This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/BsPDuu6JTFYs4fX_8xgCzUyOvqg.roa File: BsPDuu6JTFYs4fX_8xgCzUyOvqg.roa (raw, json) Hash identifier: o4/3dqfGtKM2QeCkXuEtb4rKzlJPRFAxduyASjTXa5c= Subject key identifier: 06:C3:C3:BA:EE:89:4C:56:2C:E1:F5:FF:F3:18:02:CD:4C:8E:BE:A8 Certificate issuer: /CN=7b9447fe9a4acc7d6ff72d6c798d43d66cd50c3f Certificate serial: 019B77C76595E7D60AC281244F62E8F6D3EE Authority key identifier: 7B:94:47:FE:9A:4A:CC:7D:6F:F7:2D:6C:79:8D:43:D6:6C:D5:0C:3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/BsPDuu6JTFYs4fX_8xgCzUyOvqg.roa Signing time: Thu 01 Jan 2026 04:18:35 +0000 ROA not before: Thu 01 Jan 2026 04:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49505 IP address blocks: 2a12:2cc5::/32 maxlen: 32 2a12:4140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e5RH_ppKzH1v9y1seY1D1mzVDD8.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e5RH_ppKzH1v9y1seY1D1mzVDD8.mft rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:65:95:e7:d6:0a:c2:81:24:4f:62:e8:f6:d3:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b9447fe9a4acc7d6ff72d6c798d43d66cd50c3f Validity Not Before: Jan 1 04:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=06c3c3baee894c562ce1f5fff31802cd4c8ebea8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1a:fa:bc:44:54:75:98:04:1f:fc:08:a1:73: 8c:a5:d5:2b:02:3b:8b:28:22:b5:9a:89:2d:a0:52: e5:07:c5:d2:f6:c5:82:c4:b1:95:8b:b2:47:7c:46: 92:ff:b1:30:52:f7:fc:63:81:de:17:0a:88:5a:11: 6a:73:2d:c7:7a:af:3a:cc:22:d0:f7:0f:62:0e:3f: a5:46:58:a0:56:60:ff:10:1f:b8:c5:72:81:47:93: 86:72:e8:35:a3:41:3e:68:29:9d:d9:3e:b3:b5:e9: 6b:b2:59:fd:ad:2a:85:41:c1:6a:cf:70:36:ca:bc: 4e:2d:dd:2b:90:e9:f7:c3:7f:be:e1:c1:35:81:70: 00:7d:8f:26:78:8e:60:cf:88:7f:06:f2:56:7d:e2: 1f:50:2c:97:08:f8:91:ce:b0:1e:b6:7c:8c:df:34: ee:bd:ca:86:53:9c:95:2f:ed:9f:27:de:a0:61:f2: 99:be:0b:76:ba:96:28:f1:f0:9c:4f:c0:1c:43:00: 59:ad:c7:1e:3c:ba:e6:40:2b:d6:89:21:72:9a:c3: 62:17:67:17:06:d4:01:af:0b:cd:49:26:3c:cc:ee: 9f:c9:a2:c9:74:ab:e2:3f:28:05:39:2a:0b:cb:00: 7b:16:a9:25:87:93:67:81:e2:33:c8:d6:9c:a8:c2: 3a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:C3:C3:BA:EE:89:4C:56:2C:E1:F5:FF:F3:18:02:CD:4C:8E:BE:A8 X509v3 Authority Key Identifier: keyid:7B:94:47:FE:9A:4A:CC:7D:6F:F7:2D:6C:79:8D:43:D6:6C:D5:0C:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/BsPDuu6JTFYs4fX_8xgCzUyOvqg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e5RH_ppKzH1v9y1seY1D1mzVDD8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:2cc5::/32 2a12:4140::/32 Signature Algorithm: sha256WithRSAEncryption 28:2e:10:e9:0f:23:e3:aa:4e:c9:df:1e:96:ed:ce:24:b5:24: 5f:a1:3b:36:a9:0e:60:ba:36:f1:b7:57:d7:77:2a:38:4f:95: e5:98:ac:59:58:95:ef:26:d5:e5:f1:86:9e:2c:82:5e:e4:98: e6:b7:e5:e6:c1:8a:df:e6:06:a5:60:47:70:f5:24:2e:f0:44: 52:70:79:d8:f4:d3:b8:db:f1:c5:8f:a3:66:65:63:87:5c:34: 7d:dc:f9:25:90:16:26:8c:62:90:11:01:59:ad:d5:c0:bd:d2: 73:21:78:c4:df:09:ba:57:cc:d1:14:5c:48:82:b8:4b:e8:27: 2c:5f:fd:34:7a:05:b5:0d:18:bd:cf:20:b6:e3:35:d0:de:24: 30:9c:d0:1e:55:72:2e:ca:38:5a:ad:79:70:78:82:02:b9:bf: 5a:0d:80:f1:b2:97:ed:4d:0d:7d:42:f8:10:e1:85:d0:f6:41: 4f:c7:85:f8:89:5f:bf:cd:c6:ea:64:47:f8:ec:cf:ec:37:9a: a4:a0:66:ab:8e:66:5b:6f:80:73:8b:77:b0:96:86:ed:0d:de: 09:b7:e2:92:17:97:86:c4:0f:f0:89:0a:e5:2d:e5:94:b7:a2: b8:54:b2:46:83:bc:70:5d:c0:58:95:0a:f9:60:2e:95:29:18: 86:30:04:02 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt3x2WV59YKwoEkT2Lo9tPuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiOTQ0N2ZlOWE0YWNjN2Q2ZmY3MmQ2Yzc5OGQ0M2Q2NmNk NTBjM2YwHhcNMjYwMTAxMDQxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNmMzYzNiYWVlODk0YzU2MmNlMWY1ZmZmMzE4MDJjZDRjOGViZWE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtRr6vERUdZgEH/wIoXOMpdUrAjuL KCK1moktoFLlB8XS9sWCxLGVi7JHfEaS/7EwUvf8Y4HeFwqIWhFqcy3Heq86zCLQ 9w9iDj+lRligVmD/EB+4xXKBR5OGcug1o0E+aCmd2T6ztelrsln9rSqFQcFqz3A2 yrxOLd0rkOn3w3++4cE1gXAAfY8meI5gz4h/BvJWfeIfUCyXCPiRzrAetnyM3zTu vcqGU5yVL+2fJ96gYfKZvgt2upYo8fCcT8AcQwBZrccePLrmQCvWiSFymsNiF2cX BtQBrwvNSSY8zO6fyaLJdKviPygFOSoLywB7Fqklh5NngeIzyNacqMI6owIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFAbDw7ruiUxWLOH1//MYAs1Mjr6oMB8GA1UdIwQY MBaAFHuUR/6aSsx9b/ctbHmNQ9Zs1Qw/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZTVSSF9wcEt6SDF2OXkxc2VZMUQxbXpWREQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9hYzI0ZGYtMDlkNi00NDU3LTlkMmUt OWZjZWI0NWQ2ZmRiLzEvQnNQRHV1NkpURllzNGZYXzh4Z0N6VXlPdnFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy9hYzI0ZGYtMDlkNi00NDU3LTlkMmUtOWZjZWI0NWQ2ZmRi LzEvZTVSSF9wcEt6SDF2OXkxc2VZMUQxbXpWREQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUAKhIsxQMF ACoSQUAwDQYJKoZIhvcNAQELBQADggEBACguEOkPI+OqTsnfHpbtziS1JF+hOzap DmC6NvG3V9d3KjhPleWYrFlYle8m1eXxhp4sgl7kmOa35ebBit/mBqVgR3D1JC7w RFJwedj007jb8cWPo2ZlY4dcNH3c+SWQFiaMYpARAVmt1cC90nMheMTfCbpXzNEU XEiCuEvoJyxf/TR6BbUNGL3PILbjNdDeJDCc0B5Vci7KOFqteXB4ggK5v1oNgPGy l+1NDX1C+BDhhdD2QU/HhfiJX7/NxupkR/jsz+w3mqSgZquOZltvgHOLd7CWhu0N 3gm34pIXl4bED/CJCuUt5ZS3orhUskaDvHBdwFiVCvlgLpUpGIYwBAI= -----END CERTIFICATE-----Generated at Sun Jan 25 13:03:01 2026 by rpki-client