This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/UJpCXx5oIh9hc9g8auJXqdNaBpc.roa File: UJpCXx5oIh9hc9g8auJXqdNaBpc.roa (raw, json) Hash identifier: zfnC57zmuYkrC5OEiIWpUIW8D69Vc8CmCbVPonz5g+A= Subject key identifier: 50:9A:42:5F:1E:68:22:1F:61:73:D8:3C:6A:E2:57:A9:D3:5A:06:97 Certificate issuer: /CN=0b4e3b3b84242258863142ed3a19792d97cbbc74 Certificate serial: 019BDC8A7D0B313FC46B99E64BA2D9389A97 Authority key identifier: 0B:4E:3B:3B:84:24:22:58:86:31:42:ED:3A:19:79:2D:97:CB:BC:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/UJpCXx5oIh9hc9g8auJXqdNaBpc.roa Signing time: Tue 20 Jan 2026 17:53:41 +0000 ROA not before: Tue 20 Jan 2026 17:53:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214422 IP address blocks: 2a0d:d940:10b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.crl rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.mft rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 14:20:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:dc:8a:7d:0b:31:3f:c4:6b:99:e6:4b:a2:d9:38:9a:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0b4e3b3b84242258863142ed3a19792d97cbbc74 Validity Not Before: Jan 20 17:53:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=509a425f1e68221f6173d83c6ae257a9d35a0697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2a:e2:ba:b5:e4:8c:86:b6:a7:79:c6:c7:b7: 1a:70:27:19:14:eb:cc:26:7b:7e:84:c5:64:d8:d5: a0:88:d5:1c:47:21:2c:7e:7c:6a:ec:aa:e0:26:d1: 5f:12:df:71:b9:69:1d:ac:d8:04:2c:ec:da:3f:2b: 68:5d:fc:a5:b5:56:11:ec:aa:c0:41:68:1b:c0:9d: 2d:44:74:cb:dc:69:fd:5d:26:f4:27:be:aa:a6:0a: 93:7a:5a:a3:7b:c5:3e:1a:39:96:27:a4:ff:71:f5: b2:8e:bf:fc:38:ff:c7:57:47:f9:62:6e:4d:ad:c0: 02:52:04:56:d0:bb:07:04:c1:a9:f9:c8:08:77:e4: 00:d1:4a:26:c4:7b:b9:00:02:6b:e2:17:ef:59:51: 04:29:bd:d8:9f:70:94:c3:34:10:64:38:ae:72:8a: 6b:f2:e3:b7:3a:93:d9:18:34:2e:21:dc:09:80:a2: db:48:c8:a9:4a:ac:63:97:cc:d3:6c:c0:54:b7:50: 2c:7c:f1:8b:18:f7:2c:ca:bd:6a:2e:3d:23:7d:43: 3f:83:e1:45:c8:2e:db:4d:27:d8:20:38:62:b6:25: 20:a8:a4:b6:64:4d:46:96:f0:64:a3:07:18:87:e0: ff:7b:26:e3:06:26:3c:94:c9:89:82:2a:3e:88:7e: a7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:9A:42:5F:1E:68:22:1F:61:73:D8:3C:6A:E2:57:A9:D3:5A:06:97 X509v3 Authority Key Identifier: keyid:0B:4E:3B:3B:84:24:22:58:86:31:42:ED:3A:19:79:2D:97:CB:BC:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/UJpCXx5oIh9hc9g8auJXqdNaBpc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0d:d940:10b::/48 Signature Algorithm: sha256WithRSAEncryption 6c:88:52:59:bc:5a:09:3e:e5:57:65:84:f0:36:5d:3d:9e:ea: c2:5a:e4:19:b7:2f:2f:b0:81:67:ae:45:cb:49:59:23:49:8d: a1:9c:fe:81:9f:b9:dd:69:25:1f:aa:b2:b1:36:f1:f4:e9:a4: 04:0e:1f:66:80:de:e9:8c:d4:5d:10:5c:44:59:46:57:f9:3e: 09:f3:69:5f:9e:a9:c8:43:87:e6:87:b3:b5:43:78:90:0a:c6: 0f:eb:11:06:30:d1:b9:cf:8e:0b:06:c4:40:1b:1e:42:fb:59: 5f:db:fd:b8:e8:3d:6f:81:f6:59:e3:2a:79:17:17:78:a6:8d: 51:7b:62:ab:21:2a:2d:17:b0:8c:6b:59:15:49:9d:98:fa:b4: 8f:3f:34:34:9e:34:f7:4c:39:a5:dd:0f:a3:f5:e9:18:cd:80: 4a:31:46:8f:a0:1e:b9:f4:1f:85:0b:7c:5e:41:2c:8e:3e:ea: 8c:e1:47:f9:2f:43:fa:3b:44:e5:20:b6:27:e3:de:f8:07:ae: 39:69:a4:f8:84:d1:49:44:51:76:55:ea:51:02:2a:74:dd:9f: 23:a3:d3:da:74:0a:a9:94:c1:fa:69:42:fb:58:e4:7d:4b:9a: f0:43:26:c4:17:f2:5d:0e:20:83:74:da:5f:94:1d:7b:80:2b: e1:c0:d4:51 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZvcin0LMT/Ea5nmS6LZOJqXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiNGUzYjNiODQyNDIyNTg4NjMxNDJlZDNhMTk3OTJkOTdj YmJjNzQwHhcNMjYwMTIwMTc1MzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MDlhNDI1ZjFlNjgyMjFmNjE3M2Q4M2M2YWUyNTdhOWQzNWEwNjk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzSriurXkjIa2p3nGx7cacCcZFOvM Jnt+hMVk2NWgiNUcRyEsfnxq7KrgJtFfEt9xuWkdrNgELOzaPytoXfyltVYR7KrA QWgbwJ0tRHTL3Gn9XSb0J76qpgqTelqje8U+GjmWJ6T/cfWyjr/8OP/HV0f5Ym5N rcACUgRW0LsHBMGp+cgId+QA0UomxHu5AAJr4hfvWVEEKb3Yn3CUwzQQZDiucopr 8uO3OpPZGDQuIdwJgKLbSMipSqxjl8zTbMBUt1AsfPGLGPcsyr1qLj0jfUM/g+FF yC7bTSfYIDhitiUgqKS2ZE1GlvBkowcYh+D/eybjBiY8lMmJgio+iH6n8wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFCaQl8eaCIfYXPYPGriV6nTWgaXMB8GA1UdIwQY MBaAFAtOOzuEJCJYhjFC7ToZeS2Xy7x0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQzA0N080UWtJbGlHTVVMdE9obDVMWmZMdkhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS83YmExYjEtNTU2Mi00YTMyLTlmNWQt MTRkMjM4NTI3ODM1LzEvVUpwQ1h4NW9JaDloYzlnOGF1SlhxZE5hQnBjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS83YmExYjEtNTU2Mi00YTMyLTlmNWQtMTRkMjM4NTI3ODM1 LzEvQzA0N080UWtJbGlHTVVMdE9obDVMWmZMdkhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg3ZQAEL MA0GCSqGSIb3DQEBCwUAA4IBAQBsiFJZvFoJPuVXZYTwNl09nurCWuQZty8vsIFn rkXLSVkjSY2hnP6Bn7ndaSUfqrKxNvH06aQEDh9mgN7pjNRdEFxEWUZX+T4J82lf nqnIQ4fmh7O1Q3iQCsYP6xEGMNG5z44LBsRAGx5C+1lf2/246D1vgfZZ4yp5Fxd4 po1Re2KrISotF7CMa1kVSZ2Y+rSPPzQ0njT3TDml3Q+j9ekYzYBKMUaPoB659B+F C3xeQSyOPuqM4Uf5L0P6O0TlILYn4974B645aaT4hNFJRFF2VepRAip03Z8jo9Pa dAqplMH6aUL7WOR9S5rwQybEF/JdDiCDdNpflB17gCvhwNRR -----END CERTIFICATE-----Generated at Wed Jan 21 16:59:34 2026 by rpki-client