This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/0uyZF4hqCFblriuhdFvB97CSvjE.roa File: 0uyZF4hqCFblriuhdFvB97CSvjE.roa (raw, json) Hash identifier: F5N4p/+NGVHw75uzEq/ujSUpO10EhoH/RBzsn4VqeFg= Subject key identifier: D2:EC:99:17:88:6A:08:56:E5:AE:2B:A1:74:5B:C1:F7:B0:92:BE:31 Certificate issuer: /CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1 Certificate serial: 019B7AC9595EDE54C238ACA2C862F045BC14 Authority key identifier: D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/0uyZF4hqCFblriuhdFvB97CSvjE.roa Signing time: Thu 01 Jan 2026 18:19:34 +0000 ROA not before: Thu 01 Jan 2026 18:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212786 IP address blocks: 2a05:e600::/29 maxlen: 29 2a09:cac0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.mft rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 11:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:59:5e:de:54:c2:38:ac:a2:c8:62:f0:45:bc:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1 Validity Not Before: Jan 1 18:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d2ec9917886a0856e5ae2ba1745bc1f7b092be31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:49:b7:a7:2a:27:2e:0e:a7:7a:57:be:ca:3f: 41:3d:ff:c4:6f:04:d7:29:a4:0d:50:64:ab:a2:42: 6b:74:f0:36:b0:3d:69:f9:a4:89:9b:bc:a6:f3:f1: 8a:b3:71:6c:9e:2f:5e:94:cb:d1:7a:75:c0:13:97: f8:2f:1c:dd:8d:2a:62:ac:cc:84:4b:5a:d0:7e:36: e4:40:42:07:fe:75:b5:a3:cf:f6:63:56:0e:f1:e7: f8:61:bf:7b:e2:f2:0c:6b:26:11:05:aa:ca:ff:4c: 18:a2:26:f2:9a:fe:5a:f5:1c:2f:4f:ac:38:7d:12: e8:d3:d8:24:2d:3f:0d:d8:c7:ce:d9:34:31:0f:90: 9f:09:26:0d:5d:d2:b5:d3:6b:66:91:b4:7a:c6:78: 48:ec:0a:0e:4b:91:e8:72:f4:3b:a5:92:c5:67:48: d6:53:03:55:9c:62:b0:4c:73:af:28:f2:ce:68:71: 2a:ae:c1:59:cc:99:ed:af:68:9a:85:99:2a:6d:00: 1c:43:1a:24:11:8a:c3:a7:af:ed:de:d0:b4:00:8b: d1:aa:b4:c9:eb:82:5d:1d:3f:fd:84:a4:e3:1a:8e: 82:ea:cc:d3:1a:38:26:d9:af:1e:2b:2f:9a:52:7c: f0:ab:49:32:29:2b:91:51:14:a8:c7:da:1d:7e:04: 2a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:EC:99:17:88:6A:08:56:E5:AE:2B:A1:74:5B:C1:F7:B0:92:BE:31 X509v3 Authority Key Identifier: keyid:D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/0uyZF4hqCFblriuhdFvB97CSvjE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:e600::/29 2a09:cac0::/29 Signature Algorithm: sha256WithRSAEncryption 33:ec:c7:24:9b:df:b1:9d:b8:2a:cb:a1:9f:4d:a2:89:f5:c6: ee:e7:ba:3c:c9:1b:d5:27:f9:24:cc:1e:c2:73:95:a7:b1:be: 66:39:aa:dd:6c:6d:0c:03:1f:f3:3e:db:7c:ea:44:25:33:d9: 1d:c9:32:db:d7:b3:05:2d:1b:30:ae:7d:75:77:14:fb:bc:58: 03:cb:49:90:f4:9f:5b:23:22:16:e6:3f:5d:25:b7:c6:38:28: 7a:af:b0:05:c4:a6:8c:92:05:aa:28:7d:38:8a:81:8f:89:2a: ff:17:38:47:1e:b9:c2:96:16:c0:09:98:eb:90:fd:eb:d4:1f: c6:f6:ad:a1:1a:e6:43:a5:d4:f9:e1:96:e6:34:8a:1b:33:51: 6c:96:40:39:4b:e7:32:4c:a7:76:5b:c9:82:80:da:03:dc:73: b3:17:37:e9:c5:df:39:98:ca:8d:9c:6b:e6:9d:e6:41:24:7e: e1:37:eb:a8:78:e0:b2:c1:89:34:d0:3c:85:af:62:15:cb:35: 35:80:dc:ed:bf:26:37:7b:91:4b:23:c7:ab:6c:38:b5:47:b8: 4e:69:af:95:b4:4e:de:00:d6:4e:f9:ec:f0:e1:45:55:53:d7: 3a:12:58:2f:9b:25:e4:87:af:58:33:94:93:2b:7e:2f:9e:a5: 24:fc:3c:2d -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt6yVle3lTCOKyiyGLwRbwUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1ZTY3MzNmYTIzOWM1ZmIwYzQzOGM4MmY3YzIzMGY1NWQ0 NzhjYjEwHhcNMjYwMTAxMTgxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMmVjOTkxNzg4NmEwODU2ZTVhZTJiYTE3NDViYzFmN2IwOTJiZTMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlEm3pyonLg6nele+yj9BPf/EbwTX KaQNUGSrokJrdPA2sD1p+aSJm7ym8/GKs3Fsni9elMvRenXAE5f4LxzdjSpirMyE S1rQfjbkQEIH/nW1o8/2Y1YO8ef4Yb974vIMayYRBarK/0wYoibymv5a9RwvT6w4 fRLo09gkLT8N2MfO2TQxD5CfCSYNXdK102tmkbR6xnhI7AoOS5HocvQ7pZLFZ0jW UwNVnGKwTHOvKPLOaHEqrsFZzJntr2iahZkqbQAcQxokEYrDp6/t3tC0AIvRqrTJ 64JdHT/9hKTjGo6C6szTGjgm2a8eKy+aUnzwq0kyKSuRURSox9odfgQqkwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFNLsmReIaghW5a4roXRbwfewkr4xMB8GA1UdIwQY MBaAFNXmcz+iOcX7DEOMgvfCMPVdR4yxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWVaelA2STV4ZnNNUTR5Qzk4SXc5VjFIakxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8yNWM5NWUtN2YyNy00ZDY5LTg1NmQt YTM4YjY3OTVmYjI0LzEvMHV5WkY0aHFDRmJscml1aGRGdkI5N0NTdmpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS8yNWM5NWUtN2YyNy00ZDY5LTg1NmQtYTM4YjY3OTVmYjI0 LzEvMWVaelA2STV4ZnNNUTR5Qzk4SXc5VjFIakxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUDKgXmAAMF AyoJysAwDQYJKoZIhvcNAQELBQADggEBADPsxySb37GduCrLoZ9Noon1xu7nujzJ G9Un+STMHsJzlaexvmY5qt1sbQwDH/M+23zqRCUz2R3JMtvXswUtGzCufXV3FPu8 WAPLSZD0n1sjIhbmP10lt8Y4KHqvsAXEpoySBaoofTiKgY+JKv8XOEceucKWFsAJ mOuQ/evUH8b2raEa5kOl1PnhluY0ihszUWyWQDlL5zJMp3ZbyYKA2gPcc7MXN+nF 3zmYyo2ca+ad5kEkfuE366h44LLBiTTQPIWvYhXLNTWA3O2/Jjd7kUsjx6tsOLVH uE5pr5W0Tt4A1k757PDhRVVT1zoSWC+bJeSHr1gzlJMrfi+epST8PC0= -----END CERTIFICATE-----Generated at Wed Jan 21 20:36:39 2026 by rpki-client