This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/c3a85d-9d0b-4562-9238-46ee0cd7fcba/1/AwY5mgjpthmtObHXqwAVAnajhhs.roa File: AwY5mgjpthmtObHXqwAVAnajhhs.roa (raw, json) Hash identifier: Ynq5lonnqADLu0ss1thtGFYZaU4FINs+79TFKUmEVMc= Subject key identifier: 03:06:39:9A:08:E9:B6:19:AD:39:B1:D7:AB:00:15:02:76:A3:86:1B Certificate issuer: /CN=4eca105ce4af6c21cd429e992d06ea7d06d8a56d Certificate serial: 019B7B365A72865792D9AAB26E81B897204B Authority key identifier: 4E:CA:10:5C:E4:AF:6C:21:CD:42:9E:99:2D:06:EA:7D:06:D8:A5:6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TsoQXOSvbCHNQp6ZLQbqfQbYpW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/c3a85d-9d0b-4562-9238-46ee0cd7fcba/1/AwY5mgjpthmtObHXqwAVAnajhhs.roa Signing time: Thu 01 Jan 2026 20:18:38 +0000 ROA not before: Thu 01 Jan 2026 20:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47159 IP address blocks: 2a01:9b80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/c3a85d-9d0b-4562-9238-46ee0cd7fcba/1/TsoQXOSvbCHNQp6ZLQbqfQbYpW0.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/c3a85d-9d0b-4562-9238-46ee0cd7fcba/1/TsoQXOSvbCHNQp6ZLQbqfQbYpW0.mft rsync://rpki.ripe.net/repository/DEFAULT/TsoQXOSvbCHNQp6ZLQbqfQbYpW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:5a:72:86:57:92:d9:aa:b2:6e:81:b8:97:20:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4eca105ce4af6c21cd429e992d06ea7d06d8a56d Validity Not Before: Jan 1 20:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0306399a08e9b619ad39b1d7ab00150276a3861b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:38:c9:39:dc:84:92:23:51:d5:4a:6e:5a:fe: c3:61:41:0f:17:38:4e:a8:3b:fd:a0:9e:a5:c1:b9: ec:b1:13:4b:05:75:1a:fd:d4:56:e3:31:12:6f:ba: 57:19:b9:4b:82:3e:7b:44:2d:d1:3e:58:55:1a:67: 16:d2:11:c6:7b:07:79:05:c0:72:09:b0:05:d5:89: 47:c9:51:3c:33:b4:59:32:74:8f:5b:3f:7e:a7:62: fc:18:fb:27:f3:bf:6d:79:e9:29:4f:c6:d6:53:e5: 63:5c:fd:3a:50:08:36:5d:00:12:87:76:db:a3:ad: 44:ec:7e:09:09:df:b8:1e:17:84:cd:2d:ae:1f:0d: c0:12:bd:86:73:0d:14:d5:22:7d:ae:21:12:b9:a6: de:a1:00:b0:7f:5b:f1:1a:1e:f9:fe:c5:e6:c7:48: c8:a2:5e:e6:41:b2:da:45:3d:f3:e5:41:c3:77:8b: 53:83:9e:db:3d:09:51:5c:b7:87:77:d4:e3:db:b4: e6:93:b9:c0:0b:6b:f4:ee:99:89:96:81:82:ba:26: c9:05:85:b5:20:9a:5b:d9:7a:68:c9:86:86:c5:16: 15:7f:de:a4:63:eb:3e:33:96:0e:ca:7e:c6:1a:35: ab:f0:c8:07:44:bf:b1:df:77:e3:be:8a:07:ca:93: 32:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:06:39:9A:08:E9:B6:19:AD:39:B1:D7:AB:00:15:02:76:A3:86:1B X509v3 Authority Key Identifier: keyid:4E:CA:10:5C:E4:AF:6C:21:CD:42:9E:99:2D:06:EA:7D:06:D8:A5:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TsoQXOSvbCHNQp6ZLQbqfQbYpW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/c3a85d-9d0b-4562-9238-46ee0cd7fcba/1/AwY5mgjpthmtObHXqwAVAnajhhs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/c3a85d-9d0b-4562-9238-46ee0cd7fcba/1/TsoQXOSvbCHNQp6ZLQbqfQbYpW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:9b80::/32 Signature Algorithm: sha256WithRSAEncryption 15:65:d5:b3:1e:36:18:a7:2d:74:d7:db:f9:92:5c:ff:d0:27: 1b:31:74:53:f7:27:7a:60:7e:7c:a2:35:35:35:7b:b2:d2:e9: 3d:f3:77:2b:70:67:ae:78:ab:6f:3e:2e:c8:df:d4:14:99:ca: 60:99:6f:20:7e:27:be:2b:99:53:b7:4a:e4:29:7d:49:c6:3c: bc:24:af:89:89:52:8d:f5:d5:0b:64:82:af:b7:36:f4:83:b5: 93:1c:8d:0a:54:79:cd:a4:41:4a:d3:85:07:38:b5:ab:15:e5: 9c:00:d5:4c:05:af:04:38:bb:da:78:40:07:17:66:6b:35:91: 9f:f6:17:c1:49:0c:99:3d:be:1e:21:b1:db:59:fa:81:fe:9a: f9:ae:b5:f6:44:77:99:4e:b6:6d:2b:98:ef:79:cc:5e:f8:71: 04:ed:d0:6d:ec:26:96:d7:17:b6:46:ad:ec:18:8e:7a:70:05: 4d:73:8f:ad:9a:dc:2b:d9:fd:c5:29:08:1b:96:b7:aa:eb:40: 08:90:75:a3:7e:66:dc:a1:c4:79:6f:81:ae:dc:f5:6c:8b:4f: 1d:4c:86:38:65:f7:cf:83:20:64:84:4c:22:14:a1:12:8a:ee: 47:3b:24:26:43:80:69:f5:ec:db:b2:d2:e5:6e:19:8d:e1:48: df:e3:17:22 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt7NlpyhleS2aqyboG4lyBLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlY2ExMDVjZTRhZjZjMjFjZDQyOWU5OTJkMDZlYTdkMDZk OGE1NmQwHhcNMjYwMTAxMjAxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzA2Mzk5YTA4ZTliNjE5YWQzOWIxZDdhYjAwMTUwMjc2YTM4NjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuzjJOdyEkiNR1UpuWv7DYUEPFzhO qDv9oJ6lwbnssRNLBXUa/dRW4zESb7pXGblLgj57RC3RPlhVGmcW0hHGewd5BcBy CbAF1YlHyVE8M7RZMnSPWz9+p2L8GPsn879teekpT8bWU+VjXP06UAg2XQASh3bb o61E7H4JCd+4HheEzS2uHw3AEr2Gcw0U1SJ9riESuabeoQCwf1vxGh75/sXmx0jI ol7mQbLaRT3z5UHDd4tTg57bPQlRXLeHd9Tj27Tmk7nAC2v07pmJloGCuibJBYW1 IJpb2XpoyYaGxRYVf96kY+s+M5YOyn7GGjWr8MgHRL+x33fjvooHypMy4QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFAMGOZoI6bYZrTmx16sAFQJ2o4YbMB8GA1UdIwQY MBaAFE7KEFzkr2whzUKemS0G6n0G2KVtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHNvUVhPU3ZiQ0hOUXA2WkxRYnFmUWJZcFcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy9jM2E4NWQtOWQwYi00NTYyLTkyMzgt NDZlZTBjZDdmY2JhLzEvQXdZNW1nanB0aG10T2JIWHF3QVZBbmFqaGhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy9jM2E4NWQtOWQwYi00NTYyLTkyMzgtNDZlZTBjZDdmY2Jh LzEvVHNvUVhPU3ZiQ0hOUXA2WkxRYnFmUWJZcFcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgGbgDAN BgkqhkiG9w0BAQsFAAOCAQEAFWXVsx42GKctdNfb+ZJc/9AnGzF0U/cnemB+fKI1 NTV7stLpPfN3K3Bnrnirbz4uyN/UFJnKYJlvIH4nviuZU7dK5Cl9ScY8vCSviYlS jfXVC2SCr7c29IO1kxyNClR5zaRBStOFBzi1qxXlnADVTAWvBDi72nhABxdmazWR n/YXwUkMmT2+HiGx21n6gf6a+a619kR3mU62bSuY73nMXvhxBO3QbewmltcXtkat 7BiOenAFTXOPrZrcK9n9xSkIG5a3qutACJB1o35m3KHEeW+Brtz1bItPHUyGOGX3 z4MgZIRMIhShEoruRzskJkOAafXs27LS5W4ZjeFI3+MXIg== -----END CERTIFICATE-----Generated at Sun Jan 25 16:17:50 2026 by rpki-client