This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/748111-0e10-4792-9b1b-da780cfb99a4/1/Nd2VWji2-npmv2b1apqFNWYSkaY.roa File: Nd2VWji2-npmv2b1apqFNWYSkaY.roa (raw, json) Hash identifier: BWQO3/ctGckcd4Dl6OgXbOo4/UEjPFHnSYCpr3sCzaU= Subject key identifier: 35:DD:95:5A:38:B6:FA:7A:66:BF:66:F5:6A:9A:85:35:66:12:91:A6 Certificate issuer: /CN=aa734ef5ae21c0e897fa186447184ec9ad4ae29d Certificate serial: 019B7B35A637488E9503AD0DDE02633966B9 Authority key identifier: AA:73:4E:F5:AE:21:C0:E8:97:FA:18:64:47:18:4E:C9:AD:4A:E2:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnNO9a4hwOiX-hhkRxhOya1K4p0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/748111-0e10-4792-9b1b-da780cfb99a4/1/Nd2VWji2-npmv2b1apqFNWYSkaY.roa Signing time: Thu 01 Jan 2026 20:17:52 +0000 ROA not before: Thu 01 Jan 2026 20:17:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208853 IP address blocks: 2a0e:6ac0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/748111-0e10-4792-9b1b-da780cfb99a4/1/qnNO9a4hwOiX-hhkRxhOya1K4p0.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/748111-0e10-4792-9b1b-da780cfb99a4/1/qnNO9a4hwOiX-hhkRxhOya1K4p0.mft rsync://rpki.ripe.net/repository/DEFAULT/qnNO9a4hwOiX-hhkRxhOya1K4p0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 02:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:a6:37:48:8e:95:03:ad:0d:de:02:63:39:66:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa734ef5ae21c0e897fa186447184ec9ad4ae29d Validity Not Before: Jan 1 20:17:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=35dd955a38b6fa7a66bf66f56a9a8535661291a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a4:58:0d:08:a8:87:dc:61:d3:40:92:c2:09: e7:15:65:9c:06:ee:72:b9:c3:7a:ed:72:55:c7:ef: 8d:57:e9:70:b9:34:45:80:37:8b:69:27:d2:ea:a7: 2b:50:68:d9:84:a4:52:9e:b6:56:0f:f4:fa:c7:db: a5:c5:91:5e:40:7d:7d:8c:63:32:03:6c:dc:b9:e0: a0:31:18:a1:f5:47:f8:85:6a:38:fb:b4:fb:f8:bb: 55:ad:9e:8a:43:75:77:6a:36:cc:63:34:61:23:e8: 98:3b:6d:e5:21:43:7e:d0:52:1f:10:31:74:fe:78: 40:5a:45:df:0a:50:d1:69:21:80:25:31:9e:02:f5: 5b:5b:bb:2f:1d:73:b4:91:5b:b3:a9:f1:ef:7a:4f: 55:b2:ca:a6:b6:7f:29:61:f5:0c:b3:d0:57:c5:63: a9:58:7e:99:11:c0:58:8b:e0:19:20:bd:fa:06:45: 28:ce:ac:45:20:4e:a7:5b:44:4d:a0:24:eb:3c:b2: 18:2f:af:50:26:0e:a0:59:e7:3d:c1:fe:0c:49:e8: b0:27:10:45:40:d9:fb:9b:c9:31:c7:29:ce:f4:54: ad:e8:52:3f:a0:c2:ed:31:5f:8c:2e:4a:21:85:e8: ef:cc:99:db:57:76:d2:f7:4a:89:aa:a2:53:c9:ea: 7a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:DD:95:5A:38:B6:FA:7A:66:BF:66:F5:6A:9A:85:35:66:12:91:A6 X509v3 Authority Key Identifier: keyid:AA:73:4E:F5:AE:21:C0:E8:97:FA:18:64:47:18:4E:C9:AD:4A:E2:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnNO9a4hwOiX-hhkRxhOya1K4p0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/748111-0e10-4792-9b1b-da780cfb99a4/1/Nd2VWji2-npmv2b1apqFNWYSkaY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/748111-0e10-4792-9b1b-da780cfb99a4/1/qnNO9a4hwOiX-hhkRxhOya1K4p0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:6ac0:1::/48 Signature Algorithm: sha256WithRSAEncryption a1:df:e4:26:d6:2c:7a:bd:8f:82:f4:b6:68:db:cd:d0:9b:eb: 72:b7:9b:3e:26:3c:1b:02:05:62:53:02:49:5d:4f:92:f1:0a: 1e:46:73:a6:44:dc:40:9a:70:bb:12:d5:92:3a:8c:8f:56:54: 1d:98:02:1a:ba:2c:b1:75:0f:be:a8:c4:f2:39:9a:79:aa:d5: 51:9d:92:32:e4:70:6f:2a:7c:8b:ae:9e:99:f6:8d:23:4d:52: 90:76:5c:27:6a:a6:1d:07:5c:96:61:41:15:c8:10:4d:4a:6f: 8f:42:d6:06:56:d9:62:85:36:27:c1:d3:2a:b0:93:92:54:c8: 85:3f:25:3b:d6:a8:83:7c:b0:ca:02:a4:8b:d7:00:4a:48:d1: 62:75:86:f8:23:cb:90:c3:03:2e:71:a1:96:b9:0c:cb:28:39: 54:23:60:bd:43:b0:c8:93:fa:de:88:cd:71:24:c6:8f:c8:1a: 5f:51:e9:81:83:b1:77:b6:44:a8:95:03:30:a5:7d:61:6b:9e: 12:30:ab:c0:77:af:71:fb:c0:eb:79:15:42:8c:49:93:87:ce: d8:b6:a4:f9:e6:98:7a:cc:a1:45:21:d5:4d:2d:94:13:2f:c3: c6:de:19:86:7f:ae:07:d0:1a:bd:00:e9:b2:18:96:2b:ab:96: d5:69:30:bf -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7NaY3SI6VA60N3gJjOWa5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNzM0ZWY1YWUyMWMwZTg5N2ZhMTg2NDQ3MTg0ZWM5YWQ0 YWUyOWQwHhcNMjYwMTAxMjAxNzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNWRkOTU1YTM4YjZmYTdhNjZiZjY2ZjU2YTlhODUzNTY2MTI5MWE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoqRYDQioh9xh00CSwgnnFWWcBu5y ucN67XJVx++NV+lwuTRFgDeLaSfS6qcrUGjZhKRSnrZWD/T6x9ulxZFeQH19jGMy A2zcueCgMRih9Uf4hWo4+7T7+LtVrZ6KQ3V3ajbMYzRhI+iYO23lIUN+0FIfEDF0 /nhAWkXfClDRaSGAJTGeAvVbW7svHXO0kVuzqfHvek9Vssqmtn8pYfUMs9BXxWOp WH6ZEcBYi+AZIL36BkUozqxFIE6nW0RNoCTrPLIYL69QJg6gWec9wf4MSeiwJxBF QNn7m8kxxynO9FSt6FI/oMLtMV+MLkohhejvzJnbV3bS90qJqqJTyep6cQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFDXdlVo4tvp6Zr9m9WqahTVmEpGmMB8GA1UdIwQY MBaAFKpzTvWuIcDol/oYZEcYTsmtSuKdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcW5OTzlhNGh3T2lYLWhoa1J4aE95YTFLNHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS83NDgxMTEtMGUxMC00NzkyLTliMWIt ZGE3ODBjZmI5OWE0LzEvTmQyVldqaTItbnBtdjJiMWFwcUZOV1lTa2FZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS83NDgxMTEtMGUxMC00NzkyLTliMWItZGE3ODBjZmI5OWE0 LzEvcW5OTzlhNGh3T2lYLWhoa1J4aE95YTFLNHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg5qwAAB MA0GCSqGSIb3DQEBCwUAA4IBAQCh3+Qm1ix6vY+C9LZo283Qm+tyt5s+JjwbAgVi UwJJXU+S8QoeRnOmRNxAmnC7EtWSOoyPVlQdmAIauiyxdQ++qMTyOZp5qtVRnZIy 5HBvKnyLrp6Z9o0jTVKQdlwnaqYdB1yWYUEVyBBNSm+PQtYGVtlihTYnwdMqsJOS VMiFPyU71qiDfLDKAqSL1wBKSNFidYb4I8uQwwMucaGWuQzLKDlUI2C9Q7DIk/re iM1xJMaPyBpfUemBg7F3tkSolQMwpX1ha54SMKvAd69x+8DreRVCjEmTh87YtqT5 5ph6zKFFIdVNLZQTL8PG3hmGf64H0Bq9AOmyGJYrq5bVaTC/ -----END CERTIFICATE-----Generated at Sun Jan 25 12:18:05 2026 by rpki-client