This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/98c5c3-9928-4957-9448-a60138c1c046/1/Ka_z-__yfPUNdCEkEmrWJv_gA2o.roa File: Ka_z-__yfPUNdCEkEmrWJv_gA2o.roa (raw, json) Hash identifier: u3MD0TaHO1ydISnjdsribaPZzm3duPVcA9ePVcYit+U= Subject key identifier: 29:AF:F3:FB:FF:F2:7C:F5:0D:74:21:24:12:6A:D6:26:FF:E0:03:6A Certificate issuer: /CN=0400d77ef9ea0ed2952be2f60fad3aecc2e168ac Certificate serial: 019ACBCDC5225053F8F68D900AA6F63121AA Authority key identifier: 04:00:D7:7E:F9:EA:0E:D2:95:2B:E2:F6:0F:AD:3A:EC:C2:E1:68:AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BADXfvnqDtKVK-L2D6067MLhaKw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/98c5c3-9928-4957-9448-a60138c1c046/1/Ka_z-__yfPUNdCEkEmrWJv_gA2o.roa Signing time: Fri 28 Nov 2025 18:50:51 +0000 ROA not before: Fri 28 Nov 2025 18:50:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 59800 IP address blocks: 2a05:19c0::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/98c5c3-9928-4957-9448-a60138c1c046/1/BADXfvnqDtKVK-L2D6067MLhaKw.crl rsync://rpki.ripe.net/repository/DEFAULT/37/98c5c3-9928-4957-9448-a60138c1c046/1/BADXfvnqDtKVK-L2D6067MLhaKw.mft rsync://rpki.ripe.net/repository/DEFAULT/BADXfvnqDtKVK-L2D6067MLhaKw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 21:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:cb:cd:c5:22:50:53:f8:f6:8d:90:0a:a6:f6:31:21:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0400d77ef9ea0ed2952be2f60fad3aecc2e168ac Validity Not Before: Nov 28 18:50:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=29aff3fbfff27cf50d742124126ad626ffe0036a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:51:a5:d3:68:c6:17:a7:27:d9:55:04:73:85: 56:93:a1:0c:29:76:68:5b:a1:65:5c:42:e9:f2:d0: 81:e5:52:15:ef:4b:9f:07:dc:2c:c7:b5:7c:0b:fd: cf:9a:76:54:94:fe:bf:ac:f8:09:62:42:4e:27:19: b5:8f:87:61:8c:92:f8:6c:c2:2d:53:90:cb:a4:fe: 79:7d:6f:5b:17:7c:a8:d9:46:45:f5:03:c8:3e:1a: 92:95:90:37:24:27:07:65:2a:3d:a3:19:fc:c8:2c: e5:b9:1b:c6:c7:12:5c:fd:69:fd:5d:5f:4d:ff:d7: ac:67:c0:ec:ac:c2:fd:e1:0f:e8:62:6b:70:09:88: 41:f0:ff:25:87:b4:79:ad:c3:ca:bc:34:5d:34:30: 38:22:43:7d:1e:d0:4c:24:c0:23:af:bb:1a:46:c3: 7a:ab:16:d4:21:f4:21:a8:9c:46:5b:94:00:e2:ab: d1:81:15:de:1a:6b:cc:b2:6b:2f:26:02:4e:52:d4: 2a:f1:25:c6:e7:16:20:0d:c0:c9:d3:ba:d8:8c:06: 96:ab:ad:92:6b:6e:c7:e1:f7:cf:b4:bc:fa:18:21: 2f:fb:46:54:54:b3:08:56:4a:1b:5d:e9:c0:93:b4: 4e:ee:19:c5:0f:83:90:c2:74:cb:82:bd:1e:64:52: 22:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:AF:F3:FB:FF:F2:7C:F5:0D:74:21:24:12:6A:D6:26:FF:E0:03:6A X509v3 Authority Key Identifier: keyid:04:00:D7:7E:F9:EA:0E:D2:95:2B:E2:F6:0F:AD:3A:EC:C2:E1:68:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BADXfvnqDtKVK-L2D6067MLhaKw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/98c5c3-9928-4957-9448-a60138c1c046/1/Ka_z-__yfPUNdCEkEmrWJv_gA2o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/98c5c3-9928-4957-9448-a60138c1c046/1/BADXfvnqDtKVK-L2D6067MLhaKw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:19c0::/47 Signature Algorithm: sha256WithRSAEncryption 2a:ad:cf:98:d0:d0:3b:d1:41:ac:5e:06:82:48:5b:5b:09:76: 9a:56:8d:a2:b5:62:7a:ad:31:f2:d8:9e:5b:b2:19:33:a9:89: ac:28:b8:10:a0:52:b1:11:ee:d7:c8:d0:9b:ae:1f:60:f2:f8: 58:0a:4b:c4:4e:4e:49:6e:71:0e:49:ae:85:9a:56:cc:2a:76: 31:2a:05:1d:46:8a:84:72:58:9c:7d:bb:aa:28:44:a2:2a:4c: 0d:11:cd:83:0c:a0:a1:6e:f3:0a:8c:a8:00:0a:8d:bb:27:e6: bf:f3:fc:d7:27:50:d8:bb:ee:26:50:0a:50:f4:b7:28:2d:12: 86:04:03:aa:74:29:f9:1e:ee:a4:56:25:ed:57:be:37:2d:e0: 91:b8:aa:fc:d2:8d:3a:27:5e:8d:ed:14:17:33:49:18:72:1e: 27:c3:02:07:76:02:ea:2e:2d:c8:44:07:47:ee:bd:c0:f1:79: 05:9c:85:cb:91:a8:f8:9b:ad:71:4f:25:8e:4e:7a:5e:cb:fa: 5d:fd:8b:11:b4:10:d7:6e:cf:d5:f6:e7:66:ee:d7:f8:5a:88: db:f5:17:e8:8c:33:45:fc:0a:ad:7c:cf:ed:6c:f4:a0:0f:9a: 07:9f:2d:8d:79:8b:48:4c:34:a2:e5:88:55:b4:cb:d1:6f:a9: 01:c8:2b:ed -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZrLzcUiUFP49o2QCqb2MSGqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0MDBkNzdlZjllYTBlZDI5NTJiZTJmNjBmYWQzYWVjYzJl MTY4YWMwHhcNMjUxMTI4MTg1MDUxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOWFmZjNmYmZmZjI3Y2Y1MGQ3NDIxMjQxMjZhZDYyNmZmZTAwMzZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFGl02jGF6cn2VUEc4VWk6EMKXZo W6FlXELp8tCB5VIV70ufB9wsx7V8C/3PmnZUlP6/rPgJYkJOJxm1j4dhjJL4bMIt U5DLpP55fW9bF3yo2UZF9QPIPhqSlZA3JCcHZSo9oxn8yCzluRvGxxJc/Wn9XV9N /9esZ8DsrML94Q/oYmtwCYhB8P8lh7R5rcPKvDRdNDA4IkN9HtBMJMAjr7saRsN6 qxbUIfQhqJxGW5QA4qvRgRXeGmvMsmsvJgJOUtQq8SXG5xYgDcDJ07rYjAaWq62S a27H4ffPtLz6GCEv+0ZUVLMIVkobXenAk7RO7hnFD4OQwnTLgr0eZFIi6wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFCmv8/v/8nz1DXQhJBJq1ib/4ANqMB8GA1UdIwQY MBaAFAQA13756g7SlSvi9g+tOuzC4WisMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkFEWGZ2bnFEdEtWSy1MMkQ2MDY3TUxoYUt3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy85OGM1YzMtOTkyOC00OTU3LTk0NDgt YTYwMTM4YzFjMDQ2LzEvS2Ffei1fX3lmUFVOZENFa0VtcldKdl9nQTJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy85OGM1YzMtOTkyOC00OTU3LTk0NDgtYTYwMTM4YzFjMDQ2 LzEvQkFEWGZ2bnFEdEtWSy1MMkQ2MDY3TUxoYUt3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBKgUZwAAA MA0GCSqGSIb3DQEBCwUAA4IBAQAqrc+Y0NA70UGsXgaCSFtbCXaaVo2itWJ6rTHy 2J5bshkzqYmsKLgQoFKxEe7XyNCbrh9g8vhYCkvETk5JbnEOSa6FmlbMKnYxKgUd RoqEclicfbuqKESiKkwNEc2DDKChbvMKjKgACo27J+a/8/zXJ1DYu+4mUApQ9Lco LRKGBAOqdCn5Hu6kViXtV743LeCRuKr80o06J16N7RQXM0kYch4nwwIHdgLqLi3I RAdH7r3A8XkFnIXLkaj4m61xTyWOTnpey/pd/YsRtBDXbs/V9udm7tf4Wojb9Rfo jDNF/AqtfM/tbPSgD5oHny2NeYtITDSi5YhVtMvRb6kByCvt -----END CERTIFICATE-----Generated at Sun Dec 21 06:01:15 2025 by rpki-client