This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/UkVdKWIJtxN1ZPO561wg1yvlmnU.roa File: UkVdKWIJtxN1ZPO561wg1yvlmnU.roa (raw, json) Hash identifier: T1UGvaY+sPgOyfHIoNQmJTNfshFbXNmoAxXGY7h2ENY= Subject key identifier: 52:45:5D:29:62:09:B7:13:75:64:F3:B9:EB:5C:20:D7:2B:E5:9A:75 Certificate issuer: /CN=597a01de87e011803f890ae17749020f995f140c Certificate serial: 019B797E6E111D53E7008AAD87CFE26A5101 Authority key identifier: 59:7A:01:DE:87:E0:11:80:3F:89:0A:E1:77:49:02:0F:99:5F:14:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/UkVdKWIJtxN1ZPO561wg1yvlmnU.roa Signing time: Thu 01 Jan 2026 12:18:07 +0000 ROA not before: Thu 01 Jan 2026 12:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1271 IP address blocks: 2a07:b980:480f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/WXoB3ofgEYA_iQrhd0kCD5lfFAw.crl rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/WXoB3ofgEYA_iQrhd0kCD5lfFAw.mft rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 21:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:6e:11:1d:53:e7:00:8a:ad:87:cf:e2:6a:51:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=597a01de87e011803f890ae17749020f995f140c Validity Not Before: Jan 1 12:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52455d296209b7137564f3b9eb5c20d72be59a75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ac:67:b4:74:b7:e7:e4:be:a1:cf:0f:f3:76: 4e:d0:6e:05:7c:a3:79:c4:2b:96:40:4a:89:ae:b0: 36:07:11:b5:fd:76:fd:3d:a0:2c:da:d0:ba:90:32: e3:35:f1:33:fb:27:cd:9c:82:67:57:4e:45:4e:44: 07:81:97:4b:57:9a:ff:e4:3a:33:2d:17:2d:f2:81: d6:af:41:88:f7:c1:48:32:92:fe:a6:86:87:e3:8b: 76:84:aa:78:ed:0c:d2:20:86:41:c1:94:55:43:0f: 52:f2:4d:06:36:45:12:70:72:89:da:3c:fc:2d:3e: 3f:04:33:35:3c:ff:32:50:1d:d7:6e:a4:0e:a5:ba: 4e:d7:91:31:14:3c:c9:b8:29:e5:95:dc:cb:0f:05: 92:5e:5a:bd:37:e2:e9:3f:4b:0a:86:92:c6:04:01: 5d:94:8e:86:c0:40:4f:6f:da:a0:e9:f6:9e:39:1e: 53:ba:40:c2:ef:57:4c:f5:0c:2b:db:36:36:0e:40: 7f:46:11:db:37:dc:58:ef:3d:7b:8d:74:e6:4d:1c: d1:30:6b:16:8a:bf:08:ba:60:ea:50:c9:07:c8:b8: 04:3b:e5:eb:a0:be:9b:3e:99:84:1e:8a:50:2a:d6: c5:b0:06:d5:be:c0:25:53:12:bc:72:5d:68:c4:56: 57:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:45:5D:29:62:09:B7:13:75:64:F3:B9:EB:5C:20:D7:2B:E5:9A:75 X509v3 Authority Key Identifier: keyid:59:7A:01:DE:87:E0:11:80:3F:89:0A:E1:77:49:02:0F:99:5F:14:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXoB3ofgEYA_iQrhd0kCD5lfFAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/UkVdKWIJtxN1ZPO561wg1yvlmnU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/23ed9a-1ca5-45ea-9b8c-73533de099c3/1/WXoB3ofgEYA_iQrhd0kCD5lfFAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:b980:480f::/48 Signature Algorithm: sha256WithRSAEncryption 2c:ff:62:37:30:ee:66:8c:74:7d:7c:7b:0d:be:f7:97:87:93: 11:bf:69:56:b0:3f:a9:cc:a2:ec:3b:c1:ee:19:c6:6f:09:c9: f3:85:f7:62:b5:c9:c3:09:36:50:0d:e6:0f:fb:25:e2:a0:a2: 5c:0d:d9:ae:1e:17:e0:41:e7:2a:96:94:bf:af:9e:67:12:05: 03:42:f7:9b:79:06:2b:e5:55:84:9e:a2:e8:aa:da:18:bc:04: 9e:97:e7:05:e0:c6:0d:96:71:9b:f7:d1:3a:8a:20:8d:88:83: 00:22:94:be:3a:19:37:0c:a4:ff:4b:c4:75:27:95:be:5b:cd: 58:da:c4:35:42:cd:10:9c:83:3a:b4:60:9e:04:a4:67:89:f8: dd:ca:e2:cb:85:a7:34:b1:c5:b4:7b:91:66:10:c3:da:d2:32: bd:12:0f:f8:9f:54:54:5e:3d:c3:70:05:08:55:46:86:25:d8: 03:6f:f2:8b:c7:cd:a4:3f:14:5d:62:1d:92:c6:75:79:1a:43: 5e:6c:f5:6a:3a:57:4c:a2:ac:34:3c:23:b7:81:5d:fd:75:3a: c4:a4:15:d5:b8:52:43:1c:a7:38:d9:15:74:2f:29:47:31:2e: e8:8d:c6:ac:6b:8c:c8:d4:d0:2f:6d:bf:13:e2:3d:19:7d:6d: 5e:d3:92:c1 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5fm4RHVPnAIqth8/ialEBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5N2EwMWRlODdlMDExODAzZjg5MGFlMTc3NDkwMjBmOTk1 ZjE0MGMwHhcNMjYwMTAxMTIxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MjQ1NWQyOTYyMDliNzEzNzU2NGYzYjllYjVjMjBkNzJiZTU5YTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6xntHS35+S+oc8P83ZO0G4FfKN5 xCuWQEqJrrA2BxG1/Xb9PaAs2tC6kDLjNfEz+yfNnIJnV05FTkQHgZdLV5r/5Doz LRct8oHWr0GI98FIMpL+poaH44t2hKp47QzSIIZBwZRVQw9S8k0GNkUScHKJ2jz8 LT4/BDM1PP8yUB3XbqQOpbpO15ExFDzJuCnlldzLDwWSXlq9N+LpP0sKhpLGBAFd lI6GwEBPb9qg6faeOR5TukDC71dM9Qwr2zY2DkB/RhHbN9xY7z17jXTmTRzRMGsW ir8IumDqUMkHyLgEO+XroL6bPpmEHopQKtbFsAbVvsAlUxK8cl1oxFZX3QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFJFXSliCbcTdWTzuetcINcr5Zp1MB8GA1UdIwQY MBaAFFl6Ad6H4BGAP4kK4XdJAg+ZXxQMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV1hvQjNvZmdFWUFfaVFyaGQwa0NENWxmRkF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yM2VkOWEtMWNhNS00NWVhLTliOGMt NzM1MzNkZTA5OWMzLzEvVWtWZEtXSUp0eE4xWlBPNTYxd2cxeXZsbW5VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8yM2VkOWEtMWNhNS00NWVhLTliOGMtNzM1MzNkZTA5OWMz LzEvV1hvQjNvZmdFWUFfaVFyaGQwa0NENWxmRkF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKge5gEgP MA0GCSqGSIb3DQEBCwUAA4IBAQAs/2I3MO5mjHR9fHsNvveXh5MRv2lWsD+pzKLs O8HuGcZvCcnzhfditcnDCTZQDeYP+yXioKJcDdmuHhfgQecqlpS/r55nEgUDQveb eQYr5VWEnqLoqtoYvASel+cF4MYNlnGb99E6iiCNiIMAIpS+Ohk3DKT/S8R1J5W+ W81Y2sQ1Qs0QnIM6tGCeBKRnifjdyuLLhac0scW0e5FmEMPa0jK9Eg/4n1RUXj3D cAUIVUaGJdgDb/KLx82kPxRdYh2SxnV5GkNebPVqOldMoqw0PCO3gV39dTrEpBXV uFJDHKc42RV0LylHMS7ojcasa4zI1NAvbb8T4j0ZfW1e05LB -----END CERTIFICATE-----Generated at Sun Jan 11 07:40:00 2026 by rpki-client