This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/BlTGzUAvxbZF-qZbD83UzTZWeJU.roa File: BlTGzUAvxbZF-qZbD83UzTZWeJU.roa (raw, json) Hash identifier: d600+5pQkHj9wcwQEM8oGCJvCzhHfdsa+IgyBSNDpIs= Subject key identifier: 06:54:C6:CD:40:2F:C5:B6:45:FA:A6:5B:0F:CD:D4:CD:36:56:78:95 Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e Certificate serial: 019B32E46E1D957ED59EBF52816FABB64113 Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/BlTGzUAvxbZF-qZbD83UzTZWeJU.roa Signing time: Thu 18 Dec 2025 19:16:29 +0000 ROA not before: Thu 18 Dec 2025 19:16:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 2a07:f240::/29 maxlen: 29 2a0b:8440::/29 maxlen: 29 2a0b:a4c0::/29 maxlen: 29 2a0b:b480::/29 maxlen: 29 2a0f:63c0::/29 maxlen: 29 2a0f:89c0::/29 maxlen: 29 2a10:7ac0::/29 maxlen: 29 2a10:a9c0::/29 maxlen: 29 2a13:5040::/29 maxlen: 29 2a13:bd40::/29 maxlen: 29 2a13:bec0::/29 maxlen: 29 2a13:cdc0::/29 maxlen: 29 2a13:d0c0::/29 maxlen: 29 2a13:d140::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.mft rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 07:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:e4:6e:1d:95:7e:d5:9e:bf:52:81:6f:ab:b6:41:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e Validity Not Before: Dec 18 19:16:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=0654c6cd402fc5b645faa65b0fcdd4cd36567895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e6:a2:0d:5b:87:65:20:9d:36:90:73:7c:a1: 05:4c:0a:a4:b5:84:f2:bb:37:1f:4e:fe:40:6c:ec: b5:57:53:02:ad:9f:d8:d8:e6:69:2f:8d:af:19:6d: 6e:b7:8c:a5:c0:fd:b1:49:df:98:a2:33:75:82:67: b8:e7:52:13:b6:62:bb:e9:b2:29:3e:2e:fc:d6:8f: 59:c2:d1:58:67:1d:75:49:de:b1:63:80:7f:d6:f2: 8f:8a:94:97:5d:d9:49:c0:9d:e9:60:49:f6:bd:4a: 3f:f4:c6:6c:72:13:fe:09:b3:9e:3e:a9:14:c1:7f: a7:1c:be:52:18:f5:8d:f9:5b:a7:75:08:cd:77:86: 69:70:a4:19:ad:27:57:11:3f:10:ff:df:2d:3c:4e: 98:71:67:8e:8c:c7:6c:44:06:cc:df:37:18:20:58: 6e:57:3a:ae:a7:dd:a5:28:54:fb:76:d9:97:a1:31: e5:36:7c:a2:a4:f1:e8:3b:a0:0c:bf:3c:4b:ca:4d: 0a:76:dd:0e:2e:37:94:9f:db:e1:86:ac:df:2d:4c: f9:37:41:93:40:bd:fa:10:04:f4:10:a4:da:2e:86: f4:9a:4e:08:c2:7a:89:73:35:02:f3:fc:9b:4d:8e: 98:3d:8f:91:cc:c2:f5:83:8f:46:43:a7:eb:f5:f4: 3c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:54:C6:CD:40:2F:C5:B6:45:FA:A6:5B:0F:CD:D4:CD:36:56:78:95 X509v3 Authority Key Identifier: keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/BlTGzUAvxbZF-qZbD83UzTZWeJU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:f240::/29 2a0b:8440::/29 2a0b:a4c0::/29 2a0b:b480::/29 2a0f:63c0::/29 2a0f:89c0::/29 2a10:7ac0::/29 2a10:a9c0::/29 2a13:5040::/29 2a13:bd40::/29 2a13:bec0::/29 2a13:cdc0::/29 2a13:d0c0::/29 2a13:d140::/29 Signature Algorithm: sha256WithRSAEncryption c6:39:52:81:df:d1:fd:4e:0e:e8:bb:d9:4b:eb:fc:ba:68:c3: bf:06:ab:3b:a8:3d:93:08:b0:bc:e9:d0:01:e8:bf:16:94:c2: 3c:87:75:5e:1e:3d:8f:7e:8d:01:57:2a:27:53:25:aa:73:b3: 3b:63:ea:5c:eb:3f:cf:41:f9:f7:35:a3:c2:98:aa:b9:f6:b0: 13:69:43:5c:65:dc:26:8d:bf:be:ee:2e:01:39:6d:84:96:f6: 3a:30:0a:7f:8d:7b:57:2b:32:c0:5a:8a:de:20:22:f0:5f:d3: 8b:ee:70:cc:40:bd:d6:b6:f6:56:5d:01:43:55:e6:fb:e2:9a: bb:00:33:29:60:29:d2:1b:54:5f:b5:7d:e1:c2:27:9b:67:b6: 4c:df:2d:c7:6e:31:be:ce:3b:e0:08:65:6f:ac:d8:74:9d:3a: ee:44:87:ea:a6:e2:a9:78:d6:f3:11:c5:f6:74:c0:64:84:a8: dc:04:c9:51:19:2e:5b:10:42:c5:81:fe:fe:81:f0:ee:5d:65: 03:06:b7:b3:20:52:fd:9e:cc:d4:f7:7c:20:35:44:be:f8:50: 36:c0:f2:e2:91:d2:39:01:ca:57:62:c7:5c:0a:29:6c:48:d1: c7:f0:9d:85:fe:24:1c:3e:2a:aa:ae:fd:66:bb:27:3c:9d:a6: a2:7a:1e:ef -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgISAZsy5G4dlX7Vnr9SgW+rtkETMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YWQ2MGRhNTI2NzFlOTA4M2NmMzk4NjRlY2EyYWEyMzI0 MWJlOWUwHhcNMjUxMjE4MTkxNjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjU0YzZjZDQwMmZjNWI2NDVmYWE2NWIwZmNkZDRjZDM2NTY3ODk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+aiDVuHZSCdNpBzfKEFTAqktYTy uzcfTv5AbOy1V1MCrZ/Y2OZpL42vGW1ut4ylwP2xSd+YojN1gme451ITtmK76bIp Pi781o9ZwtFYZx11Sd6xY4B/1vKPipSXXdlJwJ3pYEn2vUo/9MZschP+CbOePqkU wX+nHL5SGPWN+VundQjNd4ZpcKQZrSdXET8Q/98tPE6YcWeOjMdsRAbM3zcYIFhu Vzqup92lKFT7dtmXoTHlNnyipPHoO6AMvzxLyk0Kdt0OLjeUn9vhhqzfLUz5N0GT QL36EAT0EKTaLob0mk4IwnqJczUC8/ybTY6YPY+RzML1g49GQ6fr9fQ8+wIDAQAB o4ICZTCCAmEwHQYDVR0OBBYEFAZUxs1AL8W2RfqmWw/N1M02VniVMB8GA1UdIwQY MBaAFFitYNpSZx6Qg885hk7KKqIyQb6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0sxZzJsSm5IcENEenptR1Rzb3FvakpCdnA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy83YTE5ODgtMjczNi00OWRjLWE5MDct MTFiM2NmM2ZkNGUxLzEvQmxUR3pVQXZ4YlpGLXFaYkQ4M1V6VFpXZUpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy83YTE5ODgtMjczNi00OWRjLWE5MDctMTFiM2NmM2ZkNGUx LzEvV0sxZzJsSm5IcENEenptR1Rzb3FvakpCdnA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHsGCCsGAQUFBwEHAQH/BGwwajBoBAIAAjBiAwUDKgfyQAMF AyoLhEADBQMqC6TAAwUDKgu0gAMFAyoPY8ADBQMqD4nAAwUDKhB6wAMFAyoQqcAD BQMqE1BAAwUDKhO9QAMFAyoTvsADBQMqE83AAwUDKhPQwAMFAyoT0UAwDQYJKoZI hvcNAQELBQADggEBAMY5UoHf0f1ODui72Uvr/Lpow78GqzuoPZMIsLzp0AHovxaU wjyHdV4ePY9+jQFXKidTJapzsztj6lzrP89B+fc1o8KYqrn2sBNpQ1xl3CaNv77u LgE5bYSW9jowCn+Ne1crMsBait4gIvBf04vucMxAvda29lZdAUNV5vvimrsAMylg KdIbVF+1feHCJ5tntkzfLcduMb7OO+AIZW+s2HSdOu5Eh+qm4ql41vMRxfZ0wGSE qNwEyVEZLlsQQsWB/v6B8O5dZQMGt7MgUv2ezNT3fCA1RL74UDbA8uKR0jkByldi x1wKKWxI0cfwnYX+JBw+Kqqu/Wa7JzydpqJ6Hu8= -----END CERTIFICATE-----Generated at Sat Dec 20 11:47:02 2025 by rpki-client