This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/urEWBZOnm7WKMhvQTm1izzcCYag.roa File: urEWBZOnm7WKMhvQTm1izzcCYag.roa (raw, json) Hash identifier: FEAeulBV1KrK3TH9JavCA4eeT7PWhs/mcBsPYnO8hB8= Subject key identifier: BA:B1:16:05:93:A7:9B:B5:8A:32:1B:D0:4E:6D:62:CF:37:02:61:A8 Certificate issuer: /CN=b464e0af28b755c4ec88010d94298697d1883933 Certificate serial: 019B797EB4E5BACE17CC901DAFFA2065A7E3 Authority key identifier: B4:64:E0:AF:28:B7:55:C4:EC:88:01:0D:94:29:86:97:D1:88:39:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tGTgryi3VcTsiAENlCmGl9GIOTM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/urEWBZOnm7WKMhvQTm1izzcCYag.roa Signing time: Thu 01 Jan 2026 12:18:25 +0000 ROA not before: Thu 01 Jan 2026 12:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57344 IP address blocks: 2.56.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/tGTgryi3VcTsiAENlCmGl9GIOTM.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/tGTgryi3VcTsiAENlCmGl9GIOTM.mft rsync://rpki.ripe.net/repository/DEFAULT/tGTgryi3VcTsiAENlCmGl9GIOTM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:b4:e5:ba:ce:17:cc:90:1d:af:fa:20:65:a7:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b464e0af28b755c4ec88010d94298697d1883933 Validity Not Before: Jan 1 12:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bab1160593a79bb58a321bd04e6d62cf370261a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0d:dd:b6:36:64:c6:99:d8:45:83:37:35:e4: d9:c0:2e:76:b1:b4:52:0b:fa:91:ec:54:d6:51:67: 11:49:f5:12:5b:75:cb:d8:e8:b6:18:f7:1b:12:e3: 2d:32:be:19:27:f7:36:37:9e:ef:55:99:b1:31:44: b4:26:04:6c:16:fb:b2:e0:7f:b6:2c:9b:12:d4:18: e2:89:99:e2:b8:b8:13:ea:cd:ae:21:32:30:1d:40: b9:9b:82:3f:98:60:c6:ec:0b:24:bd:c4:db:13:61: c3:a9:b8:42:0b:4a:70:1a:62:04:e8:26:2b:07:11: 2d:31:55:41:c2:f7:8d:3e:7e:08:20:7f:a4:67:09: 59:49:7a:3b:09:f2:3e:a0:d8:b3:31:08:5f:9f:57: 4c:11:61:b0:bc:3d:70:bd:77:4f:3d:af:b8:3b:d5: 8c:fa:bb:07:d4:57:38:54:9f:e2:4f:73:5b:21:ff: db:78:5f:99:c4:18:8d:d2:2d:0d:57:42:3f:54:ff: 19:7c:65:e9:8a:86:9b:26:73:23:df:96:9d:58:6a: fd:31:26:76:83:a6:ee:d3:f2:f9:43:b9:02:ca:f6: 15:0a:1b:aa:b8:fa:1c:23:0e:2d:48:31:b9:83:02: dd:d7:6d:fb:fb:86:4c:9b:22:82:3d:88:48:01:e2: 38:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:B1:16:05:93:A7:9B:B5:8A:32:1B:D0:4E:6D:62:CF:37:02:61:A8 X509v3 Authority Key Identifier: keyid:B4:64:E0:AF:28:B7:55:C4:EC:88:01:0D:94:29:86:97:D1:88:39:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tGTgryi3VcTsiAENlCmGl9GIOTM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/urEWBZOnm7WKMhvQTm1izzcCYag.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/tGTgryi3VcTsiAENlCmGl9GIOTM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.14.0/24 Signature Algorithm: sha256WithRSAEncryption 67:2a:af:be:eb:f7:57:c1:09:9b:2e:62:b0:75:7a:2a:45:90: 14:43:ef:0c:24:ea:33:ca:a1:2c:cf:62:4f:a6:96:a4:c6:b6: 31:a0:7a:1f:0c:69:3c:d8:d3:d2:81:39:13:dd:6f:51:a7:95: 4c:6e:0b:30:4f:6f:2d:b4:a7:fd:3e:d4:f4:00:ea:61:cc:60: d2:2b:37:c1:39:d3:cf:04:f6:eb:a0:7e:51:cf:6a:c8:d0:df: 2c:9f:75:3d:22:15:ec:e3:97:d6:e0:ab:11:b2:e7:5e:5f:bf: 44:24:5c:e2:6e:25:5f:18:78:30:76:2a:19:60:44:37:f9:34: 30:5e:41:b9:9f:a9:bd:c1:a8:ac:1f:47:d0:05:ec:33:17:cc: a1:61:2a:e1:67:c4:2b:cc:6e:db:9d:15:17:f2:a0:7e:c0:4b: 81:be:ee:2f:a8:f5:58:ea:dc:64:57:ef:7f:35:25:d4:e9:f2: f8:d5:5d:67:08:bc:6e:d1:e4:45:cc:1e:a5:77:9b:9f:08:dd: cb:5d:6d:aa:b6:11:81:c7:63:c6:28:35:a9:8a:d8:04:2c:d5: 52:5f:8e:2e:0e:b2:e2:02:bc:2d:79:e7:42:5a:13:c8:62:74: c5:8b:97:38:f1:ff:2e:f0:44:a3:0e:f0:6a:9e:ea:fb:2c:e7: e5:2e:a6:c2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5frTlus4XzJAdr/ogZafjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0NjRlMGFmMjhiNzU1YzRlYzg4MDEwZDk0Mjk4Njk3ZDE4 ODM5MzMwHhcNMjYwMTAxMTIxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYWIxMTYwNTkzYTc5YmI1OGEzMjFiZDA0ZTZkNjJjZjM3MDI2MWE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQ3dtjZkxpnYRYM3NeTZwC52sbRS C/qR7FTWUWcRSfUSW3XL2Oi2GPcbEuMtMr4ZJ/c2N57vVZmxMUS0JgRsFvuy4H+2 LJsS1BjiiZniuLgT6s2uITIwHUC5m4I/mGDG7AskvcTbE2HDqbhCC0pwGmIE6CYr BxEtMVVBwveNPn4IIH+kZwlZSXo7CfI+oNizMQhfn1dMEWGwvD1wvXdPPa+4O9WM +rsH1Fc4VJ/iT3NbIf/beF+ZxBiN0i0NV0I/VP8ZfGXpioabJnMj35adWGr9MSZ2 g6bu0/L5Q7kCyvYVChuquPocIw4tSDG5gwLd1237+4ZMmyKCPYhIAeI4nwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLqxFgWTp5u1ijIb0E5tYs83AmGoMB8GA1UdIwQY MBaAFLRk4K8ot1XE7IgBDZQphpfRiDkzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEdUZ3J5aTNWY1RzaUFFTmxDbUdsOUdJT1RNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS8wY2FhNmQtMTA5ZS00NWYzLWE5MzIt NDc1YzVjOTFmNDc0LzEvdXJFV0JaT25tN1dLTWh2UVRtMWl6emNDWWFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS8wY2FhNmQtMTA5ZS00NWYzLWE5MzItNDc1YzVjOTFmNDc0 LzEvdEdUZ3J5aTNWY1RzaUFFTmxDbUdsOUdJT1RNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjgOMA0G CSqGSIb3DQEBCwUAA4IBAQBnKq++6/dXwQmbLmKwdXoqRZAUQ+8MJOozyqEsz2JP ppakxrYxoHofDGk82NPSgTkT3W9Rp5VMbgswT28ttKf9PtT0AOphzGDSKzfBOdPP BPbroH5Rz2rI0N8sn3U9IhXs45fW4KsRsudeX79EJFzibiVfGHgwdioZYEQ3+TQw XkG5n6m9waisH0fQBewzF8yhYSrhZ8QrzG7bnRUX8qB+wEuBvu4vqPVY6txkV+9/ NSXU6fL41V1nCLxu0eRFzB6ld5ufCN3LXW2qthGBx2PGKDWpitgELNVSX44uDrLi ArwteedCWhPIYnTFi5c48f8u8ESjDvBqnur7LOflLqbC -----END CERTIFICATE-----Generated at Sun Jan 25 15:13:46 2026 by rpki-client