This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/57860a-dd5e-46e8-9ecb-d078eec82b2a/1/USxwvtYXB02UPNM09473LfzB5NQ.roa File: USxwvtYXB02UPNM09473LfzB5NQ.roa (raw, json) Hash identifier: 56e1A04HmFY5l3wfjt2AxhdeII10Vyl+eKvMEFFPfGM= Subject key identifier: 51:2C:70:BE:D6:17:07:4D:94:3C:D3:34:F7:8E:F7:2D:FC:C1:E4:D4 Certificate issuer: /CN=1b982883e1dfbf4633e08c0b58c85e89ffc32101 Certificate serial: 019B783525CE611889411661F471D4E5546F Authority key identifier: 1B:98:28:83:E1:DF:BF:46:33:E0:8C:0B:58:C8:5E:89:FF:C3:21:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G5gog-Hfv0Yz4IwLWMheif_DIQE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/57860a-dd5e-46e8-9ecb-d078eec82b2a/1/USxwvtYXB02UPNM09473LfzB5NQ.roa Signing time: Thu 01 Jan 2026 06:18:27 +0000 ROA not before: Thu 01 Jan 2026 06:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42244 IP address blocks: 2a04:b540:1000::/36 maxlen: 36 2a04:b540:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/57860a-dd5e-46e8-9ecb-d078eec82b2a/1/G5gog-Hfv0Yz4IwLWMheif_DIQE.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/57860a-dd5e-46e8-9ecb-d078eec82b2a/1/G5gog-Hfv0Yz4IwLWMheif_DIQE.mft rsync://rpki.ripe.net/repository/DEFAULT/G5gog-Hfv0Yz4IwLWMheif_DIQE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:25:ce:61:18:89:41:16:61:f4:71:d4:e5:54:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b982883e1dfbf4633e08c0b58c85e89ffc32101 Validity Not Before: Jan 1 06:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=512c70bed617074d943cd334f78ef72dfcc1e4d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:77:c7:59:a5:fb:0f:12:10:4e:4c:fa:5e:b0: ee:8f:d6:80:f1:f3:03:c8:b0:47:46:e3:1b:dc:d4: 92:e5:0c:ef:98:80:46:e8:e4:3f:92:fe:48:5b:37: 36:59:6d:a6:08:c7:ac:14:35:c1:e7:54:f4:7e:ea: 71:f0:5e:3b:e8:90:ef:81:90:c5:fe:9b:c8:bc:1a: 45:2e:42:72:77:b2:2b:f6:12:ad:ba:4f:23:19:1c: e8:a4:f2:86:10:9f:14:5f:d5:c0:a7:c7:10:b8:2a: 66:56:bf:59:70:16:bf:b0:c0:c5:b0:87:3f:91:db: d0:cb:16:c0:4c:87:22:9a:81:e0:68:f5:39:0b:5d: 78:53:df:4b:4c:7e:58:60:4d:9f:17:42:3c:8b:67: cd:78:a6:83:34:c9:bb:6b:24:5c:6b:c2:78:b5:73: f7:ac:0a:d9:d6:f2:5b:b8:23:49:f7:6d:d7:a4:6c: 02:c6:e4:21:66:93:94:10:5c:db:ef:13:f7:2a:e6: bb:b0:14:88:91:7a:df:3e:03:db:12:91:3a:79:6e: 5b:6a:d9:8f:cc:49:f7:c3:28:bb:fd:6b:ba:30:41: da:f8:e4:96:56:aa:2a:43:44:47:32:9f:cc:c1:d4: 95:3a:2b:9e:1c:bb:3d:92:72:bf:a6:e5:56:5b:18: f2:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:2C:70:BE:D6:17:07:4D:94:3C:D3:34:F7:8E:F7:2D:FC:C1:E4:D4 X509v3 Authority Key Identifier: keyid:1B:98:28:83:E1:DF:BF:46:33:E0:8C:0B:58:C8:5E:89:FF:C3:21:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G5gog-Hfv0Yz4IwLWMheif_DIQE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/57860a-dd5e-46e8-9ecb-d078eec82b2a/1/USxwvtYXB02UPNM09473LfzB5NQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/57860a-dd5e-46e8-9ecb-d078eec82b2a/1/G5gog-Hfv0Yz4IwLWMheif_DIQE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a04:b540:1000::-2a04:b540:2fff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 61:25:b1:80:8c:c1:63:82:93:08:b7:82:eb:f8:a3:4f:c0:58: 18:cc:43:1a:39:f6:a1:ee:53:87:40:fd:9b:a5:21:6c:34:17: 6d:a2:8b:c8:3b:cb:3d:b4:aa:cd:fe:f2:fd:c6:ea:72:3d:54: fe:50:a6:47:02:19:0d:f1:40:05:9b:c5:24:59:c4:fa:b6:b4: 57:83:2d:88:61:85:29:96:76:0b:97:9a:e6:1f:b4:bb:49:cd: bf:01:d6:69:97:31:49:e0:7d:eb:0b:3e:c1:6f:85:6a:34:ae: 68:7b:1f:03:90:02:1e:4c:f4:44:64:68:c8:86:76:ad:f2:ad: c3:91:d4:93:49:25:6b:6f:3f:0e:c9:20:55:84:f7:01:40:c6: 9c:d1:e7:52:6c:13:f2:e2:80:f7:7d:4b:ed:9f:60:1b:82:3f: 52:76:1f:b3:80:44:e3:26:8f:a5:ef:a4:58:f7:58:6a:e3:d0: ab:df:2a:18:3a:81:74:53:4d:c8:29:33:82:60:24:a0:9d:56: 47:1d:63:56:9b:ca:b9:43:bc:e6:c3:ee:6c:a6:76:94:7a:83: 02:98:a4:0b:8e:78:d8:94:f5:9b:a2:a3:73:79:36:7e:a7:54: d4:1e:a8:80:7c:c4:14:6e:5d:2f:f0:45:04:43:ac:0d:b8:00: 43:15:e0:65 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt4NSXOYRiJQRZh9HHU5VRvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiOTgyODgzZTFkZmJmNDYzM2UwOGMwYjU4Yzg1ZTg5ZmZj MzIxMDEwHhcNMjYwMTAxMDYxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MTJjNzBiZWQ2MTcwNzRkOTQzY2QzMzRmNzhlZjcyZGZjYzFlNGQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3fHWaX7DxIQTkz6XrDuj9aA8fMD yLBHRuMb3NSS5QzvmIBG6OQ/kv5IWzc2WW2mCMesFDXB51T0fupx8F476JDvgZDF /pvIvBpFLkJyd7Ir9hKtuk8jGRzopPKGEJ8UX9XAp8cQuCpmVr9ZcBa/sMDFsIc/ kdvQyxbATIcimoHgaPU5C114U99LTH5YYE2fF0I8i2fNeKaDNMm7ayRca8J4tXP3 rArZ1vJbuCNJ923XpGwCxuQhZpOUEFzb7xP3Kua7sBSIkXrfPgPbEpE6eW5batmP zEn3wyi7/Wu6MEHa+OSWVqoqQ0RHMp/MwdSVOiueHLs9knK/puVWWxjyBwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFFEscL7WFwdNlDzTNPeO9y38weTUMB8GA1UdIwQY MBaAFBuYKIPh379GM+CMC1jIXon/wyEBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzVnb2ctSGZ2MFl6NEl3TFdNaGVpZl9ESVFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS81Nzg2MGEtZGQ1ZS00NmU4LTllY2It ZDA3OGVlYzgyYjJhLzEvVVN4d3Z0WVhCMDJVUE5NMDk0NzNMZnpCNU5RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS81Nzg2MGEtZGQ1ZS00NmU4LTllY2ItZDA3OGVlYzgyYjJh LzEvRzVnb2ctSGZ2MFl6NEl3TFdNaGVpZl9ESVFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASMBADBgQqBLVA EAMGBCoEtUAgMA0GCSqGSIb3DQEBCwUAA4IBAQBhJbGAjMFjgpMIt4Lr+KNPwFgY zEMaOfah7lOHQP2bpSFsNBdtoovIO8s9tKrN/vL9xupyPVT+UKZHAhkN8UAFm8Uk WcT6trRXgy2IYYUplnYLl5rmH7S7Sc2/AdZplzFJ4H3rCz7Bb4VqNK5oex8DkAIe TPREZGjIhnat8q3DkdSTSSVrbz8OySBVhPcBQMac0edSbBPy4oD3fUvtn2Abgj9S dh+zgETjJo+l76RY91hq49Cr3yoYOoF0U03IKTOCYCSgnVZHHWNWm8q5Q7zmw+5s pnaUeoMCmKQLjnjYlPWboqNzeTZ+p1TUHqiAfMQUbl0v8EUEQ6wNuABDFeBl -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:06 2026 by rpki-client