5e:3a:a7:12:ae:ad:ba:5a:55:fe:55:b8:46: 9f:80:32:8b:3e:3a:54:2e:fe:f9:2f:19:37:c8:26:0f:5d:92: 0b:2d:b4:ee:52:a9:71:99:87:de:2e:cc:8c:92:65:ff:34:d9: f6:5a:38:1b:08:7a:84:ef:84:8e:29:ce:bd:5a:fb:39:b1:e8: c1:50:0a:d9:68:c8:bb:29:a5:2a:fd:61:67:5d:cc:6a:51:29: 71:99:dd:80:92:1c:73:b7:bc:2e:01:46:0e:2e:b3:29:6a:3b: ba:0f:01:65:f8:f8:d4:82:26:b8:a2:0d:2f:89:4f:5f:ff:d7: f1:7c:46:f6:d2:23:5b:00:9b:aa:b6:c1:5e:7e:61:a4:8f:81: ac:a6:fb:a4:3d:84:08:09:6d:3a:7e:19:7e:93:47:6d:42:88: a6:b3:40:f0:2f:61:f7:7b:12:ed:2a:54:e8:67:e5:f7:5b:0a: a2:69:86:12:11:b6:b9:97:92:87:84:d5:c0:6c:51:8d:71:c4: 9e:4c:ed:db -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt3xrAR7vId56/GiYfro+tEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYTBmMjU4ZWVmNGIyYmY0YmJhYTg0MzBjMWU1OGNhOGMx ODhlYTcwHhcNMjYwMTAxMDQxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZjFmOTVjYmViMzA1MjI1NGRiMTkyOTQ5Njg5NGY1YzE2NGU2NGMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn5n/nZci9MdH9UDitfIEToWEp5GB ynHOV/spA4nzmdzzZnKlRYNjZi/La9AeBcLK/YxPJx166q4OZ6qSZnZlKTuTyzF+ BeXF3GFHXWxwQsHeQ8cCcuaBchYsOCr650v9Pd+W6GDn+dRnEn2+TrW27wWxXpCY xScJA0e+nf+etULo2OJ7Y3mhRu4cWxOHFulZYMnMJhgmnVayjux1b3njbvaMryoJ ydL/9rw2elRURnVIU8fl9ckF1gYMC2yQBuJVN/BcGjcdoSvMuVocZlf57AXn5+Z9 gpviqqvchgMGQZzJVgeX5fS3z4FzGhefRYiidJ1EwDTyZIspVVYKv+LbwQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFA8flcvrMFIlTbGSlJaJT1wWTmTCMB8GA1UdIwQY MBaAFLqg8lju9LK/S7qoQwweWMqMGI6nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEt ZTU3NjhkNmIxODJjLzEvRHgtVnktc3dVaVZOc1pLVWxvbFBYQlpPWk1JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEtZTU3NjhkNmIxODJj LzEvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhSkBDAN BgkqhkiG9w0BAQsFAAOCAQEAfBrSXhRYgkdvTaxn6B60SVFTmT5cdIKJiEOvmuBX T8ydwhp8pU0XgJHQpVm7yM/pkscNyomEO4OnbWpeOqcSrq26WlX+VbhGn4Ayiz46 VC7++S8ZN8gmD12SCy207lKpcZmH3i7MjJJl/zTZ9lo4Gwh6hO+EjinOvVr7ObHo wVAK2WjIuymlKv1hZ13MalEpcZndgJIcc7e8LgFGDi6zKWo7ug8BZfj41IImuKIN L4lPX//X8XxG9tIjWwCbqrbBXn5hpI+BrKb7pD2ECAltOn4ZfpNHbUKIprNA8C9h 93sS7SpU6Gfl91sKommGEhG2uZeSh4TVwGxRjXHEnkzt2w== -----END CERTIFICATE-----Generated at Sun Jan 25 11:44:33 2026 by rpki-client