This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/59ea29-f288-468e-a33e-559e3d76c5b6/1/U2gb-EjyRMt7fV8m-vDaXptr02U.roa File: U2gb-EjyRMt7fV8m-vDaXptr02U.roa (raw, json) Hash identifier: o3dQkZyaFtK7POh0P6n77n6F8iCQXMX1VAPnE+jPMDM= Subject key identifier: 53:68:1B:F8:48:F2:44:CB:7B:7D:5F:26:FA:F0:DA:5E:9B:6B:D3:65 Certificate issuer: /CN=729ca63e6d2b504449217dc0788c9d37489b4c45 Certificate serial: 019B8DD6179E3B99D92335EA042237CDFD30 Authority key identifier: 72:9C:A6:3E:6D:2B:50:44:49:21:7D:C0:78:8C:9D:37:48:9B:4C:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cpymPm0rUERJIX3AeIydN0ibTEU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/59ea29-f288-468e-a33e-559e3d76c5b6/1/U2gb-EjyRMt7fV8m-vDaXptr02U.roa Signing time: Mon 05 Jan 2026 11:06:16 +0000 ROA not before: Mon 05 Jan 2026 11:06:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42288 IP address blocks: 212.108.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/59ea29-f288-468e-a33e-559e3d76c5b6/1/cpymPm0rUERJIX3AeIydN0ibTEU.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/59ea29-f288-468e-a33e-559e3d76c5b6/1/cpymPm0rUERJIX3AeIydN0ibTEU.mft rsync://rpki.ripe.net/repository/DEFAULT/cpymPm0rUERJIX3AeIydN0ibTEU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:8d:d6:17:9e:3b:99:d9:23:35:ea:04:22:37:cd:fd:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=729ca63e6d2b504449217dc0788c9d37489b4c45 Validity Not Before: Jan 5 11:06:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=53681bf848f244cb7b7d5f26faf0da5e9b6bd365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:32:15:bb:a7:c1:63:b3:47:3e:3f:43:c2:7e: dd:37:8f:89:18:ca:f9:c6:97:ca:1f:10:73:3b:ce: 9d:9e:a5:c9:c8:4b:d7:ae:a6:8a:8d:3d:b6:8f:b7: 49:2a:77:24:fb:20:32:ef:7a:41:e0:0a:35:be:21: 18:e6:19:36:db:93:f7:1c:55:aa:c8:83:e8:87:ec: 2c:12:68:9c:47:11:0d:e3:e6:fc:7f:63:61:f5:5b: 28:10:9d:b3:76:34:ff:09:ce:6a:52:73:6d:65:00: b5:c7:70:e6:17:99:4e:59:7a:e4:49:19:65:ac:d7: e1:a3:18:b7:c9:90:4e:d1:00:26:f8:b6:38:97:25: cf:0c:54:ad:7d:04:df:4c:33:08:49:60:8c:03:6f: c2:52:82:d2:69:f4:e1:fc:ec:97:c2:54:31:f1:1e: 27:65:b2:dc:59:a9:13:89:f3:f5:c3:b8:5d:20:bc: 37:48:6e:aa:d8:cd:3d:c9:0b:5a:4e:0b:cb:96:ae: 43:33:06:7e:b8:97:7c:7d:fc:2b:63:b8:12:64:13: ff:36:fc:f3:3e:1a:9e:5f:8b:c9:d2:ff:a8:2e:19: 14:08:1e:f5:a5:4e:7c:d3:ed:df:76:03:ba:57:56: 2b:c0:3d:1f:49:d3:b9:b2:a3:d6:b3:a5:10:ca:14: 24:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:68:1B:F8:48:F2:44:CB:7B:7D:5F:26:FA:F0:DA:5E:9B:6B:D3:65 X509v3 Authority Key Identifier: keyid:72:9C:A6:3E:6D:2B:50:44:49:21:7D:C0:78:8C:9D:37:48:9B:4C:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cpymPm0rUERJIX3AeIydN0ibTEU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/59ea29-f288-468e-a33e-559e3d76c5b6/1/U2gb-EjyRMt7fV8m-vDaXptr02U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/59ea29-f288-468e-a33e-559e3d76c5b6/1/cpymPm0rUERJIX3AeIydN0ibTEU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.108.98.0/24 Signature Algorithm: sha256WithRSAEncryption 73:12:04:83:f8:e1:18:01:b3:16:a1:33:c5:5a:9b:71:ce:11: c4:38:92:46:41:a7:9d:99:1a:9a:6c:57:17:a0:cb:75:64:14: d4:d0:49:b3:59:67:c9:97:3a:1a:47:b4:9f:fd:9a:5b:b9:de: da:f3:18:f1:5d:ef:4a:e4:a0:63:fd:08:28:b7:05:de:68:5d: be:a5:09:04:51:f5:14:5a:5a:76:3f:49:55:ad:a5:e6:15:11: 34:e5:03:27:4b:b3:a8:b0:86:1c:e9:84:9a:bf:f7:6c:d8:c3: fa:ce:a9:a6:b1:ff:d6:65:10:f1:4c:aa:51:98:69:53:ad:d2: dc:59:33:13:c6:d3:59:be:eb:c3:1c:14:8b:6f:2d:79:5e:da: 7e:9b:c1:23:4c:d3:06:71:b9:bf:23:79:23:81:4d:d7:db:0f: ca:57:91:8e:a5:c6:c5:f1:8f:0f:d6:54:c6:3a:ce:c1:9f:22: e8:55:d9:72:30:36:db:e1:4b:ec:09:7b:ea:13:c6:20:4a:e1: b5:7f:79:52:af:e0:95:c9:ba:c8:c3:36:50:92:fa:93:6a:3e: 2c:ff:ee:44:46:e3:1f:43:e4:c0:79:cd:00:b6:6e:a3:b2:fc: 86:3f:e9:05:df:d6:a7:95:f7:e9:f6:df:ca:ab:e8:1c:60:4d: 71:6e:c0:16 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZuN1heeO5nZIzXqBCI3zf0wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyOWNhNjNlNmQyYjUwNDQ0OTIxN2RjMDc4OGM5ZDM3NDg5 YjRjNDUwHhcNMjYwMTA1MTEwNjE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MzY4MWJmODQ4ZjI0NGNiN2I3ZDVmMjZmYWYwZGE1ZTliNmJkMzY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyzIVu6fBY7NHPj9Dwn7dN4+JGMr5 xpfKHxBzO86dnqXJyEvXrqaKjT22j7dJKnck+yAy73pB4Ao1viEY5hk225P3HFWq yIPoh+wsEmicRxEN4+b8f2Nh9VsoEJ2zdjT/Cc5qUnNtZQC1x3DmF5lOWXrkSRll rNfhoxi3yZBO0QAm+LY4lyXPDFStfQTfTDMISWCMA2/CUoLSafTh/OyXwlQx8R4n ZbLcWakTifP1w7hdILw3SG6q2M09yQtaTgvLlq5DMwZ+uJd8ffwrY7gSZBP/Nvzz PhqeX4vJ0v+oLhkUCB71pU580+3fdgO6V1YrwD0fSdO5sqPWs6UQyhQk2wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFNoG/hI8kTLe31fJvrw2l6ba9NlMB8GA1UdIwQY MBaAFHKcpj5tK1BESSF9wHiMnTdIm0xFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3B5bVBtMHJVRVJKSVgzQWVJeWROMGliVEVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS81OWVhMjktZjI4OC00NjhlLWEzM2Ut NTU5ZTNkNzZjNWI2LzEvVTJnYi1FanlSTXQ3ZlY4bS12RGFYcHRyMDJVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS81OWVhMjktZjI4OC00NjhlLWEzM2UtNTU5ZTNkNzZjNWI2 LzEvY3B5bVBtMHJVRVJKSVgzQWVJeWROMGliVEVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1GxiMA0G CSqGSIb3DQEBCwUAA4IBAQBzEgSD+OEYAbMWoTPFWptxzhHEOJJGQaedmRqabFcX oMt1ZBTU0EmzWWfJlzoaR7Sf/Zpbud7a8xjxXe9K5KBj/QgotwXeaF2+pQkEUfUU Wlp2P0lVraXmFRE05QMnS7OosIYc6YSav/ds2MP6zqmmsf/WZRDxTKpRmGlTrdLc WTMTxtNZvuvDHBSLby15Xtp+m8EjTNMGcbm/I3kjgU3X2w/KV5GOpcbF8Y8P1lTG Os7BnyLoVdlyMDbb4UvsCXvqE8YgSuG1f3lSr+CVybrIwzZQkvqTaj4s/+5ERuMf Q+TAec0Atm6jsvyGP+kF39anlffp9t/Kq+gcYE1xbsAW -----END CERTIFICATE-----Generated at Mon Jan 26 07:23:24 2026 by rpki-client