This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/0a96c9-18ea-4753-a2c5-ac9acd352842/1/i_2ZzMu3wvr5fPJXtrh3ZZ0VWPY.roa File: i_2ZzMu3wvr5fPJXtrh3ZZ0VWPY.roa (raw, json) Hash identifier: Pv2BiLhGzzZYh+rTS0GF7L9S2emxKMywXwopnvCEbWo= Subject key identifier: 8B:FD:99:CC:CB:B7:C2:FA:F9:7C:F2:57:B6:B8:77:65:9D:15:58:F6 Certificate issuer: /CN=b81bb21b5c1889030d365a549f21d5b426f9dda8 Certificate serial: 019B7B3671898DBD6AD01009E1BC2B755504 Authority key identifier: B8:1B:B2:1B:5C:18:89:03:0D:36:5A:54:9F:21:D5:B4:26:F9:DD:A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBuyG1wYiQMNNlpUnyHVtCb53ag.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/0a96c9-18ea-4753-a2c5-ac9acd352842/1/i_2ZzMu3wvr5fPJXtrh3ZZ0VWPY.roa Signing time: Thu 01 Jan 2026 20:18:44 +0000 ROA not before: Thu 01 Jan 2026 20:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29551 IP address blocks: 2001:678:4a8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/0a96c9-18ea-4753-a2c5-ac9acd352842/1/uBuyG1wYiQMNNlpUnyHVtCb53ag.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/0a96c9-18ea-4753-a2c5-ac9acd352842/1/uBuyG1wYiQMNNlpUnyHVtCb53ag.mft rsync://rpki.ripe.net/repository/DEFAULT/uBuyG1wYiQMNNlpUnyHVtCb53ag.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:71:89:8d:bd:6a:d0:10:09:e1:bc:2b:75:55:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b81bb21b5c1889030d365a549f21d5b426f9dda8 Validity Not Before: Jan 1 20:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8bfd99cccbb7c2faf97cf257b6b877659d1558f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:1d:a9:8c:91:32:02:cc:13:1a:d2:47:cf:86: 92:d9:ea:4d:95:72:59:f6:86:ac:b3:51:45:04:99: 66:21:f1:81:f8:95:03:5c:ee:3c:be:1e:f8:e9:df: c0:cd:8e:03:71:e9:55:d0:cb:5c:ab:6d:a0:44:23: 6c:fb:fc:51:98:66:5e:2b:59:a3:76:2e:11:ee:57: e9:32:e8:ba:7c:ba:fe:16:bd:df:be:fe:04:11:83: ba:82:3c:54:17:bc:96:b1:86:e9:f5:9e:5f:d9:4f: 06:f7:52:88:98:5c:47:e5:51:ba:b5:4c:07:5d:ba: fd:4d:42:c1:e1:2b:a8:47:ff:c2:5f:2a:54:28:46: 01:eb:f5:a2:c3:42:b6:78:50:84:02:18:b8:da:53: 8d:57:fe:a6:0d:80:5e:3a:0b:f3:98:7b:90:77:fe: 80:e6:9d:47:dd:e8:c4:30:04:c4:90:45:7d:0e:69: 80:fd:fc:8c:13:0d:74:6f:62:39:cf:d7:65:55:cd: f6:6b:07:67:4a:5c:7b:4f:f8:91:92:09:9c:00:cc: 53:37:3e:59:0d:70:b9:32:cf:22:72:d8:72:7e:55: f9:f3:1e:7f:d9:3f:17:d0:23:34:63:79:75:d3:2c: bd:05:c2:89:09:7b:c1:c8:81:10:b3:ec:38:1c:1b: c5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:FD:99:CC:CB:B7:C2:FA:F9:7C:F2:57:B6:B8:77:65:9D:15:58:F6 X509v3 Authority Key Identifier: keyid:B8:1B:B2:1B:5C:18:89:03:0D:36:5A:54:9F:21:D5:B4:26:F9:DD:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBuyG1wYiQMNNlpUnyHVtCb53ag.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/0a96c9-18ea-4753-a2c5-ac9acd352842/1/i_2ZzMu3wvr5fPJXtrh3ZZ0VWPY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/0a96c9-18ea-4753-a2c5-ac9acd352842/1/uBuyG1wYiQMNNlpUnyHVtCb53ag.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:4a8::/48 Signature Algorithm: sha256WithRSAEncryption bd:0b:5a:28:d3:3d:01:3f:9e:dc:45:3f:c0:25:a3:e4:8c:a7: 2a:64:08:54:50:ee:2f:3c:ea:20:59:cd:c4:bf:1f:ea:34:a6: 27:e4:13:7f:31:ad:aa:aa:d7:b2:6b:00:d9:24:f6:36:9a:e0: a2:1c:09:65:22:e8:bb:0a:38:2d:d0:25:58:aa:64:c2:72:2a: 17:45:21:16:1a:3e:18:bb:9e:8d:45:a6:eb:e9:1a:e3:b6:94: 00:b5:9d:bd:e6:16:1b:2d:94:93:72:2d:30:b3:cd:dc:43:88: 1d:2d:ad:04:fb:8c:3a:c4:93:49:15:c7:72:79:2b:fb:1c:55: ee:10:94:e7:58:38:44:d1:ae:64:3c:96:40:b6:74:08:a6:09: dc:4b:3d:04:e9:4a:64:f0:48:1b:ec:83:d4:cc:37:dd:30:62: 59:b7:99:a4:24:d7:6e:87:fc:6b:51:2d:ae:e1:93:7e:e8:87: 55:e1:a8:02:a5:36:90:27:d7:87:30:24:28:f4:88:9a:5a:44: 40:6c:96:5a:ce:1b:be:61:9f:42:96:03:6a:21:d5:19:6c:8e: 80:ac:a0:4f:78:83:56:04:67:24:7c:b5:49:be:a2:4e:42:bb: b3:50:7e:57:2f:56:85:32:2f:00:b6:56:b5:28:dd:b0:f4:f0: cc:1b:e8:e2 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt7NnGJjb1q0BAJ4bwrdVUEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4MWJiMjFiNWMxODg5MDMwZDM2NWE1NDlmMjFkNWI0MjZm OWRkYTgwHhcNMjYwMTAxMjAxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YmZkOTljY2NiYjdjMmZhZjk3Y2YyNTdiNmI4Nzc2NTlkMTU1OGY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhR2pjJEyAswTGtJHz4aS2epNlXJZ 9oass1FFBJlmIfGB+JUDXO48vh746d/AzY4DcelV0Mtcq22gRCNs+/xRmGZeK1mj di4R7lfpMui6fLr+Fr3fvv4EEYO6gjxUF7yWsYbp9Z5f2U8G91KImFxH5VG6tUwH Xbr9TULB4SuoR//CXypUKEYB6/Wiw0K2eFCEAhi42lONV/6mDYBeOgvzmHuQd/6A 5p1H3ejEMATEkEV9DmmA/fyMEw10b2I5z9dlVc32awdnSlx7T/iRkgmcAMxTNz5Z DXC5Ms8icthyflX58x5/2T8X0CM0Y3l10yy9BcKJCXvByIEQs+w4HBvF2wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFIv9mczLt8L6+XzyV7a4d2WdFVj2MB8GA1UdIwQY MBaAFLgbshtcGIkDDTZaVJ8h1bQm+d2oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUJ1eUcxd1lpUU1OTmxwVW55SFZ0Q2I1M2FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8wYTk2YzktMThlYS00NzUzLWEyYzUt YWM5YWNkMzUyODQyLzEvaV8yWnpNdTN3dnI1ZlBKWHRyaDNaWjBWV1BZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS8wYTk2YzktMThlYS00NzUzLWEyYzUtYWM5YWNkMzUyODQy LzEvdUJ1eUcxd1lpUU1OTmxwVW55SFZ0Q2I1M2FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeASo MA0GCSqGSIb3DQEBCwUAA4IBAQC9C1oo0z0BP57cRT/AJaPkjKcqZAhUUO4vPOog Wc3Evx/qNKYn5BN/Ma2qqteyawDZJPY2muCiHAllIui7Cjgt0CVYqmTCcioXRSEW Gj4Yu56NRabr6RrjtpQAtZ295hYbLZSTci0ws83cQ4gdLa0E+4w6xJNJFcdyeSv7 HFXuEJTnWDhE0a5kPJZAtnQIpgncSz0E6Upk8Egb7IPUzDfdMGJZt5mkJNduh/xr US2u4ZN+6IdV4agCpTaQJ9eHMCQo9IiaWkRAbJZazhu+YZ9ClgNqIdUZbI6ArKBP eINWBGckfLVJvqJOQruzUH5XL1aFMi8Atla1KN2w9PDMG+ji -----END CERTIFICATE-----Generated at Mon Jan 26 07:40:44 2026 by rpki-client