This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/uQXqHDwD39ncADiPwLCFwCaOFoE.roa File: uQXqHDwD39ncADiPwLCFwCaOFoE.roa (raw, json) Hash identifier: 6dohaywgNPrlc422aBBS3H3acbsvFO8x4A1z0WMis3g= Subject key identifier: B9:05:EA:1C:3C:03:DF:D9:DC:00:38:8F:C0:B0:85:C0:26:8E:16:81 Certificate issuer: /CN=3ad734cf90c773428806b968209515b914831a9d Certificate serial: 019ADDD13B5CB9E4398D83F99E70E7E365CA Authority key identifier: 3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/uQXqHDwD39ncADiPwLCFwCaOFoE.roa Signing time: Tue 02 Dec 2025 06:47:48 +0000 ROA not before: Tue 02 Dec 2025 06:47:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 103.69.226.0/24 maxlen: 24 185.191.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/Otc0z5DHc0KIBrloIJUVuRSDGp0.crl rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/Otc0z5DHc0KIBrloIJUVuRSDGp0.mft rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:dd:d1:3b:5c:b9:e4:39:8d:83:f9:9e:70:e7:e3:65:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ad734cf90c773428806b968209515b914831a9d Validity Not Before: Dec 2 06:47:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=b905ea1c3c03dfd9dc00388fc0b085c0268e1681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6c:e0:a7:ba:ad:07:42:0d:f3:21:60:92:ce: bb:19:d7:55:25:65:8c:11:81:a2:01:e7:40:7c:fc: 59:b9:35:7c:74:70:63:2d:4a:0f:3b:cf:2c:72:dc: c5:6e:ef:8e:31:e6:d0:d6:fa:c8:ad:fe:50:92:c3: c6:54:b9:4d:ed:2b:a4:d0:90:fd:5b:6d:4a:57:68: 6b:91:fb:ec:3b:69:da:7f:db:ff:f7:d1:74:09:30: bd:ae:1b:88:6c:0d:63:36:dd:54:1e:b5:06:98:c4: 5b:65:22:53:e2:5b:a5:16:01:45:d4:de:14:fa:aa: 08:c1:4f:44:b0:1d:f4:aa:c3:b3:ea:e3:dd:ea:4d: dd:ec:6f:c4:68:30:eb:9f:38:5d:e8:f1:4c:91:0c: cb:78:cf:30:23:22:d3:cc:12:a2:98:43:c8:bd:37: dc:6b:fd:f7:2f:e6:4d:29:7d:11:f6:0d:bd:33:47: 4d:53:00:7e:8a:5d:44:8b:10:8c:ef:cc:1c:7a:74: a0:62:6f:61:9d:37:f2:fb:26:5a:99:d8:7a:04:fa: 73:e7:27:63:9e:41:75:ee:7f:9d:f3:2e:e2:9a:9b: 52:1b:76:1f:a2:99:6a:0f:87:94:dd:46:ca:f4:4e: 38:a2:3e:82:f0:4b:39:88:4f:af:4d:e1:01:d3:a5: 83:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:05:EA:1C:3C:03:DF:D9:DC:00:38:8F:C0:B0:85:C0:26:8E:16:81 X509v3 Authority Key Identifier: keyid:3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/uQXqHDwD39ncADiPwLCFwCaOFoE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/Otc0z5DHc0KIBrloIJUVuRSDGp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.69.226.0/24 185.191.21.0/24 Signature Algorithm: sha256WithRSAEncryption 69:13:01:d5:5d:3f:2c:64:21:86:69:c6:56:dc:75:e7:5a:1b: c1:b7:7b:e1:52:42:c7:2b:b1:69:cd:fb:0c:cf:47:6b:31:28: 95:5a:6e:53:d2:ab:ea:a7:bc:33:3f:9e:63:98:f8:ce:9c:fa: 7f:d6:fe:9f:fe:01:4d:72:06:40:96:b8:f7:72:58:80:be:1c: 9a:3d:67:95:68:f3:7b:04:09:ba:29:5e:95:e0:91:a0:3c:18: cd:2e:12:8b:1f:13:0d:0b:11:bc:33:02:d5:92:17:1e:57:22: 0c:40:c2:7f:dc:ec:65:03:26:f9:eb:46:ec:2a:f8:5d:d9:19: 70:b8:50:70:d5:4c:29:6c:e3:fc:19:77:19:87:64:90:68:ad: 3a:3c:bd:f7:9c:64:67:94:52:b6:f9:ba:4b:a1:59:5b:e3:40: 53:2a:bf:57:83:62:6f:4b:2b:ba:27:9d:b6:81:42:70:6e:b1: 69:2a:77:39:b3:1f:48:f2:ac:87:e4:6d:c2:e4:33:26:ca:9b: 2c:76:a7:a7:d6:32:05:08:bc:bf:0d:a1:e3:89:89:36:57:ed: 3a:e5:c3:a6:1f:31:aa:da:8e:aa:92:49:c9:4d:ef:73:b6:74: 86:09:8d:b6:d5:12:55:e7:4a:db:ab:6e:d4:2e:20:3f:20:2b: 6a:41:3a:fc -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZrd0TtcueQ5jYP5nnDn42XKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZDczNGNmOTBjNzczNDI4ODA2Yjk2ODIwOTUxNWI5MTQ4 MzFhOWQwHhcNMjUxMjAyMDY0NzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTA1ZWExYzNjMDNkZmQ5ZGMwMDM4OGZjMGIwODVjMDI2OGUxNjgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumzgp7qtB0IN8yFgks67GddVJWWM EYGiAedAfPxZuTV8dHBjLUoPO88sctzFbu+OMebQ1vrIrf5QksPGVLlN7Suk0JD9 W21KV2hrkfvsO2naf9v/99F0CTC9rhuIbA1jNt1UHrUGmMRbZSJT4lulFgFF1N4U +qoIwU9EsB30qsOz6uPd6k3d7G/EaDDrnzhd6PFMkQzLeM8wIyLTzBKimEPIvTfc a/33L+ZNKX0R9g29M0dNUwB+il1EixCM78wcenSgYm9hnTfy+yZamdh6BPpz5ydj nkF17n+d8y7imptSG3YfoplqD4eU3UbK9E44oj6C8Es5iE+vTeEB06WDvwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLkF6hw8A9/Z3AA4j8CwhcAmjhaBMB8GA1UdIwQY MBaAFDrXNM+Qx3NCiAa5aCCVFbkUgxqdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3RjMHo1REhjMEtJQnJsb0lKVVZ1UlNER3AwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9lYmYzODEtMDBjOC00ODBkLWE2NmMt NzZhMWQ0ZDgzMTk3LzEvdVFYcUhEd0QzOW5jQURpUHdMQ0Z3Q2FPRm9FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS9lYmYzODEtMDBjOC00ODBkLWE2NmMtNzZhMWQ0ZDgzMTk3 LzEvT3RjMHo1REhjMEtJQnJsb0lKVVZ1UlNER3AwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAZ0XiAwQA ub8VMA0GCSqGSIb3DQEBCwUAA4IBAQBpEwHVXT8sZCGGacZW3HXnWhvBt3vhUkLH K7FpzfsMz0drMSiVWm5T0qvqp7wzP55jmPjOnPp/1v6f/gFNcgZAlrj3cliAvhya PWeVaPN7BAm6KV6V4JGgPBjNLhKLHxMNCxG8MwLVkhceVyIMQMJ/3OxlAyb560bs Kvhd2RlwuFBw1UwpbOP8GXcZh2SQaK06PL33nGRnlFK2+bpLoVlb40BTKr9Xg2Jv Syu6J522gUJwbrFpKnc5sx9I8qyH5G3C5DMmypssdqen1jIFCLy/DaHjiYk2V+06 5cOmHzGq2o6qkknJTe9ztnSGCY221RJV50rbq27ULiA/ICtqQTr8 -----END CERTIFICATE-----Generated at Sat Dec 6 21:30:33 2025 by rpki-client