This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/FwWBUFukI5sYaoIJXPQl_VpBKGw.roa File: FwWBUFukI5sYaoIJXPQl_VpBKGw.roa (raw, json) Hash identifier: 1A5Wlz49N8I7V2ONwfh6sYJRe2syIOSrNYZlIXmZWdY= Subject key identifier: 17:05:81:50:5B:A4:23:9B:18:6A:82:09:5C:F4:25:FD:5A:41:28:6C Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c Certificate serial: 019B7AC94ED06FEE1177593A37ABFD526183 Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/FwWBUFukI5sYaoIJXPQl_VpBKGw.roa Signing time: Thu 01 Jan 2026 18:19:31 +0000 ROA not before: Thu 01 Jan 2026 18:19:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34164 IP address blocks: 2a01:3e0:402::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.mft rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:4e:d0:6f:ee:11:77:59:3a:37:ab:fd:52:61:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c Validity Not Before: Jan 1 18:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=170581505ba4239b186a82095cf425fd5a41286c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:85:81:39:2e:81:68:34:de:d3:af:71:b8:9e: 3d:ad:5e:3d:85:13:7f:c3:6a:3a:1b:fc:52:4f:e5: 9c:a9:a6:2d:1b:16:1c:74:97:f5:b2:d0:81:eb:17: 34:e4:77:aa:45:f4:34:54:10:68:0a:ad:73:3a:20: 83:da:25:a8:a2:48:93:12:b5:0c:8e:b2:e9:a2:fb: 31:3f:91:4b:1c:27:a6:b5:16:46:a4:55:bb:5a:41: 7e:2e:b5:df:72:0e:22:e0:5e:42:10:06:93:cd:6d: a2:1c:49:94:98:e9:fd:74:f0:ff:9b:df:7d:16:c1: a5:75:75:14:09:46:82:b2:f3:b0:c8:e6:6c:73:09: 02:65:2f:df:6b:eb:4e:df:bf:17:54:81:23:14:87: 98:92:d5:77:4f:f6:c2:ae:ab:93:86:cc:56:24:a1: 66:aa:5d:d5:6e:6d:82:8b:f3:e8:c6:cb:68:e2:1d: 71:54:df:8c:55:60:29:cf:6b:84:90:7a:2a:d3:8a: e3:63:5a:4a:29:6d:8a:40:30:df:1c:48:2d:48:ab: 1a:cd:d8:61:d1:6a:a6:34:2e:2f:13:a2:61:4d:9d: 14:05:2c:03:d4:f2:76:7d:78:73:74:0f:17:00:3a: 31:a9:3f:49:50:c8:3b:9e:41:43:4c:36:64:86:e3: 4f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:05:81:50:5B:A4:23:9B:18:6A:82:09:5C:F4:25:FD:5A:41:28:6C X509v3 Authority Key Identifier: keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/FwWBUFukI5sYaoIJXPQl_VpBKGw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:3e0:402::/48 Signature Algorithm: sha256WithRSAEncryption 56:68:67:52:c0:1f:ac:31:fa:18:27:31:de:ca:30:7b:a6:6c: 3d:d6:12:4e:06:b8:e8:61:a6:b6:8b:c1:2f:8a:da:da:4c:2c: a0:0e:9f:47:89:06:ec:20:69:9c:f4:f8:90:8b:98:78:2b:93: 67:dc:71:47:7d:ce:ba:0a:45:29:e4:db:ac:f3:24:55:61:6c: 2d:c1:2d:e2:2d:7c:26:de:e5:82:87:77:64:d7:81:28:3e:81: 0f:d3:fc:9e:f7:1e:77:92:01:ed:71:6f:93:7c:33:7d:49:64: ee:0b:60:95:59:ad:9c:57:33:ac:0f:82:00:72:f1:08:9f:44: 71:08:f9:b9:b0:74:3b:b4:3c:c0:39:8e:a9:01:5d:ac:36:5a: 58:49:de:1b:b0:f1:3c:e3:a6:be:c5:90:a6:20:03:65:02:c3: d7:a6:14:fe:90:41:83:ef:1c:40:d3:75:06:fe:7f:40:57:db: 92:f5:9b:51:c2:f6:b9:cb:2c:b0:4a:15:8a:c2:80:83:59:c8: 85:77:e3:7d:cb:90:7a:64:d2:89:7c:52:f3:51:3c:10:1c:2c: 15:8d:76:09:bc:01:cf:9c:f2:c0:c1:02:18:42:df:d0:5d:92: 01:85:78:13:ec:bd:03:0c:7e:89:c5:7c:4e:dc:7c:b4:69:20: e1:4b:80:d2 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt6yU7Qb+4Rd1k6N6v9UmGDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkZDFiMjU4NzQ5MGFkMDYxY2IyMDcxNzZiZGVlYzgxYTUz MTU4OGMwHhcNMjYwMTAxMTgxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNzA1ODE1MDViYTQyMzliMTg2YTgyMDk1Y2Y0MjVmZDVhNDEyODZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlIWBOS6BaDTe069xuJ49rV49hRN/ w2o6G/xST+WcqaYtGxYcdJf1stCB6xc05HeqRfQ0VBBoCq1zOiCD2iWookiTErUM jrLpovsxP5FLHCemtRZGpFW7WkF+LrXfcg4i4F5CEAaTzW2iHEmUmOn9dPD/m999 FsGldXUUCUaCsvOwyOZscwkCZS/fa+tO378XVIEjFIeYktV3T/bCrquThsxWJKFm ql3Vbm2Ci/Poxsto4h1xVN+MVWApz2uEkHoq04rjY1pKKW2KQDDfHEgtSKsazdhh 0WqmNC4vE6JhTZ0UBSwD1PJ2fXhzdA8XADoxqT9JUMg7nkFDTDZkhuNPuwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFBcFgVBbpCObGGqCCVz0Jf1aQShsMB8GA1UdIwQY MBaAFE3Rslh0kK0GHLIHF2ve7IGlMViMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGRHeVdIU1FyUVljc2djWGE5N3NnYVV4V0l3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8wMWQyYWYtMWYyMS00YjgwLWI2NjUt ZGI0NjNjNWZiMGI0LzEvRndXQlVGdWtJNXNZYW9JSlhQUWxfVnBCS0d3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC8wMWQyYWYtMWYyMS00YjgwLWI2NjUtZGI0NjNjNWZiMGI0 LzEvVGRHeVdIU1FyUVljc2djWGE5N3NnYVV4V0l3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgED4AQC MA0GCSqGSIb3DQEBCwUAA4IBAQBWaGdSwB+sMfoYJzHeyjB7pmw91hJOBrjoYaa2 i8EvitraTCygDp9HiQbsIGmc9PiQi5h4K5Nn3HFHfc66CkUp5Nus8yRVYWwtwS3i LXwm3uWCh3dk14EoPoEP0/ye9x53kgHtcW+TfDN9SWTuC2CVWa2cVzOsD4IAcvEI n0RxCPm5sHQ7tDzAOY6pAV2sNlpYSd4bsPE846a+xZCmIANlAsPXphT+kEGD7xxA 03UG/n9AV9uS9ZtRwva5yyywShWKwoCDWciFd+N9y5B6ZNKJfFLzUTwQHCwVjXYJ vAHPnPLAwQIYQt/QXZIBhXgT7L0DDH6JxXxO3Hy0aSDhS4DS -----END CERTIFICATE-----Generated at Sun Jan 25 16:54:09 2026 by rpki-client