This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/Uhtjh5h2mIHR4xqSRaIoSxiMlak.roa File: Uhtjh5h2mIHR4xqSRaIoSxiMlak.roa (raw, json) Hash identifier: W2vJvNYSDyVMMDF76X044/wyGHHTKZcbe3dNyRLN5sw= Subject key identifier: 52:1B:63:87:98:76:98:81:D1:E3:1A:92:45:A2:28:4B:18:8C:95:A9 Certificate issuer: /CN=5e400ac2396ae228d2b2e56f4b06739969379e44 Certificate serial: 019B797DE1F166451A54C643F2CE9D331ABE Authority key identifier: 5E:40:0A:C2:39:6A:E2:28:D2:B2:E5:6F:4B:06:73:99:69:37:9E:44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/Uhtjh5h2mIHR4xqSRaIoSxiMlak.roa Signing time: Thu 01 Jan 2026 12:17:31 +0000 ROA not before: Thu 01 Jan 2026 12:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31216 IP address blocks: 31.217.128.0/19 maxlen: 24 46.18.168.0/21 maxlen: 24 83.243.16.0/21 maxlen: 24 89.30.0.0/17 maxlen: 24 89.30.58.0/24 maxlen: 24 89.30.68.0/22 maxlen: 24 91.196.184.0/22 maxlen: 24 185.55.16.0/22 maxlen: 24 185.143.244.0/22 maxlen: 22 194.126.217.0/24 maxlen: 24 2a01:8200::/32 maxlen: 64 2a02:27f0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7d:e1:f1:66:45:1a:54:c6:43:f2:ce:9d:33:1a:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e400ac2396ae228d2b2e56f4b06739969379e44 Validity Not Before: Jan 1 12:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=521b638798769881d1e31a9245a2284b188c95a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:27:4f:e8:8f:40:da:e7:30:cc:69:75:36:a9: 98:d2:f2:ba:38:77:ad:b3:46:fa:72:fa:e5:06:78: db:89:98:36:29:60:2d:64:b4:3d:af:f0:99:86:93: f1:bc:e5:c8:5b:9f:b4:92:e4:8f:cc:03:bc:99:e2: f3:c5:4f:49:00:82:33:03:fb:9d:76:f9:11:a9:e5: e8:77:2e:9a:23:cc:f6:2d:17:5c:e2:ff:00:62:5f: 58:75:e3:cb:62:58:d6:64:a0:2b:30:98:20:60:c6: 63:ed:1a:d4:32:ec:3f:cd:d9:d2:24:1c:5a:ab:e8: c8:34:27:ee:da:df:cf:e3:96:25:49:a6:ff:e8:76: e4:3e:52:67:f2:0a:9f:e2:67:25:b1:bb:02:51:72: f3:b6:e6:f1:cf:2d:ef:6a:e4:30:bc:a1:08:01:98: b8:1e:69:14:d8:49:13:31:21:0a:c3:33:e9:c7:7d: 5b:e6:92:0c:47:df:1b:ae:20:47:68:ee:9d:04:6d: ec:4f:62:c4:d1:8b:55:eb:b2:bc:a1:64:9b:bb:f9: 55:bb:f2:16:41:c4:ea:9d:a0:63:3b:3f:26:3e:e9: f9:f6:85:b4:ef:71:9d:45:78:73:a1:83:c0:f8:32: f9:b3:46:9c:c1:12:d3:0d:39:f3:b9:6a:d6:cf:3e: 8c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:1B:63:87:98:76:98:81:D1:E3:1A:92:45:A2:28:4B:18:8C:95:A9 X509v3 Authority Key Identifier: keyid:5E:40:0A:C2:39:6A:E2:28:D2:B2:E5:6F:4B:06:73:99:69:37:9E:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/Uhtjh5h2mIHR4xqSRaIoSxiMlak.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.217.128.0/19 46.18.168.0/21 83.243.16.0/21 89.30.0.0/17 91.196.184.0/22 185.55.16.0/22 185.143.244.0/22 194.126.217.0/24 IPv6: 2a01:8200::/32 2a02:27f0::/32 Signature Algorithm: sha256WithRSAEncryption c6:00:cc:34:61:f9:fb:79:18:7f:a5:27:47:49:c0:bc:7e:36: d8:d2:b3:d2:08:8d:37:0a:58:76:fe:26:72:0a:3c:6b:39:4a: 79:88:ae:d0:23:06:97:b5:fb:26:a9:18:0c:42:bc:9c:84:2c: 8b:dc:f0:db:9b:26:c0:06:72:6b:f5:2b:75:f7:eb:83:65:c3: 7a:d7:03:ee:a2:af:ba:d4:75:d3:8d:c9:78:2a:b7:68:48:ce: 6f:9f:88:94:d2:a4:4c:24:f2:73:46:8d:12:6a:91:09:82:5a: 60:76:e8:9e:4f:aa:5e:9a:8d:02:47:cb:90:cf:49:a6:ff:07: b9:25:58:97:10:db:cb:2c:b4:84:1a:1e:a5:09:79:6d:f1:d8: b2:fe:a9:b3:3a:0b:0e:73:ae:c3:68:9d:b0:c0:5c:10:cc:a5: 17:1d:1e:bd:a0:29:93:a1:53:cf:33:ce:4a:37:e4:4f:fe:9d: cc:98:07:f7:2a:7a:27:68:d4:8d:80:43:d6:eb:ae:a7:c4:e1: 8a:6d:5e:e2:18:bd:0a:4f:a3:67:a4:8d:0c:40:13:77:70:bf: 17:c1:90:fe:78:1a:b2:8c:c8:e6:94:de:68:3e:2c:62:54:92: f4:18:90:bb:10:15:cc:f3:e8:13:dd:6e:33:c4:34:b1:88:40: f8:ea:7a:7a -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgISAZt5feHxZkUaVMZD8s6dMxq+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlNDAwYWMyMzk2YWUyMjhkMmIyZTU2ZjRiMDY3Mzk5Njkz NzllNDQwHhcNMjYwMTAxMTIxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MjFiNjM4Nzk4NzY5ODgxZDFlMzFhOTI0NWEyMjg0YjE4OGM5NWE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7SdP6I9A2ucwzGl1NqmY0vK6OHet s0b6cvrlBnjbiZg2KWAtZLQ9r/CZhpPxvOXIW5+0kuSPzAO8meLzxU9JAIIzA/ud dvkRqeXody6aI8z2LRdc4v8AYl9YdePLYljWZKArMJggYMZj7RrUMuw/zdnSJBxa q+jINCfu2t/P45YlSab/6HbkPlJn8gqf4mclsbsCUXLztubxzy3vauQwvKEIAZi4 HmkU2EkTMSEKwzPpx31b5pIMR98briBHaO6dBG3sT2LE0YtV67K8oWSbu/lVu/IW QcTqnaBjOz8mPun59oW073GdRXhzoYPA+DL5s0acwRLTDTnzuWrWzz6MbwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFFIbY4eYdpiB0eMakkWiKEsYjJWpMB8GA1UdIwQY MBaAFF5ACsI5auIo0rLlb0sGc5lpN55EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGtBS3dqbHE0aWpTc3VWdlN3WnptV2szbmtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9kNjdhOTUtY2IzNi00OTM3LTkyMjYt ZGZlZDEyZjFhMDFlLzEvVWh0amg1aDJtSUhSNHhxU1JhSW9TeGlNbGFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC9kNjdhOTUtY2IzNi00OTM3LTkyMjYtZGZlZDEyZjFhMDFl LzEvWGtBS3dqbHE0aWpTc3VWdlN3WnptV2szbmtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF8GCCsGAQUFBwEHAQH/BFAwTjA2BAIAATAwAwQFH9mAAwQD LhKoAwQDU/MQAwQHWR4AAwQCW8S4AwQCuTcQAwQCuY/0AwQAwn7ZMBQEAgACMA4D BQAqAYIAAwUAKgIn8DANBgkqhkiG9w0BAQsFAAOCAQEAxgDMNGH5+3kYf6UnR0nA vH422NKz0giNNwpYdv4mcgo8azlKeYiu0CMGl7X7JqkYDEK8nIQsi9zw25smwAZy a/Urdffrg2XDetcD7qKvutR1043JeCq3aEjOb5+IlNKkTCTyc0aNEmqRCYJaYHbo nk+qXpqNAkfLkM9Jpv8HuSVYlxDbyyy0hBoepQl5bfHYsv6pszoLDnOuw2idsMBc EMylFx0evaApk6FTzzPOSjfkT/6dzJgH9yp6J2jUjYBD1uuup8Thim1e4hi9Ck+j Z6SNDEATd3C/F8GQ/ngasozI5pTeaD4sYlSS9BiQuxAVzPPoE91uM8Q0sYhA+Op6 eg== -----END CERTIFICATE-----Generated at Sun Jan 25 15:15:13 2026 by rpki-client