This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/i2IsJ0_IABmEW_nqATqO3eXE_yA.roa File: i2IsJ0_IABmEW_nqATqO3eXE_yA.roa (raw, json) Hash identifier: NG0njCUXWjhkgeU+Tlptt1T4nDTRU6KlU6CCdc6Agjg= Subject key identifier: 8B:62:2C:27:4F:C8:00:19:84:5B:F9:EA:01:3A:8E:DD:E5:C4:FF:20 Certificate issuer: /CN=62d18b312e353e78fa8ee5f80d36f741cdcde3aa Certificate serial: 019AB6DAF9543B5F4BEBAB86BCBC4EA2AE9D Authority key identifier: 62:D1:8B:31:2E:35:3E:78:FA:8E:E5:F8:0D:36:F7:41:CD:CD:E3:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YtGLMS41Pnj6juX4DTb3Qc3N46o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/i2IsJ0_IABmEW_nqATqO3eXE_yA.roa Signing time: Mon 24 Nov 2025 17:13:15 +0000 ROA not before: Mon 24 Nov 2025 17:13:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 64286 IP address blocks: 2a01:e100::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/YtGLMS41Pnj6juX4DTb3Qc3N46o.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/YtGLMS41Pnj6juX4DTb3Qc3N46o.mft rsync://rpki.ripe.net/repository/DEFAULT/YtGLMS41Pnj6juX4DTb3Qc3N46o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:b6:da:f9:54:3b:5f:4b:eb:ab:86:bc:bc:4e:a2:ae:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62d18b312e353e78fa8ee5f80d36f741cdcde3aa Validity Not Before: Nov 24 17:13:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=8b622c274fc80019845bf9ea013a8edde5c4ff20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:25:b4:e3:8f:a8:26:6c:ab:68:38:f7:59:4f: 7e:8d:54:6f:32:9c:0f:1c:ff:df:ae:7f:99:65:2a: f0:f4:e3:fb:1e:f9:df:0b:01:8e:58:31:ce:18:1c: 8f:5a:01:b6:bd:f6:95:99:bc:99:22:cb:fd:73:d2: d5:cf:ce:d2:7e:40:e0:2f:80:c5:51:a1:63:67:9d: f7:08:5c:b3:e4:b8:4a:45:42:fa:69:ab:6e:58:ff: b2:35:ae:3d:1c:ec:39:62:6c:51:77:4f:41:2a:5b: 33:d6:fa:c8:e4:c5:04:a0:e1:3e:4f:9a:af:03:7f: cc:44:cd:06:94:73:3a:db:73:ab:5b:a0:34:ab:8d: 13:dd:2b:af:74:2c:ac:54:6d:2d:dd:60:c9:b9:fd: 5e:cb:18:bd:67:eb:df:c6:c6:26:57:61:64:9a:48: 7c:7b:8b:0c:c3:b1:40:e5:08:2a:bf:b1:8a:35:6a: a4:96:c6:21:d8:a2:d9:35:c6:02:14:d6:c2:a0:7e: 8e:e0:30:ba:71:ae:db:70:d3:cd:8a:90:bb:bf:39: 1f:f5:75:78:3f:da:6d:7b:9d:29:a1:2d:c8:53:b8: e2:d4:58:13:95:99:4d:f5:b7:d9:c8:4b:d1:ef:b7: bc:7a:d3:30:49:44:b4:82:55:ce:8b:74:50:e3:1d: b4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:62:2C:27:4F:C8:00:19:84:5B:F9:EA:01:3A:8E:DD:E5:C4:FF:20 X509v3 Authority Key Identifier: keyid:62:D1:8B:31:2E:35:3E:78:FA:8E:E5:F8:0D:36:F7:41:CD:CD:E3:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YtGLMS41Pnj6juX4DTb3Qc3N46o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/i2IsJ0_IABmEW_nqATqO3eXE_yA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/YtGLMS41Pnj6juX4DTb3Qc3N46o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:e100::/29 Signature Algorithm: sha256WithRSAEncryption 0d:3a:72:59:c8:33:cf:03:e6:3d:ad:63:84:9f:43:21:a2:f9: 03:47:21:e2:5c:cc:c6:d5:a5:37:e2:83:6e:1d:46:e7:c3:a6: 6d:9c:d6:c2:45:dd:5d:0f:e2:42:ee:f9:9d:f9:f3:9e:53:85: d5:81:ed:97:ac:bd:9e:ad:cf:e2:c3:5a:41:cd:9e:6d:f8:81: 9d:c0:19:58:c3:3f:34:c0:f3:eb:c3:a1:ec:8e:a6:72:6d:ac: ef:a2:83:98:07:2b:7f:c6:21:9d:dd:10:00:17:ef:ea:41:21: be:cb:96:20:54:5c:45:f9:17:07:9b:b0:f3:45:66:07:11:0c: 50:c0:c0:d3:e7:cd:0f:d8:c6:19:ae:67:2b:7f:2f:6c:80:b4: bb:25:43:6d:f1:c4:3c:e0:ac:97:8c:19:ca:3e:8e:5f:62:68: c3:96:6f:6b:d1:aa:52:d8:04:00:96:b5:1f:0f:6e:7e:62:0c: a5:29:59:e4:e9:b3:8c:d0:b0:5d:53:f3:e8:aa:1c:6e:a5:2c: 31:ee:bb:77:9f:63:76:5b:83:f5:15:e2:19:0e:31:7c:a0:a4: ed:a7:e4:1f:18:b6:fe:80:00:d4:08:35:70:0c:36:82:cf:96: 72:8f:2e:a9:12:b0:c7:6d:18:83:83:bd:3a:a2:7a:07:e9:84: a6:6c:d2:c6 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZq22vlUO19L66uGvLxOoq6dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyZDE4YjMxMmUzNTNlNzhmYThlZTVmODBkMzZmNzQxY2Rj ZGUzYWEwHhcNMjUxMTI0MTcxMzE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjYyMmMyNzRmYzgwMDE5ODQ1YmY5ZWEwMTNhOGVkZGU1YzRmZjIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnyW044+oJmyraDj3WU9+jVRvMpwP HP/frn+ZZSrw9OP7HvnfCwGOWDHOGByPWgG2vfaVmbyZIsv9c9LVz87SfkDgL4DF UaFjZ533CFyz5LhKRUL6aatuWP+yNa49HOw5YmxRd09BKlsz1vrI5MUEoOE+T5qv A3/MRM0GlHM623OrW6A0q40T3SuvdCysVG0t3WDJuf1eyxi9Z+vfxsYmV2Fkmkh8 e4sMw7FA5Qgqv7GKNWqklsYh2KLZNcYCFNbCoH6O4DC6ca7bcNPNipC7vzkf9XV4 P9pte50poS3IU7ji1FgTlZlN9bfZyEvR77e8etMwSUS0glXOi3RQ4x20LwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFItiLCdPyAAZhFv56gE6jt3lxP8gMB8GA1UdIwQY MBaAFGLRizEuNT54+o7l+A0290HNzeOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXRHTE1TNDFQbmo2anVYNERUYjNRYzNONDZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8zYjkyMTUtOTgwNy00ODFlLTlhMWUt NzMyMjcyMDIzZWMyLzEvaTJJc0owX0lBQm1FV19ucUFUcU8zZVhFX3lBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS8zYjkyMTUtOTgwNy00ODFlLTlhMWUtNzMyMjcyMDIzZWMy LzEvWXRHTE1TNDFQbmo2anVYNERUYjNRYzNONDZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgHhADAN BgkqhkiG9w0BAQsFAAOCAQEADTpyWcgzzwPmPa1jhJ9DIaL5A0ch4lzMxtWlN+KD bh1G58OmbZzWwkXdXQ/iQu75nfnznlOF1YHtl6y9nq3P4sNaQc2ebfiBncAZWMM/ NMDz68Oh7I6mcm2s76KDmAcrf8Yhnd0QABfv6kEhvsuWIFRcRfkXB5uw80VmBxEM UMDA0+fND9jGGa5nK38vbIC0uyVDbfHEPOCsl4wZyj6OX2Jow5Zva9GqUtgEAJa1 Hw9ufmIMpSlZ5OmzjNCwXVPz6KocbqUsMe67d59jdluD9RXiGQ4xfKCk7afkHxi2 /oAA1Ag1cAw2gs+Wco8uqRKwx20Yg4O9OqJ6B+mEpmzSxg== -----END CERTIFICATE-----Generated at Sat Dec 6 23:19:59 2025 by rpki-client