This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/u0RIuGfpHnx-Tn2Xp-wlaIQU95A.roa File: u0RIuGfpHnx-Tn2Xp-wlaIQU95A.roa (raw, json) Hash identifier: VuT5SalQp4yYIzm6lgKxTmu1Rlv5TD85uBnxUVTY7eo= Subject key identifier: BB:44:48:B8:67:E9:1E:7C:7E:4E:7D:97:A7:EC:25:68:84:14:F7:90 Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c Certificate serial: 019B7AC95353610C8B09D109BE9E91E8AE5E Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/u0RIuGfpHnx-Tn2Xp-wlaIQU95A.roa Signing time: Thu 01 Jan 2026 18:19:32 +0000 ROA not before: Thu 01 Jan 2026 18:19:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 139309 IP address blocks: 2a01:3e6::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.mft rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:53:53:61:0c:8b:09:d1:09:be:9e:91:e8:ae:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c Validity Not Before: Jan 1 18:19:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bb4448b867e91e7c7e4e7d97a7ec25688414f790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bf:fa:a8:5f:11:51:16:12:37:46:1b:66:b7: 35:17:67:93:bf:d2:12:b3:95:68:5e:11:3b:40:41: 2e:e3:f0:8e:c1:11:a9:99:b0:51:74:15:96:de:18: b3:82:7e:38:22:c5:d0:8b:ab:81:8e:0b:c3:57:d7: c0:18:b7:4c:37:4e:62:93:32:9b:1d:6a:1e:75:bb: 78:f4:1d:54:25:71:e5:04:15:bf:a7:75:1e:2f:35: 7e:23:57:dd:79:87:78:e4:ed:84:4b:63:9e:6b:9a: 49:6b:37:57:f0:84:e6:05:5d:71:5d:b7:ae:c0:1c: 37:90:43:ce:dd:86:f0:67:65:34:5d:39:ba:fd:8d: 9b:68:47:92:dd:d5:29:64:49:b9:92:96:e3:11:52: 55:8d:fa:f7:16:ce:b0:72:19:d9:4d:73:f3:9f:6c: c6:1f:69:c6:6a:93:15:8b:2c:68:fc:71:48:82:7e: 01:d1:0d:1e:04:b1:14:ef:fb:15:c1:da:d8:ce:8b: b1:10:e3:7e:1e:5a:f8:2e:22:77:a8:f0:55:ea:5d: 00:52:f9:ff:d1:d0:c7:18:61:ec:2e:45:23:40:da: 01:ac:ea:41:e4:6c:24:90:5b:83:7f:0f:1c:03:f0: c9:c7:74:06:44:de:c7:25:10:16:4e:8b:70:91:2d: 93:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:44:48:B8:67:E9:1E:7C:7E:4E:7D:97:A7:EC:25:68:84:14:F7:90 X509v3 Authority Key Identifier: keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/u0RIuGfpHnx-Tn2Xp-wlaIQU95A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a01:3e6::/32 Signature Algorithm: sha256WithRSAEncryption 9d:40:5b:2b:e4:13:54:1b:a0:1c:34:34:e8:a5:5c:57:77:40: 07:8d:85:f7:fc:ab:cb:5b:82:fc:99:6e:4d:50:af:d7:93:c1: 47:c2:d6:89:fe:a8:a8:9f:48:e9:3f:a5:57:28:1f:7f:b5:7d: 97:c3:78:5e:9e:bd:30:84:13:9d:3d:c6:dd:84:11:1f:32:93: 33:6c:5a:25:b1:17:00:53:c0:e3:0e:75:9c:4c:94:35:4c:89: d7:d7:75:93:f8:cc:a6:29:ad:5f:08:90:26:1e:0e:18:9c:91: 5f:8c:ae:cc:9e:8c:22:ad:2a:d4:97:97:3c:b8:74:2b:36:d6: 20:1c:6c:4b:e8:ed:6e:04:a3:03:23:32:b2:e5:98:e0:3f:06: 4c:be:02:8c:49:34:ff:d4:ac:94:e3:53:53:af:9d:af:36:d2: ac:f7:b4:c6:0b:3f:51:1d:30:b8:d3:b3:8f:9d:5c:e5:20:f6: dc:5f:bb:98:b0:da:4a:26:00:37:5f:3b:19:6f:fa:9b:ed:f2: b8:db:ab:1b:b3:18:84:28:8a:a1:89:5e:e3:c3:f7:56:22:c7: 4e:6b:bf:0d:dc:3f:c6:a6:15:a1:36:ce:ba:d3:9c:18:dd:b6: c0:c2:d3:da:ff:b2:03:18:e3:1c:12:30:ab:99:b8:c0:af:93: e5:83:6a:9c -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt6yVNTYQyLCdEJvp6R6K5eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkZDFiMjU4NzQ5MGFkMDYxY2IyMDcxNzZiZGVlYzgxYTUz MTU4OGMwHhcNMjYwMTAxMTgxOTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYjQ0NDhiODY3ZTkxZTdjN2U0ZTdkOTdhN2VjMjU2ODg0MTRmNzkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvr/6qF8RURYSN0YbZrc1F2eTv9IS s5VoXhE7QEEu4/COwRGpmbBRdBWW3hizgn44IsXQi6uBjgvDV9fAGLdMN05ikzKb HWoedbt49B1UJXHlBBW/p3UeLzV+I1fdeYd45O2ES2Oea5pJazdX8ITmBV1xXbeu wBw3kEPO3YbwZ2U0XTm6/Y2baEeS3dUpZEm5kpbjEVJVjfr3Fs6wchnZTXPzn2zG H2nGapMViyxo/HFIgn4B0Q0eBLEU7/sVwdrYzouxEON+Hlr4LiJ3qPBV6l0AUvn/ 0dDHGGHsLkUjQNoBrOpB5GwkkFuDfw8cA/DJx3QGRN7HJRAWTotwkS2TewIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFLtESLhn6R58fk59l6fsJWiEFPeQMB8GA1UdIwQY MBaAFE3Rslh0kK0GHLIHF2ve7IGlMViMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGRHeVdIU1FyUVljc2djWGE5N3NnYVV4V0l3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8wMWQyYWYtMWYyMS00YjgwLWI2NjUt ZGI0NjNjNWZiMGI0LzEvdTBSSXVHZnBIbngtVG4yWHAtd2xhSVFVOTVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC8wMWQyYWYtMWYyMS00YjgwLWI2NjUtZGI0NjNjNWZiMGI0 LzEvVGRHeVdIU1FyUVljc2djWGE5N3NnYVV4V0l3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgED5jAN BgkqhkiG9w0BAQsFAAOCAQEAnUBbK+QTVBugHDQ06KVcV3dAB42F9/yry1uC/Jlu TVCv15PBR8LWif6oqJ9I6T+lVygff7V9l8N4Xp69MIQTnT3G3YQRHzKTM2xaJbEX AFPA4w51nEyUNUyJ19d1k/jMpimtXwiQJh4OGJyRX4yuzJ6MIq0q1JeXPLh0KzbW IBxsS+jtbgSjAyMysuWY4D8GTL4CjEk0/9SslONTU6+drzbSrPe0xgs/UR0wuNOz j51c5SD23F+7mLDaSiYAN187GW/6m+3yuNurG7MYhCiKoYle48P3ViLHTmu/Ddw/ xqYVoTbOutOcGN22wMLT2v+yAxjjHBIwq5m4wK+T5YNqnA== -----END CERTIFICATE-----Generated at Sun Jan 25 16:55:07 2026 by rpki-client