This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/d9d9b6-c3be-4c5d-adea-4bc84c79fc58/1/2UPCFRYyOaCEOUtdZmUYxdw-WQE.roa File: 2UPCFRYyOaCEOUtdZmUYxdw-WQE.roa (raw, json) Hash identifier: QM7pJDrc503fpExXr4mMqAxNHN2VAXhAozwv2Gb8pXU= Subject key identifier: D9:43:C2:15:16:32:39:A0:84:39:4B:5D:66:65:18:C5:DC:3E:59:01 Certificate issuer: /CN=d94f238c5c74eb9a75a46e2bc67411e8dc22d982 Certificate serial: 019B76EB1F592234F8141EDB7AFB8360FDA8 Authority key identifier: D9:4F:23:8C:5C:74:EB:9A:75:A4:6E:2B:C6:74:11:E8:DC:22:D9:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2U8jjFx065p1pG4rxnQR6Nwi2YI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/d9d9b6-c3be-4c5d-adea-4bc84c79fc58/1/2UPCFRYyOaCEOUtdZmUYxdw-WQE.roa Signing time: Thu 01 Jan 2026 00:17:58 +0000 ROA not before: Thu 01 Jan 2026 00:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56843 IP address blocks: 2a02:2951::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/d9d9b6-c3be-4c5d-adea-4bc84c79fc58/1/2U8jjFx065p1pG4rxnQR6Nwi2YI.crl rsync://rpki.ripe.net/repository/DEFAULT/12/d9d9b6-c3be-4c5d-adea-4bc84c79fc58/1/2U8jjFx065p1pG4rxnQR6Nwi2YI.mft rsync://rpki.ripe.net/repository/DEFAULT/2U8jjFx065p1pG4rxnQR6Nwi2YI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:1f:59:22:34:f8:14:1e:db:7a:fb:83:60:fd:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d94f238c5c74eb9a75a46e2bc67411e8dc22d982 Validity Not Before: Jan 1 00:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d943c215163239a084394b5d666518c5dc3e5901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:37:00:36:44:00:bb:9a:48:65:88:ba:ad:8b: e2:84:1e:2b:cc:e4:34:81:81:a1:fb:af:28:c9:44: 11:3f:69:0c:80:43:1b:c3:b8:7c:0e:2e:bb:7f:0d: c2:61:4d:ad:fe:30:6b:a9:e6:31:1a:e4:f7:f1:0a: f9:ca:99:05:c7:7b:f8:47:d8:8e:90:47:da:c7:18: df:f9:98:01:df:53:ce:78:24:61:e8:35:78:cb:39: 6c:dc:b3:1f:3c:96:97:69:ff:3f:bc:9c:1f:ff:0b: f0:2b:5e:38:27:29:27:d0:33:24:34:6d:e9:6a:b5: 5b:c1:19:88:6f:34:92:2a:02:07:c2:b7:7d:c3:92: 39:ba:e3:33:9a:75:56:be:f4:68:80:1b:cb:f9:06: ec:3f:64:74:9a:a7:46:81:a6:c1:f8:e8:40:c9:42: e3:a0:31:f5:0d:d3:78:01:cb:2f:2e:57:fb:fc:1c: a1:db:f0:22:36:df:2a:10:7a:e9:86:68:20:8a:51: f3:69:49:1d:0d:59:70:70:bc:0f:47:c9:06:05:03: 9a:55:26:c0:8f:1a:cf:a1:5b:04:6c:86:dc:3f:6d: fc:32:ef:bf:7c:e5:c5:4d:c3:d6:54:47:fb:02:70: 84:3c:44:0b:ee:08:96:61:47:d5:e1:bd:28:01:a0: 10:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:43:C2:15:16:32:39:A0:84:39:4B:5D:66:65:18:C5:DC:3E:59:01 X509v3 Authority Key Identifier: keyid:D9:4F:23:8C:5C:74:EB:9A:75:A4:6E:2B:C6:74:11:E8:DC:22:D9:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2U8jjFx065p1pG4rxnQR6Nwi2YI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d9d9b6-c3be-4c5d-adea-4bc84c79fc58/1/2UPCFRYyOaCEOUtdZmUYxdw-WQE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d9d9b6-c3be-4c5d-adea-4bc84c79fc58/1/2U8jjFx065p1pG4rxnQR6Nwi2YI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:2951::/32 Signature Algorithm: sha256WithRSAEncryption 49:1a:21:ad:c6:ae:57:34:33:0b:f8:52:e3:08:5d:81:3d:ff: af:11:a8:47:be:43:bb:f0:4e:68:43:cb:b3:f9:8c:7e:98:15: bd:43:a4:11:0a:68:bb:01:29:cf:b6:ae:ca:4b:d1:de:07:35: f5:f0:61:be:7e:a6:5c:74:9f:8d:fd:01:38:97:9d:29:f9:05: 98:f7:78:7e:8d:67:ed:d0:83:6b:38:a8:32:c3:3b:66:4e:2a: 48:8a:ac:ec:4a:33:3c:e5:6b:21:12:fe:10:ff:4f:72:72:ee: fd:20:8a:e6:dd:d7:46:64:a4:40:47:ad:88:ef:1b:db:6e:c4: 33:a8:79:39:a2:29:8b:a4:c2:8d:4b:d0:3e:99:be:fb:02:cd: 2e:d6:3f:c7:94:4a:12:2e:2b:de:2d:55:9a:7d:21:f8:82:db: c3:71:a0:59:2d:a3:85:2c:77:5d:c7:d1:c8:33:f0:be:24:18: e6:48:5d:a5:e8:ff:eb:1c:17:5b:82:ad:b7:f8:bf:2a:4b:b2: 10:d5:39:da:6a:32:0e:03:81:fc:2c:a8:2c:e6:66:92:62:a7: 88:28:32:48:96:1c:4a:4c:16:1b:73:6b:d1:ee:4e:e7:a8:33: 72:35:c4:35:89:0b:64:e7:d3:1c:f8:55:19:ff:4d:33:d3:10: db:75:27:c7 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt26x9ZIjT4FB7bevuDYP2oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5NGYyMzhjNWM3NGViOWE3NWE0NmUyYmM2NzQxMWU4ZGMy MmQ5ODIwHhcNMjYwMTAxMDAxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOTQzYzIxNTE2MzIzOWEwODQzOTRiNWQ2NjY1MThjNWRjM2U1OTAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArDcANkQAu5pIZYi6rYvihB4rzOQ0 gYGh+68oyUQRP2kMgEMbw7h8Di67fw3CYU2t/jBrqeYxGuT38Qr5ypkFx3v4R9iO kEfaxxjf+ZgB31POeCRh6DV4yzls3LMfPJaXaf8/vJwf/wvwK144Jykn0DMkNG3p arVbwRmIbzSSKgIHwrd9w5I5uuMzmnVWvvRogBvL+QbsP2R0mqdGgabB+OhAyULj oDH1DdN4AcsvLlf7/Byh2/AiNt8qEHrphmggilHzaUkdDVlwcLwPR8kGBQOaVSbA jxrPoVsEbIbcP238Mu+/fOXFTcPWVEf7AnCEPEQL7giWYUfV4b0oAaAQIwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFNlDwhUWMjmghDlLXWZlGMXcPlkBMB8GA1UdIwQY MBaAFNlPI4xcdOuadaRuK8Z0EejcItmCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlU4ampGeDA2NXAxcEc0cnhuUVI2TndpMllJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9kOWQ5YjYtYzNiZS00YzVkLWFkZWEt NGJjODRjNzlmYzU4LzEvMlVQQ0ZSWXlPYUNFT1V0ZFptVVl4ZHctV1FFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9kOWQ5YjYtYzNiZS00YzVkLWFkZWEtNGJjODRjNzlmYzU4 LzEvMlU4ampGeDA2NXAxcEc0cnhuUVI2TndpMllJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgIpUTAN BgkqhkiG9w0BAQsFAAOCAQEASRohrcauVzQzC/hS4whdgT3/rxGoR75Du/BOaEPL s/mMfpgVvUOkEQpouwEpz7auykvR3gc19fBhvn6mXHSfjf0BOJedKfkFmPd4fo1n 7dCDazioMsM7Zk4qSIqs7EozPOVrIRL+EP9PcnLu/SCK5t3XRmSkQEetiO8b227E M6h5OaIpi6TCjUvQPpm++wLNLtY/x5RKEi4r3i1Vmn0h+ILbw3GgWS2jhSx3XcfR yDPwviQY5khdpej/6xwXW4Ktt/i/KkuyENU52moyDgOB/CyoLOZmkmKniCgySJYc SkwWG3Nr0e5O56gzcjXENYkLZOfTHPhVGf9NM9MQ23Unxw== -----END CERTIFICATE-----Generated at Tue Feb 10 03:57:15 2026 by rpki-client