This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/x2F-aA7j3hCD_v3kf_KQT1UcABA.roa File: x2F-aA7j3hCD_v3kf_KQT1UcABA.roa (raw, json) Hash identifier: cojgCaOFTZkckHxe1r8Zk9LrAv/VUW0HDYue21C7/i8= Subject key identifier: C7:61:7E:68:0E:E3:DE:10:83:FE:FD:E4:7F:F2:90:4F:55:1C:00:10 Certificate issuer: /CN=1d43a2484569d20e3f53c17be7b9fb29c34ee5be Certificate serial: 019B7EA70B72DD7DDEE2A4E82D7CD89BA358 Authority key identifier: 1D:43:A2:48:45:69:D2:0E:3F:53:C1:7B:E7:B9:FB:29:C3:4E:E5:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HUOiSEVp0g4_U8F757n7KcNO5b4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/x2F-aA7j3hCD_v3kf_KQT1UcABA.roa Signing time: Fri 02 Jan 2026 12:20:35 +0000 ROA not before: Fri 02 Jan 2026 12:20:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212112 IP address blocks: 2a01:ecc0:600::/42 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/HUOiSEVp0g4_U8F757n7KcNO5b4.crl rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/HUOiSEVp0g4_U8F757n7KcNO5b4.mft rsync://rpki.ripe.net/repository/DEFAULT/HUOiSEVp0g4_U8F757n7KcNO5b4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:0b:72:dd:7d:de:e2:a4:e8:2d:7c:d8:9b:a3:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d43a2484569d20e3f53c17be7b9fb29c34ee5be Validity Not Before: Jan 2 12:20:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c7617e680ee3de1083fefde47ff2904f551c0010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:15:a5:30:19:e4:bb:a9:3b:5a:de:29:47:ee: 2f:09:22:5a:be:56:67:84:42:2e:a2:d6:bd:7a:e4: 43:22:c1:20:a2:97:f5:b0:8e:04:ba:a9:fc:11:c6: 32:a2:51:2f:fb:b4:92:5b:ff:f9:42:1b:d1:47:a1: 75:d3:a6:cf:3f:5a:91:d9:a5:12:9d:e4:13:8b:b0: 16:7f:54:b6:4f:0b:86:51:8f:12:f9:85:99:44:46: 38:95:dd:ad:b4:0d:37:7e:24:4c:f5:08:52:64:91: 69:b6:04:80:8b:84:cf:3b:70:0a:70:98:5e:e4:97: 22:8a:ff:4f:97:f7:d7:11:c7:81:fd:25:ee:79:67: a5:92:49:6d:27:62:71:de:da:5a:42:fc:b8:69:5e: 7c:1e:d2:8f:0d:e1:f6:83:65:eb:d6:f1:99:85:08: 7d:d8:37:6d:72:a6:84:46:1b:ea:f5:f1:c2:6e:50: 43:07:f8:34:97:3a:fa:b7:8a:8e:ec:7a:5b:36:e7: c4:9c:58:ff:63:bc:92:5b:c3:38:10:ef:ad:71:42: 04:0b:55:0c:23:41:f8:91:54:6e:76:b5:70:63:26: 8a:94:2b:e3:3d:92:8a:dd:51:82:3d:68:e2:1e:d8: b6:6b:4c:26:0e:49:90:50:d7:34:80:88:64:65:0b: b0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:61:7E:68:0E:E3:DE:10:83:FE:FD:E4:7F:F2:90:4F:55:1C:00:10 X509v3 Authority Key Identifier: keyid:1D:43:A2:48:45:69:D2:0E:3F:53:C1:7B:E7:B9:FB:29:C3:4E:E5:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HUOiSEVp0g4_U8F757n7KcNO5b4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/x2F-aA7j3hCD_v3kf_KQT1UcABA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/HUOiSEVp0g4_U8F757n7KcNO5b4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:ecc0:600::/42 Signature Algorithm: sha256WithRSAEncryption 9a:57:92:c0:f3:44:9b:b2:ce:24:dd:83:4d:d3:cf:9b:d3:bb: 55:51:e1:d0:f8:99:86:ff:f5:e4:48:85:81:83:59:f9:3b:ea: 46:43:61:d7:83:5b:80:83:10:2d:f0:0a:92:04:df:92:e9:d9: 62:1a:fe:9f:44:46:8f:de:90:a2:76:07:dc:81:a6:f5:57:a8: 3f:0b:57:5e:4e:96:1f:95:7b:8c:dc:05:bf:a0:7a:3c:2c:eb: a5:21:21:a3:2a:40:89:ab:53:c8:a2:79:62:25:76:33:82:82: 69:b6:15:b3:08:d3:39:40:3a:2e:f5:9c:b4:92:41:ee:4d:19: 9d:2e:d7:93:5f:74:8d:8d:5f:82:38:89:46:ce:7d:83:4b:25: e8:bb:90:65:d4:96:00:31:ac:4f:02:21:87:97:6a:87:33:2a: 0b:5b:4d:76:da:39:3b:dc:8a:5f:db:4d:4d:9f:5a:2c:41:b1: 8c:5f:96:41:0b:c8:fe:4b:0e:34:cd:b9:5a:fb:46:fc:84:b5: 5f:3e:51:3f:ec:63:1b:bb:80:61:dc:d0:b9:2f:93:5a:94:b4: f0:42:a7:e5:e0:03:b1:f0:32:e1:86:2c:bb:29:3f:1a:96:7c: 4f:ef:1f:67:29:9f:c0:ec:19:3c:8f:0e:eb:0d:f3:47:e0:b1: 0e:cc:d8:e2 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+pwty3X3e4qToLXzYm6NYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkNDNhMjQ4NDU2OWQyMGUzZjUzYzE3YmU3YjlmYjI5YzM0 ZWU1YmUwHhcNMjYwMTAyMTIyMDM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNzYxN2U2ODBlZTNkZTEwODNmZWZkZTQ3ZmYyOTA0ZjU1MWMwMDEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtRWlMBnku6k7Wt4pR+4vCSJavlZn hEIuota9euRDIsEgopf1sI4Euqn8EcYyolEv+7SSW//5QhvRR6F106bPP1qR2aUS neQTi7AWf1S2TwuGUY8S+YWZREY4ld2ttA03fiRM9QhSZJFptgSAi4TPO3AKcJhe 5Jciiv9Pl/fXEceB/SXueWelkkltJ2Jx3tpaQvy4aV58HtKPDeH2g2Xr1vGZhQh9 2DdtcqaERhvq9fHCblBDB/g0lzr6t4qO7HpbNufEnFj/Y7ySW8M4EO+tcUIEC1UM I0H4kVRudrVwYyaKlCvjPZKK3VGCPWjiHti2a0wmDkmQUNc0gIhkZQuwzwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFMdhfmgO494Qg/795H/ykE9VHAAQMB8GA1UdIwQY MBaAFB1DokhFadIOP1PBe+e5+ynDTuW+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFVPaVNFVnAwZzRfVThGNzU3bjdLY05PNWI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS9jOTNkODctMzJlMC00NmYxLTlmYjkt NjM0NTE1NDg5NzlkLzEveDJGLWFBN2ozaENEX3Yza2ZfS1FUMVVjQUJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS9jOTNkODctMzJlMC00NmYxLTlmYjktNjM0NTE1NDg5Nzlk LzEvSFVPaVNFVnAwZzRfVThGNzU3bjdLY05PNWI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcGKgHswAYA MA0GCSqGSIb3DQEBCwUAA4IBAQCaV5LA80Sbss4k3YNN08+b07tVUeHQ+JmG//Xk SIWBg1n5O+pGQ2HXg1uAgxAt8AqSBN+S6dliGv6fREaP3pCidgfcgab1V6g/C1de TpYflXuM3AW/oHo8LOulISGjKkCJq1PIonliJXYzgoJpthWzCNM5QDou9Zy0kkHu TRmdLteTX3SNjV+COIlGzn2DSyXou5Bl1JYAMaxPAiGHl2qHMyoLW0122jk73Ipf 201Nn1osQbGMX5ZBC8j+Sw40zbla+0b8hLVfPlE/7GMbu4Bh3NC5L5NalLTwQqfl 4AOx8DLhhiy7KT8alnxP7x9nKZ/A7Bk8jw7rDfNH4LEOzNji -----END CERTIFICATE-----Generated at Sun Jan 25 19:16:14 2026 by rpki-client