This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/rU0QXFNtoWCEtxH8VZt7NQjfBkk.roa File: rU0QXFNtoWCEtxH8VZt7NQjfBkk.roa (raw, json) Hash identifier: DX5PpK5nvqYsY6Lg/VDy96ASHQyrvBhk9m8SNvIdQJc= Subject key identifier: AD:4D:10:5C:53:6D:A1:60:84:B7:11:FC:55:9B:7B:35:08:DF:06:49 Certificate issuer: /CN=86e1aba600cde5ec318319b15594b68ab96c956c Certificate serial: 019B79ED1A164F9D74D9738EC536D4298E62 Authority key identifier: 86:E1:AB:A6:00:CD:E5:EC:31:83:19:B1:55:94:B6:8A:B9:6C:95:6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/rU0QXFNtoWCEtxH8VZt7NQjfBkk.roa Signing time: Thu 01 Jan 2026 14:19:00 +0000 ROA not before: Thu 01 Jan 2026 14:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207586 IP address blocks: 176.126.116.0/24 maxlen: 24 2a11:d540:530::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.crl rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:1a:16:4f:9d:74:d9:73:8e:c5:36:d4:29:8e:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86e1aba600cde5ec318319b15594b68ab96c956c Validity Not Before: Jan 1 14:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ad4d105c536da16084b711fc559b7b3508df0649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:25:ef:32:8d:d3:19:67:6b:a5:40:b1:b3:81: 30:a7:cc:a3:af:ca:86:02:fc:89:35:32:67:93:33: 98:98:9b:b0:5f:99:7d:7a:c6:18:3d:c2:e0:18:e4: 34:54:b0:63:1e:2a:92:f6:20:fc:8d:c3:08:6f:dc: cd:26:b7:d2:9a:32:67:4c:71:b2:39:b2:55:4a:c0: e8:b5:a7:82:0e:51:04:e6:3d:2b:a4:d4:fc:1e:e3: aa:7d:5c:50:e8:c3:f2:ec:33:6c:20:5b:b1:7d:5a: 96:52:c4:05:4b:77:95:2d:39:3e:21:d2:44:2b:d9: 77:f3:b4:e5:ec:d3:e9:8b:a2:07:dc:33:5a:d7:32: ff:fa:ce:06:1c:7b:cf:3f:a3:e5:43:94:dd:d3:a8: fa:14:47:8e:5c:1c:d7:0a:86:57:c7:2e:f9:fa:3d: dc:c1:e7:fe:67:6f:b8:7a:02:37:0d:cb:a6:41:e9: 15:0e:d7:0e:d3:1f:e7:a5:b4:0a:db:44:25:4a:f4: 1a:67:90:e4:b0:49:dc:fc:0e:40:7e:25:cc:c9:e1: 29:84:2e:84:01:43:f2:21:b9:49:5c:6d:3f:77:1a: e8:44:df:27:3d:34:44:76:3b:b3:87:f2:1b:4f:b0: a5:e9:96:92:45:70:68:1a:37:15:02:d7:20:cc:8f: db:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:4D:10:5C:53:6D:A1:60:84:B7:11:FC:55:9B:7B:35:08:DF:06:49 X509v3 Authority Key Identifier: keyid:86:E1:AB:A6:00:CD:E5:EC:31:83:19:B1:55:94:B6:8A:B9:6C:95:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/rU0QXFNtoWCEtxH8VZt7NQjfBkk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.126.116.0/24 IPv6: 2a11:d540:530::/44 Signature Algorithm: sha256WithRSAEncryption 33:b3:2b:0c:42:0e:a3:b8:4c:7f:11:12:70:19:d6:7c:32:75: d0:7c:5b:e0:20:c2:d6:20:c6:3e:2e:19:54:1d:1f:a7:70:bc: 66:f1:86:0f:27:dc:53:fa:2b:30:ed:45:f9:38:58:e8:69:b3: fa:21:d5:25:88:27:16:df:1f:e5:5b:7c:ed:de:a7:79:66:6d: d7:e9:58:17:52:0e:18:f2:17:fd:ef:9d:5e:84:d8:a5:de:2a: 1d:48:5b:e0:71:02:c7:64:44:1b:67:88:39:fb:e8:1c:2b:15: db:9c:11:12:63:21:e8:6c:60:a2:6e:e4:18:bd:7d:99:c0:e0: 61:2b:98:03:fe:67:94:75:14:5b:25:da:ab:8e:f0:a4:27:2e: 0a:87:0f:c9:2c:21:1d:5b:e6:a9:f9:45:e8:b0:58:a7:d0:ad: 44:ff:e3:1c:53:ec:4d:90:98:d3:30:8e:dd:c6:30:1e:f6:cd: 8c:89:54:ce:ad:fc:ea:77:dd:91:d9:56:42:42:c2:68:59:d3: 32:06:ff:a4:b9:99:56:5e:26:31:75:e9:80:18:ac:78:2f:09: 70:32:4d:ef:fc:06:bc:cc:d7:b2:3d:29:c0:f1:11:de:ac:b2: 58:eb:5b:e3:2c:ec:ec:f2:d4:6b:ac:9f:c5:4a:9e:c5:72:18: 5b:50:3a:42 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt57RoWT5102XOOxTbUKY5iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZTFhYmE2MDBjZGU1ZWMzMTgzMTliMTU1OTRiNjhhYjk2 Yzk1NmMwHhcNMjYwMTAxMTQxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZDRkMTA1YzUzNmRhMTYwODRiNzExZmM1NTliN2IzNTA4ZGYwNjQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyCXvMo3TGWdrpUCxs4Ewp8yjr8qG AvyJNTJnkzOYmJuwX5l9esYYPcLgGOQ0VLBjHiqS9iD8jcMIb9zNJrfSmjJnTHGy ObJVSsDotaeCDlEE5j0rpNT8HuOqfVxQ6MPy7DNsIFuxfVqWUsQFS3eVLTk+IdJE K9l387Tl7NPpi6IH3DNa1zL/+s4GHHvPP6PlQ5Td06j6FEeOXBzXCoZXxy75+j3c wef+Z2+4egI3DcumQekVDtcO0x/npbQK20QlSvQaZ5DksEnc/A5AfiXMyeEphC6E AUPyIblJXG0/dxroRN8nPTREdjuzh/IbT7Cl6ZaSRXBoGjcVAtcgzI/b7wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFK1NEFxTbaFghLcR/FWbezUI3wZJMB8GA1UdIwQY MBaAFIbhq6YAzeXsMYMZsVWUtoq5bJVsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHVHcnBnRE41ZXd4Z3hteFZaUzJpcmxzbFd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9lNjg0NWQtMWMzYy00OGQ2LWE2YjIt ZDYwNWM1M2EzNWJlLzEvclUwUVhGTnRvV0NFdHhIOFZadDdOUWpmQmtrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS9lNjg0NWQtMWMzYy00OGQ2LWE2YjItZDYwNWM1M2EzNWJl LzEvaHVHcnBnRE41ZXd4Z3hteFZaUzJpcmxzbFd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAsH50MA8E AgACMAkDBwQqEdVABTAwDQYJKoZIhvcNAQELBQADggEBADOzKwxCDqO4TH8REnAZ 1nwyddB8W+AgwtYgxj4uGVQdH6dwvGbxhg8n3FP6KzDtRfk4WOhps/oh1SWIJxbf H+VbfO3ep3lmbdfpWBdSDhjyF/3vnV6E2KXeKh1IW+BxAsdkRBtniDn76BwrFduc ERJjIehsYKJu5Bi9fZnA4GErmAP+Z5R1FFsl2quO8KQnLgqHD8ksIR1b5qn5Reiw WKfQrUT/4xxT7E2QmNMwjt3GMB72zYyJVM6t/Op33ZHZVkJCwmhZ0zIG/6S5mVZe JjF16YAYrHgvCXAyTe/8BrzM17I9KcDxEd6ssljrW+Ms7Ozy1Gusn8VKnsVyGFtQ OkI= -----END CERTIFICATE-----Generated at Mon Feb 9 19:54:54 2026 by rpki-client