This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/2_UvfbsFxKUUaVcrdfYacSKl2L4.roa File: 2_UvfbsFxKUUaVcrdfYacSKl2L4.roa (raw, json) Hash identifier: L+O8j8f4gfZj97qEmoJdpXmH/Ua6ICqOYh06yVj5Qkw= Subject key identifier: DB:F5:2F:7D:BB:05:C4:A5:14:69:57:2B:75:F6:1A:71:22:A5:D8:BE Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d Certificate serial: 019B7F844B57120B17CC52EB9409B7D5DF79 Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/2_UvfbsFxKUUaVcrdfYacSKl2L4.roa Signing time: Fri 02 Jan 2026 16:22:15 +0000 ROA not before: Fri 02 Jan 2026 16:22:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200250 IP address blocks: 2a0e:a942::/32 maxlen: 48 2a0e:cbc3::/33 maxlen: 48 2a0e:cbc3:8000::/33 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.mft rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:4b:57:12:0b:17:cc:52:eb:94:09:b7:d5:df:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d Validity Not Before: Jan 2 16:22:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dbf52f7dbb05c4a51469572b75f61a7122a5d8be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bb:2a:7b:e2:09:26:81:a8:91:52:50:d2:fa: de:ac:41:a4:26:3c:19:e6:6d:80:30:10:50:50:44: 4f:88:75:5a:33:0c:b7:29:e2:39:c0:6f:74:71:5f: ea:9e:f8:b8:d2:70:b2:7e:e1:2f:45:98:2b:ce:d3: 8a:b7:7a:6c:b6:4b:0c:6d:c3:95:d1:8f:af:aa:94: 61:c0:b6:a2:41:78:5c:8b:7d:40:db:0c:08:fa:de: a9:dc:e9:06:ab:4f:58:18:cd:0f:fe:cb:44:50:40: e0:a2:18:21:19:41:9f:18:bc:09:9d:31:bb:a4:30: a9:8b:64:1a:73:e2:6c:a1:e7:a2:d2:c6:f3:bc:fa: 72:f0:7a:97:6b:a0:4d:a0:e8:d0:32:f8:1a:23:2f: 6d:9f:19:ea:05:c6:66:ec:a0:e2:2a:e8:39:14:5c: 1f:31:69:dd:f7:d5:2b:51:01:c3:f5:58:66:26:93: 45:af:3e:45:df:55:9c:93:e9:7e:c6:83:11:ae:81: fa:dc:1a:37:f7:35:b0:71:93:9a:e4:54:9f:3f:fd: 64:17:fd:7d:21:14:48:4d:ee:91:dd:ec:58:c8:c7: b1:17:d0:76:9e:70:c8:6f:2c:81:55:74:d0:ad:3d: d7:30:db:3d:74:e8:a1:8e:ee:26:f7:09:8e:c0:29: c6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:F5:2F:7D:BB:05:C4:A5:14:69:57:2B:75:F6:1A:71:22:A5:D8:BE X509v3 Authority Key Identifier: keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/2_UvfbsFxKUUaVcrdfYacSKl2L4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0e:a942::/32 2a0e:cbc3::/32 Signature Algorithm: sha256WithRSAEncryption 42:c3:d9:c1:83:82:7b:ff:5b:64:60:ca:9a:fa:35:4e:a7:b1: d4:22:f2:22:9b:04:23:d5:c6:cf:86:54:c3:b0:9a:ed:14:73: bb:54:ce:3d:f1:39:d4:6c:77:bb:91:a8:79:ff:1b:6f:27:f4: 47:d4:ee:d1:d7:5a:31:89:69:f9:b3:12:3d:a1:23:c9:b7:ce: 4f:21:c2:6c:8e:a8:de:dd:fc:89:c3:25:06:24:ad:41:7f:38: 97:8f:1c:09:bb:5d:c3:86:78:94:3b:b7:8f:3a:9f:31:ea:de: 55:c7:1d:c1:d7:cb:31:e4:a7:26:fa:eb:b5:6d:df:25:6a:53: cd:75:43:2d:19:6e:c7:d9:3c:12:17:1f:e5:4c:07:08:ac:97: 9e:fa:cb:9d:70:de:00:b5:2e:3e:08:99:34:d3:95:73:0d:fa: 88:97:78:bb:bd:37:9d:40:44:0c:6b:33:b9:69:dc:75:8c:e1: 14:ad:53:5c:ad:62:6f:7a:21:36:77:b8:bc:2a:9a:76:5d:98: bf:1f:18:fe:e0:ec:ee:09:9d:d7:19:2e:3c:f7:77:07:57:a7: 74:57:69:c2:ae:02:46:fa:a7:7c:62:c1:38:32:4c:1e:82:85: 1a:57:e5:fb:f8:00:d1:2a:29:f3:bd:06:6c:0e:23:68:7e:1d: 9d:8f:2c:35 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt/hEtXEgsXzFLrlAm31d95MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw MTRiOGQwHhcNMjYwMTAyMTYyMjE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYmY1MmY3ZGJiMDVjNGE1MTQ2OTU3MmI3NWY2MWE3MTIyYTVkOGJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsbsqe+IJJoGokVJQ0vrerEGkJjwZ 5m2AMBBQUERPiHVaMwy3KeI5wG90cV/qnvi40nCyfuEvRZgrztOKt3pstksMbcOV 0Y+vqpRhwLaiQXhci31A2wwI+t6p3OkGq09YGM0P/stEUEDgohghGUGfGLwJnTG7 pDCpi2Qac+Jsoeei0sbzvPpy8HqXa6BNoOjQMvgaIy9tnxnqBcZm7KDiKug5FFwf MWnd99UrUQHD9VhmJpNFrz5F31Wck+l+xoMRroH63Bo39zWwcZOa5FSfP/1kF/19 IRRITe6R3exYyMexF9B2nnDIbyyBVXTQrT3XMNs9dOihju4m9wmOwCnGrwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFNv1L327BcSlFGlXK3X2GnEipdi+MB8GA1UdIwQY MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt NmJjNzU1NzhiNGMzLzEvMl9VdmZic0Z4S1VVYVZjcmRmWWFjU0tsMkw0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUAKg6pQgMF ACoOy8MwDQYJKoZIhvcNAQELBQADggEBAELD2cGDgnv/W2Rgypr6NU6nsdQi8iKb BCPVxs+GVMOwmu0Uc7tUzj3xOdRsd7uRqHn/G28n9EfU7tHXWjGJafmzEj2hI8m3 zk8hwmyOqN7d/InDJQYkrUF/OJePHAm7XcOGeJQ7t486nzHq3lXHHcHXyzHkpyb6 67Vt3yVqU811Qy0ZbsfZPBIXH+VMBwisl576y51w3gC1Lj4ImTTTlXMN+oiXeLu9 N51ARAxrM7lp3HWM4RStU1ytYm96ITZ3uLwqmnZdmL8fGP7g7O4JndcZLjz3dwdX p3RXacKuAkb6p3xiwTgyTB6ChRpX5fv4ANEqKfO9BmwOI2h+HZ2PLDU= -----END CERTIFICATE-----Generated at Wed Jan 21 16:57:10 2026 by rpki-client