This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uN30qj-VKrsAb5BL9P4exlvl6e4.roa File: uN30qj-VKrsAb5BL9P4exlvl6e4.roa (raw, json) Hash identifier: YRnSvj9Ed/5hXQTImcuIWUtyMh3RTvQ4EAzg/gsbJRU= Subject key identifier: B8:DD:F4:AA:3F:95:2A:BB:00:6F:90:4B:F4:FE:1E:C6:5B:E5:E9:EE Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058 Certificate serial: 019B7E3955BB8E35E19427E95CF75453819A Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uN30qj-VKrsAb5BL9P4exlvl6e4.roa Signing time: Fri 02 Jan 2026 10:20:45 +0000 ROA not before: Fri 02 Jan 2026 10:20:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211448 IP address blocks: 2a0c:b641:140::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:55:bb:8e:35:e1:94:27:e9:5c:f7:54:53:81:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05976801363d375786152e4d061e75c8beb35058 Validity Not Before: Jan 2 10:20:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b8ddf4aa3f952abb006f904bf4fe1ec65be5e9ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:c7:e2:d9:7f:8b:c9:85:d4:8e:2f:99:24:81: 5b:45:f9:1f:13:27:3c:db:b0:1c:66:56:75:e2:c9: 7b:04:17:75:8f:96:4a:fb:03:24:7d:4c:0a:fa:8e: 0c:0f:e7:07:bb:8e:c8:27:d5:de:e2:4b:62:bc:07: 1c:60:3d:00:40:22:76:31:b0:1b:d1:11:90:d6:76: 2c:6d:89:cb:eb:48:ed:9f:37:05:92:89:25:0c:97: 4a:4c:44:aa:09:17:a7:d5:b1:44:84:1b:0a:51:74: 24:fa:8d:24:55:5d:75:62:0f:41:0b:8a:d9:f0:17: bc:7c:10:db:84:f2:e7:51:70:3d:03:cf:c7:e4:f6: 10:78:13:4b:4e:1b:93:b7:a9:b0:db:46:4b:63:9d: a1:73:b3:5a:d8:97:40:48:3c:2d:67:91:07:bb:71: 85:4c:39:e2:be:7a:3d:eb:77:23:ed:97:af:e7:36: 88:39:5c:38:7e:2d:b5:ab:c3:d1:e1:a1:57:76:ae: 66:40:f0:a3:96:f9:0f:f9:0d:50:6a:6b:54:ef:15: de:df:88:7c:6e:47:44:25:a9:63:a1:ad:d1:6d:56: 6d:23:1e:dd:20:23:3a:39:79:99:b9:04:11:be:88: 41:cb:fd:f0:e2:65:d1:f9:50:55:0d:9a:e5:26:b2: b1:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:DD:F4:AA:3F:95:2A:BB:00:6F:90:4B:F4:FE:1E:C6:5B:E5:E9:EE X509v3 Authority Key Identifier: keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/uN30qj-VKrsAb5BL9P4exlvl6e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:b641:140::/44 Signature Algorithm: sha256WithRSAEncryption 5a:1d:ea:e5:f3:c8:4e:20:d8:9a:fb:bc:3e:0e:8f:66:fe:0a: 69:ab:ef:9d:46:15:39:1b:72:5f:02:6d:65:5d:97:a1:7e:02: d0:99:63:4a:e5:3b:2b:2b:29:56:7e:38:99:51:56:49:70:0a: 5c:3b:27:98:7c:0e:ce:48:c1:2c:60:6d:26:1b:93:d8:06:d7: 4a:79:28:3e:c2:41:ce:4f:cb:c3:f4:c7:18:46:15:aa:a4:13: 9f:6a:8c:51:41:61:a4:df:65:98:8c:e8:0d:07:22:c5:59:c8: 9c:7e:d8:14:d9:49:d8:a3:32:a8:22:6b:b6:26:f7:47:f8:9e: 00:80:8c:42:81:a3:66:04:d5:67:ef:05:07:db:9d:f0:6b:b3: d5:1e:89:72:64:ca:bf:9b:33:89:d9:7f:54:41:47:19:dd:a9: 28:e5:10:3f:7e:a2:18:64:68:fa:82:e3:24:72:41:ac:75:f9: 83:a4:d8:b1:b7:14:3e:2f:5a:b3:c1:9b:8d:43:08:cf:06:8c: a1:33:15:05:9b:90:4b:3a:80:6c:aa:ab:ab:73:ec:d8:9c:04: d5:99:f4:08:81:4e:03:1f:50:da:f1:9b:bf:31:f2:49:0e:34: 37:52:5b:65:93:3d:2b:e8:c3:53:3e:2a:6a:b2:19:09:ca:b3: ad:d7:9f:41 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+OVW7jjXhlCfpXPdUU4GaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi MzUwNTgwHhcNMjYwMTAyMTAyMDQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOGRkZjRhYTNmOTUyYWJiMDA2ZjkwNGJmNGZlMWVjNjViZTVlOWVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8cfi2X+LyYXUji+ZJIFbRfkfEyc8 27AcZlZ14sl7BBd1j5ZK+wMkfUwK+o4MD+cHu47IJ9Xe4ktivAccYD0AQCJ2MbAb 0RGQ1nYsbYnL60jtnzcFkoklDJdKTESqCRen1bFEhBsKUXQk+o0kVV11Yg9BC4rZ 8Be8fBDbhPLnUXA9A8/H5PYQeBNLThuTt6mw20ZLY52hc7Na2JdASDwtZ5EHu3GF TDnivno963cj7Zev5zaIOVw4fi21q8PR4aFXdq5mQPCjlvkP+Q1QamtU7xXe34h8 bkdEJaljoa3RbVZtIx7dICM6OXmZuQQRvohBy/3w4mXR+VBVDZrlJrKxEwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFLjd9Ko/lSq7AG+QS/T+HsZb5enuMB8GA1UdIwQY MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et NWVjOGM4ZWQ2MGZkLzEvdU4zMHFqLVZLcnNBYjVCTDlQNGV4bHZsNmU0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQFA MA0GCSqGSIb3DQEBCwUAA4IBAQBaHerl88hOINia+7w+Do9m/gppq++dRhU5G3Jf Am1lXZehfgLQmWNK5TsrKylWfjiZUVZJcApcOyeYfA7OSMEsYG0mG5PYBtdKeSg+ wkHOT8vD9McYRhWqpBOfaoxRQWGk32WYjOgNByLFWcicftgU2UnYozKoImu2JvdH +J4AgIxCgaNmBNVn7wUH253wa7PVHolyZMq/mzOJ2X9UQUcZ3ako5RA/fqIYZGj6 guMkckGsdfmDpNixtxQ+L1qzwZuNQwjPBoyhMxUFm5BLOoBsqqurc+zYnATVmfQI gU4DH1Da8Zu/MfJJDjQ3Ultlkz0r6MNTPipqshkJyrOt159B -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:14 2026 by rpki-client