This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/u6zwrz1fIMPIG6Fq4E3yGzATiH0.roa File: u6zwrz1fIMPIG6Fq4E3yGzATiH0.roa (raw, json) Hash identifier: WU20DcSmscAh/PhHLfFRUUagNsUT2dCDLJJdqOdtdKE= Subject key identifier: BB:AC:F0:AF:3D:5F:20:C3:C8:1B:A1:6A:E0:4D:F2:1B:30:13:88:7D Certificate issuer: /CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4 Certificate serial: 019B7F14D1E9DA9E628AEE755A0BA7526089 Authority key identifier: F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/u6zwrz1fIMPIG6Fq4E3yGzATiH0.roa Signing time: Fri 02 Jan 2026 14:20:29 +0000 ROA not before: Fri 02 Jan 2026 14:20:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34549 IP address blocks: 31.133.84.0/22 maxlen: 22 176.103.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/9LnqTZ2DpyjdQQKehq-KEw04ntQ.crl rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/9LnqTZ2DpyjdQQKehq-KEw04ntQ.mft rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:d1:e9:da:9e:62:8a:ee:75:5a:0b:a7:52:60:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4 Validity Not Before: Jan 2 14:20:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bbacf0af3d5f20c3c81ba16ae04df21b3013887d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3e:dc:6a:0c:60:f3:7d:50:db:81:44:9c:ab: c8:83:d3:f5:c5:be:bd:05:b8:1d:4f:bb:d0:7f:0e: 51:0e:0a:2b:56:e5:99:af:47:1b:43:23:0e:fd:7e: e9:a8:66:7b:2d:01:5c:73:dd:75:d7:1f:95:6d:e5: 48:90:d1:8c:13:b9:8e:f3:e6:44:35:64:99:7f:41: b3:9b:03:04:8e:de:05:0e:20:51:be:fb:7f:25:86: 22:84:b0:7c:4c:29:cc:40:07:80:45:d2:18:b7:3a: da:8c:d6:ab:73:bd:ba:92:d8:17:74:e8:4b:37:4f: 12:6e:37:85:bd:1f:f6:ec:a8:bc:b7:62:21:d3:49: e4:50:70:99:b0:d1:4e:17:31:a2:1a:38:d1:af:4f: a0:e9:cb:fe:f8:ae:24:d3:4b:d3:18:28:43:81:6f: 3d:76:a8:48:c4:d0:d6:59:30:ec:6c:9e:d5:78:50: 2b:52:0f:1a:4c:b2:cd:1c:99:38:4a:4f:f6:52:70: 46:6d:82:33:3c:33:26:05:ee:df:a6:7a:f3:b6:bf: c3:10:52:a6:06:9e:ba:7b:fd:a4:7a:ca:b9:e1:d9: b3:17:78:8e:e5:6f:a2:86:d5:33:a0:18:d9:80:df: c4:6c:9c:52:a7:62:70:d2:0c:32:60:19:e1:ab:3d: 99:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:AC:F0:AF:3D:5F:20:C3:C8:1B:A1:6A:E0:4D:F2:1B:30:13:88:7D X509v3 Authority Key Identifier: keyid:F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/u6zwrz1fIMPIG6Fq4E3yGzATiH0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/9LnqTZ2DpyjdQQKehq-KEw04ntQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.133.84.0/22 176.103.236.0/22 Signature Algorithm: sha256WithRSAEncryption 09:4f:b6:fa:c3:56:ec:70:a2:bc:9b:fb:45:6d:5b:47:7c:19: b0:06:ee:a3:b6:d4:9b:1a:d2:0d:89:03:b1:fb:15:e5:ad:f5: 0e:b7:dd:5b:58:0f:82:9f:54:9a:8e:be:f7:8d:b2:42:76:ae: cd:a7:30:e8:8d:75:a1:e2:a9:4e:9d:8a:8e:3d:5f:01:27:de: a9:2c:a0:74:6b:ff:bc:ef:b1:ac:68:63:f1:ab:0e:87:55:85: 3c:68:d0:9f:df:a6:66:c3:1b:d6:96:fc:4e:e9:4f:cf:5c:1f: 4a:f4:ac:43:61:33:79:e2:4b:05:20:bb:fe:3e:4a:b3:d6:df: 80:84:04:d4:4d:a8:68:f3:bc:76:26:f4:8f:e9:08:6d:1c:11: 2a:9f:c9:df:28:bb:58:23:81:80:31:7e:f9:08:d8:84:b2:a2: 40:6a:81:44:d1:db:f7:83:35:e8:78:20:fc:c4:6d:1e:6f:4f: 95:1e:79:9d:54:d2:8a:71:1c:77:cd:b4:26:11:fb:71:0f:e1: b1:62:9e:41:7d:9e:99:00:66:ae:e1:b9:38:3c:89:a6:3f:a7: 0e:29:09:aa:cc:d6:48:be:4e:0c:4b:5d:d8:11:4d:51:21:74: 4d:e3:26:d6:c4:10:dc:ba:eb:5a:82:00:37:fc:37:a5:bf:2f: 53:95:f3:34 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FNHp2p5iiu51WgunUmCJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0YjllYTRkOWQ4M2E3MjhkZDQxMDI5ZTg2YWY4YTEzMGQz ODllZDQwHhcNMjYwMTAyMTQyMDI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYmFjZjBhZjNkNWYyMGMzYzgxYmExNmFlMDRkZjIxYjMwMTM4ODdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0j7cagxg831Q24FEnKvIg9P1xb69 BbgdT7vQfw5RDgorVuWZr0cbQyMO/X7pqGZ7LQFcc9111x+VbeVIkNGME7mO8+ZE NWSZf0GzmwMEjt4FDiBRvvt/JYYihLB8TCnMQAeARdIYtzrajNarc726ktgXdOhL N08SbjeFvR/27Ki8t2Ih00nkUHCZsNFOFzGiGjjRr0+g6cv++K4k00vTGChDgW89 dqhIxNDWWTDsbJ7VeFArUg8aTLLNHJk4Sk/2UnBGbYIzPDMmBe7fpnrztr/DEFKm Bp66e/2kesq54dmzF3iO5W+ihtUzoBjZgN/EbJxSp2Jw0gwyYBnhqz2Z1wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLus8K89XyDDyBuhauBN8hswE4h9MB8GA1UdIwQY MBaAFPS56k2dg6co3UECnoavihMNOJ7UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOUxucVRaMkRweWpkUVFLZWhxLUtFdzA0bnRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8xNGYzMDUtMDEzYi00NTNlLWFjNTMt MDgxY2IyYjE3YWI1LzEvdTZ6d3J6MWZJTVBJRzZGcTRFM3lHekFUaUgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My8xNGYzMDUtMDEzYi00NTNlLWFjNTMtMDgxY2IyYjE3YWI1 LzEvOUxucVRaMkRweWpkUVFLZWhxLUtFdzA0bnRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCH4VUAwQC sGfsMA0GCSqGSIb3DQEBCwUAA4IBAQAJT7b6w1bscKK8m/tFbVtHfBmwBu6jttSb GtINiQOx+xXlrfUOt91bWA+Cn1Sajr73jbJCdq7NpzDojXWh4qlOnYqOPV8BJ96p LKB0a/+877GsaGPxqw6HVYU8aNCf36ZmwxvWlvxO6U/PXB9K9KxDYTN54ksFILv+ Pkqz1t+AhATUTaho87x2JvSP6QhtHBEqn8nfKLtYI4GAMX75CNiEsqJAaoFE0dv3 gzXoeCD8xG0eb0+VHnmdVNKKcRx3zbQmEftxD+GxYp5BfZ6ZAGau4bk4PImmP6cO KQmqzNZIvk4MS13YEU1RIXRN4ybWxBDcuutaggA3/Delvy9TlfM0 -----END CERTIFICATE-----Generated at Wed Jan 21 21:50:35 2026 by rpki-client