This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/98aa0b-d8b3-4109-8f8b-20e59cf92686/1/ukIbrLUvPtIxZ5wtDHPd0BjbBfs.roa File: ukIbrLUvPtIxZ5wtDHPd0BjbBfs.roa (raw, json) Hash identifier: 4R245tMXj5hWTZh+CwuGNWMTCAhfqI5ky1f9sYscEcA= Subject key identifier: BA:42:1B:AC:B5:2F:3E:D2:31:67:9C:2D:0C:73:DD:D0:18:DB:05:FB Certificate issuer: /CN=b6bde8794b0a0d88f92967f5084e4c38199613a0 Certificate serial: 019B7AC86AD71697A4F5749AE1FBF062A4A1 Authority key identifier: B6:BD:E8:79:4B:0A:0D:88:F9:29:67:F5:08:4E:4C:38:19:96:13:A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tr3oeUsKDYj5KWf1CE5MOBmWE6A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/98aa0b-d8b3-4109-8f8b-20e59cf92686/1/ukIbrLUvPtIxZ5wtDHPd0BjbBfs.roa Signing time: Thu 01 Jan 2026 18:18:33 +0000 ROA not before: Thu 01 Jan 2026 18:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29322 IP address blocks: 2a0d:2280::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/98aa0b-d8b3-4109-8f8b-20e59cf92686/1/tr3oeUsKDYj5KWf1CE5MOBmWE6A.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/98aa0b-d8b3-4109-8f8b-20e59cf92686/1/tr3oeUsKDYj5KWf1CE5MOBmWE6A.mft rsync://rpki.ripe.net/repository/DEFAULT/tr3oeUsKDYj5KWf1CE5MOBmWE6A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:6a:d7:16:97:a4:f5:74:9a:e1:fb:f0:62:a4:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b6bde8794b0a0d88f92967f5084e4c38199613a0 Validity Not Before: Jan 1 18:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba421bacb52f3ed231679c2d0c73ddd018db05fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d5:84:7e:c5:0e:e5:4e:b7:c0:07:d0:05:54: e0:12:14:c5:e4:e8:6b:e5:d9:c8:3b:85:71:00:4e: 99:6d:dd:02:87:61:f4:dc:ed:58:84:6e:75:23:2c: fb:ec:53:f3:3b:d0:a5:cd:05:13:b4:82:08:fd:1a: 93:5f:e7:eb:3d:c7:91:3a:aa:6a:1a:d1:3b:0e:c8: bc:c7:3c:0b:03:9d:fe:8a:c3:83:cb:ba:fa:dc:a3: a7:04:8e:49:93:a2:c9:58:ae:34:f1:03:a5:e1:93: 32:20:1c:46:6f:9f:5e:83:b8:08:63:85:13:9c:c1: b9:ea:68:51:47:5b:07:76:2d:67:7c:59:1d:e5:71: c9:fc:23:d2:5b:3d:fb:96:52:9b:b3:5c:60:1c:16: a1:fe:43:32:7c:25:c6:f2:41:f3:a0:ab:bb:6e:09: 4c:63:96:43:b1:b9:09:02:d2:15:74:c3:a1:a4:65: c0:f6:25:1d:09:e5:49:f4:14:cf:a2:d3:df:54:85: d4:0c:e6:48:92:80:a2:23:b7:cd:48:ba:3c:46:1e: ea:de:68:44:54:40:86:3b:fd:8a:20:da:23:0d:a3: 6b:5e:27:64:fa:87:d2:fc:87:40:4b:d0:36:f1:92: bc:11:f8:df:a2:c3:b7:7f:62:b8:55:09:de:1d:b6: 2f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:42:1B:AC:B5:2F:3E:D2:31:67:9C:2D:0C:73:DD:D0:18:DB:05:FB X509v3 Authority Key Identifier: keyid:B6:BD:E8:79:4B:0A:0D:88:F9:29:67:F5:08:4E:4C:38:19:96:13:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tr3oeUsKDYj5KWf1CE5MOBmWE6A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/98aa0b-d8b3-4109-8f8b-20e59cf92686/1/ukIbrLUvPtIxZ5wtDHPd0BjbBfs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/98aa0b-d8b3-4109-8f8b-20e59cf92686/1/tr3oeUsKDYj5KWf1CE5MOBmWE6A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0d:2280::/29 Signature Algorithm: sha256WithRSAEncryption 87:f1:2b:e1:7a:91:6f:b7:73:83:8f:d6:90:ef:45:1e:f6:45: d2:c4:2c:ad:3c:bd:25:cb:9f:af:35:14:db:3c:ab:d0:e1:9a: ff:c4:59:35:cb:6b:c7:10:0b:49:3c:87:79:5c:cf:72:3a:42: 3b:2b:04:87:61:be:39:28:d1:94:46:d7:f3:c6:b7:5e:cd:12: bc:ed:06:2e:4c:50:54:51:ba:5e:2c:70:b1:1d:2b:24:62:f7: e1:4c:81:2f:c8:c5:06:ab:d6:a3:9a:33:28:4a:3f:27:9d:df: 80:aa:45:ae:4a:a0:09:65:e3:cd:b2:98:b8:f1:e1:fd:da:69: de:36:d1:d6:e1:7a:9b:37:44:bb:f0:c2:94:1b:50:d8:c9:62: 36:b4:59:51:9c:2c:9d:b9:b3:85:8d:6a:e9:7d:10:98:28:77: 88:03:01:0c:e8:00:12:ee:49:ee:f2:26:dc:03:d7:8a:2c:0e: db:f8:49:de:ed:c3:88:db:2c:d8:67:37:4c:49:5c:e8:ea:7e: 17:89:f9:fb:2f:fa:cc:d2:7a:a8:6a:d4:06:3e:b9:17:29:ce: 16:2c:0c:02:fb:0c:86:45:11:cf:72:1e:cc:11:7e:bf:8f:11: 7f:ff:c6:0b:91:d2:24:ee:13:78:7c:00:03:44:61:67:24:98: 4d:40:4e:d1 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt6yGrXFpek9XSa4fvwYqShMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2YmRlODc5NGIwYTBkODhmOTI5NjdmNTA4NGU0YzM4MTk5 NjEzYTAwHhcNMjYwMTAxMTgxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTQyMWJhY2I1MmYzZWQyMzE2NzljMmQwYzczZGRkMDE4ZGIwNWZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtWEfsUO5U63wAfQBVTgEhTF5Ohr 5dnIO4VxAE6Zbd0Ch2H03O1YhG51Iyz77FPzO9ClzQUTtIII/RqTX+frPceROqpq GtE7Dsi8xzwLA53+isODy7r63KOnBI5Jk6LJWK408QOl4ZMyIBxGb59eg7gIY4UT nMG56mhRR1sHdi1nfFkd5XHJ/CPSWz37llKbs1xgHBah/kMyfCXG8kHzoKu7bglM Y5ZDsbkJAtIVdMOhpGXA9iUdCeVJ9BTPotPfVIXUDOZIkoCiI7fNSLo8Rh7q3mhE VECGO/2KINojDaNrXidk+ofS/IdAS9A28ZK8EfjfosO3f2K4VQneHbYvNwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFLpCG6y1Lz7SMWecLQxz3dAY2wX7MB8GA1UdIwQY MBaAFLa96HlLCg2I+Sln9QhOTDgZlhOgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHIzb2VVc0tEWWo1S1dmMUNFNU1PQm1XRTZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS85OGFhMGItZDhiMy00MTA5LThmOGIt MjBlNTljZjkyNjg2LzEvdWtJYnJMVXZQdEl4WjV3dERIUGQwQmpiQmZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS85OGFhMGItZDhiMy00MTA5LThmOGItMjBlNTljZjkyNjg2 LzEvdHIzb2VVc0tEWWo1S1dmMUNFNU1PQm1XRTZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg0igDAN BgkqhkiG9w0BAQsFAAOCAQEAh/Er4XqRb7dzg4/WkO9FHvZF0sQsrTy9JcufrzUU 2zyr0OGa/8RZNctrxxALSTyHeVzPcjpCOysEh2G+OSjRlEbX88a3Xs0SvO0GLkxQ VFG6XixwsR0rJGL34UyBL8jFBqvWo5ozKEo/J53fgKpFrkqgCWXjzbKYuPHh/dpp 3jbR1uF6mzdEu/DClBtQ2MliNrRZUZwsnbmzhY1q6X0QmCh3iAMBDOgAEu5J7vIm 3APXiiwO2/hJ3u3DiNss2Gc3TElc6Op+F4n5+y/6zNJ6qGrUBj65FynOFiwMAvsM hkURz3IezBF+v48Rf//GC5HSJO4TeHwAA0RhZySYTUBO0Q== -----END CERTIFICATE-----Generated at Mon Jan 26 05:05:26 2026 by rpki-client