This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/aeLq5a8kiXNujRcNnD6lfz80EEM.roa File: aeLq5a8kiXNujRcNnD6lfz80EEM.roa (raw, json) Hash identifier: EyFxSW6yLpfJeNoBTxjBTmV96AGiGIG/MOZ8ivHN2Z4= Subject key identifier: 69:E2:EA:E5:AF:24:89:73:6E:8D:17:0D:9C:3E:A5:7F:3F:34:10:43 Certificate issuer: /CN=b4a3b005366b0e10d502e9414901cd84fae2dc95 Certificate serial: 019B30DA3B64A9BF422FDECB5BAB12B77332 Authority key identifier: B4:A3:B0:05:36:6B:0E:10:D5:02:E9:41:49:01:CD:84:FA:E2:DC:95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/aeLq5a8kiXNujRcNnD6lfz80EEM.roa Signing time: Thu 18 Dec 2025 09:46:06 +0000 ROA not before: Thu 18 Dec 2025 09:46:06 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 199631 IP address blocks: 2a13:ab00::/29 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.crl rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:da:3b:64:a9:bf:42:2f:de:cb:5b:ab:12:b7:73:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4a3b005366b0e10d502e9414901cd84fae2dc95 Validity Not Before: Dec 18 09:46:06 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69e2eae5af2489736e8d170d9c3ea57f3f341043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:41:8d:cf:c8:f2:26:c2:8a:75:dd:45:39:b5: ec:d4:e6:7e:87:ee:28:88:ab:2e:c0:ec:f1:d8:ca: 6a:53:8d:15:7c:6e:f9:fa:22:7e:ed:2d:9e:5e:66: c8:19:2f:75:ae:13:eb:2b:26:87:0f:67:17:f3:ad: e9:57:7a:78:c8:82:95:29:f8:8d:aa:98:34:00:e5: 7a:77:00:28:44:3e:0c:a1:3c:7f:5c:7c:d3:a1:59: ee:f3:1e:d4:00:83:30:78:e8:e0:64:2c:6c:d9:1a: b3:de:ff:68:4f:45:43:da:5b:97:de:85:1d:e8:b8: e6:70:5d:e3:d5:31:97:df:6c:de:58:a6:01:68:db: fb:1c:13:55:77:6e:57:48:3a:2e:24:da:5b:7c:c4: 43:55:76:70:a9:81:f8:dd:58:4d:f6:72:d2:78:85: c5:70:00:6f:f6:85:81:a2:9f:b5:b6:89:76:72:ef: 43:44:0d:e7:87:09:d6:74:92:1d:66:cb:78:39:1f: 93:45:fa:78:be:4f:56:71:2f:94:bf:bd:76:0c:cd: cd:af:a2:a7:03:93:28:8a:98:95:55:31:a5:54:a7: 5e:11:44:80:6a:a3:68:54:52:28:90:e2:70:4b:2e: 1c:7d:32:09:ca:e8:cc:d0:ae:30:27:91:26:f4:1b: 36:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E2:EA:E5:AF:24:89:73:6E:8D:17:0D:9C:3E:A5:7F:3F:34:10:43 X509v3 Authority Key Identifier: keyid:B4:A3:B0:05:36:6B:0E:10:D5:02:E9:41:49:01:CD:84:FA:E2:DC:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/aeLq5a8kiXNujRcNnD6lfz80EEM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:ab00::/29 Signature Algorithm: sha256WithRSAEncryption 0d:9e:69:58:eb:d7:d6:18:b9:fb:62:93:5d:67:9c:21:ce:fc: f7:89:56:2e:63:ad:4b:21:9f:04:52:3e:10:0c:8f:40:40:5d: 89:8c:32:b6:61:2e:98:26:6f:c6:f2:f2:e1:25:4d:38:46:15: 79:f3:c7:be:4d:64:a7:e8:18:78:e3:b6:06:10:55:4f:ae:e9: a3:41:17:cd:50:ed:51:1e:29:ac:8d:27:d2:a4:84:5d:7c:f9: 77:a0:2f:7b:5c:07:79:30:3a:e2:81:72:62:2f:de:bf:23:d8: 80:42:48:19:3b:34:7a:30:53:76:0d:97:6d:52:0e:8a:81:c5: 6b:a0:ee:8f:bc:94:6f:58:72:f9:77:6f:3f:23:b1:db:cd:06: 05:9a:d7:4d:03:c3:d5:3e:1e:6b:eb:b5:59:83:1a:e2:9f:fa: 2b:dd:f6:ed:15:58:b3:62:14:66:25:02:c2:f2:64:fa:c2:d8: 74:ae:e8:9e:c0:3b:30:ae:f7:6f:4b:8c:f2:08:a9:be:8d:00: 97:69:1b:60:e5:54:68:4e:4b:e0:83:85:16:cb:98:ae:62:4b: 36:79:8e:c2:99:48:9d:89:10:1b:6d:bf:9e:4c:b3:25:ed:a1: bd:07:dd:e4:c9:1a:8f:fd:fd:86:26:2b:4e:e2:91:8f:57:db: f4:76:87:3f -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZsw2jtkqb9CL97LW6sSt3MyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YTNiMDA1MzY2YjBlMTBkNTAyZTk0MTQ5MDFjZDg0ZmFl MmRjOTUwHhcNMjUxMjE4MDk0NjA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OWUyZWFlNWFmMjQ4OTczNmU4ZDE3MGQ5YzNlYTU3ZjNmMzQxMDQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtkGNz8jyJsKKdd1FObXs1OZ+h+4o iKsuwOzx2MpqU40VfG75+iJ+7S2eXmbIGS91rhPrKyaHD2cX863pV3p4yIKVKfiN qpg0AOV6dwAoRD4MoTx/XHzToVnu8x7UAIMweOjgZCxs2Rqz3v9oT0VD2luX3oUd 6LjmcF3j1TGX32zeWKYBaNv7HBNVd25XSDouJNpbfMRDVXZwqYH43VhN9nLSeIXF cABv9oWBop+1tol2cu9DRA3nhwnWdJIdZst4OR+TRfp4vk9WcS+Uv712DM3Nr6Kn A5MoipiVVTGlVKdeEUSAaqNoVFIokOJwSy4cfTIJyujM0K4wJ5Em9Bs2xQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFGni6uWvJIlzbo0XDZw+pX8/NBBDMB8GA1UdIwQY MBaAFLSjsAU2aw4Q1QLpQUkBzYT64tyVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEtPd0JUWnJEaERWQXVsQlNRSE5oUHJpM0pVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9jMmJhNzItYTg5Mi00MjZkLWFlYzkt YTE1NzVmOTFmODNiLzEvYWVMcTVhOGtpWE51alJjTm5ENmxmejgwRUVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS9jMmJhNzItYTg5Mi00MjZkLWFlYzktYTE1NzVmOTFmODNi LzEvdEtPd0JUWnJEaERWQXVsQlNRSE5oUHJpM0pVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhOrADAN BgkqhkiG9w0BAQsFAAOCAQEADZ5pWOvX1hi5+2KTXWecIc7894lWLmOtSyGfBFI+ EAyPQEBdiYwytmEumCZvxvLy4SVNOEYVefPHvk1kp+gYeOO2BhBVT67po0EXzVDt UR4prI0n0qSEXXz5d6Ave1wHeTA64oFyYi/evyPYgEJIGTs0ejBTdg2XbVIOioHF a6Duj7yUb1hy+XdvPyOx280GBZrXTQPD1T4ea+u1WYMa4p/6K9327RVYs2IUZiUC wvJk+sLYdK7onsA7MK73b0uM8gipvo0Al2kbYOVUaE5L4IOFFsuYrmJLNnmOwplI nYkQG22/nkyzJe2hvQfd5Mkaj/39hiYrTuKRj1fb9HaHPw== -----END CERTIFICATE-----Generated at Mon Dec 22 09:39:11 2025 by rpki-client