This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/dd55e8-febd-49d0-a5a7-1cf15b2ba7be/1/uX2HFPa-1T3UMzqcLHxJG1wYem0.roa File: uX2HFPa-1T3UMzqcLHxJG1wYem0.roa (raw, json) Hash identifier: mt3IsY/c70SVPfG6w+VGWzHhy8025Nd/iJv2s56ORTs= Subject key identifier: B9:7D:87:14:F6:BE:D5:3D:D4:33:3A:9C:2C:7C:49:1B:5C:18:7A:6D Certificate issuer: /CN=ac7cc334f51d2b6eb4e27d6d56b9bce3e85560cc Certificate serial: 019B7EA7466B746CA6C1D0E6E99938039966 Authority key identifier: AC:7C:C3:34:F5:1D:2B:6E:B4:E2:7D:6D:56:B9:BC:E3:E8:55:60:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rHzDNPUdK2604n1tVrm84-hVYMw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/dd55e8-febd-49d0-a5a7-1cf15b2ba7be/1/uX2HFPa-1T3UMzqcLHxJG1wYem0.roa Signing time: Fri 02 Jan 2026 12:20:50 +0000 ROA not before: Fri 02 Jan 2026 12:20:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48544 IP address blocks: 79.143.112.0/22 maxlen: 24 79.143.116.0/24 maxlen: 24 79.143.117.0/24 maxlen: 24 79.143.118.0/24 maxlen: 24 79.143.119.0/24 maxlen: 24 79.143.120.0/23 maxlen: 24 79.143.122.0/23 maxlen: 24 89.189.48.0/22 maxlen: 24 92.245.170.0/23 maxlen: 24 92.245.172.0/23 maxlen: 24 92.245.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/dd55e8-febd-49d0-a5a7-1cf15b2ba7be/1/rHzDNPUdK2604n1tVrm84-hVYMw.crl rsync://rpki.ripe.net/repository/DEFAULT/55/dd55e8-febd-49d0-a5a7-1cf15b2ba7be/1/rHzDNPUdK2604n1tVrm84-hVYMw.mft rsync://rpki.ripe.net/repository/DEFAULT/rHzDNPUdK2604n1tVrm84-hVYMw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 03:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:46:6b:74:6c:a6:c1:d0:e6:e9:99:38:03:99:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac7cc334f51d2b6eb4e27d6d56b9bce3e85560cc Validity Not Before: Jan 2 12:20:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b97d8714f6bed53dd4333a9c2c7c491b5c187a6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2b:fe:3a:e1:65:53:26:48:c8:b4:35:1d:c7: 0a:53:93:d8:7a:21:b6:6f:8e:11:99:56:96:36:06: 14:14:a1:d0:b5:92:9d:ce:b4:fd:f2:67:43:46:85: b2:39:be:f6:a0:43:e2:c5:9e:c1:3b:8c:d4:8e:8c: 85:c6:73:bf:3b:92:86:0e:bb:db:2d:ed:cc:c6:cc: d9:4c:63:5d:52:10:f3:88:5a:f8:e5:3d:a6:58:a1: a1:ea:8c:7e:12:f6:7e:42:06:b6:30:f9:92:51:a8: 2b:f1:a0:e2:60:ca:82:de:9a:9a:2e:3f:08:0c:d2: 4a:08:11:26:0c:6c:15:35:c5:58:fb:54:f5:4c:cf: 41:9e:19:5f:06:d2:b1:bf:1f:01:07:54:9e:85:93: dd:c7:aa:e1:87:ae:97:48:c8:db:ac:85:6e:98:2d: 7d:8c:97:30:09:5a:30:77:d1:91:5e:fe:58:eb:23: e6:0a:5d:36:92:6e:ab:cb:fd:d2:e2:90:b1:df:be: d7:b2:df:08:f5:88:3b:74:e9:5b:0e:c6:4e:8e:d3: 07:35:33:7c:fe:4e:98:9e:09:89:5d:58:1d:24:07: dc:88:27:ff:6e:1e:75:0f:d0:d4:6e:49:af:af:4c: 00:a8:51:ba:4d:56:66:0b:58:5b:c1:aa:43:da:db: f8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:7D:87:14:F6:BE:D5:3D:D4:33:3A:9C:2C:7C:49:1B:5C:18:7A:6D X509v3 Authority Key Identifier: keyid:AC:7C:C3:34:F5:1D:2B:6E:B4:E2:7D:6D:56:B9:BC:E3:E8:55:60:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rHzDNPUdK2604n1tVrm84-hVYMw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/dd55e8-febd-49d0-a5a7-1cf15b2ba7be/1/uX2HFPa-1T3UMzqcLHxJG1wYem0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/dd55e8-febd-49d0-a5a7-1cf15b2ba7be/1/rHzDNPUdK2604n1tVrm84-hVYMw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.143.112.0-79.143.123.255 89.189.48.0/22 92.245.170.0-92.245.175.255 Signature Algorithm: sha256WithRSAEncryption 26:17:7c:d5:3d:18:dc:fd:06:c6:a7:7f:29:e4:b0:5f:ea:fd: f6:6b:9b:5e:c5:ee:3b:cb:fc:9e:a1:75:eb:ee:33:4e:b1:33: b6:0b:52:83:4f:89:29:7e:f0:09:5a:68:29:13:08:ac:3d:86: 68:1c:98:bc:23:f0:c2:b5:09:23:94:93:cc:d6:88:52:09:80: 36:d7:2a:6e:bc:04:f6:ce:50:9e:6f:a1:5b:96:33:fb:d9:a9: 3a:a6:a1:28:60:0e:51:d1:5e:59:4b:0a:a1:2d:36:b9:1f:85: 7c:5b:35:74:23:10:13:ab:fb:2d:21:16:a0:01:31:56:c3:00: f1:a8:49:05:d1:09:d1:77:02:9a:9f:85:61:1e:92:35:9f:7e: 3f:9b:a3:fb:1b:3d:22:7c:63:37:8b:c4:6d:5a:48:bb:99:17: f4:76:78:ba:41:8b:b7:48:09:97:9d:5a:30:f0:41:3b:56:27: 68:b1:0b:3f:c6:f8:83:65:e3:eb:e1:c9:e0:c0:96:fa:30:fc: ea:62:39:d1:51:8d:6e:2c:7b:46:af:66:a3:71:64:b2:4f:37: 41:a7:2a:8a:21:7b:cb:e4:9d:64:a0:a4:2a:de:ef:60:0a:d6: c3:4a:32:32:f5:93:cb:a1:a8:02:83:4f:93:e1:72:18:74:08: 29:a7:6f:83 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZt+p0ZrdGymwdDm6Zk4A5lmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjN2NjMzM0ZjUxZDJiNmViNGUyN2Q2ZDU2YjliY2UzZTg1 NTYwY2MwHhcNMjYwMTAyMTIyMDUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTdkODcxNGY2YmVkNTNkZDQzMzNhOWMyYzdjNDkxYjVjMTg3YTZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Cv+OuFlUyZIyLQ1HccKU5PYeiG2 b44RmVaWNgYUFKHQtZKdzrT98mdDRoWyOb72oEPixZ7BO4zUjoyFxnO/O5KGDrvb Le3MxszZTGNdUhDziFr45T2mWKGh6ox+EvZ+Qga2MPmSUagr8aDiYMqC3pqaLj8I DNJKCBEmDGwVNcVY+1T1TM9BnhlfBtKxvx8BB1SehZPdx6rhh66XSMjbrIVumC19 jJcwCVowd9GRXv5Y6yPmCl02km6ry/3S4pCx377Xst8I9Yg7dOlbDsZOjtMHNTN8 /k6YngmJXVgdJAfciCf/bh51D9DUbkmvr0wAqFG6TVZmC1hbwapD2tv4iQIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFLl9hxT2vtU91DM6nCx8SRtcGHptMB8GA1UdIwQY MBaAFKx8wzT1HStutOJ9bVa5vOPoVWDMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckh6RE5QVWRLMjYwNG4xdFZybTg0LWhWWU13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9kZDU1ZTgtZmViZC00OWQwLWE1YTct MWNmMTViMmJhN2JlLzEvdVgySEZQYS0xVDNVTXpxY0xIeEpHMXdZZW0wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9kZDU1ZTgtZmViZC00OWQwLWE1YTctMWNmMTViMmJhN2Jl LzEvckh6RE5QVWRLMjYwNG4xdFZybTg0LWhWWU13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAoBAIAATAiMAwDBARPj3AD BAJPj3gDBAJZvTAwDAMEAVz1qgMEBFz1oDANBgkqhkiG9w0BAQsFAAOCAQEAJhd8 1T0Y3P0Gxqd/KeSwX+r99mubXsXuO8v8nqF16+4zTrEztgtSg0+JKX7wCVpoKRMI rD2GaByYvCPwwrUJI5STzNaIUgmANtcqbrwE9s5Qnm+hW5Yz+9mpOqahKGAOUdFe WUsKoS02uR+FfFs1dCMQE6v7LSEWoAExVsMA8ahJBdEJ0XcCmp+FYR6SNZ9+P5uj +xs9InxjN4vEbVpIu5kX9HZ4ukGLt0gJl51aMPBBO1YnaLELP8b4g2Xj6+HJ4MCW +jD86mI50VGNbix7Rq9mo3Fksk83QacqiiF7y+SdZKCkKt7vYArWw0oyMvWTy6Go AoNPk+FyGHQIKadvgw== -----END CERTIFICATE-----Generated at Mon Jan 26 12:56:51 2026 by rpki-client