This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/11c411-a775-4868-9d27-590f540c456d/1/uIo95toyzTsPJRhnwDkZJwBSVlU.roa File: uIo95toyzTsPJRhnwDkZJwBSVlU.roa (raw, json) Hash identifier: H/MmcUvrGoaPLtgLMTpLeQaEN4NDpxo/KSd9m/v1Q2I= Subject key identifier: B8:8A:3D:E6:DA:32:CD:3B:0F:25:18:67:C0:39:19:27:00:52:56:55 Certificate issuer: /CN=bbf7bc6c7c93a3cfb1e25bbbefc4f207ae25bda5 Certificate serial: 019B7D5CEB8BBDC19011DBFE014089698EDA Authority key identifier: BB:F7:BC:6C:7C:93:A3:CF:B1:E2:5B:BB:EF:C4:F2:07:AE:25:BD:A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_e8bHyTo8-x4lu778TyB64lvaU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/11c411-a775-4868-9d27-590f540c456d/1/uIo95toyzTsPJRhnwDkZJwBSVlU.roa Signing time: Fri 02 Jan 2026 06:19:59 +0000 ROA not before: Fri 02 Jan 2026 06:19:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199474 IP address blocks: 46.255.24.0/24 maxlen: 24 2a13:b180::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/11c411-a775-4868-9d27-590f540c456d/1/u_e8bHyTo8-x4lu778TyB64lvaU.crl rsync://rpki.ripe.net/repository/DEFAULT/66/11c411-a775-4868-9d27-590f540c456d/1/u_e8bHyTo8-x4lu778TyB64lvaU.mft rsync://rpki.ripe.net/repository/DEFAULT/u_e8bHyTo8-x4lu778TyB64lvaU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:eb:8b:bd:c1:90:11:db:fe:01:40:89:69:8e:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbf7bc6c7c93a3cfb1e25bbbefc4f207ae25bda5 Validity Not Before: Jan 2 06:19:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b88a3de6da32cd3b0f251867c039192700525655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:11:26:ba:45:ad:79:3c:bf:d5:2b:47:8d:82: 46:3a:50:3d:f9:71:56:e6:6b:b9:f8:c4:f8:f4:a1: 18:94:b7:6c:9e:6a:3e:77:e3:e0:fc:12:5c:25:8d: ff:e1:41:44:08:db:e9:8c:51:02:cd:e3:41:81:c3: 96:31:80:55:d9:06:50:7f:de:d2:bd:5f:f2:6f:10: 62:0c:c8:b5:4a:93:bb:b8:93:04:b4:49:fc:a5:be: 12:12:0c:3c:ec:63:fb:d9:82:e4:d5:c6:63:72:33: f4:e1:37:d5:63:23:6a:4b:61:b9:f4:98:80:d4:8d: 88:15:8b:1d:a8:10:40:88:03:fb:f2:b4:48:60:06: 07:c4:67:17:c4:04:c8:7f:3a:b3:1f:5f:1a:11:d7: b9:39:a6:1e:93:b6:47:e9:00:c2:2a:69:ba:e4:e7: 76:c5:55:d3:79:33:ca:54:f8:6e:24:84:31:0b:a7: 9a:e8:30:86:49:d6:0c:08:f8:29:bc:62:b3:a8:c5: 8c:09:78:71:d4:4a:d6:55:a5:38:9b:4a:37:16:ae: 26:0e:ad:4e:ee:66:15:4e:4d:08:8d:36:c0:ad:fe: 06:00:5e:6f:4a:50:9e:b6:aa:f1:45:d5:61:ee:5d: 19:4b:47:10:72:bf:0e:b1:f8:70:d1:1e:b8:62:9b: 01:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:8A:3D:E6:DA:32:CD:3B:0F:25:18:67:C0:39:19:27:00:52:56:55 X509v3 Authority Key Identifier: keyid:BB:F7:BC:6C:7C:93:A3:CF:B1:E2:5B:BB:EF:C4:F2:07:AE:25:BD:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_e8bHyTo8-x4lu778TyB64lvaU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/11c411-a775-4868-9d27-590f540c456d/1/uIo95toyzTsPJRhnwDkZJwBSVlU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/11c411-a775-4868-9d27-590f540c456d/1/u_e8bHyTo8-x4lu778TyB64lvaU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.255.24.0/24 IPv6: 2a13:b180::/29 Signature Algorithm: sha256WithRSAEncryption cb:37:d6:21:94:99:d6:6e:3e:7c:59:8e:bd:d1:4e:c5:d5:36: b4:89:ea:2f:55:fe:25:09:57:65:0c:df:e7:ea:97:aa:6e:08: b6:fe:3d:1e:5b:41:88:cb:29:71:32:27:d6:bd:ca:e2:c9:6d: e5:d5:a8:d7:aa:b7:d0:48:8e:2d:db:62:bb:7b:0a:10:50:f8: ce:c7:ff:45:f1:7e:fb:24:5c:e7:00:25:dd:b5:e4:8a:20:21: ca:fa:0f:5d:bd:f4:ab:f5:4f:17:d9:7a:cd:b1:d1:21:8b:24: b9:1e:dc:15:df:70:b1:2c:b9:e2:b0:da:a9:14:70:f9:c1:bf: a2:39:10:fd:0c:ce:21:5c:02:87:ac:9e:64:a3:1a:b5:e1:62: 2f:2c:98:6d:dc:52:78:e6:fd:90:ad:fa:82:92:e3:a9:29:a6: 6e:67:e6:d9:bc:32:f0:69:7a:a1:ee:72:37:4e:0c:06:cd:4b: b6:a1:10:5d:b7:bd:aa:19:ec:a6:2f:07:48:2b:4a:8c:2b:4a: ec:14:75:11:2c:b2:cc:56:ec:e8:04:c3:d7:97:ef:b5:38:2c: 5b:d5:47:61:4c:53:21:43:5b:65:6c:6e:43:17:18:70:e1:1e: 14:8e:9a:71:29:9e:28:74:d9:82:ae:5d:22:b1:94:9a:45:c6: 82:d1:c6:b9 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9XOuLvcGQEdv+AUCJaY7aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiZjdiYzZjN2M5M2EzY2ZiMWUyNWJiYmVmYzRmMjA3YWUy NWJkYTUwHhcNMjYwMTAyMDYxOTU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiODhhM2RlNmRhMzJjZDNiMGYyNTE4NjdjMDM5MTkyNzAwNTI1NjU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqhEmukWteTy/1StHjYJGOlA9+XFW 5mu5+MT49KEYlLdsnmo+d+Pg/BJcJY3/4UFECNvpjFECzeNBgcOWMYBV2QZQf97S vV/ybxBiDMi1SpO7uJMEtEn8pb4SEgw87GP72YLk1cZjcjP04TfVYyNqS2G59JiA 1I2IFYsdqBBAiAP78rRIYAYHxGcXxATIfzqzH18aEde5OaYek7ZH6QDCKmm65Od2 xVXTeTPKVPhuJIQxC6ea6DCGSdYMCPgpvGKzqMWMCXhx1ErWVaU4m0o3Fq4mDq1O 7mYVTk0IjTbArf4GAF5vSlCetqrxRdVh7l0ZS0cQcr8Osfhw0R64YpsBbwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLiKPebaMs07DyUYZ8A5GScAUlZVMB8GA1UdIwQY MBaAFLv3vGx8k6PPseJbu+/E8geuJb2lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdV9lOGJIeVRvOC14NGx1Nzc4VHlCNjRsdmFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8xMWM0MTEtYTc3NS00ODY4LTlkMjct NTkwZjU0MGM0NTZkLzEvdUlvOTV0b3l6VHNQSlJobndEa1pKd0JTVmxVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8xMWM0MTEtYTc3NS00ODY4LTlkMjctNTkwZjU0MGM0NTZk LzEvdV9lOGJIeVRvOC14NGx1Nzc4VHlCNjRsdmFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALv8YMA0E AgACMAcDBQMqE7GAMA0GCSqGSIb3DQEBCwUAA4IBAQDLN9YhlJnWbj58WY690U7F 1Ta0ieovVf4lCVdlDN/n6peqbgi2/j0eW0GIyylxMifWvcriyW3l1ajXqrfQSI4t 22K7ewoQUPjOx/9F8X77JFznACXdteSKICHK+g9dvfSr9U8X2XrNsdEhiyS5HtwV 33CxLLnisNqpFHD5wb+iORD9DM4hXAKHrJ5koxq14WIvLJht3FJ45v2QrfqCkuOp KaZuZ+bZvDLwaXqh7nI3TgwGzUu2oRBdt72qGeymLwdIK0qMK0rsFHURLLLMVuzo BMPXl++1OCxb1UdhTFMhQ1tlbG5DFxhw4R4UjppxKZ4odNmCrl0isZSaRcaC0ca5 -----END CERTIFICATE-----Generated at Tue Feb 10 03:12:10 2026 by rpki-client