This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7d11e2-5274-447e-9fe6-88aa6fd0aa8e/1/uAlfyOgC6lACz_fQjNh5oktGozY.roa File: uAlfyOgC6lACz_fQjNh5oktGozY.roa (raw, json) Hash identifier: AyHxXbtccjqD9qYxj8NhKDHPVrcTXTiY5Ov+6QmBFbA= Subject key identifier: B8:09:5F:C8:E8:02:EA:50:02:CF:F7:D0:8C:D8:79:A2:4B:46:A3:36 Certificate issuer: /CN=6ab7b9cee004300eafe09bf12fcb6da1dd30a4d7 Certificate serial: 019B7BA50E0BA5E1C11D025063F2144801F9 Authority key identifier: 6A:B7:B9:CE:E0:04:30:0E:AF:E0:9B:F1:2F:CB:6D:A1:DD:30:A4:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/are5zuAEMA6v4JvxL8ttod0wpNc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7d11e2-5274-447e-9fe6-88aa6fd0aa8e/1/uAlfyOgC6lACz_fQjNh5oktGozY.roa Signing time: Thu 01 Jan 2026 22:19:33 +0000 ROA not before: Thu 01 Jan 2026 22:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203489 IP address blocks: 31.24.136.0/21 maxlen: 21 69.172.112.0/20 maxlen: 20 82.145.160.0/19 maxlen: 19 178.20.72.0/21 maxlen: 21 185.3.36.0/22 maxlen: 22 213.137.32.0/19 maxlen: 21 2a00:fa80::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7d11e2-5274-447e-9fe6-88aa6fd0aa8e/1/are5zuAEMA6v4JvxL8ttod0wpNc.crl rsync://rpki.ripe.net/repository/DEFAULT/29/7d11e2-5274-447e-9fe6-88aa6fd0aa8e/1/are5zuAEMA6v4JvxL8ttod0wpNc.mft rsync://rpki.ripe.net/repository/DEFAULT/are5zuAEMA6v4JvxL8ttod0wpNc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:0e:0b:a5:e1:c1:1d:02:50:63:f2:14:48:01:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ab7b9cee004300eafe09bf12fcb6da1dd30a4d7 Validity Not Before: Jan 1 22:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b8095fc8e802ea5002cff7d08cd879a24b46a336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e3:a2:0a:41:1c:52:50:34:dc:d2:39:b5:43: 1d:b8:4a:61:84:45:66:03:64:b7:be:f4:f0:e0:b4: fc:0c:30:dd:58:60:4c:57:fd:d4:00:33:48:d0:12: 94:a3:d9:ca:c8:97:7b:49:88:1b:58:63:60:bc:11: b4:fe:8b:19:fa:a2:99:06:fb:a7:27:03:16:1f:b9: 1b:ad:10:09:2b:84:0e:fc:2e:6d:a9:c3:f9:6f:1e: f7:50:71:c9:f8:2e:15:5b:7b:7e:1d:eb:7a:42:b1: e3:62:ad:56:f5:84:53:4b:92:90:22:e2:ac:0a:30: a9:cb:ba:fa:3f:e9:7f:74:d9:a2:ce:ad:2c:51:3e: 91:f4:4d:e1:a3:94:98:4c:20:d8:36:15:b6:8e:b8: e9:82:18:7d:90:6a:ec:65:e2:f6:18:7c:bc:e2:0e: 61:f9:e9:3f:59:67:7b:4d:3d:bd:78:a4:70:fa:aa: 44:a7:81:b1:11:98:cc:54:ec:94:90:32:a5:45:6a: 48:71:40:c3:6f:6f:d4:5a:4d:ba:24:2b:35:98:01: 6b:8d:d2:96:f8:f7:ca:b9:5f:09:c7:62:8d:ae:26: 77:cc:e3:61:49:b7:3a:21:c1:3b:3c:6e:0d:62:c7: 2b:28:dc:ff:a9:9f:48:34:20:7b:6d:cf:40:dc:97: 9d:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:09:5F:C8:E8:02:EA:50:02:CF:F7:D0:8C:D8:79:A2:4B:46:A3:36 X509v3 Authority Key Identifier: keyid:6A:B7:B9:CE:E0:04:30:0E:AF:E0:9B:F1:2F:CB:6D:A1:DD:30:A4:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/are5zuAEMA6v4JvxL8ttod0wpNc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7d11e2-5274-447e-9fe6-88aa6fd0aa8e/1/uAlfyOgC6lACz_fQjNh5oktGozY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7d11e2-5274-447e-9fe6-88aa6fd0aa8e/1/are5zuAEMA6v4JvxL8ttod0wpNc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.24.136.0/21 69.172.112.0/20 82.145.160.0/19 178.20.72.0/21 185.3.36.0/22 213.137.32.0/19 IPv6: 2a00:fa80::/29 Signature Algorithm: sha256WithRSAEncryption 54:e0:7e:26:dc:41:7d:b2:50:1f:d0:b1:cf:72:b8:7a:df:34: a1:04:5a:87:25:3d:cc:26:bc:d1:08:66:22:93:23:b5:5f:f1: cd:46:28:52:a5:b8:0d:55:6e:20:b3:62:68:db:2c:12:25:29: 2e:16:8e:01:0c:3b:2b:ad:48:a3:a5:22:d0:e8:0e:f4:de:4e: c5:99:08:d7:95:7f:97:72:19:3f:be:a3:b4:dd:f3:a4:e3:c9: d8:50:66:c0:01:2e:1b:96:c6:fd:8c:b4:b7:ef:d9:71:b0:eb: 5b:d9:b0:1f:2b:23:39:58:b7:34:b4:c8:1b:ff:b7:65:cb:0c: f1:fa:9f:ba:3a:3b:0a:67:26:d3:59:98:9a:f2:56:1e:a0:47: 39:a4:62:c3:0e:8b:dc:b5:b7:87:17:80:1d:e3:b4:8e:52:0d: 48:0d:1a:96:c1:eb:59:1d:74:cf:e3:0c:d8:c7:e7:fd:20:9f: 2c:33:e8:2f:10:f2:54:c3:8c:87:32:3c:57:c9:83:df:f1:a9: 65:65:18:49:f3:ba:5a:d6:a0:2d:b0:03:88:b5:ea:60:6e:52: ae:84:8b:ec:66:7d:ba:6d:18:2c:d3:aa:06:2a:37:25:1e:8f: 9b:35:99:ce:c2:1d:7f:4b:4c:62:da:1c:8e:50:e1:df:88:35: 51:db:07:75 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt7pQ4LpeHBHQJQY/IUSAH5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhYjdiOWNlZTAwNDMwMGVhZmUwOWJmMTJmY2I2ZGExZGQz MGE0ZDcwHhcNMjYwMTAxMjIxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiODA5NWZjOGU4MDJlYTUwMDJjZmY3ZDA4Y2Q4NzlhMjRiNDZhMzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuOOiCkEcUlA03NI5tUMduEphhEVm A2S3vvTw4LT8DDDdWGBMV/3UADNI0BKUo9nKyJd7SYgbWGNgvBG0/osZ+qKZBvun JwMWH7kbrRAJK4QO/C5tqcP5bx73UHHJ+C4VW3t+Het6QrHjYq1W9YRTS5KQIuKs CjCpy7r6P+l/dNmizq0sUT6R9E3ho5SYTCDYNhW2jrjpghh9kGrsZeL2GHy84g5h +ek/WWd7TT29eKRw+qpEp4GxEZjMVOyUkDKlRWpIcUDDb2/UWk26JCs1mAFrjdKW +PfKuV8Jx2KNriZ3zONhSbc6IcE7PG4NYscrKNz/qZ9INCB7bc9A3JedewIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFLgJX8joAupQAs/30IzYeaJLRqM2MB8GA1UdIwQY MBaAFGq3uc7gBDAOr+Cb8S/LbaHdMKTXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXJlNXp1QUVNQTZ2NEp2eEw4dHRvZDB3cE5jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS83ZDExZTItNTI3NC00NDdlLTlmZTYt ODhhYTZmZDBhYThlLzEvdUFsZnlPZ0M2bEFDel9mUWpOaDVva3RHb3pZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS83ZDExZTItNTI3NC00NDdlLTlmZTYtODhhYTZmZDBhYThl LzEvYXJlNXp1QUVNQTZ2NEp2eEw4dHRvZDB3cE5jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQDHxiIAwQE RaxwAwQFUpGgAwQDshRIAwQCuQMkAwQF1YkgMA0EAgACMAcDBQMqAPqAMA0GCSqG SIb3DQEBCwUAA4IBAQBU4H4m3EF9slAf0LHPcrh63zShBFqHJT3MJrzRCGYikyO1 X/HNRihSpbgNVW4gs2Jo2ywSJSkuFo4BDDsrrUijpSLQ6A703k7FmQjXlX+Xchk/ vqO03fOk48nYUGbAAS4blsb9jLS379lxsOtb2bAfKyM5WLc0tMgb/7dlywzx+p+6 OjsKZybTWZia8lYeoEc5pGLDDovctbeHF4Ad47SOUg1IDRqWwetZHXTP4wzYx+f9 IJ8sM+gvEPJUw4yHMjxXyYPf8allZRhJ87pa1qAtsAOItepgblKuhIvsZn26bRgs 06oGKjclHo+bNZnOwh1/S0xi2hyOUOHfiDVR2wd1 -----END CERTIFICATE-----Generated at Mon Jan 26 14:09:36 2026 by rpki-client