This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/4f43fc-4187-4bb9-905a-f0c6258b9a04/1/uhG95XF25QmjvzLstx1n9pIbB5g.roa File: uhG95XF25QmjvzLstx1n9pIbB5g.roa (raw, json) Hash identifier: nKE/loz1ortOdOeQYwJVvnlVW4oJD/w1eygAfQW6kko= Subject key identifier: BA:11:BD:E5:71:76:E5:09:A3:BF:32:EC:B7:1D:67:F6:92:1B:07:98 Certificate issuer: /CN=5b5bff9d41f719f62600c32d3410ddb99eccb30c Certificate serial: 019B7910C581506896502D3CBD353C5B18A5 Authority key identifier: 5B:5B:FF:9D:41:F7:19:F6:26:00:C3:2D:34:10:DD:B9:9E:CC:B3:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1v_nUH3GfYmAMMtNBDduZ7Msww.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/4f43fc-4187-4bb9-905a-f0c6258b9a04/1/uhG95XF25QmjvzLstx1n9pIbB5g.roa Signing time: Thu 01 Jan 2026 10:18:20 +0000 ROA not before: Thu 01 Jan 2026 10:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29802 IP address blocks: 78.138.4.0/22 maxlen: 24 78.138.36.0/22 maxlen: 24 83.229.52.0/22 maxlen: 24 83.229.100.0/23 maxlen: 24 83.229.102.0/24 maxlen: 24 185.10.6.0/24 maxlen: 24 185.115.108.0/22 maxlen: 24 213.255.212.0/22 maxlen: 24 213.255.220.0/22 maxlen: 24 213.255.232.0/21 maxlen: 24 213.255.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/4f43fc-4187-4bb9-905a-f0c6258b9a04/1/W1v_nUH3GfYmAMMtNBDduZ7Msww.crl rsync://rpki.ripe.net/repository/DEFAULT/02/4f43fc-4187-4bb9-905a-f0c6258b9a04/1/W1v_nUH3GfYmAMMtNBDduZ7Msww.mft rsync://rpki.ripe.net/repository/DEFAULT/W1v_nUH3GfYmAMMtNBDduZ7Msww.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:c5:81:50:68:96:50:2d:3c:bd:35:3c:5b:18:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5b5bff9d41f719f62600c32d3410ddb99eccb30c Validity Not Before: Jan 1 10:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba11bde57176e509a3bf32ecb71d67f6921b0798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:28:97:7e:5e:3c:9b:e0:12:4c:ad:0d:ee:4d: 0a:ec:19:3e:64:29:59:e1:7e:94:d2:2d:2f:b8:15: c3:9d:b3:e8:b9:13:47:27:c7:e1:cd:d6:fb:06:5d: da:d5:20:35:70:ca:9a:ad:a0:25:73:31:e1:df:e9: c2:e4:c3:02:af:a4:cf:d0:c6:d0:fb:80:a9:15:13: dd:6a:a1:55:f4:52:8c:cd:33:e9:04:25:fd:d8:d3: 54:ed:cf:c8:c9:d9:5f:a8:d2:93:07:5d:49:05:58: 54:22:a1:a3:f8:cc:6c:45:93:98:45:61:ee:0d:25: d0:78:c0:a8:b9:c0:c8:74:03:66:d9:15:0c:55:37: be:21:a3:7d:7b:ec:6a:43:d7:ff:c8:a0:9b:5f:d9: eb:9e:7f:12:ac:99:2a:1b:5a:20:f9:6d:be:eb:14: db:e3:e2:0e:fa:59:b8:7b:fc:60:12:72:25:48:07: 99:56:21:c0:1d:91:73:f0:34:a9:5b:7f:47:0b:76: 0a:f4:96:16:77:39:e7:0c:ec:c0:ca:8e:9f:a0:cb: 6f:c2:98:7f:f8:e0:e8:84:66:0a:6e:83:ba:8d:09: bb:09:07:23:bb:08:d3:4a:58:5d:91:06:3f:73:bb: 1f:54:63:89:d4:ae:68:cf:76:d2:68:51:9f:04:39: 94:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:11:BD:E5:71:76:E5:09:A3:BF:32:EC:B7:1D:67:F6:92:1B:07:98 X509v3 Authority Key Identifier: keyid:5B:5B:FF:9D:41:F7:19:F6:26:00:C3:2D:34:10:DD:B9:9E:CC:B3:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1v_nUH3GfYmAMMtNBDduZ7Msww.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/4f43fc-4187-4bb9-905a-f0c6258b9a04/1/uhG95XF25QmjvzLstx1n9pIbB5g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/4f43fc-4187-4bb9-905a-f0c6258b9a04/1/W1v_nUH3GfYmAMMtNBDduZ7Msww.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.138.4.0/22 78.138.36.0/22 83.229.52.0/22 83.229.100.0-83.229.102.255 185.10.6.0/24 185.115.108.0/22 213.255.212.0/22 213.255.220.0/22 213.255.232.0/21 213.255.252.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:5c:d2:1c:b8:a9:18:fc:e0:8e:03:bc:57:a4:bc:34:de:1d: 3a:fd:13:81:cf:f2:c1:8e:3b:12:be:12:f5:a5:4a:fc:88:66: 36:aa:0a:ae:9c:49:fe:50:13:2b:50:c8:f4:a9:b8:4c:64:54: c4:f7:33:c0:12:38:59:09:97:33:83:e1:5d:4b:12:44:fc:ec: cb:21:25:71:0b:75:f6:eb:72:b5:32:f5:8c:97:08:42:20:7e: 8d:a7:67:fc:a8:58:d4:f7:66:72:b3:12:55:71:b9:3e:17:23: ce:c5:4f:c7:6a:a0:4e:4d:ae:18:3e:0a:71:6d:c4:2a:c1:3c: 0b:14:70:ee:b4:7e:50:b1:9c:b1:20:99:e6:b4:15:39:bc:5e: 38:ba:33:75:aa:f2:ea:a8:60:1c:aa:3c:8e:7c:07:e9:03:23: b8:56:80:e7:4e:7c:57:f2:94:28:2a:74:24:d6:d5:11:13:84: eb:d2:da:2f:da:99:26:ad:1c:2b:d9:a2:5e:07:93:5e:03:e6: c3:1d:1c:65:c9:fb:f6:a5:79:b3:3e:19:bd:53:e4:58:cc:28: 20:31:12:49:97:be:f2:80:ba:31:33:e0:20:2d:32:f6:d8:6f: df:86:24:0e:95:a0:a2:84:91:2d:f0:fb:19:d8:78:68:fa:79: e7:ff:f8:44 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgISAZt5EMWBUGiWUC08vTU8WxilMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViNWJmZjlkNDFmNzE5ZjYyNjAwYzMyZDM0MTBkZGI5OWVj Y2IzMGMwHhcNMjYwMTAxMTAxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTExYmRlNTcxNzZlNTA5YTNiZjMyZWNiNzFkNjdmNjkyMWIwNzk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtyiXfl48m+ASTK0N7k0K7Bk+ZClZ 4X6U0i0vuBXDnbPouRNHJ8fhzdb7Bl3a1SA1cMqaraAlczHh3+nC5MMCr6TP0MbQ +4CpFRPdaqFV9FKMzTPpBCX92NNU7c/IydlfqNKTB11JBVhUIqGj+MxsRZOYRWHu DSXQeMCoucDIdANm2RUMVTe+IaN9e+xqQ9f/yKCbX9nrnn8SrJkqG1og+W2+6xTb 4+IO+lm4e/xgEnIlSAeZViHAHZFz8DSpW39HC3YK9JYWdznnDOzAyo6foMtvwph/ +ODohGYKboO6jQm7CQcjuwjTSlhdkQY/c7sfVGOJ1K5oz3bSaFGfBDmU0QIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFLoRveVxduUJo78y7LcdZ/aSGweYMB8GA1UdIwQY MBaAFFtb/51B9xn2JgDDLTQQ3bmezLMMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVzF2X25VSDNHZlltQU1NdE5CRGR1WjdNc3d3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi80ZjQzZmMtNDE4Ny00YmI5LTkwNWEt ZjBjNjI1OGI5YTA0LzEvdWhHOTVYRjI1UW1qdnpMc3R4MW45cEliQjVnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi80ZjQzZmMtNDE4Ny00YmI5LTkwNWEtZjBjNjI1OGI5YTA0 LzEvVzF2X25VSDNHZlltQU1NdE5CRGR1WjdNc3d3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDBKBAIAATBEAwQCTooEAwQC TookAwQCU+U0MAwDBAJT5WQDBABT5WYDBAC5CgYDBAK5c2wDBALV/9QDBALV/9wD BAPV/+gDBALV//wwDQYJKoZIhvcNAQELBQADggEBAB5c0hy4qRj84I4DvFekvDTe HTr9E4HP8sGOOxK+EvWlSvyIZjaqCq6cSf5QEytQyPSpuExkVMT3M8ASOFkJlzOD 4V1LEkT87MshJXELdfbrcrUy9YyXCEIgfo2nZ/yoWNT3ZnKzElVxuT4XI87FT8dq oE5Nrhg+CnFtxCrBPAsUcO60flCxnLEgmea0FTm8Xji6M3Wq8uqoYByqPI58B+kD I7hWgOdOfFfylCgqdCTW1REThOvS2i/amSatHCvZol4Hk14D5sMdHGXJ+/alebM+ Gb1T5FjMKCAxEkmXvvKAujEz4CAtMvbYb9+GJA6VoKKEkS3w+xnYeGj6eef/+EQ= -----END CERTIFICATE-----Generated at Sun Jan 25 10:11:19 2026 by rpki-client