This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/aSoz0nTSHVKxl1w-_tXDaUBfI_U.roa File: aSoz0nTSHVKxl1w-_tXDaUBfI_U.roa (raw, json) Hash identifier: 3H/725peI0ylJlXSnX6sTF3RBFyOHCBWf0zA//LWaS4= Subject key identifier: 69:2A:33:D2:74:D2:1D:52:B1:97:5C:3E:FE:D5:C3:69:40:5F:23:F5 Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Certificate serial: 019B797F1B719051985A522AF73D67A6C153 Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/aSoz0nTSHVKxl1w-_tXDaUBfI_U.roa Signing time: Thu 01 Jan 2026 12:18:51 +0000 ROA not before: Thu 01 Jan 2026 12:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 264749 IP address blocks: 2a14:c885::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:1b:71:90:51:98:5a:52:2a:f7:3d:67:a6:c1:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Validity Not Before: Jan 1 12:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=692a33d274d21d52b1975c3efed5c369405f23f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:ec:6d:e4:5d:96:b3:2d:6b:df:78:6e:43:3b: e8:2a:12:ed:c8:37:86:96:18:69:b4:fc:0e:5e:66: 6a:e3:c4:aa:99:de:79:45:14:a5:5d:6b:c9:b9:3f: 42:d5:2a:41:56:b5:09:d0:30:fb:8b:c3:ab:ce:63: 98:be:c4:e8:48:2b:c5:c6:c0:57:a9:75:44:ad:79: 5c:2f:1e:b9:d8:a2:c9:b8:84:6f:4f:40:f1:cb:5f: a6:d6:4a:03:63:e6:23:a3:7f:f3:e7:c9:56:b3:54: 78:fd:e2:52:05:44:9d:08:d6:2d:5b:85:62:d5:90: 0b:62:f2:e1:2b:d8:24:4a:6c:8b:43:1f:6f:69:09: e0:9e:2f:d3:15:74:86:f4:25:30:aa:2a:8a:b0:7f: 04:6b:b5:ad:1f:f5:70:cd:b3:1d:78:6e:f5:c6:22: ef:57:ab:02:73:00:eb:4b:6a:ae:4b:5d:a5:79:76: b5:b2:08:e9:5b:96:0a:53:56:dc:48:ad:2a:c4:9d: 02:9d:fa:52:0b:b6:df:e3:26:4f:ca:cc:29:50:7d: 44:40:79:96:f2:b7:20:64:71:95:fe:bd:19:59:56: db:17:67:45:79:89:89:14:cc:d5:e8:5f:26:9c:8b: ed:ef:7c:ad:6e:e0:3e:21:72:87:93:e7:49:be:e1: 99:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:2A:33:D2:74:D2:1D:52:B1:97:5C:3E:FE:D5:C3:69:40:5F:23:F5 X509v3 Authority Key Identifier: keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/aSoz0nTSHVKxl1w-_tXDaUBfI_U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:c885::/33 Signature Algorithm: sha256WithRSAEncryption 7e:16:90:e1:be:33:5c:d5:c3:1d:51:f2:18:4a:57:09:ff:62: 69:42:f9:ec:c7:72:7d:d1:2a:49:a1:97:5f:70:55:ac:1f:e4: 09:2b:65:ca:22:85:39:17:41:ee:c2:0f:39:18:f9:68:c2:44: 20:9e:c6:56:9e:6d:5a:5d:ed:f0:ea:cb:3a:26:d0:bd:67:b6: dc:90:f6:a8:5a:90:bb:20:9c:a3:d0:8a:5a:f6:d7:20:5b:85: fc:eb:d2:93:39:6e:28:31:9a:0e:69:23:20:2f:c4:99:b9:1b: bc:68:fa:46:6b:90:97:2e:d2:50:f0:fc:ab:d6:d1:1a:84:ca: 44:cc:0d:47:d9:65:b6:84:5b:d2:d4:40:fd:f1:76:dd:c0:b6: 28:8f:f0:8a:00:e2:91:21:3d:a8:e3:25:51:63:47:32:50:7d: 29:80:d5:46:ed:1c:cf:7e:86:56:81:d2:41:b9:6d:aa:30:8c: b6:ce:0c:2f:56:0b:ef:4d:0e:9a:9c:c9:52:ac:16:1a:64:4f: fb:3d:07:48:4b:73:7d:93:17:b7:48:47:f3:ff:63:cf:1a:68: 21:4f:c6:ed:2e:4d:56:cd:63:d2:95:e8:ac:28:d5:59:03:b2: 9b:c5:c1:38:d5:a8:44:fd:14:2c:0a:9f:c7:e7:10:12:2d:51: 68:f3:b4:b8 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt5fxtxkFGYWlIq9z1npsFTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmE3ZGQ2M2YyZTJkODdiNWY3ODUwMDkzYzc0M2JiZmJl MTRlNDQwHhcNMjYwMTAxMTIxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTJhMzNkMjc0ZDIxZDUyYjE5NzVjM2VmZWQ1YzM2OTQwNWYyM2Y1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiuxt5F2Wsy1r33huQzvoKhLtyDeG lhhptPwOXmZq48Sqmd55RRSlXWvJuT9C1SpBVrUJ0DD7i8OrzmOYvsToSCvFxsBX qXVErXlcLx652KLJuIRvT0Dxy1+m1koDY+Yjo3/z58lWs1R4/eJSBUSdCNYtW4Vi 1ZALYvLhK9gkSmyLQx9vaQngni/TFXSG9CUwqiqKsH8Ea7WtH/VwzbMdeG71xiLv V6sCcwDrS2quS12leXa1sgjpW5YKU1bcSK0qxJ0CnfpSC7bf4yZPyswpUH1EQHmW 8rcgZHGV/r0ZWVbbF2dFeYmJFMzV6F8mnIvt73ytbuA+IXKHk+dJvuGZSwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFGkqM9J00h1SsZdcPv7Vw2lAXyP1MB8GA1UdIwQY MBaAFCn6fdY/Li2HtfeFAJPHQ7v74U5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUt NzlmN2I2ZWE3YzE0LzEvYVNvejBuVFNIVkt4bDF3LV90WERhVUJmSV9VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUtNzlmN2I2ZWE3YzE0 LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYHKhTIhQAw DQYJKoZIhvcNAQELBQADggEBAH4WkOG+M1zVwx1R8hhKVwn/YmlC+ezHcn3RKkmh l19wVawf5AkrZcoihTkXQe7CDzkY+WjCRCCexlaebVpd7fDqyzom0L1nttyQ9qha kLsgnKPQilr21yBbhfzr0pM5bigxmg5pIyAvxJm5G7xo+kZrkJcu0lDw/KvW0RqE ykTMDUfZZbaEW9LUQP3xdt3AtiiP8IoA4pEhPajjJVFjRzJQfSmA1UbtHM9+hlaB 0kG5baowjLbODC9WC+9NDpqcyVKsFhpkT/s9B0hLc32TF7dIR/P/Y88aaCFPxu0u TVbNY9KV6Kwo1VkDspvFwTjVqET9FCwKn8fnEBItUWjztLg= -----END CERTIFICATE-----Generated at Sun Jan 25 22:13:22 2026 by rpki-client