This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/uDCd91-kIRTx4Oler7V-1bWJeEE.roa File: uDCd91-kIRTx4Oler7V-1bWJeEE.roa (raw, json) Hash identifier: MPw5XG6tMFKBuwGKWin9/7K5TyzvM+BrLD5tHi46a6Q= Subject key identifier: B8:30:9D:F7:5F:A4:21:14:F1:E0:E9:5E:AF:B5:7E:D5:B5:89:78:41 Certificate issuer: /CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06 Certificate serial: 019B76EB454E3EEDFF447A650B8A07063B4D Authority key identifier: 27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/uDCd91-kIRTx4Oler7V-1bWJeEE.roa Signing time: Thu 01 Jan 2026 00:18:08 +0000 ROA not before: Thu 01 Jan 2026 00:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8758 IP address blocks: 31.207.52.0/22 maxlen: 22 31.207.60.0/22 maxlen: 22 83.98.204.0/22 maxlen: 22 94.46.188.0/22 maxlen: 22 146.185.64.0/19 maxlen: 24 185.63.64.0/22 maxlen: 24 185.104.84.0/22 maxlen: 24 2a04:f340::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.crl rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.mft rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:45:4e:3e:ed:ff:44:7a:65:0b:8a:07:06:3b:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06 Validity Not Before: Jan 1 00:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b8309df75fa42114f1e0e95eafb57ed5b5897841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:23:cd:19:85:2b:f8:09:c0:5d:74:02:77:a1: 0b:62:7a:11:cb:25:9d:14:58:50:93:09:ce:f8:26: 46:8a:77:54:0a:f9:29:2f:35:7a:e7:ab:42:2c:aa: d9:23:24:40:f8:d6:ff:ca:52:b9:d8:f8:10:5d:db: af:b9:17:54:83:cf:f9:a1:61:68:f0:0a:48:df:ae: fe:18:4c:eb:81:63:09:24:ad:e2:55:8c:b2:5c:ac: 00:b4:f6:e7:27:16:88:7f:78:c5:8f:00:17:26:02: e5:83:37:ac:8c:19:54:38:c8:e3:6b:26:8d:09:e4: 91:45:c1:dd:c2:60:e9:f1:fb:0b:45:e0:fa:83:65: a3:bb:1a:7e:b4:0b:a6:cd:f1:6f:da:37:f9:58:2d: 87:e2:12:8e:35:c2:3c:c2:bf:f9:2a:46:ee:88:51: 23:fd:d8:bf:65:d0:31:74:1d:a3:f2:f0:41:64:29: 78:14:37:27:08:fd:ce:ce:25:24:cf:ba:7f:f6:50: f8:b8:50:0a:91:34:ee:e3:de:10:ac:82:de:c0:5d: 07:61:b8:3e:80:79:f8:aa:8a:bb:db:e9:ad:94:e9: 89:2f:ac:a9:e3:ec:77:0e:36:8d:94:16:d9:ef:89: 60:a8:9d:ec:8e:7a:0f:3a:f6:6e:45:eb:33:2c:dd: e1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:30:9D:F7:5F:A4:21:14:F1:E0:E9:5E:AF:B5:7E:D5:B5:89:78:41 X509v3 Authority Key Identifier: keyid:27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/uDCd91-kIRTx4Oler7V-1bWJeEE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.207.52.0/22 31.207.60.0/22 83.98.204.0/22 94.46.188.0/22 146.185.64.0/19 185.63.64.0/22 185.104.84.0/22 IPv6: 2a04:f340::/29 Signature Algorithm: sha256WithRSAEncryption 30:84:31:1e:3f:97:0c:2c:6b:d7:25:2a:f7:73:38:5c:e8:1f: 97:49:2d:7e:9b:76:8a:3e:6f:4c:b0:96:5f:91:b0:1a:14:a8: 43:93:de:d3:3c:8d:cf:aa:f2:0d:c8:cb:bd:7e:60:9f:0f:c1: 2f:9a:4a:94:d2:1e:72:3f:78:bb:48:d4:9e:0d:82:d5:c2:da: d5:da:92:a9:06:a3:f9:a7:c8:85:ad:b4:42:e6:a1:da:22:24: a1:bb:b3:47:fc:c2:d0:e5:48:dc:24:6d:b6:98:81:1a:20:2e: 43:c2:af:1c:90:a4:ec:2a:5e:07:c5:b8:38:ca:77:e2:f2:3a: 10:6c:3c:4a:e7:69:61:a3:84:20:80:b9:b9:b4:19:cb:4d:d2: c7:a8:7a:6e:e2:56:5b:e5:98:bc:0b:72:a2:9e:e7:c9:c2:bc: f5:8a:76:65:f8:6f:1c:98:65:1b:57:16:2d:fd:26:66:19:a7: 27:c5:a5:3c:fb:62:21:1d:74:15:c8:7e:68:8c:df:3a:b8:ca: 27:82:ef:29:c8:f0:63:71:23:5e:3f:49:c7:de:60:2a:e3:9f: 53:2a:b3:c0:b8:49:d1:38:58:e5:44:43:cc:1d:08:7d:ef:ae: 99:99:26:d9:10:60:de:9c:97:49:15:6d:df:47:02:f7:7a:4b: 6c:58:f2:4b -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt260VOPu3/RHplC4oHBjtNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3ZTBmN2JiYmU0MDMxYTI0ZWYxYjlkYjE5NmFhYjA2NDJl ODRhMDYwHhcNMjYwMTAxMDAxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiODMwOWRmNzVmYTQyMTE0ZjFlMGU5NWVhZmI1N2VkNWI1ODk3ODQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvSPNGYUr+AnAXXQCd6ELYnoRyyWd FFhQkwnO+CZGindUCvkpLzV656tCLKrZIyRA+Nb/ylK52PgQXduvuRdUg8/5oWFo 8ApI367+GEzrgWMJJK3iVYyyXKwAtPbnJxaIf3jFjwAXJgLlgzesjBlUOMjjayaN CeSRRcHdwmDp8fsLReD6g2Wjuxp+tAumzfFv2jf5WC2H4hKONcI8wr/5KkbuiFEj /di/ZdAxdB2j8vBBZCl4FDcnCP3OziUkz7p/9lD4uFAKkTTu494QrILewF0HYbg+ gHn4qoq72+mtlOmJL6yp4+x3DjaNlBbZ74lgqJ3sjnoPOvZuReszLN3hBQIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFLgwnfdfpCEU8eDpXq+1ftW1iXhBMB8GA1UdIwQY MBaAFCfg97u+QDGiTvG52xlqqwZC6EoGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSi1EM3U3NUFNYUpPOGJuYkdXcXJCa0xvU2dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC84YWJhNzEtM2JhOC00YjhkLThlYjYt MzQ2YTNlYzE4NjhjLzEvdURDZDkxLWtJUlR4NE9sZXI3Vi0xYldKZUVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC84YWJhNzEtM2JhOC00YjhkLThlYjYtMzQ2YTNlYzE4Njhj LzEvSi1EM3U3NUFNYUpPOGJuYkdXcXJCa0xvU2dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQCH880AwQC H888AwQCU2LMAwQCXi68AwQFkrlAAwQCuT9AAwQCuWhUMA0EAgACMAcDBQMqBPNA MA0GCSqGSIb3DQEBCwUAA4IBAQAwhDEeP5cMLGvXJSr3czhc6B+XSS1+m3aKPm9M sJZfkbAaFKhDk97TPI3PqvINyMu9fmCfD8EvmkqU0h5yP3i7SNSeDYLVwtrV2pKp BqP5p8iFrbRC5qHaIiShu7NH/MLQ5UjcJG22mIEaIC5Dwq8ckKTsKl4Hxbg4ynfi 8joQbDxK52lho4QggLm5tBnLTdLHqHpu4lZb5Zi8C3KinufJwrz1inZl+G8cmGUb VxYt/SZmGacnxaU8+2IhHXQVyH5ojN86uMongu8pyPBjcSNeP0nH3mAq459TKrPA uEnROFjlREPMHQh9766ZmSbZEGDenJdJFW3fRwL3ektsWPJL -----END CERTIFICATE-----Generated at Mon Jan 26 14:53:23 2026 by rpki-client