This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/ebfc3d-54fc-4643-be56-ea70a29c76f0/1/0lKYtxr1N69uuVTtKw9J4CN3Eb8.roa File: 0lKYtxr1N69uuVTtKw9J4CN3Eb8.roa (raw, json) Hash identifier: MtKKDqEwQK8oLNrI5q7cgTy3r/JPJS+wfQHFJIbjFJ8= Subject key identifier: D2:52:98:B7:1A:F5:37:AF:6E:B9:54:ED:2B:0F:49:E0:23:77:11:BF Certificate issuer: /CN=bd063d944bb81fc31cba11499dd006eb4ece9624 Certificate serial: 019AD02356F7C5AA20770C36F1E299FBA483 Authority key identifier: BD:06:3D:94:4B:B8:1F:C3:1C:BA:11:49:9D:D0:06:EB:4E:CE:96:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vQY9lEu4H8McuhFJndAG607OliQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/ebfc3d-54fc-4643-be56-ea70a29c76f0/1/0lKYtxr1N69uuVTtKw9J4CN3Eb8.roa Signing time: Sat 29 Nov 2025 15:02:48 +0000 ROA not before: Sat 29 Nov 2025 15:02:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 58299 IP address blocks: 2001:678:1c4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/ebfc3d-54fc-4643-be56-ea70a29c76f0/1/vQY9lEu4H8McuhFJndAG607OliQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/ebfc3d-54fc-4643-be56-ea70a29c76f0/1/vQY9lEu4H8McuhFJndAG607OliQ.mft rsync://rpki.ripe.net/repository/DEFAULT/vQY9lEu4H8McuhFJndAG607OliQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:d0:23:56:f7:c5:aa:20:77:0c:36:f1:e2:99:fb:a4:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd063d944bb81fc31cba11499dd006eb4ece9624 Validity Not Before: Nov 29 15:02:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=d25298b71af537af6eb954ed2b0f49e0237711bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3a:96:ec:cf:f3:75:a5:f5:18:e1:08:da:90: 29:16:48:87:f1:70:97:ef:16:85:26:10:e5:b4:c7: 74:37:f2:bc:1d:a9:7b:1b:78:39:90:af:6d:d1:4e: b1:35:72:26:91:2d:e8:7b:6f:9d:87:16:86:50:72: d3:c7:f7:aa:1f:bf:d0:26:f8:97:1b:5f:27:61:89: 36:0d:cd:ad:f2:0a:5c:43:76:fb:08:94:fb:6b:3b: 8b:0e:e6:88:e0:cc:e8:af:ae:b2:1b:39:55:22:b9: e4:55:05:94:a4:67:da:43:30:77:2c:82:30:e0:43: 88:b4:9b:01:73:fb:52:20:97:73:67:e0:c9:b7:34: 41:2a:19:21:c4:33:ec:81:16:46:87:d6:dd:d7:4b: 8a:15:57:fe:31:27:70:1a:51:3c:f5:22:22:34:42: b9:5b:d8:fe:0f:6d:ed:00:27:55:32:10:6b:05:42: b0:26:6e:7d:57:ef:02:cf:ba:ff:56:f9:fb:38:63: 2f:c2:30:2f:e5:91:14:72:09:03:6f:1b:30:72:9b: 84:0a:14:6d:5e:94:b2:1a:67:77:d7:54:cb:f1:e6: 49:1d:8c:d3:8b:f6:66:26:cb:44:34:94:b0:44:a4: 19:2d:78:25:a7:e6:0e:7c:0d:a1:4f:65:8f:32:4c: 50:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:52:98:B7:1A:F5:37:AF:6E:B9:54:ED:2B:0F:49:E0:23:77:11:BF X509v3 Authority Key Identifier: keyid:BD:06:3D:94:4B:B8:1F:C3:1C:BA:11:49:9D:D0:06:EB:4E:CE:96:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vQY9lEu4H8McuhFJndAG607OliQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ebfc3d-54fc-4643-be56-ea70a29c76f0/1/0lKYtxr1N69uuVTtKw9J4CN3Eb8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ebfc3d-54fc-4643-be56-ea70a29c76f0/1/vQY9lEu4H8McuhFJndAG607OliQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1c4::/48 Signature Algorithm: sha256WithRSAEncryption 90:19:7f:96:41:cf:4d:15:50:c6:bb:e8:da:5a:eb:c6:8b:8f: bc:c7:cd:75:b0:0b:59:32:55:8d:71:c3:b9:2b:31:9a:50:64: 42:c2:3e:0d:ea:27:df:64:08:34:c4:e4:4f:86:fe:8d:da:99: 9d:ca:47:65:da:b3:9b:dd:12:d6:69:f8:51:27:5e:17:c5:46: a0:db:30:cb:0a:2b:e8:28:ea:8f:13:b4:fe:6c:28:3c:a8:c7: 30:c1:90:33:3f:f4:21:bf:c8:68:06:ba:5c:88:a2:e0:5a:c4: 0d:5a:ee:05:95:f2:07:ff:31:f8:0c:ec:58:f9:b7:82:95:6d: a6:ed:8b:9a:77:7e:6e:16:27:2c:13:c4:8d:d6:77:11:4a:ba: 1f:0c:4d:fa:ef:ab:e9:3d:8d:05:ba:5b:fe:26:46:ca:2a:4b: 7d:e6:b1:bb:55:9d:92:e2:84:ab:a5:df:eb:b9:d5:2f:ea:25: 50:dc:58:db:af:c9:26:55:79:86:78:ab:ff:83:22:36:a9:04: 17:ab:00:33:ef:63:ed:cc:6f:22:7f:03:40:62:52:39:1f:27: 8c:b6:8b:96:a8:59:60:e2:83:0a:da:fa:67:91:6d:4b:5d:66: c9:a3:73:40:4d:26:e5:f6:04:85:b4:59:fa:e2:8d:58:b2:47: bf:61:d4:eb -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZrQI1b3xaogdww28eKZ+6SDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkMDYzZDk0NGJiODFmYzMxY2JhMTE0OTlkZDAwNmViNGVj ZTk2MjQwHhcNMjUxMTI5MTUwMjQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjUyOThiNzFhZjUzN2FmNmViOTU0ZWQyYjBmNDllMDIzNzcxMWJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTqW7M/zdaX1GOEI2pApFkiH8XCX 7xaFJhDltMd0N/K8Hal7G3g5kK9t0U6xNXImkS3oe2+dhxaGUHLTx/eqH7/QJviX G18nYYk2Dc2t8gpcQ3b7CJT7azuLDuaI4Mzor66yGzlVIrnkVQWUpGfaQzB3LIIw 4EOItJsBc/tSIJdzZ+DJtzRBKhkhxDPsgRZGh9bd10uKFVf+MSdwGlE89SIiNEK5 W9j+D23tACdVMhBrBUKwJm59V+8Cz7r/Vvn7OGMvwjAv5ZEUcgkDbxswcpuEChRt XpSyGmd311TL8eZJHYzTi/ZmJstENJSwRKQZLXglp+YOfA2hT2WPMkxQDQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNJSmLca9TevbrlU7SsPSeAjdxG/MB8GA1UdIwQY MBaAFL0GPZRLuB/DHLoRSZ3QButOzpYkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdlFZOWxFdTRIOE1jdWhGSm5kQUc2MDdPbGlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9lYmZjM2QtNTRmYy00NjQzLWJlNTYt ZWE3MGEyOWM3NmYwLzEvMGxLWXR4cjFONjl1dVZUdEt3OUo0Q04zRWI4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS9lYmZjM2QtNTRmYy00NjQzLWJlNTYtZWE3MGEyOWM3NmYw LzEvdlFZOWxFdTRIOE1jdWhGSm5kQUc2MDdPbGlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAHE MA0GCSqGSIb3DQEBCwUAA4IBAQCQGX+WQc9NFVDGu+jaWuvGi4+8x811sAtZMlWN ccO5KzGaUGRCwj4N6iffZAg0xORPhv6N2pmdykdl2rOb3RLWafhRJ14XxUag2zDL CivoKOqPE7T+bCg8qMcwwZAzP/Qhv8hoBrpciKLgWsQNWu4FlfIH/zH4DOxY+beC lW2m7Yuad35uFicsE8SN1ncRSrofDE3676vpPY0Fulv+JkbKKkt95rG7VZ2S4oSr pd/rudUv6iVQ3Fjbr8kmVXmGeKv/gyI2qQQXqwAz72PtzG8ifwNAYlI5HyeMtouW qFlg4oMK2vpnkW1LXWbJo3NATSbl9gSFtFn64o1Yske/YdTr -----END CERTIFICATE-----Generated at Sat Dec 6 13:12:59 2025 by rpki-client