This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/439285-722a-42df-b185-303151d76ace/1/mUqS4S5SL9Pvq3yISShuWCb9ZtE.roa File: mUqS4S5SL9Pvq3yISShuWCb9ZtE.roa (raw, json) Hash identifier: uUcTOLjK+7qjGVmB7WyFwvHdMHjyRZf2FkbrhsEB5pY= Subject key identifier: 99:4A:92:E1:2E:52:2F:D3:EF:AB:7C:88:49:28:6E:58:26:FD:66:D1 Certificate issuer: /CN=5476c3ca780cc57744adbe90a0f394f1d1cd72f3 Certificate serial: 019B7DCB635D75B41C1CAA53FD1949C891B4 Authority key identifier: 54:76:C3:CA:78:0C:C5:77:44:AD:BE:90:A0:F3:94:F1:D1:CD:72:F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VHbDyngMxXdErb6QoPOU8dHNcvM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/439285-722a-42df-b185-303151d76ace/1/mUqS4S5SL9Pvq3yISShuWCb9ZtE.roa Signing time: Fri 02 Jan 2026 08:20:39 +0000 ROA not before: Fri 02 Jan 2026 08:20:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8772 IP address blocks: 2a0b:2bc0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/439285-722a-42df-b185-303151d76ace/1/VHbDyngMxXdErb6QoPOU8dHNcvM.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/439285-722a-42df-b185-303151d76ace/1/VHbDyngMxXdErb6QoPOU8dHNcvM.mft rsync://rpki.ripe.net/repository/DEFAULT/VHbDyngMxXdErb6QoPOU8dHNcvM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:63:5d:75:b4:1c:1c:aa:53:fd:19:49:c8:91:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5476c3ca780cc57744adbe90a0f394f1d1cd72f3 Validity Not Before: Jan 2 08:20:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=994a92e12e522fd3efab7c8849286e5826fd66d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:43:65:6b:43:bb:cb:0c:99:15:a6:f1:51:36: 72:f9:08:d7:54:82:ac:fd:5e:43:57:aa:6f:74:2a: 68:87:9c:64:27:d5:96:f4:d0:a6:5b:bc:a0:db:d3: c7:ff:4d:ba:94:c0:e3:99:f6:cc:a8:51:c4:47:63: e5:7f:4c:5f:6e:7a:74:0e:c3:fc:02:b4:24:7f:3e: 9b:ce:c4:5c:09:7a:c0:12:13:ea:d6:c7:c3:19:10: 9d:fd:69:fd:12:3a:65:0e:00:a3:3e:e0:bd:13:d3: fe:fd:1a:73:d0:d8:fe:92:52:73:de:9a:0f:47:67: 3d:5c:09:d5:d4:12:d9:ba:ce:90:b4:97:5f:6c:24: 9e:f5:b9:ba:34:fb:82:0f:c9:1c:0b:9c:f0:18:67: 90:da:7b:b0:61:36:ad:cb:04:2f:9d:7d:9d:cd:64: df:6e:67:d5:25:66:5e:7c:e6:cb:88:f3:16:9a:62: 58:dd:8d:a4:44:d5:fb:de:80:82:30:5f:3b:57:a7: 24:b3:8c:42:7b:25:d8:34:41:63:24:7d:e3:86:34: dc:45:39:93:6f:db:20:b0:97:ee:e0:3b:33:c4:e1: aa:5f:2a:36:7d:d6:e0:bf:04:7c:68:0e:a4:c0:f3: b1:df:f3:c6:03:bf:6c:ba:97:53:b6:b2:cf:54:0b: 23:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:4A:92:E1:2E:52:2F:D3:EF:AB:7C:88:49:28:6E:58:26:FD:66:D1 X509v3 Authority Key Identifier: keyid:54:76:C3:CA:78:0C:C5:77:44:AD:BE:90:A0:F3:94:F1:D1:CD:72:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VHbDyngMxXdErb6QoPOU8dHNcvM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/439285-722a-42df-b185-303151d76ace/1/mUqS4S5SL9Pvq3yISShuWCb9ZtE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/439285-722a-42df-b185-303151d76ace/1/VHbDyngMxXdErb6QoPOU8dHNcvM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:2bc0::/29 Signature Algorithm: sha256WithRSAEncryption 40:f6:65:3b:e6:70:31:ea:99:80:d3:e8:8e:86:af:b8:99:23: 0b:40:a4:5b:06:1b:f7:d4:a3:f4:43:fb:c4:71:b4:5a:b4:d0: 5f:31:f2:10:0d:61:dd:1b:78:bb:19:94:99:52:ec:0f:ba:ea: a9:0e:b3:54:54:da:7e:dd:3d:c1:19:97:81:40:cc:33:8e:8f: f1:e4:8c:56:b8:9c:7f:2c:77:85:db:55:5e:25:a9:62:73:d6: 7d:b9:d3:26:6a:f4:cd:14:7d:53:68:75:63:31:04:3b:69:71: e9:3f:88:64:fa:c3:fe:ae:09:62:9f:96:33:f4:5f:45:4b:4c: 97:f3:e6:da:6c:ff:f8:c4:b4:3b:98:98:ba:36:49:03:4d:25: 6c:92:76:d6:01:a2:e9:4e:c8:1c:6f:2e:2a:5d:63:78:87:68: 28:23:b4:b6:89:ea:91:06:dc:00:66:8b:58:bd:77:15:8c:2a: 9f:f5:59:07:41:57:65:53:38:df:01:79:dc:e0:1f:e4:7b:6e: 27:e3:e0:c2:81:d0:33:33:7d:58:ba:91:62:e2:83:8a:94:2b: f2:41:40:07:bd:49:11:3b:8b:c6:27:72:e4:fa:64:c6:f7:68: 1c:5f:41:3f:c0:63:d5:79:42:65:33:a7:44:25:d1:9b:64:f4: d6:9b:d6:3e -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt9y2NddbQcHKpT/RlJyJG0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0NzZjM2NhNzgwY2M1Nzc0NGFkYmU5MGEwZjM5NGYxZDFj ZDcyZjMwHhcNMjYwMTAyMDgyMDM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OTRhOTJlMTJlNTIyZmQzZWZhYjdjODg0OTI4NmU1ODI2ZmQ2NmQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0Nla0O7ywyZFabxUTZy+QjXVIKs /V5DV6pvdCpoh5xkJ9WW9NCmW7yg29PH/026lMDjmfbMqFHER2Plf0xfbnp0DsP8 ArQkfz6bzsRcCXrAEhPq1sfDGRCd/Wn9EjplDgCjPuC9E9P+/Rpz0Nj+klJz3poP R2c9XAnV1BLZus6QtJdfbCSe9bm6NPuCD8kcC5zwGGeQ2nuwYTatywQvnX2dzWTf bmfVJWZefObLiPMWmmJY3Y2kRNX73oCCMF87V6cks4xCeyXYNEFjJH3jhjTcRTmT b9sgsJfu4DszxOGqXyo2fdbgvwR8aA6kwPOx3/PGA79supdTtrLPVAsjowIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFJlKkuEuUi/T76t8iEkoblgm/WbRMB8GA1UdIwQY MBaAFFR2w8p4DMV3RK2+kKDzlPHRzXLzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkhiRHluZ014WGRFcmI2UW9QT1U4ZEhOY3ZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi80MzkyODUtNzIyYS00MmRmLWIxODUt MzAzMTUxZDc2YWNlLzEvbVVxUzRTNVNMOVB2cTN5SVNTaHVXQ2I5WnRFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi80MzkyODUtNzIyYS00MmRmLWIxODUtMzAzMTUxZDc2YWNl LzEvVkhiRHluZ014WGRFcmI2UW9QT1U4ZEhOY3ZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgsrwDAN BgkqhkiG9w0BAQsFAAOCAQEAQPZlO+ZwMeqZgNPojoavuJkjC0CkWwYb99Sj9EP7 xHG0WrTQXzHyEA1h3Rt4uxmUmVLsD7rqqQ6zVFTaft09wRmXgUDMM46P8eSMVric fyx3hdtVXiWpYnPWfbnTJmr0zRR9U2h1YzEEO2lx6T+IZPrD/q4JYp+WM/RfRUtM l/Pm2mz/+MS0O5iYujZJA00lbJJ21gGi6U7IHG8uKl1jeIdoKCO0tonqkQbcAGaL WL13FYwqn/VZB0FXZVM43wF53OAf5HtuJ+PgwoHQMzN9WLqRYuKDipQr8kFAB71J ETuLxidy5PpkxvdoHF9BP8Bj1XlCZTOnRCXRm2T01pvWPg== -----END CERTIFICATE-----Generated at Fri Jan 2 18:34:16 2026 by rpki-client