This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/uqK8RxQN9LvzCAlm9cz-JPc33k0.roa File: uqK8RxQN9LvzCAlm9cz-JPc33k0.roa (raw, json) Hash identifier: QBT2sv9FfNzV4E0o6WzeRcOpOw1Nw/sc0uB77lAIYy8= Subject key identifier: BA:A2:BC:47:14:0D:F4:BB:F3:08:09:66:F5:CC:FE:24:F7:37:DE:4D Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b Certificate serial: 019B7F8418E89BA19F7A65DA099964BDF475 Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/uqK8RxQN9LvzCAlm9cz-JPc33k0.roa Signing time: Fri 02 Jan 2026 16:22:02 +0000 ROA not before: Fri 02 Jan 2026 16:22:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 397518 IP address blocks: 2a01:488:bb17::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.mft rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:18:e8:9b:a1:9f:7a:65:da:09:99:64:bd:f4:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b Validity Not Before: Jan 2 16:22:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=baa2bc47140df4bbf3080966f5ccfe24f737de4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b2:78:ae:12:9f:61:9b:ad:e8:2d:f5:ac:94: 52:ce:23:73:23:3f:7f:a7:a9:36:cb:7f:5f:a3:a5: 3e:60:a5:01:6a:2b:1e:24:a8:bf:ba:81:d6:8e:7b: 3c:99:26:5b:be:68:08:e7:e6:92:5f:47:53:43:a2: 47:22:0c:2b:ea:33:31:d2:1e:b7:a5:2d:8b:99:62: 47:00:51:5c:a2:ec:38:bf:43:f8:82:10:0c:77:54: 57:66:c5:cc:bd:ea:24:0f:1f:b5:c8:63:51:da:be: 4f:9f:2d:1f:63:d7:26:1c:8f:86:c3:ca:46:e9:b1: 8c:12:02:1d:0d:38:f9:c6:d4:af:44:ed:8e:5b:08: fd:70:55:7c:6d:30:ec:72:d2:2b:b4:98:06:d2:7b: 94:75:ff:a3:4c:20:f8:16:ce:22:8a:06:0d:95:f6: 1a:55:c8:24:0c:06:d8:47:47:27:3b:26:2d:cb:8a: c7:2d:69:67:50:4c:4d:f2:df:64:fb:97:ba:5b:97: f2:a1:25:7d:a3:b5:5c:3f:71:be:43:a9:74:9d:3d: 1a:b6:f6:9d:6d:be:0b:a2:ff:2c:db:85:cc:03:79: 95:34:18:0c:81:5a:99:23:ca:e9:14:1c:65:02:59: d7:ef:1d:8f:25:95:ab:2e:d8:53:79:05:09:e2:8c: bf:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A2:BC:47:14:0D:F4:BB:F3:08:09:66:F5:CC:FE:24:F7:37:DE:4D X509v3 Authority Key Identifier: keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/uqK8RxQN9LvzCAlm9cz-JPc33k0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:488:bb17::/48 Signature Algorithm: sha256WithRSAEncryption 9a:0f:95:3f:00:b9:b8:a9:82:07:b2:4a:b6:62:9a:42:b0:f3: 95:eb:19:99:0e:f1:37:aa:a0:c0:b8:6a:e9:08:ed:50:4f:f1: 86:95:1e:2b:98:56:4e:56:e8:a0:5d:be:5d:aa:a6:15:ee:ba: 7e:23:49:17:05:c4:c9:d4:00:3b:f6:87:61:f8:cf:a5:ca:e0: a0:19:18:55:b2:2d:a8:27:ff:ed:d2:6a:e7:a7:99:84:0f:46: da:c6:4e:5d:7f:52:7a:44:cf:76:e1:e1:ef:5f:19:46:6c:a0: 9a:40:40:4b:66:89:51:6c:d7:51:c2:fb:6b:13:62:49:4a:c7: 0a:5f:ae:a7:dd:e0:29:cf:b8:96:dc:1c:05:9d:e1:e1:89:67: 80:03:1b:f2:2e:a0:c9:67:34:36:ff:d1:64:7b:66:13:95:f5: 1e:ad:f1:90:a8:46:e1:de:af:39:8a:9f:b9:c7:a1:c7:cb:62: a9:70:72:50:e5:2e:ca:b1:8b:a7:6e:e3:9e:68:b2:a3:81:00: 2a:a4:18:3b:42:a6:b5:52:d4:cb:5c:3b:59:aa:0d:5f:6b:54: fc:49:0b:df:41:cd:ea:d9:0c:a1:60:fd:c0:c6:4c:f2:16:42: 69:e9:5c:83:9a:74:3a:ff:a3:6b:83:cf:c7:7c:17:07:f1:f5: d3:6d:50:bb -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/hBjom6GfemXaCZlkvfR1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNmVkMGZiN2IzMjA4MzJhYzE1ODA1MzRjN2IyNjNmMzA0 ZTk4MWIwHhcNMjYwMTAyMTYyMjAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYWEyYmM0NzE0MGRmNGJiZjMwODA5NjZmNWNjZmUyNGY3MzdkZTRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbJ4rhKfYZut6C31rJRSziNzIz9/ p6k2y39fo6U+YKUBaiseJKi/uoHWjns8mSZbvmgI5+aSX0dTQ6JHIgwr6jMx0h63 pS2LmWJHAFFcouw4v0P4ghAMd1RXZsXMveokDx+1yGNR2r5Pny0fY9cmHI+Gw8pG 6bGMEgIdDTj5xtSvRO2OWwj9cFV8bTDsctIrtJgG0nuUdf+jTCD4Fs4iigYNlfYa VcgkDAbYR0cnOyYty4rHLWlnUExN8t9k+5e6W5fyoSV9o7VcP3G+Q6l0nT0atvad bb4Lov8s24XMA3mVNBgMgVqZI8rpFBxlAlnX7x2PJZWrLthTeQUJ4oy/TQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLqivEcUDfS78wgJZvXM/iT3N95NMB8GA1UdIwQY MBaAFLpu0Pt7MggyrBWAU0x7Jj8wTpgbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQt MTYxZjM0MjM4N2QxLzEvdXFLOFJ4UU45THZ6Q0FsbTljei1KUGMzM2swLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQtMTYxZjM0MjM4N2Qx LzEvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgEEiLsX MA0GCSqGSIb3DQEBCwUAA4IBAQCaD5U/ALm4qYIHskq2YppCsPOV6xmZDvE3qqDA uGrpCO1QT/GGlR4rmFZOVuigXb5dqqYV7rp+I0kXBcTJ1AA79odh+M+lyuCgGRhV si2oJ//t0mrnp5mED0baxk5df1J6RM924eHvXxlGbKCaQEBLZolRbNdRwvtrE2JJ SscKX66n3eApz7iW3BwFneHhiWeAAxvyLqDJZzQ2/9Fke2YTlfUerfGQqEbh3q85 ip+5x6HHy2KpcHJQ5S7KsYunbuOeaLKjgQAqpBg7Qqa1UtTLXDtZqg1fa1T8SQvf Qc3q2QyhYP3AxkzyFkJp6VyDmnQ6/6Nrg8/HfBcH8fXTbVC7 -----END CERTIFICATE-----Generated at Sun Jan 25 17:15:28 2026 by rpki-client