This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/sU_POJ-9-KK9BmUg6PP2VC4cLx4.roa File: sU_POJ-9-KK9BmUg6PP2VC4cLx4.roa (raw, json) Hash identifier: us+W7jv9HagK4mb3PNct2IPVT5f0kZEDdiyJO04+BcU= Subject key identifier: B1:4F:CF:38:9F:BD:F8:A2:BD:06:65:20:E8:F3:F6:54:2E:1C:2F:1E Certificate issuer: /CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf Certificate serial: 019B7F8154FFF02F5F2765669ED952EF9CA2 Authority key identifier: B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/sU_POJ-9-KK9BmUg6PP2VC4cLx4.roa Signing time: Fri 02 Jan 2026 16:19:00 +0000 ROA not before: Fri 02 Jan 2026 16:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20546 IP address blocks: 194.113.42.0/24 maxlen: 24 2a0f:f640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:81:54:ff:f0:2f:5f:27:65:66:9e:d9:52:ef:9c:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf Validity Not Before: Jan 2 16:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b14fcf389fbdf8a2bd066520e8f3f6542e1c2f1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7d:0a:53:6d:da:25:00:48:48:d4:11:b8:78: b7:5e:68:0c:11:fc:93:e3:07:bb:73:a3:8f:67:d2: e4:61:58:d6:32:b7:cb:23:62:02:4b:a1:82:bf:a3: a0:b9:2f:3c:46:77:49:15:d8:2c:e0:7a:38:7e:9e: 7c:9d:b2:a8:d2:8e:ea:63:b4:04:5b:eb:a8:02:55: 79:c4:4c:3e:4d:67:11:4b:8d:79:ef:16:be:a1:fe: da:0a:a3:b1:c2:02:a8:f1:7d:01:eb:76:6b:58:2e: 90:9e:14:6d:d9:f4:d0:26:91:30:78:7f:20:dd:75: 99:c4:1d:3c:13:2f:7c:c8:e4:57:6b:91:45:c7:38: 35:b3:16:42:ba:ec:b2:9b:75:a0:09:3f:16:f8:54: bd:00:ae:d0:cc:c2:e5:7c:f2:0d:5a:40:0a:52:73: b8:97:c6:29:79:80:c6:78:f8:fa:57:2d:3b:eb:01: 97:10:7c:13:9a:b1:0e:7d:e9:e9:ec:6a:c6:90:45: 26:a9:e4:3b:10:8f:ab:6e:c2:43:20:bc:a6:b9:81: b4:72:a2:70:3d:d7:ba:ea:bb:21:6c:24:4d:06:99: f3:8f:ee:d5:69:7f:35:a8:64:04:d8:cc:44:28:61: ee:14:0d:d0:17:e7:c3:63:86:04:66:fe:af:88:86: 1e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:4F:CF:38:9F:BD:F8:A2:BD:06:65:20:E8:F3:F6:54:2E:1C:2F:1E X509v3 Authority Key Identifier: keyid:B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/sU_POJ-9-KK9BmUg6PP2VC4cLx4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.113.42.0/24 IPv6: 2a0f:f640::/48 Signature Algorithm: sha256WithRSAEncryption 2b:43:ee:00:8e:37:91:2b:9d:66:29:38:e0:43:a0:46:3a:cc: f9:66:31:9c:2c:df:d9:22:2b:5e:a3:40:a9:1f:10:33:31:77: 8c:89:5e:d9:6b:aa:24:a7:f4:99:5b:a2:a2:00:c9:7f:1d:b7: bb:d2:48:a5:d1:47:c7:3d:6e:cf:1a:8d:01:9f:a2:8f:43:3c: 6a:b9:0e:81:04:37:69:cd:f8:3a:84:b0:b6:2b:98:a1:52:d6: eb:78:ac:95:e6:f9:47:26:10:86:88:00:65:d3:4a:b6:43:01: 35:ba:38:07:31:11:98:75:9a:d5:bf:18:00:f1:ef:73:ab:02: 4a:9f:ad:08:94:c5:00:b7:49:ec:2b:37:8b:46:22:05:25:0a: e9:a6:a9:11:79:4f:23:09:a9:04:6d:1c:0b:8c:a9:c8:7d:78: f6:b3:5b:ec:48:6a:f2:47:0d:30:94:87:7e:48:d9:88:b5:db: 5e:41:8c:41:63:a3:0d:6e:c0:22:ce:9a:ed:76:43:0a:7c:d7: 56:53:e5:53:9a:c9:1a:c3:c2:d0:db:62:e8:70:3d:4e:97:cc: d6:ec:f6:70:7e:d3:fe:7c:22:75:35:63:99:1c:b5:3f:56:95: f8:90:47:53:69:0b:c8:43:6b:a7:cc:d4:46:31:a2:8c:5a:29: 05:55:72:80 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/gVT/8C9fJ2VmntlS75yiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YjBiYmQ2NDQ1NTc4ZWRiYzdiYTZiNWJmN2NhOTM2OGQy NDE3YmYwHhcNMjYwMTAyMTYxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTRmY2YzODlmYmRmOGEyYmQwNjY1MjBlOGYzZjY1NDJlMWMyZjFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA430KU23aJQBISNQRuHi3XmgMEfyT 4we7c6OPZ9LkYVjWMrfLI2ICS6GCv6OguS88RndJFdgs4Ho4fp58nbKo0o7qY7QE W+uoAlV5xEw+TWcRS4157xa+of7aCqOxwgKo8X0B63ZrWC6QnhRt2fTQJpEweH8g 3XWZxB08Ey98yORXa5FFxzg1sxZCuuyym3WgCT8W+FS9AK7QzMLlfPINWkAKUnO4 l8YpeYDGePj6Vy076wGXEHwTmrEOfenp7GrGkEUmqeQ7EI+rbsJDILymuYG0cqJw Pde66rshbCRNBpnzj+7VaX81qGQE2MxEKGHuFA3QF+fDY4YEZv6viIYeRwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFLFPzzifvfiivQZlIOjz9lQuHC8eMB8GA1UdIwQY MBaAFLSwu9ZEVXjtvHumtb98qTaNJBe/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdExDNzFrUlZlTzI4ZTZhMXYzeXBObzBrRjc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8zNTAyZmMtZDlmNy00ZmE4LWJhZjYt NzdkNTI5YmU1M2Q3LzEvc1VfUE9KLTktS0s5Qm1VZzZQUDJWQzRjTHg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi8zNTAyZmMtZDlmNy00ZmE4LWJhZjYtNzdkNTI5YmU1M2Q3 LzEvdExDNzFrUlZlTzI4ZTZhMXYzeXBObzBrRjc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwnEqMA8E AgACMAkDBwAqD/ZAAAAwDQYJKoZIhvcNAQELBQADggEBACtD7gCON5ErnWYpOOBD oEY6zPlmMZws39kiK16jQKkfEDMxd4yJXtlrqiSn9JlboqIAyX8dt7vSSKXRR8c9 bs8ajQGfoo9DPGq5DoEEN2nN+DqEsLYrmKFS1ut4rJXm+UcmEIaIAGXTSrZDATW6 OAcxEZh1mtW/GADx73OrAkqfrQiUxQC3SewrN4tGIgUlCummqRF5TyMJqQRtHAuM qch9ePazW+xIavJHDTCUh35I2Yi1215BjEFjow1uwCLOmu12Qwp811ZT5VOayRrD wtDbYuhwPU6XzNbs9nB+0/58InU1Y5kctT9WlfiQR1NpC8hDa6fM1EYxooxaKQVV coA= -----END CERTIFICATE-----Generated at Sun Jan 25 10:27:02 2026 by rpki-client