This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/0175e6-427b-4ef9-8eb1-8232e350d458/1/UeUxs8O7BQG0PZAERCcpvW9oGJU.roa File: UeUxs8O7BQG0PZAERCcpvW9oGJU.roa (raw, json) Hash identifier: RA/5tda8Js/MvHGINkhN95bDFA6hSRU7RaQvgqea3Ts= Subject key identifier: 51:E5:31:B3:C3:BB:05:01:B4:3D:90:04:44:27:29:BD:6F:68:18:95 Certificate issuer: /CN=23662c9a980ad7584650abaa3545b9ea91d3e35e Certificate serial: 019B78A2295C772765916CEA9AFA2FC6A46F Authority key identifier: 23:66:2C:9A:98:0A:D7:58:46:50:AB:AA:35:45:B9:EA:91:D3:E3:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I2YsmpgK11hGUKuqNUW56pHT414.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/0175e6-427b-4ef9-8eb1-8232e350d458/1/UeUxs8O7BQG0PZAERCcpvW9oGJU.roa Signing time: Thu 01 Jan 2026 08:17:31 +0000 ROA not before: Thu 01 Jan 2026 08:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213097 IP address blocks: 91.240.92.0/24 maxlen: 24 2a0a:d881::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/0175e6-427b-4ef9-8eb1-8232e350d458/1/I2YsmpgK11hGUKuqNUW56pHT414.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/0175e6-427b-4ef9-8eb1-8232e350d458/1/I2YsmpgK11hGUKuqNUW56pHT414.mft rsync://rpki.ripe.net/repository/DEFAULT/I2YsmpgK11hGUKuqNUW56pHT414.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:29:5c:77:27:65:91:6c:ea:9a:fa:2f:c6:a4:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23662c9a980ad7584650abaa3545b9ea91d3e35e Validity Not Before: Jan 1 08:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=51e531b3c3bb0501b43d9004442729bd6f681895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:04:3f:94:3e:3a:58:3c:30:1a:e7:90:86:42: cd:0f:c7:97:8e:f8:88:e4:82:70:65:97:68:1c:88: 95:5b:62:63:83:84:9f:5e:d2:d8:78:d2:37:70:75: 1e:33:b4:08:56:06:76:bc:cc:62:75:a0:b7:72:d9: e0:90:60:46:0a:0e:a9:0f:21:d6:90:57:25:1f:af: 2a:c2:de:d5:12:a3:2e:69:72:75:bf:91:49:96:7b: 96:1b:5b:32:8c:1f:0b:ca:38:29:05:95:91:4e:ae: bb:b8:55:dd:03:09:c9:ea:53:11:de:dc:8e:97:f6: 4e:bb:f8:2e:b2:1c:7c:87:e3:b1:ed:e7:61:f5:46: 46:9c:17:ec:fc:bd:32:a8:25:7f:be:ea:18:2c:bf: 1c:52:b7:21:1a:fe:27:6e:40:fd:b7:cc:89:a9:60: d2:b3:58:4e:4d:fa:47:0d:80:96:24:16:a9:64:1c: da:d0:16:cb:4c:5b:73:b1:d7:e7:f1:77:4c:c4:de: 4e:36:45:bc:b5:4d:e8:eb:bb:83:4c:7e:6d:25:d4: 11:f3:bf:30:31:a2:cb:00:51:08:ce:4c:8e:bb:8e: e9:b6:a5:20:c7:40:13:14:46:2a:eb:0a:ca:5d:1c: 2a:92:31:39:f6:0b:1e:68:cc:56:72:97:a5:3f:99: 5e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:E5:31:B3:C3:BB:05:01:B4:3D:90:04:44:27:29:BD:6F:68:18:95 X509v3 Authority Key Identifier: keyid:23:66:2C:9A:98:0A:D7:58:46:50:AB:AA:35:45:B9:EA:91:D3:E3:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I2YsmpgK11hGUKuqNUW56pHT414.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/0175e6-427b-4ef9-8eb1-8232e350d458/1/UeUxs8O7BQG0PZAERCcpvW9oGJU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/0175e6-427b-4ef9-8eb1-8232e350d458/1/I2YsmpgK11hGUKuqNUW56pHT414.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.240.92.0/24 IPv6: 2a0a:d881::/48 Signature Algorithm: sha256WithRSAEncryption 08:25:a9:1e:29:72:77:8f:4a:e7:6a:3a:5e:1b:09:b7:f3:7a: 5f:40:b6:10:65:f5:7a:23:1b:52:da:44:ed:c9:d2:a8:e9:94: 21:d8:02:b7:99:f6:0a:75:c7:43:a3:bc:ea:8e:83:1f:66:85: 9a:32:d8:75:40:7a:1b:f2:9e:0e:7b:df:d2:ec:d7:d7:e0:cf: 4d:c8:e2:bf:78:86:4f:5a:d5:07:dd:44:75:e6:7b:04:0a:4b: bd:6f:8e:8b:27:4a:3d:fb:da:61:7d:7d:e3:12:6a:36:f7:f4: 69:69:d3:db:60:a4:4a:26:8e:72:5d:0f:71:4f:d4:51:75:fb: af:37:68:3a:48:bd:db:6e:2b:b5:25:7b:38:06:ca:fb:75:39: 5c:2c:04:1a:3d:41:7a:f0:10:a3:5e:50:be:29:59:59:8b:c9: 41:96:d2:fa:74:0c:0c:d9:5b:87:41:6b:9b:a5:65:b8:01:86: 40:b6:82:1c:27:06:d8:ff:59:9b:b8:b0:ab:b0:67:d3:10:35: 97:8c:e5:95:c6:71:d3:29:8c:43:9b:e3:47:d3:dc:81:3d:69: ea:6a:90:94:8b:d4:29:7e:a3:0e:f7:b7:85:70:55:b2:bb:ad: a6:f3:10:a0:b3:c5:ab:57:64:89:82:51:78:f7:db:f9:39:22: 80:bb:3f:3b -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt4oilcdydlkWzqmvovxqRvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzNjYyYzlhOTgwYWQ3NTg0NjUwYWJhYTM1NDViOWVhOTFk M2UzNWUwHhcNMjYwMTAxMDgxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MWU1MzFiM2MzYmIwNTAxYjQzZDkwMDQ0NDI3MjliZDZmNjgxODk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQQ/lD46WDwwGueQhkLND8eXjviI 5IJwZZdoHIiVW2Jjg4SfXtLYeNI3cHUeM7QIVgZ2vMxidaC3ctngkGBGCg6pDyHW kFclH68qwt7VEqMuaXJ1v5FJlnuWG1syjB8LyjgpBZWRTq67uFXdAwnJ6lMR3tyO l/ZOu/gushx8h+Ox7edh9UZGnBfs/L0yqCV/vuoYLL8cUrchGv4nbkD9t8yJqWDS s1hOTfpHDYCWJBapZBza0BbLTFtzsdfn8XdMxN5ONkW8tU3o67uDTH5tJdQR878w MaLLAFEIzkyOu47ptqUgx0ATFEYq6wrKXRwqkjE59gseaMxWcpelP5leBQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFFHlMbPDuwUBtD2QBEQnKb1vaBiVMB8GA1UdIwQY MBaAFCNmLJqYCtdYRlCrqjVFueqR0+NeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTJZc21wZ0sxMWhHVUt1cU5VVzU2cEhUNDE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8wMTc1ZTYtNDI3Yi00ZWY5LThlYjEt ODIzMmUzNTBkNDU4LzEvVWVVeHM4TzdCUUcwUFpBRVJDY3B2VzlvR0pVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8wMTc1ZTYtNDI3Yi00ZWY5LThlYjEtODIzMmUzNTBkNDU4 LzEvSTJZc21wZ0sxMWhHVUt1cU5VVzU2cEhUNDE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW/BcMA8E AgACMAkDBwAqCtiBAAAwDQYJKoZIhvcNAQELBQADggEBAAglqR4pcnePSudqOl4b Cbfzel9AthBl9XojG1LaRO3J0qjplCHYAreZ9gp1x0OjvOqOgx9mhZoy2HVAehvy ng5739Ls19fgz03I4r94hk9a1QfdRHXmewQKS71vjosnSj372mF9feMSajb39Glp 09tgpEomjnJdD3FP1FF1+683aDpIvdtuK7UlezgGyvt1OVwsBBo9QXrwEKNeUL4p WVmLyUGW0vp0DAzZW4dBa5ulZbgBhkC2ghwnBtj/WZu4sKuwZ9MQNZeM5ZXGcdMp jEOb40fT3IE9aepqkJSL1Cl+ow73t4VwVbK7rabzEKCzxatXZImCUXj32/k5IoC7 Pzs= -----END CERTIFICATE-----Generated at Sun Jan 25 21:24:34 2026 by rpki-client