This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/URu6RbbpNeggkq99HoBQq0K-CGw.roa File: URu6RbbpNeggkq99HoBQq0K-CGw.roa (raw, json) Hash identifier: SglHd7je2yZY5MNS1/0/uqc+KTjzW8LFZ4Gz7SHINKQ= Subject key identifier: 51:1B:BA:45:B6:E9:35:E8:20:92:AF:7D:1E:80:50:AB:42:BE:08:6C Certificate issuer: /CN=597a01de87e011803f890ae17749020f995f140c Certificate serial: 019B797E6FAAD8E1ABEF7C66F5171FE5DEC9 Authority key identifier: 59:7A:01:DE:87:E0:11:80:3F:89:0A:E1:77:49:02:0F:99:5F:14:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/URu6RbbpNeggkq99HoBQq0K-CGw.roa Signing time: Thu 01 Jan 2026 12:18:07 +0000 ROA not before: Thu 01 Jan 2026 12:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6878 IP address blocks: 164.30.0.0/17 maxlen: 24 2a07:b980:4000::/39 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/WXoB3ofgEYA_iQrhd0kCD5lfFAw.crl rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/WXoB3ofgEYA_iQrhd0kCD5lfFAw.mft rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:6f:aa:d8:e1:ab:ef:7c:66:f5:17:1f:e5:de:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=597a01de87e011803f890ae17749020f995f140c Validity Not Before: Jan 1 12:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=511bba45b6e935e82092af7d1e8050ab42be086c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fd:15:ba:31:bc:1e:a8:70:cd:78:2e:b4:73: ab:c5:74:31:e2:8e:19:01:e5:d6:49:dc:00:cb:84: fa:23:c9:11:f3:ff:fc:98:36:65:5f:79:e2:ae:b7: 21:bb:72:4b:f2:8f:28:b5:bb:c1:32:88:c7:4b:ce: c5:1f:0c:35:39:bd:84:9f:f4:f7:f8:b1:bb:a7:a7: 9b:ca:78:2e:6f:59:16:4c:3b:c4:bd:e7:ae:d8:45: bd:b6:89:76:74:5c:59:81:18:a4:c5:97:d7:95:87: 7b:b1:4d:39:7b:5d:e3:a9:56:02:7b:37:67:06:c4: 5c:19:58:3f:6f:2d:7f:cf:e7:1d:c8:1c:cd:86:a1: 91:07:b0:9e:4e:08:0b:5d:e1:74:03:2c:f8:77:f0: ca:a9:be:c8:bd:b2:36:5c:7e:d7:0b:f9:4d:3b:ae: 85:fe:aa:91:cc:c7:14:1f:af:61:1d:cb:e7:82:ad: 51:c6:6b:a5:a4:05:6b:39:5c:3d:2a:7e:e6:35:19: 15:40:7f:76:77:eb:9d:86:ad:ad:b8:d8:b4:90:66: 8f:c2:98:c1:d3:94:9c:05:52:d7:94:d2:61:d8:a5: dd:f2:05:b1:af:71:04:76:36:63:58:67:9a:ab:1c: e2:97:5f:db:50:c7:0b:64:4b:b1:34:48:70:75:ab: 07:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:1B:BA:45:B6:E9:35:E8:20:92:AF:7D:1E:80:50:AB:42:BE:08:6C X509v3 Authority Key Identifier: keyid:59:7A:01:DE:87:E0:11:80:3F:89:0A:E1:77:49:02:0F:99:5F:14:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/URu6RbbpNeggkq99HoBQq0K-CGw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/WXoB3ofgEYA_iQrhd0kCD5lfFAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.30.0.0/17 IPv6: 2a07:b980:4000::/39 Signature Algorithm: sha256WithRSAEncryption 02:6e:5f:a2:63:1e:37:a6:aa:1d:f4:38:8c:09:5c:fb:06:b4: 3c:eb:dd:3e:09:de:4f:52:82:39:70:eb:73:9c:bd:e2:07:95: dd:7f:e1:3b:27:5f:39:fa:8f:7a:98:39:2a:7c:36:7c:21:29: c0:44:40:30:ac:02:ca:73:87:7a:0b:0a:11:33:cc:58:d0:23: 39:71:ff:ec:04:a6:56:3f:be:22:69:6c:9d:bf:cf:12:6c:5b: 13:1f:7d:e7:6c:18:e8:68:78:c7:a7:5c:91:6a:3e:14:9d:5b: c4:c6:b3:a6:1d:77:64:9c:32:49:71:64:f6:b5:0f:66:62:0a: a1:a0:fe:02:ba:4f:15:f8:39:71:d5:10:33:c6:14:3a:db:35: ca:9b:a5:2f:a4:54:90:d4:ca:b4:83:da:ac:f7:b3:ef:f7:24: 2c:e4:d3:9b:bf:b9:04:16:83:b2:6b:15:1f:b5:e9:d0:72:de: 77:f1:4f:13:6c:fd:ce:f9:66:8c:74:d0:d8:6a:3d:11:57:a7: 7b:b6:8a:25:25:c7:5a:58:1e:c2:5b:29:8b:5a:31:9c:6e:2b: a9:93:77:36:2b:6c:d1:ff:56:01:da:24:bd:88:af:24:18:09: 85:13:01:6a:53:98:8a:d1:ae:e1:58:a7:bc:3c:72:78:37:e4: e8:67:1b:bd -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt5fm+q2OGr73xm9Rcf5d7JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5N2EwMWRlODdlMDExODAzZjg5MGFlMTc3NDkwMjBmOTk1 ZjE0MGMwHhcNMjYwMTAxMTIxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MTFiYmE0NWI2ZTkzNWU4MjA5MmFmN2QxZTgwNTBhYjQyYmUwODZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/0VujG8HqhwzXgutHOrxXQx4o4Z AeXWSdwAy4T6I8kR8//8mDZlX3nirrchu3JL8o8otbvBMojHS87FHww1Ob2En/T3 +LG7p6ebyngub1kWTDvEveeu2EW9tol2dFxZgRikxZfXlYd7sU05e13jqVYCezdn BsRcGVg/by1/z+cdyBzNhqGRB7CeTggLXeF0Ayz4d/DKqb7IvbI2XH7XC/lNO66F /qqRzMcUH69hHcvngq1RxmulpAVrOVw9Kn7mNRkVQH92d+udhq2tuNi0kGaPwpjB 05ScBVLXlNJh2KXd8gWxr3EEdjZjWGeaqxzil1/bUMcLZEuxNEhwdasHqQIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFFEbukW26TXoIJKvfR6AUKtCvghsMB8GA1UdIwQY MBaAFFl6Ad6H4BGAP4kK4XdJAg+ZXxQMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV1hvQjNvZmdFWUFfaVFyaGQwa0NENWxmRkF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yM2VkOWEtMWNhNS00NWVhLTliOGMt NzM1MzNkZTA5OWMzLzEvVVJ1NlJiYnBOZWdna3E5OUhvQlFxMEstQ0d3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8yM2VkOWEtMWNhNS00NWVhLTliOGMtNzM1MzNkZTA5OWMz LzEvV1hvQjNvZmdFWUFfaVFyaGQwa0NENWxmRkF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQHpB4AMA4E AgACMAgDBgEqB7mAQDANBgkqhkiG9w0BAQsFAAOCAQEAAm5fomMeN6aqHfQ4jAlc +wa0POvdPgneT1KCOXDrc5y94geV3X/hOydfOfqPepg5Knw2fCEpwERAMKwCynOH egsKETPMWNAjOXH/7ASmVj++Imlsnb/PEmxbEx9952wY6Gh4x6dckWo+FJ1bxMaz ph13ZJwySXFk9rUPZmIKoaD+ArpPFfg5cdUQM8YUOts1ypulL6RUkNTKtIParPez 7/ckLOTTm7+5BBaDsmsVH7Xp0HLed/FPE2z9zvlmjHTQ2Go9EVene7aKJSXHWlge wlspi1oxnG4rqZN3Nits0f9WAdokvYivJBgJhRMBalOYitGu4VinvDxyeDfk6Gcb vQ== -----END CERTIFICATE-----Generated at Sun Jan 25 19:37:35 2026 by rpki-client