This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/13072f-178d-4f0c-9ffb-4dbe10c3a71f/1/uWhFb1HwZvJ_IfY-iiz9y_hTepY.roa File: uWhFb1HwZvJ_IfY-iiz9y_hTepY.roa (raw, json) Hash identifier: 7jH7FBgqrDkvhTn6gZysjOdIXNNg1HK77FI6FjOJlP8= Subject key identifier: B9:68:45:6F:51:F0:66:F2:7F:21:F6:3E:8A:2C:FD:CB:F8:53:7A:96 Certificate issuer: /CN=e80ec31635f4d91bb11312ba0a3465c18f233f68 Certificate serial: 019B7CED78F3D4199DB886B62DC34528BD43 Authority key identifier: E8:0E:C3:16:35:F4:D9:1B:B1:13:12:BA:0A:34:65:C1:8F:23:3F:68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6A7DFjX02RuxExK6CjRlwY8jP2g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/13072f-178d-4f0c-9ffb-4dbe10c3a71f/1/uWhFb1HwZvJ_IfY-iiz9y_hTepY.roa Signing time: Fri 02 Jan 2026 04:18:16 +0000 ROA not before: Fri 02 Jan 2026 04:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214957 IP address blocks: 2a10:ed40:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/13072f-178d-4f0c-9ffb-4dbe10c3a71f/1/6A7DFjX02RuxExK6CjRlwY8jP2g.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/13072f-178d-4f0c-9ffb-4dbe10c3a71f/1/6A7DFjX02RuxExK6CjRlwY8jP2g.mft rsync://rpki.ripe.net/repository/DEFAULT/6A7DFjX02RuxExK6CjRlwY8jP2g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:78:f3:d4:19:9d:b8:86:b6:2d:c3:45:28:bd:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e80ec31635f4d91bb11312ba0a3465c18f233f68 Validity Not Before: Jan 2 04:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b968456f51f066f27f21f63e8a2cfdcbf8537a96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:66:e7:b0:44:32:b2:af:7f:a0:6b:b0:0c:b4: f5:b6:47:a2:5f:48:63:95:4b:74:7f:26:26:7a:e6: 05:98:fd:d7:09:cc:a5:7d:07:d6:da:b3:aa:d0:ed: 49:52:a5:90:34:79:05:df:60:fb:8d:e1:f2:a3:d6: b7:6e:db:42:47:2b:e2:b7:65:26:cb:fb:50:41:4d: ec:43:7c:88:60:9a:e1:03:a1:6f:da:ac:27:f3:ab: 9c:01:f6:69:d4:08:6c:03:32:ba:64:3f:34:07:20: 60:8b:ce:d8:c8:0d:fd:25:85:80:38:a8:ee:23:b0: 04:16:be:ff:a3:f6:00:a2:e2:8a:c0:b4:87:bb:18: 86:13:2e:3b:27:1f:f3:cc:f5:7a:1e:c0:a4:08:9f: e1:48:09:e2:00:c4:ed:ed:f3:73:ae:b2:51:f0:40: d3:09:6f:00:13:f9:ae:d8:7b:e3:c0:66:af:fd:14: a3:47:d2:b9:50:49:4d:75:0d:6c:a6:e0:6a:1b:3b: 13:31:e0:86:c2:69:bd:53:29:55:f8:d6:b0:a3:2e: c3:60:c7:29:0a:eb:7f:0a:14:80:16:da:cd:ea:3d: ff:73:c6:8b:9b:91:3d:ff:2b:d0:0d:ca:00:71:da: 7d:e1:b5:2e:ac:72:f9:3e:be:8c:9c:d7:31:da:cf: 75:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:68:45:6F:51:F0:66:F2:7F:21:F6:3E:8A:2C:FD:CB:F8:53:7A:96 X509v3 Authority Key Identifier: keyid:E8:0E:C3:16:35:F4:D9:1B:B1:13:12:BA:0A:34:65:C1:8F:23:3F:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6A7DFjX02RuxExK6CjRlwY8jP2g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/13072f-178d-4f0c-9ffb-4dbe10c3a71f/1/uWhFb1HwZvJ_IfY-iiz9y_hTepY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/13072f-178d-4f0c-9ffb-4dbe10c3a71f/1/6A7DFjX02RuxExK6CjRlwY8jP2g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:ed40:7::/48 Signature Algorithm: sha256WithRSAEncryption a4:78:27:2a:32:29:9e:ea:2c:87:70:c1:52:f1:6d:a3:ab:8a: f8:26:57:12:3b:37:fe:80:79:9e:59:10:c1:f6:68:db:90:38: 62:43:c7:6d:a2:aa:d4:77:b0:23:d9:81:6b:89:10:6b:87:9a: d5:48:d9:fa:6a:b9:49:b2:78:ec:4e:45:d8:60:07:7b:2f:18: 66:94:d0:2f:6c:e0:0a:ba:9b:72:27:6e:f8:33:00:8a:6d:0c: 18:06:86:81:3f:7c:1f:78:b4:90:c4:f8:27:bd:58:5f:86:d4: 0b:b3:75:00:ad:00:aa:f6:08:11:21:bb:9d:56:22:b2:6d:89: 7b:1d:d1:50:2f:2a:e8:c9:68:3e:24:1d:43:0f:ba:9b:69:3b: 3e:78:53:41:63:d0:99:dc:81:78:3d:6d:50:b7:86:a7:fe:8a: 60:0f:32:38:6d:ca:77:d8:37:7a:ed:77:e7:43:da:28:26:79: a6:cb:aa:78:64:52:88:7a:5e:4d:ae:3e:53:74:a8:6e:3f:f3: 42:11:70:02:ac:5a:6f:75:ed:2d:c2:19:13:c9:7b:e4:bb:3b: 47:9c:ae:89:23:f7:7d:1a:f2:16:0a:e5:d4:aa:07:4a:ae:53: 4e:4e:b6:4e:6c:b3:b4:1f:b5:bc:e6:3f:ca:a7:15:db:3f:84: 88:34:26:2a -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt87Xjz1BmduIa2LcNFKL1DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU4MGVjMzE2MzVmNGQ5MWJiMTEzMTJiYTBhMzQ2NWMxOGYy MzNmNjgwHhcNMjYwMTAyMDQxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTY4NDU2ZjUxZjA2NmYyN2YyMWY2M2U4YTJjZmRjYmY4NTM3YTk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWbnsEQysq9/oGuwDLT1tkeiX0hj lUt0fyYmeuYFmP3XCcylfQfW2rOq0O1JUqWQNHkF32D7jeHyo9a3bttCRyvit2Um y/tQQU3sQ3yIYJrhA6Fv2qwn86ucAfZp1AhsAzK6ZD80ByBgi87YyA39JYWAOKju I7AEFr7/o/YAouKKwLSHuxiGEy47Jx/zzPV6HsCkCJ/hSAniAMTt7fNzrrJR8EDT CW8AE/mu2HvjwGav/RSjR9K5UElNdQ1spuBqGzsTMeCGwmm9UylV+Nawoy7DYMcp Cut/ChSAFtrN6j3/c8aLm5E9/yvQDcoAcdp94bUurHL5Pr6MnNcx2s91kwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLloRW9R8GbyfyH2Poos/cv4U3qWMB8GA1UdIwQY MBaAFOgOwxY19NkbsRMSugo0ZcGPIz9oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNkE3REZqWDAyUnV4RXhLNkNqUmx3WThqUDJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8xMzA3MmYtMTc4ZC00ZjBjLTlmZmIt NGRiZTEwYzNhNzFmLzEvdVdoRmIxSHdadkpfSWZZLWlpejl5X2hUZXBZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC8xMzA3MmYtMTc4ZC00ZjBjLTlmZmItNGRiZTEwYzNhNzFm LzEvNkE3REZqWDAyUnV4RXhLNkNqUmx3WThqUDJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhDtQAAH MA0GCSqGSIb3DQEBCwUAA4IBAQCkeCcqMime6iyHcMFS8W2jq4r4JlcSOzf+gHme WRDB9mjbkDhiQ8dtoqrUd7Aj2YFriRBrh5rVSNn6arlJsnjsTkXYYAd7LxhmlNAv bOAKuptyJ274MwCKbQwYBoaBP3wfeLSQxPgnvVhfhtQLs3UArQCq9ggRIbudViKy bYl7HdFQLyroyWg+JB1DD7qbaTs+eFNBY9CZ3IF4PW1Qt4an/opgDzI4bcp32Dd6 7XfnQ9ooJnmmy6p4ZFKIel5Nrj5TdKhuP/NCEXACrFpvde0twhkTyXvkuztHnK6J I/d9GvIWCuXUqgdKrlNOTrZObLO0H7W85j/KpxXbP4SINCYq -----END CERTIFICATE-----Generated at Sun Jan 25 13:01:59 2026 by rpki-client