This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/rimbVwyo-KT5fQiH-V76SF8eEgM.roa File: rimbVwyo-KT5fQiH-V76SF8eEgM.roa (raw, json) Hash identifier: gWMp6ftXBLmd7FBwaSyLz8QgWLAsVeMGYPnZBH6twvM= Subject key identifier: AE:29:9B:57:0C:A8:F8:A4:F9:7D:08:87:F9:5E:FA:48:5F:1E:12:03 Certificate issuer: /CN=a15237c39a325aa309b69e66fe09237da1ad0d2b Certificate serial: 019B7EA6B7695625F461821A30124E3305E4 Authority key identifier: A1:52:37:C3:9A:32:5A:A3:09:B6:9E:66:FE:09:23:7D:A1:AD:0D:2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/rimbVwyo-KT5fQiH-V76SF8eEgM.roa Signing time: Fri 02 Jan 2026 12:20:13 +0000 ROA not before: Fri 02 Jan 2026 12:20:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215002 IP address blocks: 2a13:75c1:201::/48 maxlen: 48 2a13:75c1:400::/40 maxlen: 48 2a13:75c1:4b0::/44 maxlen: 48 2a13:75c1:4b3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/oVI3w5oyWqMJtp5m_gkjfaGtDSs.crl rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/oVI3w5oyWqMJtp5m_gkjfaGtDSs.mft rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:b7:69:56:25:f4:61:82:1a:30:12:4e:33:05:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15237c39a325aa309b69e66fe09237da1ad0d2b Validity Not Before: Jan 2 12:20:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae299b570ca8f8a4f97d0887f95efa485f1e1203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7e:72:8a:bb:7b:aa:1d:51:ec:96:cf:5b:6d: 7e:70:8a:a0:fc:a7:53:39:78:d4:a9:f3:8d:22:38: b4:1f:12:5b:3b:a2:7e:82:65:67:f7:27:f9:3b:82: 4c:8e:e7:27:e1:58:6d:ed:69:6f:63:e6:0b:31:5e: b1:3e:cf:8b:ae:62:c3:78:f9:c1:7e:8a:c0:68:f4: 19:47:9d:e4:39:75:42:0a:fa:00:38:47:83:d1:05: 95:c1:34:cf:99:ac:43:99:38:70:2e:14:f9:a7:dd: 98:bd:5a:4d:ef:cc:62:e0:57:b5:96:5c:20:cc:58: 2e:c7:73:11:92:1f:53:50:40:1f:34:04:73:6f:c0: 7c:75:7e:f4:34:83:49:e3:48:65:75:25:48:f3:c0: 57:4b:ff:dd:2e:f9:2f:65:77:0e:a0:a4:4d:37:7c: 35:07:86:14:e0:dd:2b:5e:fc:1e:72:0e:6f:9e:87: 93:fd:7a:6e:38:d0:68:ea:de:54:2a:24:05:eb:bf: 16:b4:ee:6e:cf:29:43:9b:0b:98:32:a0:7a:12:bd: 44:91:72:25:fb:65:22:87:c3:13:95:20:81:89:04: dd:88:80:18:32:46:b1:50:d3:80:7a:7e:7b:c0:8f: d0:05:cb:22:69:19:f2:5c:c3:7e:4b:50:89:3a:38: 56:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:29:9B:57:0C:A8:F8:A4:F9:7D:08:87:F9:5E:FA:48:5F:1E:12:03 X509v3 Authority Key Identifier: keyid:A1:52:37:C3:9A:32:5A:A3:09:B6:9E:66:FE:09:23:7D:A1:AD:0D:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/rimbVwyo-KT5fQiH-V76SF8eEgM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/oVI3w5oyWqMJtp5m_gkjfaGtDSs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:75c1:201::/48 2a13:75c1:400::/40 Signature Algorithm: sha256WithRSAEncryption c4:0e:c0:29:d6:23:44:d6:4b:7e:8d:22:a1:3c:68:14:34:c2: ad:0f:28:e5:21:b8:38:0d:96:f1:57:79:e3:13:b7:e1:b3:b5: 2a:1f:af:cd:8c:3c:0d:c9:c6:a1:49:34:66:11:49:76:37:75: 36:7b:f1:77:04:56:92:6b:d6:44:d3:89:19:af:c8:73:e3:20: 49:53:ee:7b:96:ae:ea:d3:a1:c6:72:c5:01:e0:b6:6a:b6:9c: 95:7d:b8:43:0c:08:00:53:79:bb:b8:01:50:e9:43:c3:46:22: 38:98:13:ec:c8:4a:72:35:20:35:c4:c3:e1:a1:22:3d:46:f8: 30:8b:6f:02:e6:17:6d:13:fd:82:70:1d:60:d3:be:de:36:1f: bc:7c:fd:e2:d9:b8:fd:ff:24:4e:ea:62:ce:d1:96:05:76:b0: 77:aa:1a:fe:1d:64:99:b8:71:9e:05:e0:e8:03:bb:a2:9e:37: 24:64:12:4f:12:e7:1d:50:8e:21:68:2b:e5:77:60:84:ab:2e: ee:6c:9b:90:58:32:3b:06:b6:36:19:b8:bc:d0:a2:c7:3d:f6: 3b:ca:bf:26:18:f4:75:64:05:46:d4:1c:f6:bc:bc:80:6b:54: 11:fa:82:6f:36:d4:8b:6c:ea:fa:f2:52:59:ed:b1:c0:f3:03: 54:46:16:00 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgISAZt+prdpViX0YYIaMBJOMwXkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExNTIzN2MzOWEzMjVhYTMwOWI2OWU2NmZlMDkyMzdkYTFh ZDBkMmIwHhcNMjYwMTAyMTIyMDEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTI5OWI1NzBjYThmOGE0Zjk3ZDA4ODdmOTVlZmE0ODVmMWUxMjAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsX5yirt7qh1R7JbPW21+cIqg/KdT OXjUqfONIji0HxJbO6J+gmVn9yf5O4JMjucn4Vht7WlvY+YLMV6xPs+LrmLDePnB forAaPQZR53kOXVCCvoAOEeD0QWVwTTPmaxDmThwLhT5p92YvVpN78xi4Fe1llwg zFgux3MRkh9TUEAfNARzb8B8dX70NINJ40hldSVI88BXS//dLvkvZXcOoKRNN3w1 B4YU4N0rXvwecg5vnoeT/XpuONBo6t5UKiQF678WtO5uzylDmwuYMqB6Er1EkXIl +2Uih8MTlSCBiQTdiIAYMkaxUNOAen57wI/QBcsiaRnyXMN+S1CJOjhWAwIDAQAB o4ICFDCCAhAwHQYDVR0OBBYEFK4pm1cMqPik+X0Ih/le+khfHhIDMB8GA1UdIwQY MBaAFKFSN8OaMlqjCbaeZv4JI32hrQ0rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1ZJM3c1b3lXcU1KdHA1bV9na2pmYUd0RFNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9mMzMyMjktY2EyZC00MTA4LTg5MmQt NGM5MTBhZTM3MzVkLzEvcmltYlZ3eW8tS1Q1ZlFpSC1WNzZTRjhlRWdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS9mMzMyMjktY2EyZC00MTA4LTg5MmQtNGM5MTBhZTM3MzVk LzEvb1ZJM3c1b3lXcU1KdHA1bV9na2pmYUd0RFNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwcAKhN1wQIB AwYAKhN1wQQwDQYJKoZIhvcNAQELBQADggEBAMQOwCnWI0TWS36NIqE8aBQ0wq0P KOUhuDgNlvFXeeMTt+GztSofr82MPA3JxqFJNGYRSXY3dTZ78XcEVpJr1kTTiRmv yHPjIElT7nuWrurTocZyxQHgtmq2nJV9uEMMCABTebu4AVDpQ8NGIjiYE+zISnI1 IDXEw+GhIj1G+DCLbwLmF20T/YJwHWDTvt42H7x8/eLZuP3/JE7qYs7RlgV2sHeq Gv4dZJm4cZ4F4OgDu6KeNyRkEk8S5x1QjiFoK+V3YISrLu5sm5BYMjsGtjYZuLzQ osc99jvKvyYY9HVkBUbUHPa8vIBrVBH6gm821Its6vryUlntscDzA1RGFgA= -----END CERTIFICATE-----Generated at Mon Jan 26 02:22:56 2026 by rpki-client