This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/umfm-_gWe81BH83KzIqyQxTVaNw.roa File: umfm-_gWe81BH83KzIqyQxTVaNw.roa (raw, json) Hash identifier: pbjcsVqOy2ZWZLtHk/qVNZlYAx9Fj/BtMKyNubpylno= Subject key identifier: BA:67:E6:FB:F8:16:7B:CD:41:1F:CD:CA:CC:8A:B2:43:14:D5:68:DC Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a Certificate serial: 019B7B35465D5AE0D40CF98D52B0EEE712B1 Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/umfm-_gWe81BH83KzIqyQxTVaNw.roa Signing time: Thu 01 Jan 2026 20:17:27 +0000 ROA not before: Thu 01 Jan 2026 20:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39318 IP address blocks: 31.210.174.0/23 maxlen: 24 46.247.42.0/23 maxlen: 24 82.115.48.0/23 maxlen: 24 82.115.48.0/24 maxlen: 24 82.115.49.0/24 maxlen: 24 85.202.192.0/23 maxlen: 24 2a00:5da0:2000::/36 maxlen: 48 2a00:5da0:3000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:46:5d:5a:e0:d4:0c:f9:8d:52:b0:ee:e7:12:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a Validity Not Before: Jan 1 20:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba67e6fbf8167bcd411fcdcacc8ab24314d568dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:d4:67:8b:30:24:bf:72:f5:31:bd:d3:fb:86: cf:43:45:a0:d8:9e:e5:4a:f0:6b:fd:07:a9:32:03: ff:6b:db:92:32:a0:14:97:b0:57:ea:55:4a:10:71: 22:fa:7d:36:a7:4f:25:3d:6b:3a:b4:14:b6:c2:c2: d7:75:41:2f:eb:25:dd:5b:95:8a:8f:2c:a7:7a:73: bc:59:b9:b0:3b:d9:2c:4c:b8:71:1b:12:20:b5:1b: de:02:df:59:3b:12:b5:e9:33:de:1d:76:9b:5e:eb: 21:5e:f7:f4:da:42:5c:ff:08:12:50:1c:87:4c:f8: 47:95:b7:ce:e0:4a:98:8e:a0:a2:01:bd:14:14:31: 6c:e8:5f:74:a9:4a:73:46:d7:ed:d8:60:b6:84:21: c5:f2:3c:9a:9e:07:9c:6c:1d:af:9d:d5:d1:de:a3: b8:7f:b8:8b:e3:71:a4:17:de:ff:e8:3a:6b:40:42: 52:95:2d:f8:e5:41:55:58:59:8b:06:dc:fb:3f:f4: d2:43:d2:49:cb:b4:b9:ef:fc:5f:b6:20:63:59:1b: 2d:d7:a1:a7:93:53:a0:8d:93:97:c0:cd:0d:1c:b6: 1e:e6:e7:01:a9:09:d1:1a:24:c1:b8:2a:9a:d4:7e: bf:8e:9b:89:aa:da:65:e2:8b:e4:72:75:69:08:46: 65:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:67:E6:FB:F8:16:7B:CD:41:1F:CD:CA:CC:8A:B2:43:14:D5:68:DC X509v3 Authority Key Identifier: keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/umfm-_gWe81BH83KzIqyQxTVaNw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.210.174.0/23 46.247.42.0/23 82.115.48.0/23 85.202.192.0/23 IPv6: 2a00:5da0:2000::/35 Signature Algorithm: sha256WithRSAEncryption bf:73:28:54:0a:39:4c:d7:2f:6b:4e:64:e8:2a:ff:75:11:16: e3:a7:a9:4c:8c:23:af:02:a0:ba:ec:ab:2f:fc:b0:3c:c6:89: ba:bb:87:82:d1:96:62:8d:7c:25:25:b1:21:e9:9c:93:2f:c3: 06:aa:b7:1d:c9:de:4d:55:4c:6f:30:80:f5:bb:e6:85:93:92: ec:c0:62:5d:70:e7:69:ed:56:26:90:f9:82:bf:67:36:9e:cf: 97:69:d1:63:32:07:6a:7f:ca:0d:2a:3c:ac:4b:28:75:c5:72: eb:8a:71:db:6c:05:52:6e:a6:f4:52:55:fb:b6:b3:fa:16:74: f7:8f:45:42:53:cd:40:ca:9e:f9:cc:41:d6:8a:81:71:b2:81: 4d:ac:f8:b9:17:2d:52:a8:57:02:87:bc:50:1d:ce:50:a4:d5: c2:97:ee:25:19:1c:3c:51:ea:bc:f6:32:cd:51:14:5c:31:c1: da:cc:e9:b3:77:a2:26:13:3b:ab:f6:67:2f:92:76:6f:9f:c7: 08:3b:dc:3c:4b:d9:4a:b1:a9:26:66:40:0d:91:88:96:d6:75: 86:68:10:39:a0:2e:c7:a4:a7:99:97:39:20:6c:f0:e5:3f:e6: c9:10:78:1c:03:67:d1:31:1a:d4:76:0a:65:0e:ca:b7:5d:d0: 86:b2:28:08 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt7NUZdWuDUDPmNUrDu5xKxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4NDdiNTlkMjFlYTM2YjMwNjJmY2E4MGNlNzVjMTYxNmFm NTExOWEwHhcNMjYwMTAxMjAxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTY3ZTZmYmY4MTY3YmNkNDExZmNkY2FjYzhhYjI0MzE0ZDU2OGRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9dRnizAkv3L1Mb3T+4bPQ0Wg2J7l SvBr/QepMgP/a9uSMqAUl7BX6lVKEHEi+n02p08lPWs6tBS2wsLXdUEv6yXdW5WK jyynenO8WbmwO9ksTLhxGxIgtRveAt9ZOxK16TPeHXabXushXvf02kJc/wgSUByH TPhHlbfO4EqYjqCiAb0UFDFs6F90qUpzRtft2GC2hCHF8jyangecbB2vndXR3qO4 f7iL43GkF97/6DprQEJSlS345UFVWFmLBtz7P/TSQ9JJy7S57/xftiBjWRst16Gn k1OgjZOXwM0NHLYe5ucBqQnRGiTBuCqa1H6/jpuJqtpl4ovkcnVpCEZlJQIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFLpn5vv4FnvNQR/NysyKskMU1WjcMB8GA1UdIwQY MBaAFBhHtZ0h6jazBi/KgM51wWFq9RGaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0VlMW5TSHFOck1HTDhxQXpuWEJZV3IxRVpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi8zODI0Y2QtZTUyNy00YWRjLWE0MTIt ZjkxYmI1MTc5MjE3LzEvdW1mbS1fZ1dlODFCSDgzS3pJcXlReFRWYU53LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi8zODI0Y2QtZTUyNy00YWRjLWE0MTItZjkxYmI1MTc5MjE3 LzEvR0VlMW5TSHFOck1HTDhxQXpuWEJZV3IxRVpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAeBAIAATAYAwQBH9KuAwQB LvcqAwQBUnMwAwQBVcrAMA4EAgACMAgDBgUqAF2gIDANBgkqhkiG9w0BAQsFAAOC AQEAv3MoVAo5TNcva05k6Cr/dREW46epTIwjrwKguuyrL/ywPMaJuruHgtGWYo18 JSWxIemcky/DBqq3HcneTVVMbzCA9bvmhZOS7MBiXXDnae1WJpD5gr9nNp7Pl2nR YzIHan/KDSo8rEsodcVy64px22wFUm6m9FJV+7az+hZ0949FQlPNQMqe+cxB1oqB cbKBTaz4uRctUqhXAoe8UB3OUKTVwpfuJRkcPFHqvPYyzVEUXDHB2szps3eiJhM7 q/ZnL5J2b5/HCDvcPEvZSrGpJmZADZGIltZ1hmgQOaAux6SnmZc5IGzw5T/myRB4 HANn0TEa1HYKZQ7Kt13QhrIoCA== -----END CERTIFICATE-----Generated at Mon Jan 26 09:25:43 2026 by rpki-client