This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/cb7604-65c0-4998-a89c-59efc2a3b04f/1/CsUMxPPZn7BWvRnMzKtwzumQlaI.roa File: CsUMxPPZn7BWvRnMzKtwzumQlaI.roa (raw, json) Hash identifier: s5cU5GsIZAY3fgBBTrdExxW/NI8apbM5B4zmDqtjvSE= Subject key identifier: 0A:C5:0C:C4:F3:D9:9F:B0:56:BD:19:CC:CC:AB:70:CE:E9:90:95:A2 Certificate issuer: /CN=b9a90a85522aa639d57882ffd97db1a4dd8110b8 Certificate serial: 019B797EE4838F17FEE020A59ABF701D933B Authority key identifier: B9:A9:0A:85:52:2A:A6:39:D5:78:82:FF:D9:7D:B1:A4:DD:81:10:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uakKhVIqpjnVeIL_2X2xpN2BELg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/cb7604-65c0-4998-a89c-59efc2a3b04f/1/CsUMxPPZn7BWvRnMzKtwzumQlaI.roa Signing time: Thu 01 Jan 2026 12:18:37 +0000 ROA not before: Thu 01 Jan 2026 12:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210438 IP address blocks: 2001:678:1148::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/cb7604-65c0-4998-a89c-59efc2a3b04f/1/uakKhVIqpjnVeIL_2X2xpN2BELg.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/cb7604-65c0-4998-a89c-59efc2a3b04f/1/uakKhVIqpjnVeIL_2X2xpN2BELg.mft rsync://rpki.ripe.net/repository/DEFAULT/uakKhVIqpjnVeIL_2X2xpN2BELg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:e4:83:8f:17:fe:e0:20:a5:9a:bf:70:1d:93:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9a90a85522aa639d57882ffd97db1a4dd8110b8 Validity Not Before: Jan 1 12:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0ac50cc4f3d99fb056bd19ccccab70cee99095a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:48:7b:6f:f9:f8:49:b1:a0:46:df:51:75:34: 55:35:67:66:51:2a:de:4b:5f:c6:d0:77:cd:c4:04: 52:2c:9c:4f:9d:8e:59:7d:63:f1:ca:4a:9c:c9:ea: 80:a3:c2:fe:42:75:fd:c0:0d:12:f5:35:33:92:f2: 12:c5:4e:11:25:17:59:6e:04:66:50:d0:16:04:0a: 59:7d:69:cd:2b:46:62:4e:59:04:4c:c2:95:07:f2: 00:2d:f9:8d:12:59:c0:27:26:83:95:b6:f0:2e:46: 4e:d5:9c:18:a1:47:e7:49:40:46:b7:1c:86:a3:58: bf:46:11:41:e6:67:3d:15:8d:de:6c:cb:cd:fb:e8: 46:a8:54:42:4e:3f:d4:ff:db:d4:cd:05:5f:f2:47: ef:a2:3a:0e:c2:e6:f3:7c:f8:fc:86:b9:e2:0c:f0: 53:db:28:37:73:a6:b3:fd:1a:65:e3:bc:e1:4e:5e: 04:07:37:52:d3:e0:19:d5:97:bb:f1:07:7f:c1:96: 92:6b:e4:85:57:c8:9f:23:1a:71:71:6e:77:97:f4: 99:82:46:4f:be:1e:0e:f4:89:2e:a2:74:35:dc:8f: e0:91:ec:13:47:94:e8:ef:e9:49:e6:92:b7:36:90: 2b:bb:08:5c:69:2f:2c:d6:90:48:a9:cd:7d:dd:66: 33:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:C5:0C:C4:F3:D9:9F:B0:56:BD:19:CC:CC:AB:70:CE:E9:90:95:A2 X509v3 Authority Key Identifier: keyid:B9:A9:0A:85:52:2A:A6:39:D5:78:82:FF:D9:7D:B1:A4:DD:81:10:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uakKhVIqpjnVeIL_2X2xpN2BELg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/cb7604-65c0-4998-a89c-59efc2a3b04f/1/CsUMxPPZn7BWvRnMzKtwzumQlaI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/cb7604-65c0-4998-a89c-59efc2a3b04f/1/uakKhVIqpjnVeIL_2X2xpN2BELg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1148::/48 Signature Algorithm: sha256WithRSAEncryption 81:79:a2:cb:6b:da:7f:8f:fc:3c:20:2e:0a:03:9c:e3:c7:b8: 34:5e:37:c3:fd:77:37:f6:7b:81:ce:19:64:2f:27:fd:6a:96: 6a:fb:18:19:97:b4:f6:20:55:ab:87:5f:2e:04:76:82:2d:f8: 73:eb:ee:23:87:c6:b2:c4:24:95:1e:38:8c:8d:fa:ca:07:5a: 64:6d:51:1f:23:fc:37:11:1a:c5:69:36:93:a0:57:26:82:cd: 0f:a9:ed:22:2f:b4:49:1c:f2:04:be:d7:12:96:92:72:3c:e0: ac:b7:e1:c6:5d:71:19:ed:f0:f8:4d:7b:27:85:e6:3c:02:fa: 41:d6:64:e9:af:9c:40:92:fd:68:d1:12:17:6f:95:c9:0d:6f: e2:b7:13:86:fd:d6:2a:a1:35:d7:18:cc:5f:76:c9:fd:41:89: 2b:bb:3a:75:6a:c1:99:ed:65:14:47:b0:e1:30:2f:3f:f8:7b: 7d:cb:b9:cb:ac:0d:40:c6:d6:90:1a:db:77:f7:c8:55:7e:7e: 2d:be:6e:75:ec:8b:a3:e6:f2:b2:e0:56:06:a3:4c:af:e9:9e: e5:4e:8d:77:e0:f7:94:a3:67:60:7a:e9:eb:04:1d:e5:f0:5a: 8c:2b:0c:52:f5:1a:53:9c:57:01:d3:53:ce:c8:9c:41:01:68: 79:39:46:bb -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt5fuSDjxf+4CClmr9wHZM7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5YTkwYTg1NTIyYWE2MzlkNTc4ODJmZmQ5N2RiMWE0ZGQ4 MTEwYjgwHhcNMjYwMTAxMTIxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYWM1MGNjNGYzZDk5ZmIwNTZiZDE5Y2NjY2FiNzBjZWU5OTA5NWEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/Eh7b/n4SbGgRt9RdTRVNWdmUSre S1/G0HfNxARSLJxPnY5ZfWPxykqcyeqAo8L+QnX9wA0S9TUzkvISxU4RJRdZbgRm UNAWBApZfWnNK0ZiTlkETMKVB/IALfmNElnAJyaDlbbwLkZO1ZwYoUfnSUBGtxyG o1i/RhFB5mc9FY3ebMvN++hGqFRCTj/U/9vUzQVf8kfvojoOwubzfPj8hrniDPBT 2yg3c6az/Rpl47zhTl4EBzdS0+AZ1Ze78Qd/wZaSa+SFV8ifIxpxcW53l/SZgkZP vh4O9IkuonQ13I/gkewTR5To7+lJ5pK3NpAruwhcaS8s1pBIqc193WYzUQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFArFDMTz2Z+wVr0ZzMyrcM7pkJWiMB8GA1UdIwQY MBaAFLmpCoVSKqY51XiC/9l9saTdgRC4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWFrS2hWSXFwam5WZUlMXzJYMnhwTjJCRUxnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9jYjc2MDQtNjVjMC00OTk4LWE4OWMt NTllZmMyYTNiMDRmLzEvQ3NVTXhQUFpuN0JXdlJuTXpLdHd6dW1RbGFJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS9jYjc2MDQtNjVjMC00OTk4LWE4OWMtNTllZmMyYTNiMDRm LzEvdWFrS2hWSXFwam5WZUlMXzJYMnhwTjJCRUxnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeBFI MA0GCSqGSIb3DQEBCwUAA4IBAQCBeaLLa9p/j/w8IC4KA5zjx7g0XjfD/Xc39nuB zhlkLyf9apZq+xgZl7T2IFWrh18uBHaCLfhz6+4jh8ayxCSVHjiMjfrKB1pkbVEf I/w3ERrFaTaToFcmgs0Pqe0iL7RJHPIEvtcSlpJyPOCst+HGXXEZ7fD4TXsnheY8 AvpB1mTpr5xAkv1o0RIXb5XJDW/itxOG/dYqoTXXGMxfdsn9QYkruzp1asGZ7WUU R7DhMC8/+Ht9y7nLrA1AxtaQGtt398hVfn4tvm517Iuj5vKy4FYGo0yv6Z7lTo13 4PeUo2dgeunrBB3l8FqMKwxS9RpTnFcB01POyJxBAWh5OUa7 -----END CERTIFICATE-----Generated at Mon Feb 2 09:40:40 2026 by rpki-client