This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/1-UqZU4lpdGQymEWntoGUKEtiDfs.roa File: 1-UqZU4lpdGQymEWntoGUKEtiDfs.roa (raw, json) Hash identifier: uTnzw0q4V97naKhct/jjJQaHWdigAfbfM0kb6Q0iHPQ= Subject key identifier: F9:4A:99:53:89:69:74:64:32:98:45:A7:B6:81:94:28:4B:62:0D:FB Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045 Certificate serial: 019B76EB8741282C991E2B5C9C06F23F2DC7 Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/1-UqZU4lpdGQymEWntoGUKEtiDfs.roa Signing time: Thu 01 Jan 2026 00:18:25 +0000 ROA not before: Thu 01 Jan 2026 00:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 63018 IP address blocks: 2a11:840:33::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.mft rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:87:41:28:2c:99:1e:2b:5c:9c:06:f2:3f:2d:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045 Validity Not Before: Jan 1 00:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f94a995389697464329845a7b68194284b620dfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5c:24:22:b6:df:34:c5:df:e8:96:f2:5a:d5: 3f:21:93:7f:6c:f4:9c:1e:4d:cf:80:15:27:3d:31: 20:ab:d7:66:00:89:48:33:81:1a:75:e4:4c:9b:c4: 1a:08:da:51:76:b9:8e:19:28:37:55:70:43:15:23: 76:38:89:02:1a:68:a4:9d:0f:17:b6:cb:25:b1:c8: 66:8f:65:ea:f8:17:43:77:bf:33:f2:3a:6c:d4:a3: 21:01:c5:3a:bd:ad:b3:2e:5f:6b:0c:a5:84:8b:15: b3:10:cb:a3:32:5f:c6:fb:ab:00:20:69:5a:bb:a1: 18:3c:d6:80:bd:a9:96:f4:94:7f:57:0f:ac:78:5b: 41:fb:48:3a:63:4d:b3:5c:17:e0:3a:03:89:ba:d8: db:9d:97:95:d4:29:96:79:0b:84:75:46:04:79:9f: 27:64:07:4d:a7:4e:07:70:27:d0:de:31:56:7c:a9: 90:61:d5:22:38:e6:ec:89:fc:93:03:96:19:bc:38: 43:95:d9:6c:93:c0:5c:e6:a5:b4:27:36:c0:58:c2: 19:60:20:ff:88:7a:39:44:e8:7f:f9:97:43:a0:4e: b4:a8:6d:4c:9a:0c:4f:40:c7:e8:ec:42:6d:ac:04: ca:3b:6f:54:90:e0:be:2c:3b:6d:c4:7f:a3:6b:43: a1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:4A:99:53:89:69:74:64:32:98:45:A7:B6:81:94:28:4B:62:0D:FB X509v3 Authority Key Identifier: keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/1-UqZU4lpdGQymEWntoGUKEtiDfs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:840:33::/48 Signature Algorithm: sha256WithRSAEncryption 38:54:97:af:5a:43:c9:82:d1:a2:dd:d1:36:89:f4:e3:3e:98: 55:42:55:b8:6a:47:15:b0:7c:86:1a:12:6e:05:6f:b0:af:7f: e7:03:50:1b:6c:65:a0:38:28:d1:ed:fa:cb:d2:7c:2f:71:7e: 8a:69:6c:6a:56:cc:d1:9a:06:e7:03:8c:c4:8c:a3:38:a8:87: 49:36:1f:0b:a6:50:da:5b:75:1a:bb:ac:34:51:fb:9b:2d:e7: 6a:46:fc:02:98:e8:8b:66:60:62:24:19:09:e0:19:9b:92:7e: af:f0:8c:e3:b0:bf:ef:67:d1:aa:22:74:7d:72:4a:8f:40:79: e3:74:6c:e3:e6:59:92:ab:fb:13:9f:e2:4d:23:8d:11:f9:75: 7c:ff:8b:5e:59:f2:bf:ce:22:65:0d:1a:08:ea:e0:aa:39:f3: 62:54:0f:54:00:17:dc:1b:da:24:a3:3f:16:09:0d:23:c0:7d: af:95:09:09:52:87:4a:62:44:73:3f:10:10:b0:3a:bf:30:27: 71:b2:8f:16:b1:02:38:44:8c:de:ca:7f:9c:d7:3f:1b:a8:7d: 4e:cb:d9:e1:10:23:5c:8e:ae:73:d0:7b:f7:25:cd:7b:95:bd: eb:7d:6d:fd:4b:9b:21:7c:9d:9b:f9:70:f8:0d:32:ba:c6:62: ba:52:89:62 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgISAZt264dBKCyZHitcnAbyPy3HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5MDU2ZmE5NjI1YjZjODc0MDQyNjdjNmRjMjE5OTI0YWMx NjAwNDUwHhcNMjYwMTAxMDAxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmOTRhOTk1Mzg5Njk3NDY0MzI5ODQ1YTdiNjgxOTQyODRiNjIwZGZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFwkIrbfNMXf6JbyWtU/IZN/bPSc Hk3PgBUnPTEgq9dmAIlIM4EadeRMm8QaCNpRdrmOGSg3VXBDFSN2OIkCGmiknQ8X tsslschmj2Xq+BdDd78z8jps1KMhAcU6va2zLl9rDKWEixWzEMujMl/G+6sAIGla u6EYPNaAvamW9JR/Vw+seFtB+0g6Y02zXBfgOgOJutjbnZeV1CmWeQuEdUYEeZ8n ZAdNp04HcCfQ3jFWfKmQYdUiOObsifyTA5YZvDhDldlsk8Bc5qW0JzbAWMIZYCD/ iHo5ROh/+ZdDoE60qG1MmgxPQMfo7EJtrATKO29UkOC+LDttxH+ja0OhuwIDAQAB o4ICDTCCAgkwHQYDVR0OBBYEFPlKmVOJaXRkMphFp7aBlChLYg37MB8GA1UdIwQY MBaAFIkFb6liW2yHQEJnxtwhmSSsFgBFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQt NTE5MjAzNzMzNTNjLzEvMS1VcVpVNGxwZEdReW1FV250b0dVS0V0aURmcy5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvYWIvOTlhZTJmLTM5Y2MtNDNmMy05NDFkLTUxOTIwMzczMzUz Yy8xL2lRVnZxV0piYklkQVFtZkczQ0daSkt3V0FFVS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoRCEAA MzANBgkqhkiG9w0BAQsFAAOCAQEAOFSXr1pDyYLRot3RNon04z6YVUJVuGpHFbB8 hhoSbgVvsK9/5wNQG2xloDgo0e36y9J8L3F+imlsalbM0ZoG5wOMxIyjOKiHSTYf C6ZQ2lt1GrusNFH7my3nakb8Apjoi2ZgYiQZCeAZm5J+r/CM47C/72fRqiJ0fXJK j0B543Rs4+ZZkqv7E5/iTSONEfl1fP+LXlnyv84iZQ0aCOrgqjnzYlQPVAAX3Bva JKM/FgkNI8B9r5UJCVKHSmJEcz8QELA6vzAncbKPFrECOESM3sp/nNc/G6h9TsvZ 4RAjXI6uc9B79yXNe5W9631t/UubIXydm/lw+A0yusZiulKJYg== -----END CERTIFICATE-----Generated at Mon Jan 19 19:59:25 2026 by rpki-client