This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/UYXgcCIK5zcKT9TlB3oRxLcPw4c.roa File: UYXgcCIK5zcKT9TlB3oRxLcPw4c.roa (raw, json) Hash identifier: ZKu5onIAs6YBld/h2tSRXhaOsFitxQIlAPhxGco8hos= Subject key identifier: 51:85:E0:70:22:0A:E7:37:0A:4F:D4:E5:07:7A:11:C4:B7:0F:C3:87 Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026 Certificate serial: 019B7C11F5F17440593FC701CBD1FB9E2E84 Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/UYXgcCIK5zcKT9TlB3oRxLcPw4c.roa Signing time: Fri 02 Jan 2026 00:18:30 +0000 ROA not before: Fri 02 Jan 2026 00:18:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25938 IP address blocks: 213.86.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.mft rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:f5:f1:74:40:59:3f:c7:01:cb:d1:fb:9e:2e:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026 Validity Not Before: Jan 2 00:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5185e070220ae7370a4fd4e5077a11c4b70fc387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ce:27:16:99:7d:bc:45:85:05:5a:07:80:da: 48:ef:10:d6:8c:55:77:16:6a:1c:f1:ed:43:08:a0: 70:5b:48:4d:9f:d3:41:e2:1a:ab:fe:b6:86:f8:f1: 4d:e8:e4:fa:cd:d5:2b:b6:7a:f8:ca:50:11:92:0a: 2a:11:82:76:0e:5a:8d:04:05:12:9b:9b:bc:87:c9: 84:cf:72:ad:54:41:67:0c:f8:66:98:dc:da:cd:86: 8b:0f:77:17:cb:3f:02:86:82:12:fb:cb:5d:2c:d9: 30:0b:3a:5b:d0:fa:c3:4e:19:c3:d7:81:09:c6:83: 17:9a:c6:93:21:85:c8:d9:83:7c:c9:96:14:c0:76: 2a:24:63:89:8d:b6:5e:a7:bf:3d:a4:79:c1:00:9d: b6:82:17:75:50:1b:09:dc:22:b8:5b:6e:34:6b:b8: b9:66:37:e1:b2:0a:5d:4a:65:56:d0:7a:88:36:81: 91:32:b6:0c:ab:98:1a:5f:2f:96:7e:e0:7b:92:19: bc:db:a4:d1:9f:e1:13:a7:cc:eb:66:56:6e:77:64: 4a:b0:a1:24:27:3f:d0:0d:13:be:45:ae:c4:40:07: 8a:c1:c5:9d:ea:26:7c:74:c8:8d:03:69:4c:98:f4: 09:5c:55:ff:91:d2:e3:58:d3:6d:c5:34:f4:48:a2: 61:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:85:E0:70:22:0A:E7:37:0A:4F:D4:E5:07:7A:11:C4:B7:0F:C3:87 X509v3 Authority Key Identifier: keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/UYXgcCIK5zcKT9TlB3oRxLcPw4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.86.85.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:c3:d5:d0:9f:a7:fb:9d:68:13:90:ef:a1:49:e5:f3:58:08: 19:52:7b:ed:cb:bb:e2:9d:65:84:48:49:5b:a1:ee:69:05:7a: 9b:6a:5b:7d:03:91:31:cb:68:b0:75:4b:da:a1:1c:e0:25:26: b2:fb:62:fd:71:6d:54:89:b3:70:72:fa:2f:d9:be:0d:39:94: 92:b6:17:57:5a:a1:f0:5b:89:49:81:a8:18:b9:be:72:fa:d8: 3a:f4:3b:96:89:66:6b:01:78:77:16:26:92:ca:01:f6:71:ea: c9:e8:31:c9:7e:0e:32:be:2d:0d:9b:86:d9:48:8c:fe:34:6c: 53:b8:51:69:17:3d:6b:45:6f:fe:15:5c:56:ca:38:da:e8:42: 95:fd:ab:98:72:c4:2c:ff:ee:6f:49:cd:4b:47:5d:8d:11:e9: 4e:52:11:e0:1e:23:dd:da:ed:37:f9:c8:81:e3:7a:62:74:de: 97:98:db:2d:3c:bb:5a:4a:4d:85:b9:9d:9d:ca:10:7b:60:27: 63:03:4c:11:e7:6f:05:dd:70:de:39:8c:e1:68:96:c4:d0:fb: db:3e:c2:a3:4d:ff:f3:a7:e1:5d:33:84:8c:4f:66:39:4f:f2: 82:b0:ac:f4:1d:42:5b:f3:f2:54:b6:a3:0d:ac:9d:38:f8:36: c3:8e:ac:21 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EfXxdEBZP8cBy9H7ni6EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjZjhmZmMwODg1OTFlNGYyNDNiYWFmYTIxYjQyOThiZmIz NjYwMjYwHhcNMjYwMTAyMDAxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MTg1ZTA3MDIyMGFlNzM3MGE0ZmQ0ZTUwNzdhMTFjNGI3MGZjMzg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAys4nFpl9vEWFBVoHgNpI7xDWjFV3 Fmoc8e1DCKBwW0hNn9NB4hqr/raG+PFN6OT6zdUrtnr4ylARkgoqEYJ2DlqNBAUS m5u8h8mEz3KtVEFnDPhmmNzazYaLD3cXyz8ChoIS+8tdLNkwCzpb0PrDThnD14EJ xoMXmsaTIYXI2YN8yZYUwHYqJGOJjbZep789pHnBAJ22ghd1UBsJ3CK4W240a7i5 ZjfhsgpdSmVW0HqINoGRMrYMq5gaXy+WfuB7khm826TRn+ETp8zrZlZud2RKsKEk Jz/QDRO+Ra7EQAeKwcWd6iZ8dMiNA2lMmPQJXFX/kdLjWNNtxTT0SKJhXQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFGF4HAiCuc3Ck/U5Qd6EcS3D8OHMB8GA1UdIwQY MBaAFEz4/8CIWR5PJDuq+iG0KYv7NmAmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMt YjNiNzhiMGI2NmVhLzEvVVlYZ2NDSUs1emNLVDlUbEIzb1J4TGNQdzRjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMtYjNiNzhiMGI2NmVh LzEvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1VZVMA0G CSqGSIb3DQEBCwUAA4IBAQBLw9XQn6f7nWgTkO+hSeXzWAgZUnvty7vinWWESElb oe5pBXqbalt9A5Exy2iwdUvaoRzgJSay+2L9cW1UibNwcvov2b4NOZSSthdXWqHw W4lJgagYub5y+tg69DuWiWZrAXh3FiaSygH2cerJ6DHJfg4yvi0Nm4bZSIz+NGxT uFFpFz1rRW/+FVxWyjja6EKV/auYcsQs/+5vSc1LR12NEelOUhHgHiPd2u03+ciB 43pidN6XmNstPLtaSk2FuZ2dyhB7YCdjA0wR528F3XDeOYzhaJbE0PvbPsKjTf/z p+FdM4SMT2Y5T/KCsKz0HUJb8/JUtqMNrJ04+DbDjqwh -----END CERTIFICATE-----Generated at Sun Jan 25 19:36:24 2026 by rpki-client