This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/ULfP7S3K6Ksk8C6TR4RZSqXerPo.roa File: ULfP7S3K6Ksk8C6TR4RZSqXerPo.roa (raw, json) Hash identifier: jDQhgjn7JFfsrl3H/uni3GxDG1EWoZv53nMWeBGAfcA= Subject key identifier: 50:B7:CF:ED:2D:CA:E8:AB:24:F0:2E:93:47:84:59:4A:A5:DE:AC:FA Certificate issuer: /CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c Certificate serial: 019B78352EA30D882206945BBAB30535E734 Authority key identifier: 56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/ULfP7S3K6Ksk8C6TR4RZSqXerPo.roa Signing time: Thu 01 Jan 2026 06:18:29 +0000 ROA not before: Thu 01 Jan 2026 06:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61120 IP address blocks: 2a10:fa81:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.mft rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:2e:a3:0d:88:22:06:94:5b:ba:b3:05:35:e7:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c Validity Not Before: Jan 1 06:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=50b7cfed2dcae8ab24f02e934784594aa5deacfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e5:7b:bd:db:a1:67:a6:11:2c:eb:89:fa:3c: 56:4f:6e:c2:96:11:d8:16:0b:84:0f:67:9f:f5:23: 35:b3:92:90:e4:97:52:03:5d:04:8e:53:d6:45:84: 4e:41:82:22:24:c6:c4:87:a3:77:55:bb:0b:7d:b3: 4a:5c:c8:7f:5e:f7:c8:25:02:d5:f7:8a:53:aa:e0: b3:5b:83:8a:3f:cd:0e:f4:45:41:f8:53:1e:36:f4: 78:56:93:ea:0f:3b:0b:7a:5e:0e:5a:16:16:40:2e: 69:1d:b3:f8:cb:a8:60:4d:cc:a7:da:2a:d7:87:b8: f4:a9:ef:98:72:cb:ae:c4:24:66:b9:d3:59:15:67: 60:74:fe:f6:01:d8:00:fa:c0:a6:d2:ad:8d:76:dd: 73:a8:95:52:1b:46:1f:7f:28:84:ab:48:6d:25:57: 17:a6:ea:1e:4c:1c:d9:75:eb:f6:c3:90:bb:7b:f5: 4f:52:7d:01:ca:75:35:03:35:f6:96:c0:63:6a:a5: e6:8f:86:23:6c:7b:1c:7d:3a:02:d9:50:32:8d:01: 98:b9:b7:d3:03:9b:fe:34:c3:aa:7b:a4:80:c6:1c: a5:0f:4a:5c:39:dd:16:cd:50:91:f2:5a:fe:89:1c: 57:06:18:a0:4c:68:04:37:64:40:2f:16:ed:5c:61: 67:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:B7:CF:ED:2D:CA:E8:AB:24:F0:2E:93:47:84:59:4A:A5:DE:AC:FA X509v3 Authority Key Identifier: keyid:56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/ULfP7S3K6Ksk8C6TR4RZSqXerPo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:fa81:2::/48 Signature Algorithm: sha256WithRSAEncryption 8d:18:fa:c5:bb:dc:e0:ba:b8:db:f9:e4:76:98:be:ce:39:ee: b9:c6:51:50:8b:38:8c:fa:28:10:29:df:f4:26:f1:7c:9f:1c: f9:e7:6a:b5:fb:7c:79:8e:29:ae:84:75:cd:ff:10:a2:4b:82: c9:7b:32:86:f0:eb:92:8d:54:af:f5:5a:45:1e:b5:02:86:f6: 4e:f0:db:e5:1e:43:da:c5:34:cb:35:b9:b2:a6:da:0f:df:54: 88:15:ca:5b:c6:ea:b6:66:c4:72:c6:a0:a9:54:4f:21:76:4a: 34:84:3b:3d:e6:d5:b5:9f:fb:f2:ff:b5:66:80:e2:77:06:67: 3c:b7:c6:b0:ab:d6:f8:52:da:9f:cf:7b:fe:7d:cc:2b:8b:55: 23:fa:a5:be:cc:ed:c5:49:ca:31:dd:8c:8c:42:20:1c:ec:90: 66:6d:fd:ef:14:06:52:d1:97:77:ed:5b:fc:a1:06:e8:4e:d9: 35:80:0c:c6:61:9b:ca:52:37:a8:91:9f:bc:e5:24:1d:64:2a: 84:ce:31:8a:63:1b:33:17:be:07:af:7a:f4:2f:50:b9:0e:cd: 59:2a:47:8c:94:6b:91:66:76:d1:df:c7:a3:38:4e:a6:2d:7b: 86:25:87:c4:6a:37:68:b4:e0:5e:97:98:e7:fb:df:d7:4e:e8: 53:fe:19:85 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt4NS6jDYgiBpRburMFNec0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2NTliMGJhODQwN2JlMTFjZmM5MTFiZDMxZWQxNDBjZDFj NjA0NmMwHhcNMjYwMTAxMDYxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MGI3Y2ZlZDJkY2FlOGFiMjRmMDJlOTM0Nzg0NTk0YWE1ZGVhY2ZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+V7vduhZ6YRLOuJ+jxWT27ClhHY FguED2ef9SM1s5KQ5JdSA10EjlPWRYROQYIiJMbEh6N3VbsLfbNKXMh/XvfIJQLV 94pTquCzW4OKP80O9EVB+FMeNvR4VpPqDzsLel4OWhYWQC5pHbP4y6hgTcyn2irX h7j0qe+YcsuuxCRmudNZFWdgdP72AdgA+sCm0q2Ndt1zqJVSG0YffyiEq0htJVcX puoeTBzZdev2w5C7e/VPUn0BynU1AzX2lsBjaqXmj4YjbHscfToC2VAyjQGYubfT A5v+NMOqe6SAxhylD0pcOd0WzVCR8lr+iRxXBhigTGgEN2RALxbtXGFnIwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFC3z+0tyuirJPAuk0eEWUql3qz6MB8GA1UdIwQY MBaAFFZZsLqEB74Rz8kRvTHtFAzRxgRsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVmxtd3VvUUh2aEhQeVJHOU1lMFVETkhHQkd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9kZDhlMzEtMDBiNS00MjEyLTllMDEt MjM5NGM2NjAwMDIyLzEvVUxmUDdTM0s2S3NrOEM2VFI0UlpTcVhlclBvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi9kZDhlMzEtMDBiNS00MjEyLTllMDEtMjM5NGM2NjAwMDIy LzEvVmxtd3VvUUh2aEhQeVJHOU1lMFVETkhHQkd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhD6gQAC MA0GCSqGSIb3DQEBCwUAA4IBAQCNGPrFu9zgurjb+eR2mL7OOe65xlFQiziM+igQ Kd/0JvF8nxz552q1+3x5jimuhHXN/xCiS4LJezKG8OuSjVSv9VpFHrUChvZO8Nvl HkPaxTTLNbmyptoP31SIFcpbxuq2ZsRyxqCpVE8hdko0hDs95tW1n/vy/7VmgOJ3 Bmc8t8awq9b4Utqfz3v+fcwri1Uj+qW+zO3FScox3YyMQiAc7JBmbf3vFAZS0Zd3 7Vv8oQboTtk1gAzGYZvKUjeokZ+85SQdZCqEzjGKYxszF74Hr3r0L1C5Ds1ZKkeM lGuRZnbR38ejOE6mLXuGJYfEajdotOBel5jn+9/XTuhT/hmF -----END CERTIFICATE-----Generated at Sun Jan 25 19:19:03 2026 by rpki-client