This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/uhrmeJIDBf0UOu2SKTeGKN2KLdU.roa File: uhrmeJIDBf0UOu2SKTeGKN2KLdU.roa (raw, json) Hash identifier: 6yakXLB9HxwcEdeaop2mfVwvTXAmim03f6ri7g4Sfy8= Subject key identifier: BA:1A:E6:78:92:03:05:FD:14:3A:ED:92:29:37:86:28:DD:8A:2D:D5 Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b Certificate serial: 019B7F84148B9427A0DD03960EA514BF5CAD Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/uhrmeJIDBf0UOu2SKTeGKN2KLdU.roa Signing time: Fri 02 Jan 2026 16:22:00 +0000 ROA not before: Fri 02 Jan 2026 16:22:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39779 IP address blocks: 2a01:488:bb06::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.mft rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:14:8b:94:27:a0:dd:03:96:0e:a5:14:bf:5c:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b Validity Not Before: Jan 2 16:22:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba1ae678920305fd143aed9229378628dd8a2dd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3d:cf:d5:80:b4:8c:65:22:f3:1d:03:6a:90: 49:73:c8:f6:48:6b:7e:07:a6:ba:42:aa:01:f9:c1: 5d:a1:9c:25:e1:a3:0c:0c:77:8e:12:4a:ab:a6:06: c2:dd:d3:4d:35:4d:c9:56:9b:9a:18:64:b7:06:12: 25:55:d9:21:fa:ce:b5:63:8a:8f:36:c6:c6:6d:1d: d7:6c:27:40:ec:c0:3e:ef:76:bc:65:15:4c:c5:3b: be:3c:9d:10:80:1e:0b:77:f6:64:65:67:90:9a:17: ae:ff:ee:f7:be:0e:8d:d5:67:54:76:55:32:cd:16: be:6c:f7:bc:0a:dc:07:45:ee:0f:52:6f:81:34:47: 58:9c:ad:da:b8:d2:e9:55:9a:ab:e7:c7:41:7d:3d: a2:59:15:d7:af:0c:5f:64:78:93:64:2e:bc:85:4e: 4e:4d:ad:74:33:5c:35:ae:10:91:27:b8:1f:22:36: 2c:85:e6:e5:78:ab:8d:ea:3c:b0:ed:8a:2a:d0:aa: 0a:36:09:5f:ae:54:65:f5:5c:fc:5f:74:7c:be:f6: 75:40:3b:b1:39:12:f2:0e:a7:65:41:89:79:41:6f: f6:76:1f:dd:af:d3:ef:09:19:c6:9c:2c:db:11:5b: be:03:38:de:e6:c0:ca:57:dc:11:21:1d:85:4e:a2: 4b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:1A:E6:78:92:03:05:FD:14:3A:ED:92:29:37:86:28:DD:8A:2D:D5 X509v3 Authority Key Identifier: keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/uhrmeJIDBf0UOu2SKTeGKN2KLdU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:488:bb06::/48 Signature Algorithm: sha256WithRSAEncryption 67:2d:33:39:9b:19:86:cc:22:e9:f8:f9:93:a1:7c:df:37:e4: 34:8c:59:39:3c:59:49:8d:2d:f2:fe:df:61:31:a3:e9:d9:8f: c8:90:41:68:73:cb:07:08:34:eb:a3:8c:70:89:29:90:cb:ef: ec:1f:63:46:44:6c:fc:e6:4b:cb:55:c9:fc:d2:4b:89:49:cd: 48:a6:18:4d:7d:a2:19:60:90:30:0d:94:01:bc:a4:e7:ad:0a: 7f:50:94:24:db:7a:a5:44:f1:b4:13:3e:74:5b:9e:07:e2:f2: 5c:08:bf:78:40:d4:5d:56:e1:a8:24:c9:00:45:44:03:7e:f1: 83:05:16:22:c8:cf:39:b9:86:7a:fc:2e:45:e8:65:90:5e:cb: f7:fd:6c:30:0f:4f:d7:0c:6c:79:3d:34:56:d3:dc:21:f6:ac: fb:2c:5a:33:7d:4e:10:31:2c:35:3a:4b:e6:52:14:53:51:b6: ce:65:16:e5:de:c0:8f:1d:ec:de:30:8a:ec:9d:af:e0:72:48: 1b:78:14:17:56:66:ff:20:f7:59:5a:c4:12:12:21:04:20:fb: d3:09:99:9d:39:8a:4e:dc:1a:cf:49:d3:84:94:e7:aa:2e:e7: dc:7a:27:e0:db:80:bd:a2:63:76:36:76:b6:4a:d5:7f:71:d1: 66:ad:8d:f7 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/hBSLlCeg3QOWDqUUv1ytMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNmVkMGZiN2IzMjA4MzJhYzE1ODA1MzRjN2IyNjNmMzA0 ZTk4MWIwHhcNMjYwMTAyMTYyMjAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTFhZTY3ODkyMDMwNWZkMTQzYWVkOTIyOTM3ODYyOGRkOGEyZGQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApz3P1YC0jGUi8x0DapBJc8j2SGt+ B6a6QqoB+cFdoZwl4aMMDHeOEkqrpgbC3dNNNU3JVpuaGGS3BhIlVdkh+s61Y4qP NsbGbR3XbCdA7MA+73a8ZRVMxTu+PJ0QgB4Ld/ZkZWeQmheu/+73vg6N1WdUdlUy zRa+bPe8CtwHRe4PUm+BNEdYnK3auNLpVZqr58dBfT2iWRXXrwxfZHiTZC68hU5O Ta10M1w1rhCRJ7gfIjYshebleKuN6jyw7Yoq0KoKNglfrlRl9Vz8X3R8vvZ1QDux ORLyDqdlQYl5QW/2dh/dr9PvCRnGnCzbEVu+Azje5sDKV9wRIR2FTqJLbQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLoa5niSAwX9FDrtkik3hijdii3VMB8GA1UdIwQY MBaAFLpu0Pt7MggyrBWAU0x7Jj8wTpgbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQt MTYxZjM0MjM4N2QxLzEvdWhybWVKSURCZjBVT3UyU0tUZUdLTjJLTGRVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQtMTYxZjM0MjM4N2Qx LzEvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgEEiLsG MA0GCSqGSIb3DQEBCwUAA4IBAQBnLTM5mxmGzCLp+PmToXzfN+Q0jFk5PFlJjS3y /t9hMaPp2Y/IkEFoc8sHCDTro4xwiSmQy+/sH2NGRGz85kvLVcn80kuJSc1IphhN faIZYJAwDZQBvKTnrQp/UJQk23qlRPG0Ez50W54H4vJcCL94QNRdVuGoJMkARUQD fvGDBRYiyM85uYZ6/C5F6GWQXsv3/WwwD0/XDGx5PTRW09wh9qz7LFozfU4QMSw1 OkvmUhRTUbbOZRbl3sCPHezeMIrsna/gckgbeBQXVmb/IPdZWsQSEiEEIPvTCZmd OYpO3BrPSdOElOeqLufceifg24C9omN2Nna2StV/cdFmrY33 -----END CERTIFICATE-----Generated at Sun Jan 25 14:21:06 2026 by rpki-client