This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/UGaWfYCCxk8EpYZCun7jXwhTkIs.roa File: UGaWfYCCxk8EpYZCun7jXwhTkIs.roa (raw, json) Hash identifier: 7hmag0/PqnLWj4L7od5Xt73eoy7sOpR+k3qrD6k4uBU= Subject key identifier: 50:66:96:7D:80:82:C6:4F:04:A5:86:42:BA:7E:E3:5F:08:53:90:8B Certificate issuer: /CN=1bc1994ea63d50dbc8b43acecad2842b4dc15759 Certificate serial: 019A9BD12F498CD559F82EDD925902049083 Authority key identifier: 1B:C1:99:4E:A6:3D:50:DB:C8:B4:3A:CE:CA:D2:84:2B:4D:C1:57:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G8GZTqY9UNvItDrOytKEK03BV1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/UGaWfYCCxk8EpYZCun7jXwhTkIs.roa Signing time: Wed 19 Nov 2025 11:12:48 +0000 ROA not before: Wed 19 Nov 2025 11:12:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 41897 IP address blocks: 78.109.97.0/24 maxlen: 24 78.109.98.0/24 maxlen: 24 78.109.99.0/24 maxlen: 24 78.109.100.0/23 maxlen: 23 78.109.102.0/23 maxlen: 23 185.90.132.0/23 maxlen: 23 185.90.134.0/23 maxlen: 23 193.42.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/G8GZTqY9UNvItDrOytKEK03BV1k.crl rsync://rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/G8GZTqY9UNvItDrOytKEK03BV1k.mft rsync://rpki.ripe.net/repository/DEFAULT/G8GZTqY9UNvItDrOytKEK03BV1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:9b:d1:2f:49:8c:d5:59:f8:2e:dd:92:59:02:04:90:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1bc1994ea63d50dbc8b43acecad2842b4dc15759 Validity Not Before: Nov 19 11:12:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=5066967d8082c64f04a58642ba7ee35f0853908b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:0b:97:03:28:2f:8d:68:1c:79:1c:3d:b9:98: d0:46:51:2d:27:6b:88:f6:7c:30:5f:fc:a1:ff:b4: 30:e4:c9:1d:c5:dc:5b:63:24:06:48:a5:4d:3b:12: 82:be:fd:cc:2d:c8:4a:5b:2d:1a:68:91:d4:4c:3a: 45:13:0f:2b:59:26:2c:d1:61:c2:98:ae:57:37:b7: 96:fa:c1:71:5c:3d:07:63:ae:04:2c:79:63:3b:45: 61:7b:a2:e8:98:7b:ef:d3:ed:ea:e1:70:07:b8:67: 6b:c8:f2:4f:4a:c6:06:58:ad:d2:74:de:d9:50:77: b7:7e:84:84:25:f2:3c:3f:da:d4:1f:2a:de:5d:d3: c0:86:d0:1c:72:3d:d9:4a:b7:e4:7f:60:de:44:ae: 08:a9:62:66:48:a3:96:09:a2:91:cb:39:61:87:a7: c0:b8:f8:6c:e9:5f:ae:06:b2:92:55:fd:0e:82:2c: 7d:81:c8:74:9d:f5:95:f4:20:3c:c3:38:7b:b4:d2: fc:57:60:8c:4b:52:8e:83:b6:0a:e1:85:b5:1c:e9: 8a:cc:5c:83:15:06:c0:9e:31:9d:64:18:a9:ad:84: f8:ef:b7:c3:f7:dd:df:ea:7a:30:66:5a:0d:d5:5d: 2f:1e:e1:f0:7a:a2:b9:44:9f:ca:21:04:96:e4:dd: c0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:66:96:7D:80:82:C6:4F:04:A5:86:42:BA:7E:E3:5F:08:53:90:8B X509v3 Authority Key Identifier: keyid:1B:C1:99:4E:A6:3D:50:DB:C8:B4:3A:CE:CA:D2:84:2B:4D:C1:57:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G8GZTqY9UNvItDrOytKEK03BV1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/UGaWfYCCxk8EpYZCun7jXwhTkIs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/13bdba-0715-4e26-b076-af5867476309/1/G8GZTqY9UNvItDrOytKEK03BV1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.109.97.0-78.109.103.255 185.90.132.0/22 193.42.20.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:44:43:37:e0:bd:fb:af:db:95:2c:a5:5d:69:25:8b:46:68: 2c:64:7c:e9:d0:c7:16:75:77:ad:14:0d:03:4f:1e:2c:fd:7d: 75:ac:2f:17:6e:01:e2:1c:f2:88:e8:62:1a:c9:cf:ef:86:b1: b9:8b:b4:a3:0a:65:ba:84:c9:d5:21:a7:94:a8:ab:85:72:36: af:7c:44:30:94:5f:51:26:83:4b:1d:6e:53:ba:5d:24:34:9d: b9:0a:de:77:7d:33:b4:1b:ad:5a:fc:64:f0:c4:41:31:4c:04: eb:f5:9e:8b:78:b1:07:70:61:21:e8:7b:00:29:ba:b7:bc:dc: 17:9d:1e:10:64:e7:5e:fa:76:3f:7d:5b:9f:1a:c1:4c:a5:25: 6c:2c:05:da:83:6d:94:e1:b2:f9:dc:90:a3:72:73:11:5c:d1: e8:83:4a:b5:09:2f:d8:e1:6a:72:52:ca:dc:1e:fd:96:5c:a4: d9:c9:b0:59:62:a3:7f:87:e3:a3:84:f9:6d:39:87:5c:48:f3: 05:1f:5c:86:3b:66:4b:eb:66:04:5a:9d:4a:d4:16:5a:42:06: f9:f8:fd:c0:9e:97:b5:72:e1:ab:4f:81:42:48:06:3a:d7:e1: 26:bb:02:a5:29:46:8e:ee:d9:7a:84:0b:c9:73:79:1c:e0:9f: 01:85:41:d4 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISAZqb0S9JjNVZ+C7dklkCBJCDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiYzE5OTRlYTYzZDUwZGJjOGI0M2FjZWNhZDI4NDJiNGRj MTU3NTkwHhcNMjUxMTE5MTExMjQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MDY2OTY3ZDgwODJjNjRmMDRhNTg2NDJiYTdlZTM1ZjA4NTM5MDhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+AuXAygvjWgceRw9uZjQRlEtJ2uI 9nwwX/yh/7Qw5MkdxdxbYyQGSKVNOxKCvv3MLchKWy0aaJHUTDpFEw8rWSYs0WHC mK5XN7eW+sFxXD0HY64ELHljO0Vhe6LomHvv0+3q4XAHuGdryPJPSsYGWK3SdN7Z UHe3foSEJfI8P9rUHyreXdPAhtAccj3ZSrfkf2DeRK4IqWJmSKOWCaKRyzlhh6fA uPhs6V+uBrKSVf0Ogix9gch0nfWV9CA8wzh7tNL8V2CMS1KOg7YK4YW1HOmKzFyD FQbAnjGdZBiprYT477fD993f6nowZloN1V0vHuHweqK5RJ/KIQSW5N3AqwIDAQAB o4ICHTCCAhkwHQYDVR0OBBYEFFBmln2AgsZPBKWGQrp+418IU5CLMB8GA1UdIwQY MBaAFBvBmU6mPVDbyLQ6zsrShCtNwVdZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzhHWlRxWTlVTnZJdERyT3l0S0VLMDNCVjFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8xM2JkYmEtMDcxNS00ZTI2LWIwNzYt YWY1ODY3NDc2MzA5LzEvVUdhV2ZZQ0N4azhFcFlaQ3VuN2pYd2hUa0lzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC8xM2JkYmEtMDcxNS00ZTI2LWIwNzYtYWY1ODY3NDc2MzA5 LzEvRzhHWlRxWTlVTnZJdERyT3l0S0VLMDNCVjFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaMAwDBABObWED BANObWADBAK5WoQDBADBKhQwDQYJKoZIhvcNAQELBQADggEBAG9EQzfgvfuv25Us pV1pJYtGaCxkfOnQxxZ1d60UDQNPHiz9fXWsLxduAeIc8ojoYhrJz++GsbmLtKMK ZbqEydUhp5Soq4VyNq98RDCUX1Emg0sdblO6XSQ0nbkK3nd9M7QbrVr8ZPDEQTFM BOv1not4sQdwYSHoewApure83BedHhBk5176dj99W58awUylJWwsBdqDbZThsvnc kKNycxFc0eiDSrUJL9jhanJSytwe/ZZcpNnJsFlio3+H46OE+W05h1xI8wUfXIY7 ZkvrZgRanUrUFlpCBvn4/cCel7Vy4atPgUJIBjrX4Sa7AqUpRo7u2XqEC8lzeRzg nwGFQdQ= -----END CERTIFICATE-----Generated at Sat Dec 6 18:24:14 2025 by rpki-client