This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/UstTjnIPQMCev_e21rBAIcb33Ts.roa File: UstTjnIPQMCev_e21rBAIcb33Ts.roa (raw, json) Hash identifier: Ru9GdiFMZz1rjx+58aZd4QINMVpHJbg0ZMYcx9FmCeA= Subject key identifier: 52:CB:53:8E:72:0F:40:C0:9E:BF:F7:B6:D6:B0:40:21:C6:F7:DD:3B Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F8503CE94320F600D153BD4845BCA92 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/UstTjnIPQMCev_e21rBAIcb33Ts.roa Signing time: Fri 02 Jan 2026 16:23:02 +0000 ROA not before: Fri 02 Jan 2026 16:23:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208870 IP address blocks: 93.171.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:03:ce:94:32:0f:60:0d:15:3b:d4:84:5b:ca:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:23:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52cb538e720f40c09ebff7b6d6b04021c6f7dd3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ee:93:bf:ee:5e:0d:ff:0d:7b:f2:17:26:b7: 27:01:57:a7:dc:c5:95:07:46:31:d0:e6:e0:62:6b: f0:14:ef:e6:d1:69:99:b8:83:0b:e1:7e:4d:16:c6: e2:44:b8:c4:d6:12:62:b9:19:d0:04:50:24:cd:df: 3f:1f:3d:21:79:07:4e:59:9f:b0:b8:39:62:4e:c4: 71:20:42:ef:ce:13:98:6f:2b:2a:b5:14:77:b0:5a: 49:15:54:94:7f:9c:8e:95:90:93:28:34:ef:9a:aa: 1c:52:a6:ec:8e:45:79:9b:e8:70:2b:d3:ec:dc:67: bf:cc:ae:97:3a:47:96:42:fe:6e:e8:21:59:4a:90: d2:7f:11:13:da:02:79:b9:fc:9b:46:2b:1f:6d:2a: 3f:bb:ad:51:2e:72:b2:c8:b1:13:e8:a0:b5:86:79: cf:0a:f8:dd:be:e1:4d:3a:ba:de:01:46:42:8b:39: de:48:f8:e1:06:40:1b:a1:ed:9a:d2:75:49:0e:39: 41:93:52:2d:fe:af:36:f1:48:6d:53:90:6d:51:6e: 89:8b:a0:da:38:35:63:0e:8a:56:cf:7c:f3:b6:40: 5d:6f:bd:87:a0:05:6b:15:13:bc:12:2f:51:c3:bd: 89:1a:ea:fe:d0:f4:c0:16:92:b3:17:cf:d7:cf:24: ae:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:CB:53:8E:72:0F:40:C0:9E:BF:F7:B6:D6:B0:40:21:C6:F7:DD:3B X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/UstTjnIPQMCev_e21rBAIcb33Ts.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.171.238.0/24 Signature Algorithm: sha256WithRSAEncryption 19:fb:47:96:65:78:09:5c:89:1c:c2:f1:18:e7:aa:0c:43:f1: 25:e9:c0:ff:c2:2b:b6:89:ea:b3:c8:8f:35:6b:90:69:48:3c: 49:0a:a6:07:40:04:9c:97:06:b4:c5:1d:47:cb:89:3b:4e:13: 4e:94:3e:a2:f0:5c:75:3f:db:fd:a4:ff:2b:87:a0:dd:7f:9a: 6a:84:e3:91:dd:91:6e:49:b7:ef:32:52:58:a2:31:90:34:48: fb:5a:50:80:a8:58:81:3d:62:2e:d8:c2:8c:28:6c:d6:d8:50: 71:b1:d1:ec:df:a3:b2:3a:a8:aa:e9:55:4b:0c:14:12:37:59: 2b:34:71:82:85:b8:f3:72:80:8d:a5:0c:1c:2e:a6:a1:12:b4: 03:1e:2c:b5:11:0c:f4:50:54:f2:ec:96:e9:d6:68:ac:c6:9c: e5:5d:1d:1d:d4:0c:db:d8:0e:98:37:52:7e:30:0a:d6:e4:e6: fa:3c:23:9f:31:7f:ab:e0:a5:ef:74:43:79:77:0c:b8:f9:75: 73:18:43:46:0e:12:4f:12:20:0e:a4:27:c9:fd:b2:13:c3:9e: 5b:67:1d:c0:37:26:54:e7:b9:d6:3a:3d:aa:c2:75:8e:ab:4b: dd:cc:ad:6b:58:9c:70:d7:e2:da:a5:04:ac:7f:53:f1:fe:8a: ee:1c:f8:4c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hQPOlDIPYA0VO9SEW8qSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMzAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MmNiNTM4ZTcyMGY0MGMwOWViZmY3YjZkNmIwNDAyMWM2ZjdkZDNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlO6Tv+5eDf8Ne/IXJrcnAVen3MWV B0Yx0ObgYmvwFO/m0WmZuIML4X5NFsbiRLjE1hJiuRnQBFAkzd8/Hz0heQdOWZ+w uDliTsRxIELvzhOYbysqtRR3sFpJFVSUf5yOlZCTKDTvmqocUqbsjkV5m+hwK9Ps 3Ge/zK6XOkeWQv5u6CFZSpDSfxET2gJ5ufybRisfbSo/u61RLnKyyLET6KC1hnnP CvjdvuFNOrreAUZCizneSPjhBkAboe2a0nVJDjlBk1It/q828UhtU5BtUW6Ji6Da ODVjDopWz3zztkBdb72HoAVrFRO8Ei9Rw72JGur+0PTAFpKzF8/XzySuXQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFLLU45yD0DAnr/3ttawQCHG9907MB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvVXN0VGpuSVBRTUNldl9lMjFyQkFJY2IzM1RzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXavuMA0G CSqGSIb3DQEBCwUAA4IBAQAZ+0eWZXgJXIkcwvEY56oMQ/El6cD/wiu2ieqzyI81 a5BpSDxJCqYHQASclwa0xR1Hy4k7ThNOlD6i8Fx1P9v9pP8rh6Ddf5pqhOOR3ZFu SbfvMlJYojGQNEj7WlCAqFiBPWIu2MKMKGzW2FBxsdHs36OyOqiq6VVLDBQSN1kr NHGChbjzcoCNpQwcLqahErQDHiy1EQz0UFTy7Jbp1misxpzlXR0d1Azb2A6YN1J+ MArW5Ob6PCOfMX+r4KXvdEN5dwy4+XVzGENGDhJPEiAOpCfJ/bITw55bZx3ANyZU 57nWOj2qwnWOq0vdzK1rWJxw1+LapQSsf1Px/oruHPhM -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:19 2026 by rpki-client