This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/UcKG60X0bY06GvhRzuyCZXPPpEs.roa File: UcKG60X0bY06GvhRzuyCZXPPpEs.roa (raw, json) Hash identifier: CiNS7tumSY9kA1IK1COc42ZCVYSO1Vjftuq3lKqZ0Tg= Subject key identifier: 51:C2:86:EB:45:F4:6D:8D:3A:1A:F8:51:CE:EC:82:65:73:CF:A4:4B Certificate issuer: /CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05 Certificate serial: 019B7F14E481B0EC7CFD5B3FB8D8DF1A4F27 Authority key identifier: C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/UcKG60X0bY06GvhRzuyCZXPPpEs.roa Signing time: Fri 02 Jan 2026 14:20:34 +0000 ROA not before: Fri 02 Jan 2026 14:20:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16376 IP address blocks: 37.35.88.0/21 maxlen: 24 94.199.184.0/21 maxlen: 24 185.68.0.0/22 maxlen: 24 185.71.24.0/22 maxlen: 24 185.122.216.0/22 maxlen: 24 2a01:b280::/29 maxlen: 36 2a03:25e0::/32 maxlen: 40 2a0a:fd80::/29 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/yE1hzRftkuVLszl_HlprOQSsbwU.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/yE1hzRftkuVLszl_HlprOQSsbwU.mft rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:e4:81:b0:ec:7c:fd:5b:3f:b8:d8:df:1a:4f:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05 Validity Not Before: Jan 2 14:20:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=51c286eb45f46d8d3a1af851ceec826573cfa44b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:2a:5b:5b:e1:74:e8:3d:c2:c0:9a:e2:15:1a: b2:79:68:c2:34:ef:e5:49:5e:65:80:73:23:f1:fe: 5a:e8:ad:12:6a:62:a2:19:c6:92:5f:7e:1f:c6:e7: e2:f8:59:a1:31:a5:ae:da:8c:71:e5:1e:63:19:13: 5d:c8:ae:92:d7:20:dc:99:b4:5d:08:ac:be:5b:2b: b2:2f:92:70:b2:a6:12:b7:c2:9e:35:2a:06:ab:16: ad:39:ae:e3:0d:fc:fe:ba:10:3e:f9:cf:39:40:6a: 2d:d0:f8:1a:07:ef:1b:5c:60:b8:17:28:26:73:65: ca:19:04:01:4f:0a:3a:8c:76:22:23:2a:10:18:a6: 76:5c:89:bb:b5:0c:c1:9b:0a:33:5f:52:63:84:b4: 82:30:a0:e1:5c:76:c7:05:d6:43:19:73:e5:30:38: ff:b4:04:af:cb:6a:bf:f5:b1:0e:79:1b:da:91:6e: 02:04:62:a2:ea:97:82:68:de:48:e7:2c:c0:d1:03: 5f:bd:8e:60:21:53:cc:98:84:f7:c2:19:96:5d:a3: b5:7b:8c:e5:6a:81:bc:6f:52:8c:87:0c:b8:09:ce: ad:cb:3e:2f:83:db:b3:fe:30:8e:04:f0:77:63:0d: 73:6f:e1:91:b1:1b:12:94:f7:ab:f1:20:ea:71:b1: 91:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C2:86:EB:45:F4:6D:8D:3A:1A:F8:51:CE:EC:82:65:73:CF:A4:4B X509v3 Authority Key Identifier: keyid:C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/UcKG60X0bY06GvhRzuyCZXPPpEs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/yE1hzRftkuVLszl_HlprOQSsbwU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.35.88.0/21 94.199.184.0/21 185.68.0.0/22 185.71.24.0/22 185.122.216.0/22 IPv6: 2a01:b280::/29 2a03:25e0::/32 2a0a:fd80::/29 Signature Algorithm: sha256WithRSAEncryption 43:3e:22:4b:a8:1a:8a:c0:b5:ee:40:62:57:2b:12:19:52:98: 3b:6c:a5:15:5f:bd:bb:bc:0a:6d:d3:68:9b:62:62:12:8f:84: ff:41:5f:e1:67:7f:92:62:3b:1a:32:10:60:b2:bf:23:ef:0f: 4f:2c:8a:f7:11:0b:35:bc:ef:e9:8e:83:f3:08:b3:29:66:eb: b2:47:78:1f:d0:1f:f2:bc:01:3b:4d:d6:74:fa:ce:ed:43:5a: e1:97:93:11:6f:b5:76:88:21:36:d2:67:11:c6:af:df:2f:af: fd:48:bb:36:5b:aa:2a:0b:31:13:78:e0:17:1c:af:3b:08:97: 8b:d3:40:5f:36:82:76:f6:d9:5f:c6:4f:47:45:d1:88:74:76: b9:a9:df:26:1c:c5:77:98:f1:9e:98:09:8f:79:04:ab:52:ec: e0:16:f8:fe:69:e1:ab:35:ff:e3:92:b0:ed:a0:3d:86:c6:a6: ba:82:bb:90:fc:0e:ac:84:26:5a:fb:6b:ba:f6:3b:59:45:6f: bd:98:3d:a2:a6:41:ff:d9:ec:9d:00:ca:ba:08:d0:5a:85:01: ff:f2:91:48:ce:14:89:91:85:cf:ec:6f:91:3e:b1:2d:e4:ce: 81:d3:69:90:51:0f:49:bd:53:43:0c:34:17:16:98:90:f0:b5: e9:8c:64:71 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgISAZt/FOSBsOx8/Vs/uNjfGk8nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4NGQ2MWNkMTdlZDkyZTU0YmIzMzk3ZjFlNWE2YjM5MDRh YzZmMDUwHhcNMjYwMTAyMTQyMDM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MWMyODZlYjQ1ZjQ2ZDhkM2ExYWY4NTFjZWVjODI2NTczY2ZhNDRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkypbW+F06D3CwJriFRqyeWjCNO/l SV5lgHMj8f5a6K0SamKiGcaSX34fxufi+FmhMaWu2oxx5R5jGRNdyK6S1yDcmbRd CKy+WyuyL5JwsqYSt8KeNSoGqxatOa7jDfz+uhA++c85QGot0PgaB+8bXGC4Fygm c2XKGQQBTwo6jHYiIyoQGKZ2XIm7tQzBmwozX1JjhLSCMKDhXHbHBdZDGXPlMDj/ tASvy2q/9bEOeRvakW4CBGKi6peCaN5I5yzA0QNfvY5gIVPMmIT3whmWXaO1e4zl aoG8b1KMhwy4Cc6tyz4vg9uz/jCOBPB3Yw1zb+GRsRsSlPer8SDqcbGR0QIDAQAB o4ICPjCCAjowHQYDVR0OBBYEFFHChutF9G2NOhr4Uc7sgmVzz6RLMB8GA1UdIwQY MBaAFMhNYc0X7ZLlS7M5fx5aazkErG8FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUUxaHpSZnRrdVZMc3psX0hscHJPUVNzYndVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS84OGVhZTgtNGI4Ni00Mzg5LWFhZGIt YzI1Nzc5MmRhZGM0LzEvVWNLRzYwWDBiWTA2R3ZoUnp1eUNaWFBQcEVzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS84OGVhZTgtNGI4Ni00Mzg5LWFhZGItYzI1Nzc5MmRhZGM0 LzEveUUxaHpSZnRrdVZMc3psX0hscHJPUVNzYndVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFQGCCsGAQUFBwEHAQH/BEUwQzAkBAIAATAeAwQDJSNYAwQD Xse4AwQCuUQAAwQCuUcYAwQCuXrYMBsEAgACMBUDBQMqAbKAAwUAKgMl4AMFAyoK /YAwDQYJKoZIhvcNAQELBQADggEBAEM+IkuoGorAte5AYlcrEhlSmDtspRVfvbu8 Cm3TaJtiYhKPhP9BX+Fnf5JiOxoyEGCyvyPvD08sivcRCzW87+mOg/MIsylm67JH eB/QH/K8ATtN1nT6zu1DWuGXkxFvtXaIITbSZxHGr98vr/1IuzZbqioLMRN44Bcc rzsIl4vTQF82gnb22V/GT0dF0Yh0drmp3yYcxXeY8Z6YCY95BKtS7OAW+P5p4as1 /+OSsO2gPYbGprqCu5D8DqyEJlr7a7r2O1lFb72YPaKmQf/Z7J0AyroI0FqFAf/y kUjOFImRhc/sb5E+sS3kzoHTaZBRD0m9U0MMNBcWmJDwtemMZHE= -----END CERTIFICATE-----Generated at Sun Jan 25 23:54:28 2026 by rpki-client