This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/f649a2-518d-4456-98a7-23c3df82c230/1/KImIqYFb29b3KU70kYQGUgTjwXY.roa File: KImIqYFb29b3KU70kYQGUgTjwXY.roa (raw, json) Hash identifier: OkLquITh6UHZc59jyD3mteFTooB7+Z7+DnhjU4+WM/A= Subject key identifier: 28:89:88:A9:81:5B:DB:D6:F7:29:4E:F4:91:84:06:52:04:E3:C1:76 Certificate issuer: /CN=a6947681da0db7fe79315ec6dbda28bf8d660fc0 Certificate serial: 019B7DCA716DE8FCF85C3935CD89F1AEE932 Authority key identifier: A6:94:76:81:DA:0D:B7:FE:79:31:5E:C6:DB:DA:28:BF:8D:66:0F:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ppR2gdoNt_55MV7G29oov41mD8A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/f649a2-518d-4456-98a7-23c3df82c230/1/KImIqYFb29b3KU70kYQGUgTjwXY.roa Signing time: Fri 02 Jan 2026 08:19:37 +0000 ROA not before: Fri 02 Jan 2026 08:19:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30860 IP address blocks: 2a00:17a0:1005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/f649a2-518d-4456-98a7-23c3df82c230/1/ppR2gdoNt_55MV7G29oov41mD8A.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/f649a2-518d-4456-98a7-23c3df82c230/1/ppR2gdoNt_55MV7G29oov41mD8A.mft rsync://rpki.ripe.net/repository/DEFAULT/ppR2gdoNt_55MV7G29oov41mD8A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:71:6d:e8:fc:f8:5c:39:35:cd:89:f1:ae:e9:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6947681da0db7fe79315ec6dbda28bf8d660fc0 Validity Not Before: Jan 2 08:19:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=288988a9815bdbd6f7294ef49184065204e3c176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8a:f4:37:66:8c:3e:e1:7e:d6:06:5c:3d:df: 47:7d:0b:2c:dc:5f:4d:36:d4:ae:5e:46:7d:28:3f: 50:4e:ba:dd:09:6c:b0:e6:df:68:22:d5:e6:39:d6: a7:3d:c1:44:19:09:d2:fe:93:8b:5e:8c:7a:d4:15: 53:8a:cb:31:e7:6b:73:c4:0f:4d:5b:7d:69:fb:7c: a8:92:1e:a2:06:f3:98:ed:2c:e1:d5:a8:0d:bf:21: 0f:67:b0:fd:00:d2:1e:fc:7a:c5:71:30:3f:7e:39: f8:de:c6:e8:f5:bc:59:01:1c:e4:f6:cd:eb:cb:96: fe:97:99:ed:a1:d7:be:86:30:62:2d:79:c5:b7:ef: fa:52:df:1d:75:d6:b9:76:62:aa:fc:cf:e4:a0:2e: 91:ea:f0:37:9a:61:32:ed:70:21:89:69:37:d0:56: cc:e1:62:50:63:85:c0:26:63:fe:0d:3a:0a:ce:7e: f4:66:62:09:52:ba:bb:7c:78:47:76:3a:8d:c0:ea: 22:eb:fc:8e:ed:f8:47:16:67:fa:ee:d3:81:3a:f3: 63:9e:84:8e:4a:c6:cd:ac:66:bd:3e:a9:31:c2:9d: 00:7c:31:ac:5e:c3:f8:38:59:0e:39:b3:cb:52:bb: 48:fb:52:b6:68:ed:b8:5a:29:4f:14:e2:c4:e4:b4: 02:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:89:88:A9:81:5B:DB:D6:F7:29:4E:F4:91:84:06:52:04:E3:C1:76 X509v3 Authority Key Identifier: keyid:A6:94:76:81:DA:0D:B7:FE:79:31:5E:C6:DB:DA:28:BF:8D:66:0F:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ppR2gdoNt_55MV7G29oov41mD8A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/f649a2-518d-4456-98a7-23c3df82c230/1/KImIqYFb29b3KU70kYQGUgTjwXY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/f649a2-518d-4456-98a7-23c3df82c230/1/ppR2gdoNt_55MV7G29oov41mD8A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:17a0:1005::/48 Signature Algorithm: sha256WithRSAEncryption 54:50:d9:1d:ba:7e:d1:d8:05:9e:cd:c3:b9:83:6a:ad:f7:f6: 68:c7:48:78:31:2f:d3:07:09:41:f3:01:7d:82:a0:a5:ac:6b: b4:90:79:70:01:7b:c9:6c:fb:55:e9:50:f2:1e:fc:4b:f4:9e: 82:68:0a:1d:34:f9:94:d7:d8:65:42:1b:20:11:1d:57:7c:e9: 36:5b:16:39:a1:23:ba:3b:82:e5:d7:81:98:8e:f5:95:f7:b8: 36:b8:b8:43:74:85:e0:ba:5a:a7:ae:bc:11:83:de:f1:5e:d9: 1c:2c:bd:0c:66:33:5b:a6:a0:36:91:00:a9:e1:ca:a6:d3:52: cb:06:29:16:92:60:57:0c:cd:b0:b7:81:12:65:51:81:13:2a: 62:02:70:66:50:f9:6d:a5:aa:ce:4f:23:80:9f:e9:6a:50:f7: b4:9c:90:ab:fb:86:75:99:c4:99:9a:d6:48:23:a8:98:38:58: bf:a6:b7:d4:f0:85:f3:92:6d:07:07:19:e9:14:42:5c:ae:4e: 60:01:d6:9b:07:7f:f3:a9:79:1c:69:41:3e:40:23:b1:42:98: c4:38:03:bc:e5:d0:3f:5f:86:31:3d:51:69:8a:bc:09:f7:3e: ad:19:17:e2:a5:bd:bf:da:33:43:6b:79:55:8b:b1:7e:81:5b: a8:3d:fd:e2 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9ynFt6Pz4XDk1zYnxrukyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2OTQ3NjgxZGEwZGI3ZmU3OTMxNWVjNmRiZGEyOGJmOGQ2 NjBmYzAwHhcNMjYwMTAyMDgxOTM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyODg5ODhhOTgxNWJkYmQ2ZjcyOTRlZjQ5MTg0MDY1MjA0ZTNjMTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Ir0N2aMPuF+1gZcPd9HfQss3F9N NtSuXkZ9KD9QTrrdCWyw5t9oItXmOdanPcFEGQnS/pOLXox61BVTissx52tzxA9N W31p+3yokh6iBvOY7Szh1agNvyEPZ7D9ANIe/HrFcTA/fjn43sbo9bxZARzk9s3r y5b+l5ntode+hjBiLXnFt+/6Ut8ddda5dmKq/M/koC6R6vA3mmEy7XAhiWk30FbM 4WJQY4XAJmP+DToKzn70ZmIJUrq7fHhHdjqNwOoi6/yO7fhHFmf67tOBOvNjnoSO SsbNrGa9Pqkxwp0AfDGsXsP4OFkOObPLUrtI+1K2aO24WilPFOLE5LQCGwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFCiJiKmBW9vW9ylO9JGEBlIE48F2MB8GA1UdIwQY MBaAFKaUdoHaDbf+eTFextvaKL+NZg/AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHBSMmdkb050XzU1TVY3RzI5b292NDFtRDhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9mNjQ5YTItNTE4ZC00NDU2LTk4YTct MjNjM2RmODJjMjMwLzEvS0ltSXFZRmIyOWIzS1U3MGtZUUdVZ1Rqd1hZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS9mNjQ5YTItNTE4ZC00NDU2LTk4YTctMjNjM2RmODJjMjMw LzEvcHBSMmdkb050XzU1TVY3RzI5b292NDFtRDhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgAXoBAF MA0GCSqGSIb3DQEBCwUAA4IBAQBUUNkdun7R2AWezcO5g2qt9/Zox0h4MS/TBwlB 8wF9gqClrGu0kHlwAXvJbPtV6VDyHvxL9J6CaAodNPmU19hlQhsgER1XfOk2WxY5 oSO6O4Ll14GYjvWV97g2uLhDdIXgulqnrrwRg97xXtkcLL0MZjNbpqA2kQCp4cqm 01LLBikWkmBXDM2wt4ESZVGBEypiAnBmUPltparOTyOAn+lqUPe0nJCr+4Z1mcSZ mtZII6iYOFi/prfU8IXzkm0HBxnpFEJcrk5gAdabB3/zqXkcaUE+QCOxQpjEOAO8 5dA/X4YxPVFpirwJ9z6tGRfipb2/2jNDa3lVi7F+gVuoPf3i -----END CERTIFICATE-----Generated at Sun Jan 25 16:37:20 2026 by rpki-client