This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/s2DbXwViqvH_t7XGoYjUHT_R1ZQ.roa File: s2DbXwViqvH_t7XGoYjUHT_R1ZQ.roa (raw, json) Hash identifier: OmXK2hMqfTiOv63cfpCHEUHp32DpOlQUjEVCGC0CAvA= Subject key identifier: B3:60:DB:5F:05:62:AA:F1:FF:B7:B5:C6:A1:88:D4:1D:3F:D1:D5:94 Certificate issuer: /CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Certificate serial: 019B77C6B2478BC63F7E38E1F18021DFC974 Authority key identifier: BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/s2DbXwViqvH_t7XGoYjUHT_R1ZQ.roa Signing time: Thu 01 Jan 2026 04:17:49 +0000 ROA not before: Thu 01 Jan 2026 04:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213861 IP address blocks: 2a09:a207::/32 maxlen: 32 2a09:a501::/32 maxlen: 32 2a09:a503::/32 maxlen: 32 2a0d:fcc4::/32 maxlen: 32 2a14:a401::/32 maxlen: 32 2a14:a406::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:b2:47:8b:c6:3f:7e:38:e1:f1:80:21:df:c9:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Validity Not Before: Jan 1 04:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b360db5f0562aaf1ffb7b5c6a188d41d3fd1d594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ec:6d:f2:d7:77:f6:65:72:71:2b:df:60:c6: 3c:b0:97:df:35:d3:0b:26:19:35:6b:33:8a:3b:74: a0:e0:f7:6a:d3:fb:cc:24:b4:38:c9:ae:df:ba:47: c6:1f:05:27:04:20:a1:d5:8c:c8:63:a1:8c:ca:dd: 5b:40:6b:3a:ca:b8:3e:bd:1c:e3:8c:15:49:7b:5e: 98:e0:14:bf:6f:14:75:ca:38:42:88:d3:66:60:22: 26:72:9f:8b:bd:4c:cb:7c:49:4b:29:50:37:57:82: c9:d0:10:4f:92:b9:c5:b1:a6:e3:20:3e:44:d2:dc: 9e:0f:4f:25:0c:7a:3a:bc:97:11:9f:8b:80:e3:41: b8:15:4a:7a:62:4a:4a:cf:30:5b:53:67:c0:d0:03: 87:34:02:df:0c:60:5e:86:d4:8e:30:15:69:60:aa: 34:c5:34:d1:06:4f:12:46:c3:c4:29:31:21:d6:74: 40:c4:2b:c8:db:35:8d:8b:75:ed:5e:85:ec:15:30: 9f:70:34:62:63:1d:e6:80:7f:c8:fa:e9:c1:4a:c2: 50:90:9d:03:3e:f1:16:bd:02:04:ca:96:0c:2f:5f: 95:c0:a9:80:55:8d:bd:3f:08:60:10:31:12:e8:7a: c6:83:fe:1f:b1:f5:22:7f:c3:23:ae:45:12:f2:a5: 3b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:60:DB:5F:05:62:AA:F1:FF:B7:B5:C6:A1:88:D4:1D:3F:D1:D5:94 X509v3 Authority Key Identifier: keyid:BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/s2DbXwViqvH_t7XGoYjUHT_R1ZQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:a207::/32 2a09:a501::/32 2a09:a503::/32 2a0d:fcc4::/32 2a14:a401::/32 2a14:a406::/32 Signature Algorithm: sha256WithRSAEncryption 81:05:47:7d:2a:8b:e8:56:1f:53:27:15:9d:1f:da:c1:f2:86: 2d:8a:d4:f9:d4:9d:76:a7:1f:29:3b:9a:b3:e0:a1:24:e6:9e: 2d:f6:8b:bb:ab:0b:bb:b2:39:e3:2f:74:96:30:c1:90:20:72: 16:ee:0c:e5:7a:0a:36:81:8e:70:ca:22:e5:4b:b3:90:2c:aa: 31:1c:8c:1b:2f:e3:34:6b:bc:3e:71:c9:b1:70:5d:75:ab:ae: 05:87:b5:99:83:0e:dd:4f:77:b9:6a:05:4a:5b:39:6d:ac:d5: 83:47:02:55:8f:9d:a3:bb:06:f5:a8:5e:6b:d7:69:45:12:75: 69:ac:d5:fb:da:d8:8a:54:21:23:24:85:0a:86:2d:8f:4c:8e: 24:09:0e:67:c3:24:ef:93:11:1f:c8:bf:ac:31:79:60:8c:91: 54:bf:87:f3:37:08:80:8e:e3:7a:64:48:f0:eb:59:5c:27:f5: 64:b9:d2:ff:f3:39:18:e7:5b:ce:e1:10:93:8d:b1:c0:1c:bf: 23:c0:c1:f7:bc:b6:03:9a:38:a9:15:4b:bf:eb:bb:6d:8b:6d: 30:5f:66:f8:fb:1b:e8:1f:9f:f7:ad:08:83:f4:80:ff:06:48: 6a:8c:f6:66:05:5d:4d:51:6e:e0:55:28:73:b4:13:c2:84:48: 08:0a:a3:f4 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt3xrJHi8Y/fjjh8YAh38l0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYTBmMjU4ZWVmNGIyYmY0YmJhYTg0MzBjMWU1OGNhOGMx ODhlYTcwHhcNMjYwMTAxMDQxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMzYwZGI1ZjA1NjJhYWYxZmZiN2I1YzZhMTg4ZDQxZDNmZDFkNTk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+xt8td39mVycSvfYMY8sJffNdML Jhk1azOKO3Sg4Pdq0/vMJLQ4ya7fukfGHwUnBCCh1YzIY6GMyt1bQGs6yrg+vRzj jBVJe16Y4BS/bxR1yjhCiNNmYCImcp+LvUzLfElLKVA3V4LJ0BBPkrnFsabjID5E 0tyeD08lDHo6vJcRn4uA40G4FUp6YkpKzzBbU2fA0AOHNALfDGBehtSOMBVpYKo0 xTTRBk8SRsPEKTEh1nRAxCvI2zWNi3XtXoXsFTCfcDRiYx3mgH/I+unBSsJQkJ0D PvEWvQIEypYML1+VwKmAVY29PwhgEDES6HrGg/4fsfUif8MjrkUS8qU7SwIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFLNg218FYqrx/7e1xqGI1B0/0dWUMB8GA1UdIwQY MBaAFLqg8lju9LK/S7qoQwweWMqMGI6nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEt ZTU3NjhkNmIxODJjLzEvczJEYlh3VmlxdkhfdDdYR29ZalVIVF9SMVpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEtZTU3NjhkNmIxODJj LzEvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAAjAqAwUAKgmiBwMF ACoJpQEDBQAqCaUDAwUAKg38xAMFACoUpAEDBQAqFKQGMA0GCSqGSIb3DQEBCwUA A4IBAQCBBUd9KovoVh9TJxWdH9rB8oYtitT51J12px8pO5qz4KEk5p4t9ou7qwu7 sjnjL3SWMMGQIHIW7gzlego2gY5wyiLlS7OQLKoxHIwbL+M0a7w+ccmxcF11q64F h7WZgw7dT3e5agVKWzltrNWDRwJVj52juwb1qF5r12lFEnVprNX72tiKVCEjJIUK hi2PTI4kCQ5nwyTvkxEfyL+sMXlgjJFUv4fzNwiAjuN6ZEjw61lcJ/VkudL/8zkY 51vO4RCTjbHAHL8jwMH3vLYDmjipFUu/67tti20wX2b4+xvoH5/3rQiD9ID/Bkhq jPZmBV1NUW7gVShztBPChEgICqP0 -----END CERTIFICATE-----Generated at Sun Jan 25 11:41:32 2026 by rpki-client