This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/6558ec-d568-4cb9-a03a-8366b164dd66/1/UULqMalT8q1TQ-6O1Hqoa0ij9jk.roa File: UULqMalT8q1TQ-6O1Hqoa0ij9jk.roa (raw, json) Hash identifier: bcQyF2LcXE36rOCQDWSu5hq1GX9yM6Wmo0ZcgXJHSfw= Subject key identifier: 51:42:EA:31:A9:53:F2:AD:53:43:EE:8E:D4:7A:A8:6B:48:A3:F6:39 Certificate issuer: /CN=525ec93d7ca73744b2c1fbb6dda64493c2a495c1 Certificate serial: 019B7910211729A7EA36B7F7A89D4229B588 Authority key identifier: 52:5E:C9:3D:7C:A7:37:44:B2:C1:FB:B6:DD:A6:44:93:C2:A4:95:C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ul7JPXynN0Sywfu23aZEk8KklcE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/6558ec-d568-4cb9-a03a-8366b164dd66/1/UULqMalT8q1TQ-6O1Hqoa0ij9jk.roa Signing time: Thu 01 Jan 2026 10:17:38 +0000 ROA not before: Thu 01 Jan 2026 10:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212165 IP address blocks: 2a14:5640::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/6558ec-d568-4cb9-a03a-8366b164dd66/1/Ul7JPXynN0Sywfu23aZEk8KklcE.crl rsync://rpki.ripe.net/repository/DEFAULT/50/6558ec-d568-4cb9-a03a-8366b164dd66/1/Ul7JPXynN0Sywfu23aZEk8KklcE.mft rsync://rpki.ripe.net/repository/DEFAULT/Ul7JPXynN0Sywfu23aZEk8KklcE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:21:17:29:a7:ea:36:b7:f7:a8:9d:42:29:b5:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=525ec93d7ca73744b2c1fbb6dda64493c2a495c1 Validity Not Before: Jan 1 10:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5142ea31a953f2ad5343ee8ed47aa86b48a3f639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e0:68:61:e1:10:aa:d5:ce:8c:bd:5d:77:0e: 43:c8:fe:09:09:94:6e:08:18:08:48:66:eb:6c:eb: a5:e0:75:1a:2d:89:5b:20:69:0c:78:fe:10:1a:53: 77:96:0f:77:81:72:00:7c:a8:c9:76:e0:96:55:27: ef:27:9e:32:3f:e8:57:bf:29:44:81:69:e0:a7:57: 66:f4:96:5a:22:76:b4:a4:6d:da:9f:fc:13:57:ce: b7:79:b8:b1:f0:d2:5c:b1:e8:47:3b:3f:98:92:e7: e8:ec:dc:b2:e3:bb:c4:70:99:94:34:7a:24:bc:6a: 8c:e9:a6:db:3d:c1:4f:dc:5b:ab:05:78:d6:85:f6: 41:38:9e:2f:5f:45:bc:3d:e7:2e:82:03:d3:c2:1f: e9:ce:90:44:f5:d6:37:ca:e7:c9:c1:ff:90:d2:cc: 1e:af:97:78:d7:57:3c:a0:2d:65:dc:fc:38:e4:2e: df:11:dd:f7:ac:ad:d7:43:9e:93:78:93:fa:6f:84: 3a:6c:b9:d5:52:eb:be:db:cb:62:eb:ff:25:d4:20: d3:41:33:9f:7f:50:ac:36:69:38:93:dc:a8:59:2c: 10:3e:71:59:93:29:8a:37:d5:b5:29:32:69:8f:d2: fc:49:3c:af:77:c8:fb:60:d4:bd:3a:81:c7:27:50: 73:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:42:EA:31:A9:53:F2:AD:53:43:EE:8E:D4:7A:A8:6B:48:A3:F6:39 X509v3 Authority Key Identifier: keyid:52:5E:C9:3D:7C:A7:37:44:B2:C1:FB:B6:DD:A6:44:93:C2:A4:95:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ul7JPXynN0Sywfu23aZEk8KklcE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6558ec-d568-4cb9-a03a-8366b164dd66/1/UULqMalT8q1TQ-6O1Hqoa0ij9jk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6558ec-d568-4cb9-a03a-8366b164dd66/1/Ul7JPXynN0Sywfu23aZEk8KklcE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:5640::/29 Signature Algorithm: sha256WithRSAEncryption 35:26:d3:80:0c:1c:8a:99:2b:66:39:28:7c:27:ad:04:a6:32: de:34:9c:ee:86:8c:a4:64:27:08:cd:a6:d9:55:65:64:01:54: 10:ee:74:39:80:6f:d9:ca:56:37:64:0d:63:5f:6d:e9:81:8b: 4e:b7:a8:c3:3b:5d:ef:bf:8e:d4:d5:0b:d3:97:f9:be:cb:7d: 28:ba:f4:70:f1:68:8d:d2:98:97:6d:8d:b6:6a:8d:95:d5:e0: e2:26:d3:37:c9:21:a5:da:12:5f:3d:91:3b:75:a6:a8:76:fd: 23:5b:b3:da:9c:a0:07:e0:f8:5e:21:52:9a:9f:e3:75:5b:c4: 44:76:95:ac:1a:40:72:ec:02:ad:33:8c:84:27:f4:e7:8d:a3: 8d:9e:67:29:86:c4:8a:f8:b9:fc:5a:d1:ea:4f:3d:71:af:23: 62:23:ee:f6:78:42:0d:cf:93:51:94:90:27:f8:1a:2c:b1:e3: 48:23:39:53:fa:9d:d2:91:eb:5a:51:95:b8:c7:f1:4a:4c:c0: 73:e2:6c:e8:9c:03:89:e2:84:99:96:fd:53:84:7d:ea:9b:9e: 95:91:f0:c6:0f:1c:d8:51:60:b6:96:f4:ad:04:71:b6:d6:ce: 54:bd:e0:29:58:ba:56:f5:3b:9a:b2:7c:2e:19:66:42:5b:8f: 38:17:46:4f -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt5ECEXKafqNrf3qJ1CKbWIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyNWVjOTNkN2NhNzM3NDRiMmMxZmJiNmRkYTY0NDkzYzJh NDk1YzEwHhcNMjYwMTAxMTAxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MTQyZWEzMWE5NTNmMmFkNTM0M2VlOGVkNDdhYTg2YjQ4YTNmNjM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOBoYeEQqtXOjL1ddw5DyP4JCZRu CBgISGbrbOul4HUaLYlbIGkMeP4QGlN3lg93gXIAfKjJduCWVSfvJ54yP+hXvylE gWngp1dm9JZaIna0pG3an/wTV863ebix8NJcsehHOz+Ykufo7Nyy47vEcJmUNHok vGqM6abbPcFP3FurBXjWhfZBOJ4vX0W8PecuggPTwh/pzpBE9dY3yufJwf+Q0swe r5d411c8oC1l3Pw45C7fEd33rK3XQ56TeJP6b4Q6bLnVUuu+28ti6/8l1CDTQTOf f1CsNmk4k9yoWSwQPnFZkymKN9W1KTJpj9L8STyvd8j7YNS9OoHHJ1BzPQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFFFC6jGpU/KtU0PujtR6qGtIo/Y5MB8GA1UdIwQY MBaAFFJeyT18pzdEssH7tt2mRJPCpJXBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWw3SlBYeW5OMFN5d2Z1MjNhWkVrOEtrbGNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC82NTU4ZWMtZDU2OC00Y2I5LWEwM2Et ODM2NmIxNjRkZDY2LzEvVVVMcU1hbFQ4cTFUUS02TzFIcW9hMGlqOWprLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC82NTU4ZWMtZDU2OC00Y2I5LWEwM2EtODM2NmIxNjRkZDY2 LzEvVWw3SlBYeW5OMFN5d2Z1MjNhWkVrOEtrbGNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhRWQDAN BgkqhkiG9w0BAQsFAAOCAQEANSbTgAwcipkrZjkofCetBKYy3jSc7oaMpGQnCM2m 2VVlZAFUEO50OYBv2cpWN2QNY19t6YGLTreowztd77+O1NUL05f5vst9KLr0cPFo jdKYl22NtmqNldXg4ibTN8khpdoSXz2RO3WmqHb9I1uz2pygB+D4XiFSmp/jdVvE RHaVrBpAcuwCrTOMhCf0542jjZ5nKYbEivi5/FrR6k89ca8jYiPu9nhCDc+TUZSQ J/gaLLHjSCM5U/qd0pHrWlGVuMfxSkzAc+Js6JwDieKEmZb9U4R96puelZHwxg8c 2FFgtpb0rQRxttbOVL3gKVi6VvU7mrJ8LhlmQluPOBdGTw== -----END CERTIFICATE-----Generated at Wed Jan 21 17:07:54 2026 by rpki-client