This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/6d74fd-5bb9-42f8-bb51-0d9cd7e8ff36/1/UnQYQckhZ4GJ4hvz2V3obUCnWQM.roa File: UnQYQckhZ4GJ4hvz2V3obUCnWQM.roa (raw, json) Hash identifier: 6r4OETawl2/CmtMrvXzxODkSxev0jxwRRiZOUVdB0TE= Subject key identifier: 52:74:18:41:C9:21:67:81:89:E2:1B:F3:D9:5D:E8:6D:40:A7:59:03 Certificate issuer: /CN=01d6ef0479f9fdfa826657dfd8e0ef3668ca1abf Certificate serial: 019B775962E4F586C934078395A805C8C317 Authority key identifier: 01:D6:EF:04:79:F9:FD:FA:82:66:57:DF:D8:E0:EF:36:68:CA:1A:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AdbvBHn5_fqCZlff2ODvNmjKGr8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/6d74fd-5bb9-42f8-bb51-0d9cd7e8ff36/1/UnQYQckhZ4GJ4hvz2V3obUCnWQM.roa Signing time: Thu 01 Jan 2026 02:18:25 +0000 ROA not before: Thu 01 Jan 2026 02:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2852 IP address blocks: 147.33.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/6d74fd-5bb9-42f8-bb51-0d9cd7e8ff36/1/AdbvBHn5_fqCZlff2ODvNmjKGr8.crl rsync://rpki.ripe.net/repository/DEFAULT/66/6d74fd-5bb9-42f8-bb51-0d9cd7e8ff36/1/AdbvBHn5_fqCZlff2ODvNmjKGr8.mft rsync://rpki.ripe.net/repository/DEFAULT/AdbvBHn5_fqCZlff2ODvNmjKGr8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:62:e4:f5:86:c9:34:07:83:95:a8:05:c8:c3:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01d6ef0479f9fdfa826657dfd8e0ef3668ca1abf Validity Not Before: Jan 1 02:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52741841c921678189e21bf3d95de86d40a75903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:16:e7:4f:b5:24:51:33:27:d7:3c:82:9d:55: f4:70:92:b8:51:61:87:b2:1c:9a:d1:76:40:d0:68: 64:bf:5e:b3:90:50:82:db:c0:2a:8a:7c:d3:da:6c: 99:ff:29:bf:c2:47:5e:48:d6:8f:79:fc:e1:5f:d5: e1:b0:15:11:66:8a:26:fe:fb:d6:57:b1:d5:ef:4e: 01:4f:a7:57:5a:f4:27:f4:4c:d3:c2:94:60:00:d0: 62:09:37:2b:7b:c7:a3:5f:8c:be:d4:9a:52:5f:24: 6f:09:b8:2e:b1:b6:6d:0e:83:31:ff:90:7f:b0:94: dd:51:8a:cf:0c:6e:80:9f:31:70:8c:6e:74:0f:18: ae:a6:d1:4d:e1:fd:ba:38:57:2a:06:4c:81:28:22: cd:d3:1d:96:32:24:bd:9d:d2:f1:73:30:cb:65:60: 92:e3:9b:eb:7d:27:48:d8:53:d4:34:94:fb:c5:fd: 8c:26:99:71:dc:c2:fb:7c:b0:02:10:47:b9:78:25: 86:96:fb:59:c1:5e:0f:cb:fa:50:c6:8f:96:88:d5: 15:cd:c9:69:14:fe:71:5f:c6:b9:9b:9f:e6:cc:0f: b3:3f:e7:69:cc:e9:39:35:33:e0:76:6a:f4:53:e8: 2f:9a:be:26:4f:ca:7a:f7:7b:4d:c3:7f:77:9b:98: ef:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:74:18:41:C9:21:67:81:89:E2:1B:F3:D9:5D:E8:6D:40:A7:59:03 X509v3 Authority Key Identifier: keyid:01:D6:EF:04:79:F9:FD:FA:82:66:57:DF:D8:E0:EF:36:68:CA:1A:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AdbvBHn5_fqCZlff2ODvNmjKGr8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/6d74fd-5bb9-42f8-bb51-0d9cd7e8ff36/1/UnQYQckhZ4GJ4hvz2V3obUCnWQM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/6d74fd-5bb9-42f8-bb51-0d9cd7e8ff36/1/AdbvBHn5_fqCZlff2ODvNmjKGr8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.33.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9c:84:66:50:d2:fb:43:60:b8:35:45:95:c8:7d:7b:90:e2:7e: be:10:bd:f1:8c:14:e4:ee:e2:14:70:e1:dd:a6:42:18:25:73: 4c:bc:d6:d4:92:64:41:c5:e3:c2:c2:41:2c:5b:1b:da:16:49: e0:4e:16:c0:99:92:01:aa:df:4d:15:72:33:74:e8:71:c8:76: c8:5c:0b:69:b6:15:e1:d3:76:c9:0f:b8:61:54:6d:1f:04:3c: 4a:0d:0f:3b:60:7e:e8:3b:1a:12:7a:32:08:5f:1e:ed:80:73: bc:5a:82:b6:bb:81:1d:98:63:8d:d1:65:b7:5a:c4:0d:20:ef: 8b:6e:fa:3a:47:fc:01:2c:29:12:2d:2a:9e:fa:9d:8d:8b:26: fe:f0:37:02:cd:0e:0d:1a:2d:05:9a:e1:98:a7:fe:ec:62:61: 8c:20:9e:cd:e7:de:aa:7c:2f:bf:c3:a7:cd:68:36:35:0e:2f: e1:e6:83:c2:27:d8:4c:cb:65:c4:5f:5a:93:e8:f1:b7:58:ca: bd:cf:8e:b9:37:fe:e0:3b:4f:1a:54:f0:33:8d:3b:5b:81:29: e6:b6:c0:ff:c9:4e:15:81:55:26:9a:0b:b0:f8:53:ec:cb:8e: 2c:2c:b9:ff:bb:ea:0f:1b:bf:7d:22:f6:12:a7:54:95:af:4f: ca:75:bd:36 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt3WWLk9YbJNAeDlagFyMMXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxZDZlZjA0NzlmOWZkZmE4MjY2NTdkZmQ4ZTBlZjM2Njhj YTFhYmYwHhcNMjYwMTAxMDIxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Mjc0MTg0MWM5MjE2NzgxODllMjFiZjNkOTVkZTg2ZDQwYTc1OTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2hbnT7UkUTMn1zyCnVX0cJK4UWGH shya0XZA0Ghkv16zkFCC28AqinzT2myZ/ym/wkdeSNaPefzhX9XhsBURZoom/vvW V7HV704BT6dXWvQn9EzTwpRgANBiCTcre8ejX4y+1JpSXyRvCbgusbZtDoMx/5B/ sJTdUYrPDG6AnzFwjG50DxiuptFN4f26OFcqBkyBKCLN0x2WMiS9ndLxczDLZWCS 45vrfSdI2FPUNJT7xf2MJplx3ML7fLACEEe5eCWGlvtZwV4Py/pQxo+WiNUVzclp FP5xX8a5m5/mzA+zP+dpzOk5NTPgdmr0U+gvmr4mT8p693tNw393m5jv7wIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFFJ0GEHJIWeBieIb89ld6G1Ap1kDMB8GA1UdIwQY MBaAFAHW7wR5+f36gmZX39jg7zZoyhq/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWRidkJIbjVfZnFDWmxmZjJPRHZObWpLR3I4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni82ZDc0ZmQtNWJiOS00MmY4LWJiNTEt MGQ5Y2Q3ZThmZjM2LzEvVW5RWVFja2haNEdKNGh2ejJWM29iVUNuV1FNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni82ZDc0ZmQtNWJiOS00MmY4LWJiNTEtMGQ5Y2Q3ZThmZjM2 LzEvQWRidkJIbjVfZnFDWmxmZjJPRHZObWpLR3I4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAkyEwDQYJ KoZIhvcNAQELBQADggEBAJyEZlDS+0NguDVFlch9e5Difr4QvfGMFOTu4hRw4d2m Qhglc0y81tSSZEHF48LCQSxbG9oWSeBOFsCZkgGq300VcjN06HHIdshcC2m2FeHT dskPuGFUbR8EPEoNDztgfug7GhJ6MghfHu2Ac7xagra7gR2YY43RZbdaxA0g74tu +jpH/AEsKRItKp76nY2LJv7wNwLNDg0aLQWa4Zin/uxiYYwgns3n3qp8L7/Dp81o NjUOL+Hmg8In2EzLZcRfWpPo8bdYyr3Pjrk3/uA7TxpU8DONO1uBKea2wP/JThWB VSaaC7D4U+zLjiwsuf+76g8bv30i9hKnVJWvT8p1vTY= -----END CERTIFICATE-----Generated at Mon Jan 26 09:23:39 2026 by rpki-client