This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/uKdnnQsot7mlRO752cNll6GISRQ.roa File: uKdnnQsot7mlRO752cNll6GISRQ.roa (raw, json) Hash identifier: VbgboVS4OB0UdrRSp+d5djlaTMUsF7uI2qR/6y5b4JE= Subject key identifier: B8:A7:67:9D:0B:28:B7:B9:A5:44:EE:F9:D9:C3:65:97:A1:88:49:14 Certificate issuer: /CN=611b9fb45639e7492f2b3631f640f6ab9afb6290 Certificate serial: 019B7D5D313AB69640822ACDAC1BD5853864 Authority key identifier: 61:1B:9F:B4:56:39:E7:49:2F:2B:36:31:F6:40:F6:AB:9A:FB:62:90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/uKdnnQsot7mlRO752cNll6GISRQ.roa Signing time: Fri 02 Jan 2026 06:20:18 +0000 ROA not before: Fri 02 Jan 2026 06:20:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215138 IP address blocks: 193.227.126.0/24 maxlen: 24 2001:678:454::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:31:3a:b6:96:40:82:2a:cd:ac:1b:d5:85:38:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=611b9fb45639e7492f2b3631f640f6ab9afb6290 Validity Not Before: Jan 2 06:20:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b8a7679d0b28b7b9a544eef9d9c36597a1884914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:70:a5:14:0f:96:bb:d3:c1:7a:49:44:ac:17: 72:b7:38:6a:1e:3a:cc:98:69:52:18:f6:7b:9d:fd: 28:64:8c:50:04:b7:69:04:cc:25:9e:61:57:3f:dc: bc:b1:25:03:b3:6b:49:cf:6c:73:1b:70:b0:b8:e1: 81:4b:75:8e:22:b3:ce:b4:7c:81:48:38:44:70:c7: 36:44:db:7b:ad:f3:b4:46:48:79:c9:e4:53:1e:8d: 73:6f:63:39:e3:8d:67:99:9c:8b:cd:46:d2:c9:21: b0:da:91:eb:33:de:7d:c0:69:ce:da:76:63:12:23: be:ae:d1:b1:f5:ee:72:73:a4:66:55:76:39:cd:39: 6e:2f:e6:82:f0:ed:43:b2:67:5c:e4:8d:bb:75:14: 4b:18:c1:82:11:f7:24:82:92:5e:e1:57:1c:1a:9e: 05:b7:4d:c5:1a:aa:45:26:dd:27:fd:fd:3b:08:9d: ad:72:f4:d9:72:82:25:95:16:20:35:73:80:be:45: 9a:5e:62:85:4a:b0:d9:f1:bd:f8:63:5e:5c:10:5e: 86:07:dc:98:26:09:6b:f0:b7:23:c3:8d:09:5e:01: 9d:64:86:1d:e9:1b:a8:f1:8c:67:74:d4:a4:1b:e2: 95:d0:fc:ae:d5:70:8f:ed:f7:11:90:88:3e:54:d1: dd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A7:67:9D:0B:28:B7:B9:A5:44:EE:F9:D9:C3:65:97:A1:88:49:14 X509v3 Authority Key Identifier: keyid:61:1B:9F:B4:56:39:E7:49:2F:2B:36:31:F6:40:F6:AB:9A:FB:62:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/uKdnnQsot7mlRO752cNll6GISRQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.227.126.0/24 IPv6: 2001:678:454::/48 Signature Algorithm: sha256WithRSAEncryption b3:51:5b:f5:a9:5c:c2:1d:50:dc:b2:c0:52:fb:ab:35:d1:52: ee:60:85:bd:c8:4d:8a:2c:42:53:55:8d:3c:0d:80:4d:a0:b7: 19:eb:dd:bf:75:c7:f2:30:30:e2:13:ee:6d:10:15:49:b0:62: 8d:f4:dd:8d:01:59:d1:7e:0c:39:b0:b9:ae:47:6a:f6:19:a7: 7d:5f:f6:e8:d0:08:94:f5:46:ac:eb:c5:4b:7f:01:f8:40:53: 87:12:97:d1:f4:9c:db:da:14:59:02:d6:33:0a:af:ab:14:d7: 7f:71:61:67:dd:a3:7e:e6:61:37:9a:1e:3f:72:45:45:f9:6b: 45:00:9f:41:5f:bf:dc:e7:00:d1:2e:ee:64:67:2a:06:fc:e9: 81:a5:ac:08:54:dc:71:49:e8:66:fc:15:c2:f5:6f:fd:f2:61: bf:fe:f6:42:c5:8d:4b:f5:dc:43:a4:a7:f0:9a:97:65:a7:f6: 7d:0f:e7:c2:39:8b:45:a7:93:45:f4:6b:b5:48:bf:3b:a3:04: 65:4c:48:7d:87:6e:f5:86:c9:50:c2:c2:02:cf:3f:29:b1:1b: 47:dd:31:78:57:32:38:cb:d8:d7:be:c2:e0:50:ff:66:c2:e0: d7:68:d6:48:dc:b9:c5:5a:a0:93:d0:43:e4:ad:12:b0:3f:3b: ab:98:92:d3 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt9XTE6tpZAgirNrBvVhThkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxMWI5ZmI0NTYzOWU3NDkyZjJiMzYzMWY2NDBmNmFiOWFm YjYyOTAwHhcNMjYwMTAyMDYyMDE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOGE3Njc5ZDBiMjhiN2I5YTU0NGVlZjlkOWMzNjU5N2ExODg0OTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAunClFA+Wu9PBeklErBdytzhqHjrM mGlSGPZ7nf0oZIxQBLdpBMwlnmFXP9y8sSUDs2tJz2xzG3CwuOGBS3WOIrPOtHyB SDhEcMc2RNt7rfO0Rkh5yeRTHo1zb2M5441nmZyLzUbSySGw2pHrM959wGnO2nZj EiO+rtGx9e5yc6RmVXY5zTluL+aC8O1Dsmdc5I27dRRLGMGCEfckgpJe4VccGp4F t03FGqpFJt0n/f07CJ2tcvTZcoIllRYgNXOAvkWaXmKFSrDZ8b34Y15cEF6GB9yY Jglr8Lcjw40JXgGdZIYd6Ruo8YxndNSkG+KV0Pyu1XCP7fcRkIg+VNHd3wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFLinZ50LKLe5pUTu+dnDZZehiEkUMB8GA1UdIwQY MBaAFGEbn7RWOedJLys2MfZA9qua+2KQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVJ1ZnRGWTU1MGt2S3pZeDlrRDJxNXI3WXBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi84NDgyZDItNzIzMy00MTc3LTk5MmYt N2Q3NWUyYjFhN2I5LzEvdUtkbm5Rc290N21sUk83NTJjTmxsNkdJU1JRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi84NDgyZDItNzIzMy00MTc3LTk5MmYtN2Q3NWUyYjFhN2I5 LzEvWVJ1ZnRGWTU1MGt2S3pZeDlrRDJxNXI3WXBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAweN+MA8E AgACMAkDBwAgAQZ4BFQwDQYJKoZIhvcNAQELBQADggEBALNRW/WpXMIdUNyywFL7 qzXRUu5ghb3ITYosQlNVjTwNgE2gtxnr3b91x/IwMOIT7m0QFUmwYo303Y0BWdF+ DDmwua5HavYZp31f9ujQCJT1RqzrxUt/AfhAU4cSl9H0nNvaFFkC1jMKr6sU139x YWfdo37mYTeaHj9yRUX5a0UAn0Ffv9znANEu7mRnKgb86YGlrAhU3HFJ6Gb8FcL1 b/3yYb/+9kLFjUv13EOkp/Cal2Wn9n0P58I5i0Wnk0X0a7VIvzujBGVMSH2HbvWG yVDCwgLPPymxG0fdMXhXMjjL2Ne+wuBQ/2bC4Ndo1kjcucVaoJPQQ+StErA/O6uY ktM= -----END CERTIFICATE-----Generated at Sun Jan 25 19:43:08 2026 by rpki-client