This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2qZWIp89wKOsy78Wu1DZ0Hb7jLA.roa File: 2qZWIp89wKOsy78Wu1DZ0Hb7jLA.roa (raw, json) Hash identifier: gdWH7++B31lrnyuEjo97lwaDOJ/OmarJmmPVadHgRD4= Subject key identifier: DA:A6:56:22:9F:3D:C0:A3:AC:CB:BF:16:BB:50:D9:D0:76:FB:8C:B0 Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26 Certificate serial: 019AE0061EC593751D776F761B6EA4B7902B Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2qZWIp89wKOsy78Wu1DZ0Hb7jLA.roa Signing time: Tue 02 Dec 2025 17:04:48 +0000 ROA not before: Tue 02 Dec 2025 17:04:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 205544 IP address blocks: 2a09:17c0:b19a::/48 maxlen: 48 2a0e:1a83:88::/48 maxlen: 48 2a0f:1206:77::/48 maxlen: 48 2a0f:14c0::/29 maxlen: 29 2a0f:1540::/29 maxlen: 29 2a0f:1640::/29 maxlen: 29 2a0f:1840::/29 maxlen: 29 2a0f:18c0::/29 maxlen: 29 2a0f:1940::/29 maxlen: 29 2a0f:2840::/29 maxlen: 29 2a0f:2940::/29 maxlen: 29 2a0f:2a40::/29 maxlen: 29 2a0f:2d40::/29 maxlen: 29 2a0f:2dc0::/29 maxlen: 29 2a0f:2e40::/29 maxlen: 29 2a0f:30c0::/29 maxlen: 29 2a0f:3140::/29 maxlen: 29 2a0f:3540::/29 maxlen: 29 2a0f:36c0::/29 maxlen: 29 2a0f:3740::/29 maxlen: 29 2a0f:bc02::/32 maxlen: 32 2a0f:e1c0:3::/48 maxlen: 48 2a0f:e1c7:100::/48 maxlen: 48 2a0f:e200:5::/48 maxlen: 48 2a0f:e202:97::/48 maxlen: 48 2a0f:e440::/29 maxlen: 29 2a0f:ea40:8::/48 maxlen: 48 2a0f:ea44:88::/48 maxlen: 48 2a11:3240::/29 maxlen: 29 2a11:4800::/29 maxlen: 29 2a11:8700::/29 maxlen: 29 2a11:e580::/29 maxlen: 29 2a12:3f00::/29 maxlen: 29 2a12:4b00::/29 maxlen: 29 2a12:5900::/29 maxlen: 29 2a12:cd00::/29 maxlen: 29 2a12:ecc0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e0:06:1e:c5:93:75:1d:77:6f:76:1b:6e:a4:b7:90:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26 Validity Not Before: Dec 2 17:04:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=daa656229f3dc0a3accbbf16bb50d9d076fb8cb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:80:0b:91:d0:d1:45:7b:30:87:3e:13:cf:5f: 9a:ae:3e:b0:89:60:2b:9f:fb:04:83:9e:c8:96:4d: 4a:61:e7:32:d0:09:24:c8:d7:55:eb:72:ad:71:e2: b1:3b:23:75:7b:ab:d5:9f:5d:75:71:23:28:39:13: 34:56:d9:33:56:09:f4:25:80:c3:d5:a3:c3:77:e6: 83:36:06:3a:57:df:32:47:06:4d:37:8e:ad:6d:e2: 61:46:96:c7:73:46:09:30:67:e0:a5:cc:52:b1:5a: bb:0d:36:1e:bb:de:0d:7b:0a:cd:8b:1d:3f:b5:10: 15:8e:63:9e:bb:de:8c:0c:74:41:83:fb:bf:b7:33: af:d5:78:63:bc:1e:16:b3:20:b7:a6:75:b9:15:2a: b9:29:18:d8:9e:87:2e:cf:d7:5d:dc:af:1c:0c:5b: f5:f6:3d:e0:61:f4:53:11:d5:73:98:0d:a3:c2:36: d2:8e:13:d0:59:fc:49:20:58:bd:c2:ea:73:93:05: 10:ea:be:ef:62:92:41:f6:c0:23:a5:a4:a6:3d:12: b9:41:f9:84:2c:e1:9d:f0:c4:3a:bc:37:14:b5:5a: 9e:9e:ee:7b:54:10:a7:1d:95:5a:7d:01:94:e3:39: 72:2a:42:c6:80:27:c8:cf:07:20:04:59:3e:dc:f2: c4:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:A6:56:22:9F:3D:C0:A3:AC:CB:BF:16:BB:50:D9:D0:76:FB:8C:B0 X509v3 Authority Key Identifier: keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2qZWIp89wKOsy78Wu1DZ0Hb7jLA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:17c0:b19a::/48 2a0e:1a83:88::/48 2a0f:1206:77::/48 2a0f:14c0::/29 2a0f:1540::/29 2a0f:1640::/29 2a0f:1840::/29 2a0f:18c0::/29 2a0f:1940::/29 2a0f:2840::/29 2a0f:2940::/29 2a0f:2a40::/29 2a0f:2d40::/29 2a0f:2dc0::/29 2a0f:2e40::/29 2a0f:30c0::/29 2a0f:3140::/29 2a0f:3540::/29 2a0f:36c0::/29 2a0f:3740::/29 2a0f:bc02::/32 2a0f:e1c0:3::/48 2a0f:e1c7:100::/48 2a0f:e200:5::/48 2a0f:e202:97::/48 2a0f:e440::/29 2a0f:ea40:8::/48 2a0f:ea44:88::/48 2a11:3240::/29 2a11:4800::/29 2a11:8700::/29 2a11:e580::/29 2a12:3f00::/29 2a12:4b00::/29 2a12:5900::/29 2a12:cd00::/29 2a12:ecc0:3::/48 Signature Algorithm: sha256WithRSAEncryption 9f:fd:63:18:63:dd:e7:fd:82:e0:6a:44:7e:78:ad:21:40:11: b7:7c:c6:04:b3:5e:68:81:1e:e2:35:65:97:fa:c0:d9:72:9c: b0:94:15:50:44:e6:29:7d:81:2d:95:86:ba:59:2f:ba:46:ca: d4:87:59:33:a5:dc:e6:85:59:0e:7b:e8:1e:00:f8:2b:fc:c1: a0:aa:24:f2:af:af:3d:3b:e4:69:d5:54:a3:48:13:19:90:ac: c6:fc:f5:7d:33:10:6f:7d:cf:ac:25:a3:4b:d6:68:49:2f:cc: 38:68:66:5a:6c:2b:ea:ca:56:84:a2:33:79:fd:11:56:de:ae: e0:12:01:01:39:49:c9:d6:a3:59:ea:74:18:66:07:f9:78:39: bf:bc:c3:4f:a4:8f:58:4f:7d:ff:1d:ed:d0:98:01:1b:99:cc: 35:30:c6:80:4b:a7:54:6d:d0:5c:1d:11:ac:a0:c9:5f:f5:7e: 07:7c:1f:e9:46:48:c2:33:ae:b8:9f:2d:ce:71:55:02:1e:cb: ff:2c:a2:9b:ce:c3:22:db:94:0e:26:de:9b:81:92:bb:73:5f: 10:92:e5:0d:76:80:0e:fd:38:4f:f2:c6:5c:8d:c3:30:ad:90: 53:5f:6f:a5:f4:62:3d:16:8e:5b:43:1e:1a:e4:f0:d0:d3:d1: 90:3b:03:c0 -----BEGIN CERTIFICATE----- MIIGGDCCBQCgAwIBAgISAZrgBh7Fk3Udd292G26kt5ArMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz ZTRjMjYwHhcNMjUxMjAyMTcwNDQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYWE2NTYyMjlmM2RjMGEzYWNjYmJmMTZiYjUwZDlkMDc2ZmI4Y2IwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4ALkdDRRXswhz4Tz1+arj6wiWAr n/sEg57Ilk1KYecy0AkkyNdV63KtceKxOyN1e6vVn111cSMoORM0VtkzVgn0JYDD 1aPDd+aDNgY6V98yRwZNN46tbeJhRpbHc0YJMGfgpcxSsVq7DTYeu94NewrNix0/ tRAVjmOeu96MDHRBg/u/tzOv1XhjvB4WsyC3pnW5FSq5KRjYnocuz9dd3K8cDFv1 9j3gYfRTEdVzmA2jwjbSjhPQWfxJIFi9wupzkwUQ6r7vYpJB9sAjpaSmPRK5QfmE LOGd8MQ6vDcUtVqenu57VBCnHZVafQGU4zlyKkLGgCfIzwcgBFk+3PLEpQIDAQAB o4IDJDCCAyAwHQYDVR0OBBYEFNqmViKfPcCjrMu/FrtQ2dB2+4ywMB8GA1UdIwQY MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt OGM1MDA3YzJhNGI2LzEvMnFaV0lwODl3S09zeTc4V3UxRFowSGI3akxBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2 LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIIBOAYIKwYBBQUHAQcBAf8EggEnMIIBIzCCAR8EAgACMIIB FwMHACoJF8CxmgMHACoOGoMAiAMHACoPEgYAdwMFAyoPFMADBQMqDxVAAwUDKg8W QAMFAyoPGEADBQMqDxjAAwUDKg8ZQAMFAyoPKEADBQMqDylAAwUDKg8qQAMFAyoP LUADBQMqDy3AAwUDKg8uQAMFAyoPMMADBQMqDzFAAwUDKg81QAMFAyoPNsADBQMq DzdAAwUAKg+8AgMHACoP4cAAAwMHACoP4ccBAAMHACoP4gAABQMHACoP4gIAlwMF AyoP5EADBwAqD+pAAAgDBwAqD+pEAIgDBQMqETJAAwUDKhFIAAMFAyoRhwADBQMq EeWAAwUDKhI/AAMFAyoSSwADBQMqElkAAwUDKhLNAAMHACoS7MAAAzANBgkqhkiG 9w0BAQsFAAOCAQEAn/1jGGPd5/2C4GpEfnitIUARt3zGBLNeaIEe4jVll/rA2XKc sJQVUETmKX2BLZWGulkvukbK1IdZM6Xc5oVZDnvoHgD4K/zBoKok8q+vPTvkadVU o0gTGZCsxvz1fTMQb33PrCWjS9ZoSS/MOGhmWmwr6spWhKIzef0RVt6u4BIBATlJ ydajWep0GGYH+Xg5v7zDT6SPWE99/x3t0JgBG5nMNTDGgEunVG3QXB0RrKDJX/V+ B3wf6UZIwjOuuJ8tznFVAh7L/yyim87DItuUDibem4GSu3NfEJLlDXaADv04T/LG XI3DMK2QU19vpfRiPRaOW0MeGuTw0NPRkDsDwA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:42:58 2025 by rpki-client