This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/CHm4uxJXlMUd0r5QClzcF966Ijw.roa File: CHm4uxJXlMUd0r5QClzcF966Ijw.roa (raw, json) Hash identifier: s8FUQD2MuDH7rbiip50DyRQrMult5B8vV44+OSbORFQ= Subject key identifier: 08:79:B8:BB:12:57:94:C5:1D:D2:BE:50:0A:5C:DC:17:DE:BA:22:3C Certificate issuer: /CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Certificate serial: 019B77C6B1EA6A350E51F5A61E0A1E422AD0 Authority key identifier: BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/CHm4uxJXlMUd0r5QClzcF966Ijw.roa Signing time: Thu 01 Jan 2026 04:17:48 +0000 ROA not before: Thu 01 Jan 2026 04:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212913 IP address blocks: 2a06:1301:4610::/48 maxlen: 48 2a14:a402::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:b1:ea:6a:35:0e:51:f5:a6:1e:0a:1e:42:2a:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Validity Not Before: Jan 1 04:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0879b8bb125794c51dd2be500a5cdc17deba223c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:24:23:5b:4c:2b:25:b0:d9:91:d3:82:7c:1c: 79:1f:f0:18:a4:b7:2e:27:b0:f9:ad:3a:a9:b7:f5: 4b:94:83:36:c1:d7:32:75:2e:a9:1a:96:84:e2:8a: be:a3:ca:e7:f1:f1:42:d0:44:86:e2:d1:a6:27:a8: f9:65:77:20:f7:b2:74:bb:97:00:cc:f3:cf:ef:67: e4:1f:a7:c1:e1:83:1a:be:89:40:ef:43:4f:6a:87: 04:d8:f0:c5:85:88:d1:10:72:76:67:0e:9a:57:54: b1:4b:0c:3e:d2:56:eb:eb:3f:b3:0f:8c:5e:72:e2: c2:64:76:d5:5d:d3:45:60:c6:8c:1c:bf:f2:ab:36: bb:99:4e:6b:cc:3e:37:1d:cc:88:5e:7c:11:84:55: 28:1c:3f:97:17:c9:21:c3:ff:82:81:ca:12:37:34: be:78:16:dc:18:17:69:9d:f6:e1:e9:1f:f0:1a:6d: fa:74:dd:09:43:2d:72:a1:c3:8c:f0:65:f7:5e:87: 75:21:b1:a6:4f:72:fd:7c:6e:51:5a:5e:fc:e6:38: 71:5e:5d:67:b6:47:0c:a4:6a:3a:b4:f3:df:a7:4b: ad:a3:99:b2:56:9a:6f:43:0d:23:46:2c:86:50:33: b8:62:36:40:a1:af:d6:8d:99:0d:aa:e0:00:3a:aa: b4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:79:B8:BB:12:57:94:C5:1D:D2:BE:50:0A:5C:DC:17:DE:BA:22:3C X509v3 Authority Key Identifier: keyid:BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/CHm4uxJXlMUd0r5QClzcF966Ijw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1301:4610::/48 2a14:a402::/32 Signature Algorithm: sha256WithRSAEncryption 22:7a:e7:6b:7b:c8:5a:5f:bb:f2:1b:74:90:32:40:1e:d1:d7: 02:13:cd:ef:3b:45:55:38:be:3c:11:08:c0:84:0c:dc:6a:46: 0f:6e:32:63:f5:c5:ba:bb:5f:29:cc:6c:9f:a7:4d:5c:64:79: 7d:cf:eb:38:88:23:ce:5f:ba:97:78:20:3f:0a:12:aa:1f:41: fe:07:6b:f5:ed:37:e0:e3:76:fe:9a:a9:a5:ea:3c:f7:80:93: 97:90:bc:97:c7:e4:75:7b:11:98:23:1d:f9:09:9b:6c:bc:b7: 60:3b:44:6d:be:6f:9e:72:55:da:d5:1c:79:d9:92:09:ac:ed: ea:81:5a:58:91:ea:9e:c2:a9:e9:af:3e:73:5c:9f:ea:aa:5c: 00:d4:26:86:36:21:28:02:4e:58:26:de:80:67:80:c7:e1:e3: 30:00:8e:14:f6:56:58:b0:af:d9:7e:03:22:59:26:1a:a5:f7: d5:16:15:79:49:dd:cf:e8:2e:1c:aa:26:9e:90:ab:59:ae:be: 54:1b:16:9d:1a:2f:65:ef:59:a3:73:62:4b:ff:94:91:ba:79: c9:5b:49:3e:3f:c2:b3:26:f2:35:8e:e1:d8:f4:8d:5f:44:ac: e6:3b:f5:89:f3:4e:4f:c8:49:77:83:53:58:ca:e8:0a:f2:5c: 47:5b:30:40 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZt3xrHqajUOUfWmHgoeQirQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYTBmMjU4ZWVmNGIyYmY0YmJhYTg0MzBjMWU1OGNhOGMx ODhlYTcwHhcNMjYwMTAxMDQxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwODc5YjhiYjEyNTc5NGM1MWRkMmJlNTAwYTVjZGMxN2RlYmEyMjNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6CQjW0wrJbDZkdOCfBx5H/AYpLcu J7D5rTqpt/VLlIM2wdcydS6pGpaE4oq+o8rn8fFC0ESG4tGmJ6j5ZXcg97J0u5cA zPPP72fkH6fB4YMavolA70NPaocE2PDFhYjREHJ2Zw6aV1SxSww+0lbr6z+zD4xe cuLCZHbVXdNFYMaMHL/yqza7mU5rzD43HcyIXnwRhFUoHD+XF8khw/+CgcoSNzS+ eBbcGBdpnfbh6R/wGm36dN0JQy1yocOM8GX3Xod1IbGmT3L9fG5RWl785jhxXl1n tkcMpGo6tPPfp0uto5myVppvQw0jRiyGUDO4YjZAoa/WjZkNquAAOqq0aQIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFAh5uLsSV5TFHdK+UApc3BfeuiI8MB8GA1UdIwQY MBaAFLqg8lju9LK/S7qoQwweWMqMGI6nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEt ZTU3NjhkNmIxODJjLzEvQ0htNHV4SlhsTVVkMHI1UUNsemNGOTY2SWp3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEtZTU3NjhkNmIxODJj LzEvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwcAKgYTAUYQ AwUAKhSkAjANBgkqhkiG9w0BAQsFAAOCAQEAInrna3vIWl+78ht0kDJAHtHXAhPN 7ztFVTi+PBEIwIQM3GpGD24yY/XFurtfKcxsn6dNXGR5fc/rOIgjzl+6l3ggPwoS qh9B/gdr9e034ON2/pqppeo894CTl5C8l8fkdXsRmCMd+QmbbLy3YDtEbb5vnnJV 2tUcedmSCazt6oFaWJHqnsKp6a8+c1yf6qpcANQmhjYhKAJOWCbegGeAx+HjMACO FPZWWLCv2X4DIlkmGqX31RYVeUndz+guHKomnpCrWa6+VBsWnRovZe9Zo3NiS/+U kbp5yVtJPj/CsybyNY7h2PSNX0Ss5jv1ifNOT8hJd4NTWMroCvJcR1swQA== -----END CERTIFICATE-----Generated at Sun Jan 25 16:14:26 2026 by rpki-client