This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/UfNHSpJylWqCGj1xnLyUYs3XscQ.roa File: UfNHSpJylWqCGj1xnLyUYs3XscQ.roa (raw, json) Hash identifier: HqwmuScnIwcfsRW+0IJvtbF4YsRX/kFXsJcVfa0Phs8= Subject key identifier: 51:F3:47:4A:92:72:95:6A:82:1A:3D:71:9C:BC:94:62:CD:D7:B1:C4 Certificate issuer: /CN=37fb004e397ddf04e7d05f3643a036f21836ff10 Certificate serial: 019B79EC3D3E3704D01B5B5675C584B50AF8 Authority key identifier: 37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/UfNHSpJylWqCGj1xnLyUYs3XscQ.roa Signing time: Thu 01 Jan 2026 14:18:03 +0000 ROA not before: Thu 01 Jan 2026 14:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8648 IP address blocks: 185.102.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/N_sATjl93wTn0F82Q6A28hg2_xA.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/N_sATjl93wTn0F82Q6A28hg2_xA.mft rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:3d:3e:37:04:d0:1b:5b:56:75:c5:84:b5:0a:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37fb004e397ddf04e7d05f3643a036f21836ff10 Validity Not Before: Jan 1 14:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=51f3474a9272956a821a3d719cbc9462cdd7b1c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:79:74:24:ab:9b:6d:8f:7a:58:1c:e5:57:4c: b7:15:19:96:bf:c0:2c:fb:ed:d3:39:4c:bb:ef:8a: 7a:76:a2:02:35:07:d6:a5:c2:2f:2a:96:c9:01:31: 20:48:76:82:e3:61:c2:00:62:06:05:e6:05:cd:52: 4b:af:07:60:71:e8:ed:92:06:54:40:43:07:5a:eb: 5b:9d:bb:88:63:50:d1:c3:c6:a1:3b:d3:67:78:0e: 64:99:a4:d1:45:40:b3:df:13:fa:6b:d8:27:87:78: c5:14:cf:10:7f:01:48:74:75:0c:10:62:8f:1d:92: 38:ca:d1:1d:f2:12:10:94:2d:08:13:33:ce:61:1b: f9:9d:80:1b:a7:a6:f9:ce:06:62:9d:dd:6e:44:e0: 70:84:b0:dd:79:e5:a5:8c:ac:22:e2:2e:52:04:04: 28:65:02:b4:7e:d8:5f:1c:f1:55:b4:a0:70:ed:3b: 9b:81:8c:c5:75:18:e2:30:f9:0d:3a:11:56:4a:a4: f9:97:23:59:da:f2:21:19:92:12:ef:22:6e:17:ad: 2b:bd:bc:1c:4b:79:15:15:eb:30:0b:b6:5e:99:a6: fd:6d:cb:e0:a0:ab:5d:39:8f:d3:17:16:2e:83:78: 45:ae:69:d5:0a:2d:8c:7e:c8:2e:40:ea:72:75:40: 50:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:F3:47:4A:92:72:95:6A:82:1A:3D:71:9C:BC:94:62:CD:D7:B1:C4 X509v3 Authority Key Identifier: keyid:37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/UfNHSpJylWqCGj1xnLyUYs3XscQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/N_sATjl93wTn0F82Q6A28hg2_xA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.102.20.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:17:99:17:3b:ed:e8:78:7f:78:41:23:a8:63:46:5e:f3:02: c7:f3:41:6c:3e:71:59:cf:ff:54:83:10:8a:96:eb:85:fc:87: 1b:19:b4:bf:30:c4:35:66:1f:59:7c:32:89:52:13:0c:47:a8: ec:c8:89:4c:69:d7:54:f8:21:75:74:3b:66:85:3f:5b:4c:3e: d7:b8:a4:92:79:6a:de:11:d3:15:fe:2e:c1:25:f6:2c:46:87: 3a:4f:b9:dd:b7:50:2d:80:3b:2a:b3:aa:d0:0c:bc:82:f2:e9: 7b:1b:10:a2:04:7a:eb:1f:72:26:80:7f:d3:51:fa:79:46:46: 67:c6:7c:74:86:7a:0e:d4:56:4b:0e:f6:ee:8a:d4:44:fa:4a: 02:94:83:f6:b8:fd:e2:d6:fd:ad:93:3b:1a:40:45:4c:55:f2: b4:2d:f9:41:98:9e:50:f0:db:59:25:3b:cd:cc:b5:4d:be:92: c7:23:57:90:ef:91:44:52:dd:6a:cc:f9:15:03:d6:56:7b:48: 0f:fe:ba:c2:b9:a5:03:f7:71:d3:34:33:90:97:2a:88:fe:7a: b0:74:54:4f:bb:bf:41:94:dc:79:c0:2a:00:21:3a:99:84:f8: d0:98:6c:89:b0:8b:81:d5:d8:99:ea:ba:6d:ce:d9:6d:7f:5c: 27:4a:de:43 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57D0+NwTQG1tWdcWEtQr4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3ZmIwMDRlMzk3ZGRmMDRlN2QwNWYzNjQzYTAzNmYyMTgz NmZmMTAwHhcNMjYwMTAxMTQxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MWYzNDc0YTkyNzI5NTZhODIxYTNkNzE5Y2JjOTQ2MmNkZDdiMWM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuXl0JKubbY96WBzlV0y3FRmWv8As ++3TOUy774p6dqICNQfWpcIvKpbJATEgSHaC42HCAGIGBeYFzVJLrwdgcejtkgZU QEMHWutbnbuIY1DRw8ahO9NneA5kmaTRRUCz3xP6a9gnh3jFFM8QfwFIdHUMEGKP HZI4ytEd8hIQlC0IEzPOYRv5nYAbp6b5zgZind1uROBwhLDdeeWljKwi4i5SBAQo ZQK0fthfHPFVtKBw7TubgYzFdRjiMPkNOhFWSqT5lyNZ2vIhGZIS7yJuF60rvbwc S3kVFeswC7Zemab9bcvgoKtdOY/TFxYug3hFrmnVCi2MfsguQOpydUBQjQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFHzR0qScpVqgho9cZy8lGLN17HEMB8GA1UdIwQY MBaAFDf7AE45fd8E59BfNkOgNvIYNv8QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTl9zQVRqbDkzd1RuMEY4MlE2QTI4aGcyX3hBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS83NDIyOTktZjM0My00MzIxLWIzNTEt YjUzYjY0Y2YwZDk1LzEvVWZOSFNwSnlsV3FDR2oxeG5MeVVZczNYc2NRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS83NDIyOTktZjM0My00MzIxLWIzNTEtYjUzYjY0Y2YwZDk1 LzEvTl9zQVRqbDkzd1RuMEY4MlE2QTI4aGcyX3hBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuWYUMA0G CSqGSIb3DQEBCwUAA4IBAQBPF5kXO+3oeH94QSOoY0Ze8wLH80FsPnFZz/9UgxCK luuF/IcbGbS/MMQ1Zh9ZfDKJUhMMR6jsyIlMaddU+CF1dDtmhT9bTD7XuKSSeWre EdMV/i7BJfYsRoc6T7ndt1AtgDsqs6rQDLyC8ul7GxCiBHrrH3ImgH/TUfp5RkZn xnx0hnoO1FZLDvbuitRE+koClIP2uP3i1v2tkzsaQEVMVfK0LflBmJ5Q8NtZJTvN zLVNvpLHI1eQ75FEUt1qzPkVA9ZWe0gP/rrCuaUD93HTNDOQlyqI/nqwdFRPu79B lNx5wCoAITqZhPjQmGyJsIuB1diZ6rptztltf1wnSt5D -----END CERTIFICATE-----Generated at Sun Jan 25 12:46:35 2026 by rpki-client