This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/UPwsUnhe4MrjeZvPRYpIDhPDKiI.roa File: UPwsUnhe4MrjeZvPRYpIDhPDKiI.roa (raw, json) Hash identifier: gTNgkF2m3yFT5Gp1TKn07e+49JHxGZGWx9toGyIkemc= Subject key identifier: 50:FC:2C:52:78:5E:E0:CA:E3:79:9B:CF:45:8A:48:0E:13:C3:2A:22 Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e Certificate serial: 019B7D5B63B4B1C6EE07009F0D91883255E8 Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/UPwsUnhe4MrjeZvPRYpIDhPDKiI.roa Signing time: Fri 02 Jan 2026 06:18:19 +0000 ROA not before: Fri 02 Jan 2026 06:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1654 IP address blocks: 2a02:bf8:1601::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:63:b4:b1:c6:ee:07:00:9f:0d:91:88:32:55:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e Validity Not Before: Jan 2 06:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=50fc2c52785ee0cae3799bcf458a480e13c32a22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dc:fc:41:8f:1c:9e:dd:50:56:16:7c:d6:01: dd:58:2f:74:9b:07:4d:e6:64:99:3d:69:64:4f:48: 4b:aa:d6:ec:9c:e2:15:8f:6a:67:36:be:1a:1e:fe: 1e:f4:81:6a:27:fe:1a:39:eb:a5:10:ad:ce:92:26: 37:5a:dd:79:8a:27:af:86:0a:60:7a:dc:f1:50:b2: 5f:77:74:7d:78:19:94:84:aa:da:43:31:12:e7:bd: 95:51:25:ab:da:c6:b7:73:04:35:3c:54:e4:55:cb: c5:b8:ff:59:b6:b3:43:02:a4:cd:16:01:50:43:ae: 09:5c:43:a7:55:c9:62:8a:8f:25:fa:6a:23:40:83: e5:83:dd:8b:47:ce:56:2b:c7:d6:c7:29:7d:dc:d2: 6d:7c:72:4a:b0:2b:b5:ac:44:20:e4:7c:43:30:44: 35:b0:53:7d:e3:43:7d:c8:c9:17:5c:0e:35:0b:ef: 75:d8:39:a1:e0:ab:13:5d:df:ef:8f:a8:53:7e:8e: 52:75:fb:7a:7e:e8:88:5d:12:20:b6:6c:13:b2:6e: a8:f1:6e:82:dc:60:8e:b0:81:76:b8:38:53:41:f8: 7b:fb:40:97:f7:f7:63:95:95:d6:dc:50:00:46:74: 38:60:fe:3c:ee:15:c3:56:53:51:37:5e:f4:15:f8: 5c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:FC:2C:52:78:5E:E0:CA:E3:79:9B:CF:45:8A:48:0E:13:C3:2A:22 X509v3 Authority Key Identifier: keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/UPwsUnhe4MrjeZvPRYpIDhPDKiI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a02:bf8:1601::/48 Signature Algorithm: sha256WithRSAEncryption 1d:6a:1c:c8:46:7a:8e:bf:ba:b6:d8:2d:e9:ea:10:d2:99:4c: d6:6c:a1:69:b7:89:68:10:5d:9a:5f:da:bb:1b:c3:f5:86:45: 37:6d:27:f6:ee:ea:cc:e5:73:5e:2e:36:0a:66:47:20:eb:1c: 51:99:5b:3b:c0:cf:3f:c6:24:3c:27:2e:17:d3:92:c4:9c:8f: 1d:8b:0c:e5:71:3c:0f:6a:5a:fa:85:32:79:2d:19:0d:77:9d: 4e:2b:33:21:9c:e1:c3:43:6f:16:7d:e7:c4:6d:a2:38:af:46: 9a:06:c2:f9:c5:df:66:16:7b:a0:9a:dc:0b:17:b9:e9:d8:e2: 7f:a7:c8:c5:0a:69:fc:78:9e:fc:87:74:17:67:d5:5b:38:b9: 23:ec:49:ea:22:e0:4d:80:52:1b:9c:4d:ad:7d:91:7f:53:c5: 3f:8e:ab:73:4b:78:e3:33:e5:05:28:2a:53:67:51:ff:8a:60: 73:a2:6e:3f:f0:25:dc:2c:26:b1:3d:50:0f:16:05:1d:8b:af: c6:3a:b2:b1:af:ad:fb:b8:94:a3:a4:d7:21:5e:b0:75:91:fa: 21:d1:7f:a7:13:e1:e6:fc:12:5e:8f:1e:1e:5c:59:e9:47:2b: 3d:38:7f:ee:72:35:a5:32:8c:8a:4d:65:63:3f:f5:9f:34:74: 3e:0a:40:4e -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9W2O0scbuBwCfDZGIMlXoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0ZmIzMzFmYTQyZmI0NTFlNDU1MWM2ZjkxY2JiOWMxOWVl MzdhNGUwHhcNMjYwMTAyMDYxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MGZjMmM1Mjc4NWVlMGNhZTM3OTliY2Y0NThhNDgwZTEzYzMyYTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9z8QY8cnt1QVhZ81gHdWC90mwdN 5mSZPWlkT0hLqtbsnOIVj2pnNr4aHv4e9IFqJ/4aOeulEK3OkiY3Wt15iievhgpg etzxULJfd3R9eBmUhKraQzES572VUSWr2sa3cwQ1PFTkVcvFuP9ZtrNDAqTNFgFQ Q64JXEOnVcliio8l+mojQIPlg92LR85WK8fWxyl93NJtfHJKsCu1rEQg5HxDMEQ1 sFN940N9yMkXXA41C+912Dmh4KsTXd/vj6hTfo5Sdft6fuiIXRIgtmwTsm6o8W6C 3GCOsIF2uDhTQfh7+0CX9/djlZXW3FAARnQ4YP487hXDVlNRN170Ffhc+wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFFD8LFJ4XuDK43mbz0WKSA4TwyoiMB8GA1UdIwQY MBaAFLT7Mx+kL7RR5FUcb5HLucGe43pOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFBzekg2UXZ0RkhrVlJ4dmtjdTV3WjdqZWs0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9kOWE2NzItMjZjMy00YWI0LWI1M2It MDk5ZmQyMTAxMzg1LzEvVVB3c1VuaGU0TXJqZVp2UFJZcElEaFBES2lJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9kOWE2NzItMjZjMy00YWI0LWI1M2ItMDk5ZmQyMTAxMzg1 LzEvdFBzekg2UXZ0RkhrVlJ4dmtjdTV3WjdqZWs0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgIL+BYB MA0GCSqGSIb3DQEBCwUAA4IBAQAdahzIRnqOv7q22C3p6hDSmUzWbKFpt4loEF2a X9q7G8P1hkU3bSf27urM5XNeLjYKZkcg6xxRmVs7wM8/xiQ8Jy4X05LEnI8diwzl cTwPalr6hTJ5LRkNd51OKzMhnOHDQ28WfefEbaI4r0aaBsL5xd9mFnugmtwLF7np 2OJ/p8jFCmn8eJ78h3QXZ9VbOLkj7EnqIuBNgFIbnE2tfZF/U8U/jqtzS3jjM+UF KCpTZ1H/imBzom4/8CXcLCaxPVAPFgUdi6/GOrKxr637uJSjpNchXrB1kfoh0X+n E+Hm/BJejx4eXFnpRys9OH/ucjWlMoyKTWVjP/WfNHQ+CkBO -----END CERTIFICATE-----Generated at Mon Feb 9 20:08:59 2026 by rpki-client