This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uLRRSa28R91yvbReYCdOAaMpBUg.roa File: uLRRSa28R91yvbReYCdOAaMpBUg.roa (raw, json) Hash identifier: UIEUhYYEHJqxxfpQD9TsBUwZLc5rYcFp2yEv/bkCfzk= Subject key identifier: B8:B4:51:49:AD:BC:47:DD:72:BD:B4:5E:60:27:4E:01:A3:29:05:48 Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019A92716B6D6B5095DD5B1B4B8635E4CEDC Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uLRRSa28R91yvbReYCdOAaMpBUg.roa Signing time: Mon 17 Nov 2025 15:31:37 +0000 ROA not before: Mon 17 Nov 2025 15:31:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 203669 IP address blocks: 2a0c:b641:800::/44 maxlen: 128 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:92:71:6b:6d:6b:50:95:dd:5b:1b:4b:86:35:e4:ce:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Nov 17 15:31:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=b8b45149adbc47dd72bdb45e60274e01a3290548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:bd:d3:4a:1a:b8:01:57:d7:ae:03:b1:30:f9: 93:09:c7:44:54:be:80:07:4e:d8:ed:ed:76:42:78: 63:24:12:0e:4a:cd:ef:5c:57:14:c8:82:96:34:9a: ea:ca:5d:13:58:df:9d:e5:ea:1e:ed:16:e6:c4:6a: 5c:27:dd:44:93:70:7a:e0:d4:f6:af:f4:e3:14:30: 3f:f1:b7:ed:35:02:37:bc:ae:38:51:a2:66:9f:9f: 3e:18:4f:8f:b7:7a:84:9d:80:39:85:87:86:92:f0: f3:ad:71:23:fd:9f:4d:91:52:c2:0d:0f:48:6d:14: 8a:86:c3:6a:56:c1:9c:ea:71:dd:a5:28:ec:00:dc: f1:b4:02:b4:76:6d:8b:d9:d2:72:15:0f:a2:41:1c: 69:9e:7d:7c:5b:77:55:27:4c:c9:34:b7:7f:9d:21: b5:3e:3e:d7:1b:fb:06:45:29:a4:f3:a4:cd:07:44: 5c:29:c8:77:6c:8c:4d:79:90:b5:80:f9:a9:eb:a0: 32:27:6b:a6:f4:9d:c0:54:1d:f4:3c:2d:8e:a4:09: 5f:57:71:41:05:12:b5:7a:72:93:8e:a2:59:6a:f0: 06:31:d3:6a:ed:17:83:05:22:71:cc:4c:36:50:63: b5:53:f3:de:46:c9:44:a0:99:2b:1b:36:a6:d6:53: b4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B4:51:49:AD:BC:47:DD:72:BD:B4:5E:60:27:4E:01:A3:29:05:48 X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uLRRSa28R91yvbReYCdOAaMpBUg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:800::/44 Signature Algorithm: sha256WithRSAEncryption 17:b0:93:f0:8f:bf:88:d6:4d:a6:70:dd:6a:45:32:a2:56:f3: 80:03:1b:fe:10:3a:b3:6b:ea:3c:36:31:ac:53:60:60:10:36: be:4b:9b:d2:df:47:27:4f:73:4e:b6:0f:4a:f8:11:7b:78:5a: fd:70:00:7f:0a:01:b5:30:6f:99:2f:f4:f1:b8:cb:ce:bc:b1: 4f:0f:a5:cc:f0:18:05:8f:84:78:65:88:a6:a0:06:47:7d:01: 7a:63:e7:6d:04:71:c5:5b:cb:b5:01:b7:d5:c4:61:0e:ae:6f: e3:43:68:62:a1:90:ce:37:7c:f9:4d:7a:ae:32:a8:b0:6f:37: 8b:ef:7f:75:29:63:84:cd:81:4b:92:81:a5:41:ba:e4:41:15: 40:82:04:81:97:80:09:08:be:52:3e:9a:7e:4b:23:d8:1c:3b: 68:a9:c0:bd:0a:01:79:3e:da:5b:90:3d:71:4d:2c:09:b1:d7: 14:68:73:38:ce:b2:e7:4d:7c:7b:4b:e8:7e:62:11:95:21:b1: 41:55:4a:79:2c:cf:d8:2a:55:db:f5:29:37:59:45:78:19:ad: 3d:1d:a7:1f:8b:af:ae:fb:6f:5c:50:fd:8a:dc:bd:a6:43:68: 1a:50:17:08:ff:70:81:1b:12:68:2b:f4:ae:b5:7d:47:49:19: cf:d8:6b:b6 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZqScWtta1CV3VsbS4Y15M7cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjUxMTE3MTUzMTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOGI0NTE0OWFkYmM0N2RkNzJiZGI0NWU2MDI3NGUwMWEzMjkwNTQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5b3TShq4AVfXrgOxMPmTCcdEVL6A B07Y7e12QnhjJBIOSs3vXFcUyIKWNJrqyl0TWN+d5eoe7RbmxGpcJ91Ek3B64NT2 r/TjFDA/8bftNQI3vK44UaJmn58+GE+Pt3qEnYA5hYeGkvDzrXEj/Z9NkVLCDQ9I bRSKhsNqVsGc6nHdpSjsANzxtAK0dm2L2dJyFQ+iQRxpnn18W3dVJ0zJNLd/nSG1 Pj7XG/sGRSmk86TNB0RcKch3bIxNeZC1gPmp66AyJ2um9J3AVB30PC2OpAlfV3FB BRK1enKTjqJZavAGMdNq7ReDBSJxzEw2UGO1U/PeRslEoJkrGzam1lO04QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLi0UUmtvEfdcr20XmAnTgGjKQVIMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvdUxSUlNhMjhSOTF5dmJSZVlDZE9BYU1wQlVnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQgA MA0GCSqGSIb3DQEBCwUAA4IBAQAXsJPwj7+I1k2mcN1qRTKiVvOAAxv+EDqza+o8 NjGsU2BgEDa+S5vS30cnT3NOtg9K+BF7eFr9cAB/CgG1MG+ZL/TxuMvOvLFPD6XM 8BgFj4R4ZYimoAZHfQF6Y+dtBHHFW8u1AbfVxGEOrm/jQ2hioZDON3z5TXquMqiw bzeL7391KWOEzYFLkoGlQbrkQRVAggSBl4AJCL5SPpp+SyPYHDtoqcC9CgF5Ptpb kD1xTSwJsdcUaHM4zrLnTXx7S+h+YhGVIbFBVUp5LM/YKlXb9Sk3WUV4Ga09Hacf i6+u+29cUP2K3L2mQ2gaUBcI/3CBGxJoK/SutX1HSRnP2Gu2 -----END CERTIFICATE-----Generated at Fri Dec 5 20:26:59 2025 by rpki-client