This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/2b5ed6-3a7c-4631-b49d-bf55b8b1669c/1/ulHcF8o9upOt3omwt_sTVpJfwKA.roa File: ulHcF8o9upOt3omwt_sTVpJfwKA.roa (raw, json) Hash identifier: cxld0IHdim93K+ke3CtdijW4abesqWwczehLq/YKea0= Subject key identifier: BA:51:DC:17:CA:3D:BA:93:AD:DE:89:B0:B7:FB:13:56:92:5F:C0:A0 Certificate issuer: /CN=2cce5d51fa75bbb6ed962a4166ef6f8630a02581 Certificate serial: 019B7EA4F1C5CC34F8445EC5847C5E0FF3C0 Authority key identifier: 2C:CE:5D:51:FA:75:BB:B6:ED:96:2A:41:66:EF:6F:86:30:A0:25:81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LM5dUfp1u7btlipBZu9vhjCgJYE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/2b5ed6-3a7c-4631-b49d-bf55b8b1669c/1/ulHcF8o9upOt3omwt_sTVpJfwKA.roa Signing time: Fri 02 Jan 2026 12:18:17 +0000 ROA not before: Fri 02 Jan 2026 12:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212302 IP address blocks: 109.70.239.0/24 maxlen: 24 2a0c:2bc0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/2b5ed6-3a7c-4631-b49d-bf55b8b1669c/1/LM5dUfp1u7btlipBZu9vhjCgJYE.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/2b5ed6-3a7c-4631-b49d-bf55b8b1669c/1/LM5dUfp1u7btlipBZu9vhjCgJYE.mft rsync://rpki.ripe.net/repository/DEFAULT/LM5dUfp1u7btlipBZu9vhjCgJYE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 23:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:f1:c5:cc:34:f8:44:5e:c5:84:7c:5e:0f:f3:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2cce5d51fa75bbb6ed962a4166ef6f8630a02581 Validity Not Before: Jan 2 12:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba51dc17ca3dba93adde89b0b7fb1356925fc0a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3c:c1:77:24:70:77:77:c7:6b:b6:af:4b:9f: c9:21:5d:c0:f3:21:45:ce:ea:3d:54:81:44:9d:64: cc:11:cb:0e:a7:f0:a3:2f:08:ff:5d:be:3d:5e:43: 8a:73:65:e3:5d:7f:a0:c4:7e:9b:88:32:22:91:2c: 65:b6:5b:11:8d:95:93:4a:16:d7:72:f9:c7:68:88: de:3d:18:60:e0:83:3f:39:82:52:1a:3a:19:3d:1f: b3:ec:bd:51:9f:35:2c:e1:d1:f7:e8:41:6d:e3:92: 39:6a:ec:53:72:77:79:a2:a2:d4:a7:72:c1:1f:28: 3f:df:26:08:e9:17:15:60:5d:8b:55:e1:dc:5c:af: 9a:25:26:56:a1:ff:c7:b1:0a:1d:7c:7b:ee:45:1c: 64:de:f3:25:bd:21:30:ae:12:4d:31:3a:d5:8e:3a: 04:d9:16:87:41:d4:7e:85:a0:05:19:20:e5:02:18: 28:16:85:eb:65:e2:47:11:62:67:a2:37:c1:50:d3: 85:37:75:f8:97:a9:09:ae:3a:e0:a9:31:fe:77:bd: 66:3d:77:01:e0:9e:30:1a:cb:6e:c4:8d:c5:10:a0: ab:42:23:90:d8:f0:00:8f:65:29:a7:61:a5:29:36: ec:51:26:1b:4b:5e:22:0e:8f:7b:e2:ab:4b:6e:38: 25:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:51:DC:17:CA:3D:BA:93:AD:DE:89:B0:B7:FB:13:56:92:5F:C0:A0 X509v3 Authority Key Identifier: keyid:2C:CE:5D:51:FA:75:BB:B6:ED:96:2A:41:66:EF:6F:86:30:A0:25:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LM5dUfp1u7btlipBZu9vhjCgJYE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/2b5ed6-3a7c-4631-b49d-bf55b8b1669c/1/ulHcF8o9upOt3omwt_sTVpJfwKA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/2b5ed6-3a7c-4631-b49d-bf55b8b1669c/1/LM5dUfp1u7btlipBZu9vhjCgJYE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.70.239.0/24 IPv6: 2a0c:2bc0::/29 Signature Algorithm: sha256WithRSAEncryption 48:c7:26:0c:86:65:ea:ef:d1:06:19:b3:d0:ac:30:a4:43:97: f0:aa:fc:90:52:df:fc:09:25:c9:05:78:11:55:30:fe:fa:3d: 8b:42:d6:fc:b6:33:43:d7:aa:65:a1:c4:21:f0:b0:d5:f4:d9: 02:85:85:cc:06:cd:c8:e4:e3:ee:b6:8c:85:60:a1:ce:65:f9: c3:1b:11:4c:b0:ef:62:29:93:7d:6d:10:fd:62:75:48:ec:41: d9:ad:2b:23:5d:3b:99:28:ee:de:4f:fc:00:53:c6:d7:e6:73: b5:11:6a:c1:d0:6e:87:c1:c9:36:cf:7a:8b:47:25:30:68:d0: c1:89:1a:79:9b:8f:35:54:47:45:34:21:81:cb:f7:b5:d9:f1: eb:42:e3:e4:bb:00:ab:46:8b:33:4e:a5:b1:9f:73:19:8f:b1: b0:cc:6a:8b:df:94:e2:99:31:6f:dc:ae:50:02:fb:81:6f:dc: 8a:4b:35:4e:60:13:c9:2d:07:73:ce:1a:58:ff:ff:c3:28:a2: 4b:92:5e:2e:8f:ba:ff:e9:e6:8d:7d:01:d0:5b:d6:96:8d:7e: a5:5b:20:db:3a:97:9b:1a:30:0f:c4:b9:b0:5a:c7:7a:5c:3a: ce:fc:e3:f3:86:be:33:25:df:70:3f:22:40:d8:56:0c:17:99: 0b:ed:bf:7f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pPHFzDT4RF7FhHxeD/PAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjY2U1ZDUxZmE3NWJiYjZlZDk2MmE0MTY2ZWY2Zjg2MzBh MDI1ODEwHhcNMjYwMTAyMTIxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTUxZGMxN2NhM2RiYTkzYWRkZTg5YjBiN2ZiMTM1NjkyNWZjMGEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTzBdyRwd3fHa7avS5/JIV3A8yFF zuo9VIFEnWTMEcsOp/CjLwj/Xb49XkOKc2XjXX+gxH6biDIikSxltlsRjZWTShbX cvnHaIjePRhg4IM/OYJSGjoZPR+z7L1RnzUs4dH36EFt45I5auxTcnd5oqLUp3LB Hyg/3yYI6RcVYF2LVeHcXK+aJSZWof/HsQodfHvuRRxk3vMlvSEwrhJNMTrVjjoE 2RaHQdR+haAFGSDlAhgoFoXrZeJHEWJnojfBUNOFN3X4l6kJrjrgqTH+d71mPXcB 4J4wGstuxI3FEKCrQiOQ2PAAj2Upp2GlKTbsUSYbS14iDo974qtLbjgl8wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLpR3BfKPbqTrd6JsLf7E1aSX8CgMB8GA1UdIwQY MBaAFCzOXVH6dbu27ZYqQWbvb4YwoCWBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTE01ZFVmcDF1N2J0bGlwQlp1OXZoakNnSllFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8yYjVlZDYtM2E3Yy00NjMxLWI0OWQt YmY1NWI4YjE2NjljLzEvdWxIY0Y4bzl1cE90M29td3Rfc1RWcEpmd0tBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy8yYjVlZDYtM2E3Yy00NjMxLWI0OWQtYmY1NWI4YjE2Njlj LzEvTE01ZFVmcDF1N2J0bGlwQlp1OXZoakNnSllFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAbUbvMA0E AgACMAcDBQMqDCvAMA0GCSqGSIb3DQEBCwUAA4IBAQBIxyYMhmXq79EGGbPQrDCk Q5fwqvyQUt/8CSXJBXgRVTD++j2LQtb8tjND16plocQh8LDV9NkChYXMBs3I5OPu toyFYKHOZfnDGxFMsO9iKZN9bRD9YnVI7EHZrSsjXTuZKO7eT/wAU8bX5nO1EWrB 0G6Hwck2z3qLRyUwaNDBiRp5m481VEdFNCGBy/e12fHrQuPkuwCrRoszTqWxn3MZ j7GwzGqL35TimTFv3K5QAvuBb9yKSzVOYBPJLQdzzhpY///DKKJLkl4uj7r/6eaN fQHQW9aWjX6lWyDbOpebGjAPxLmwWsd6XDrO/OPzhr4zJd9wPyJA2FYMF5kL7b9/ -----END CERTIFICATE-----Generated at Sat Jan 10 09:22:11 2026 by rpki-client