This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/uozFmvCmoGE6Q5njl4sno0z61IY.roa File: uozFmvCmoGE6Q5njl4sno0z61IY.roa (raw, json) Hash identifier: f5Ec2uxPIQio9zsmXA0cY6Hj5fJ2vwmetGVV+iQqqXo= Subject key identifier: BA:8C:C5:9A:F0:A6:A0:61:3A:43:99:E3:97:8B:27:A3:4C:FA:D4:86 Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Certificate serial: 019B7F82B946B6DAEFBB2642E92C702CF66D Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/uozFmvCmoGE6Q5njl4sno0z61IY.roa Signing time: Fri 02 Jan 2026 16:20:32 +0000 ROA not before: Fri 02 Jan 2026 16:20:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35029 IP address blocks: 2a0b:b86:ffc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 07:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:b9:46:b6:da:ef:bb:26:42:e9:2c:70:2c:f6:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034 Validity Not Before: Jan 2 16:20:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba8cc59af0a6a0613a4399e3978b27a34cfad486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:17:28:d0:2e:2c:37:c7:10:45:1e:a3:11:47: 56:ce:ea:c3:85:1c:75:dd:24:fa:e6:0a:3f:eb:c9: 7a:c8:79:29:82:6d:3c:04:82:48:83:27:b6:0c:2b: ab:e4:db:28:b6:65:9b:aa:de:5b:8a:f6:37:1a:ad: d3:2f:f3:47:f2:d7:92:e2:bf:32:73:fc:5e:99:18: 54:b7:aa:43:6d:18:05:b9:d0:07:70:8e:5e:4b:2e: 75:2d:b9:ea:f6:0f:19:d4:05:b0:3a:ad:c3:68:09: 89:3e:e1:5d:e0:d7:ed:35:81:40:89:d4:66:78:29: e2:2d:b1:9e:17:22:b2:e5:4e:d8:33:84:c2:fb:57: e9:cc:7f:75:33:45:78:28:64:08:40:31:67:57:5d: 92:33:df:6b:66:d5:01:26:c2:c7:93:68:70:12:39: a0:36:4b:13:27:f5:61:18:54:d5:89:f7:95:03:03: 89:76:a9:84:6f:5c:cd:59:b5:3e:21:0a:90:b8:3f: 24:9e:b3:ff:f3:46:51:db:5a:82:1f:32:c9:95:e2: f8:09:a3:57:2b:4b:f7:3d:cf:ac:02:4e:3f:a9:e8: 32:f0:32:46:fd:a0:e0:5e:37:20:56:14:18:68:7b: cd:4c:78:c9:c5:1c:09:3b:4b:38:ac:4c:68:25:58: 04:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:8C:C5:9A:F0:A6:A0:61:3A:43:99:E3:97:8B:27:A3:4C:FA:D4:86 X509v3 Authority Key Identifier: keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/uozFmvCmoGE6Q5njl4sno0z61IY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:b86:ffc0::/48 Signature Algorithm: sha256WithRSAEncryption 3c:d5:ae:5a:a0:6e:e9:cb:dd:6c:8b:d6:ad:6b:a5:d1:fd:be: b9:f1:dd:6e:05:76:b3:5d:92:76:83:d9:84:bc:15:b8:9a:d0: 30:40:08:a1:ef:74:2f:04:be:82:5b:80:13:fe:28:7f:23:75: 6f:1e:b4:3e:e4:6e:35:e9:46:27:e2:0a:1e:09:ab:e1:b9:11: bd:e7:de:80:75:e8:de:c2:a2:ce:ce:02:5f:33:1c:3c:90:da: 2b:93:39:89:5f:5d:af:ea:dd:fd:34:7d:1c:68:ad:65:df:e9: 3c:65:5a:d3:92:63:5b:f6:cd:7a:5d:d6:de:5f:e4:b4:6d:e1: 02:f8:96:7a:e8:6f:d9:3f:36:4c:3d:12:6c:f4:21:c4:47:1d: 55:02:29:4d:23:4a:68:41:b7:3b:25:13:66:ab:92:52:50:c7: bb:98:36:1b:d4:eb:81:26:69:91:4d:c6:e3:99:10:79:85:3f: f8:0b:b9:38:06:78:8f:39:a9:af:b6:7c:ff:ab:05:69:4c:d3: 60:1c:f9:b0:4c:82:b4:20:fe:1f:c8:9b:6b:b4:ac:b9:3b:ce: 00:cb:db:2e:cf:14:d3:26:53:df:f7:8c:19:a5:4d:c1:a5:5d: 2d:5f:b2:09:11:86:15:5b:6e:17:34:13:48:42:c0:c9:ba:f6: c8:f0:d1:b2 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt/grlGttrvuyZC6SxwLPZtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz YjUwMzQwHhcNMjYwMTAyMTYyMDMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYThjYzU5YWYwYTZhMDYxM2E0Mzk5ZTM5NzhiMjdhMzRjZmFkNDg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxco0C4sN8cQRR6jEUdWzurDhRx1 3ST65go/68l6yHkpgm08BIJIgye2DCur5NsotmWbqt5bivY3Gq3TL/NH8teS4r8y c/xemRhUt6pDbRgFudAHcI5eSy51Lbnq9g8Z1AWwOq3DaAmJPuFd4NftNYFAidRm eCniLbGeFyKy5U7YM4TC+1fpzH91M0V4KGQIQDFnV12SM99rZtUBJsLHk2hwEjmg NksTJ/VhGFTVifeVAwOJdqmEb1zNWbU+IQqQuD8knrP/80ZR21qCHzLJleL4CaNX K0v3Pc+sAk4/qegy8DJG/aDgXjcgVhQYaHvNTHjJxRwJO0s4rExoJVgEDwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLqMxZrwpqBhOkOZ45eLJ6NM+tSGMB8GA1UdIwQY MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It Mzk0YWNkMjFmMzliLzEvdW96Rm12Q21vR0U2UTVuamw0c25vMHo2MUlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgsLhv/A MA0GCSqGSIb3DQEBCwUAA4IBAQA81a5aoG7py91si9ata6XR/b658d1uBXazXZJ2 g9mEvBW4mtAwQAih73QvBL6CW4AT/ih/I3VvHrQ+5G416UYn4goeCavhuRG9596A dejewqLOzgJfMxw8kNorkzmJX12v6t39NH0caK1l3+k8ZVrTkmNb9s16XdbeX+S0 beEC+JZ66G/ZPzZMPRJs9CHERx1VAilNI0poQbc7JRNmq5JSUMe7mDYb1OuBJmmR TcbjmRB5hT/4C7k4BniPOamvtnz/qwVpTNNgHPmwTIK0IP4fyJtrtKy5O84Ay9su zxTTJlPf94wZpU3BpV0tX7IJEYYVW24XNBNIQsDJuvbI8NGy -----END CERTIFICATE-----Generated at Tue Jan 20 15:20:59 2026 by rpki-client