This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/60c7c1-8f0f-4b80-8630-3e4f35b66461/1/uRQkD95GTfY6rjF1uHaPVB0eyic.roa File: uRQkD95GTfY6rjF1uHaPVB0eyic.roa (raw, json) Hash identifier: DCYgdJ7UhUeMQMpapAAECzMIhYagZDmIZ36JKYt3YbI= Subject key identifier: B9:14:24:0F:DE:46:4D:F6:3A:AE:31:75:B8:76:8F:54:1D:1E:CA:27 Certificate issuer: /CN=124f16479e4b72aca589baa01039fc8e923b4cc3 Certificate serial: 019B7CEDE8AEEFA2CC370444136098141B4E Authority key identifier: 12:4F:16:47:9E:4B:72:AC:A5:89:BA:A0:10:39:FC:8E:92:3B:4C:C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ek8WR55LcqylibqgEDn8jpI7TMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/60c7c1-8f0f-4b80-8630-3e4f35b66461/1/uRQkD95GTfY6rjF1uHaPVB0eyic.roa Signing time: Fri 02 Jan 2026 04:18:44 +0000 ROA not before: Fri 02 Jan 2026 04:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34624 IP address blocks: 185.71.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/60c7c1-8f0f-4b80-8630-3e4f35b66461/1/Ek8WR55LcqylibqgEDn8jpI7TMM.crl rsync://rpki.ripe.net/repository/DEFAULT/59/60c7c1-8f0f-4b80-8630-3e4f35b66461/1/Ek8WR55LcqylibqgEDn8jpI7TMM.mft rsync://rpki.ripe.net/repository/DEFAULT/Ek8WR55LcqylibqgEDn8jpI7TMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:e8:ae:ef:a2:cc:37:04:44:13:60:98:14:1b:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=124f16479e4b72aca589baa01039fc8e923b4cc3 Validity Not Before: Jan 2 04:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b914240fde464df63aae3175b8768f541d1eca27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fd:4a:35:9d:97:6e:a5:e6:c7:2c:4d:2b:31: 5c:7e:af:a0:a5:0a:e6:ed:cc:65:6b:09:66:e8:86: b2:36:a8:3f:af:23:6c:df:c9:ca:02:e7:2a:dc:1e: e6:e0:f7:96:2a:c2:15:b8:1e:9e:61:ee:02:50:61: ac:4a:ca:b9:3b:6f:ec:ef:e9:80:70:6c:2e:ed:bb: 59:44:92:d5:d2:e1:26:ef:02:53:4a:48:a9:05:ea: 6d:72:c7:cb:d9:0b:37:fc:4f:44:89:c0:26:e5:e8: 50:d1:e9:64:0d:83:e8:a5:3d:7c:c9:23:41:13:d9: 2a:30:af:01:89:a4:cf:bb:96:6f:39:35:f9:60:62: 29:d0:4d:fe:bb:02:a9:51:0d:f9:ef:67:91:7b:44: 9f:84:84:bd:03:05:d8:5f:aa:78:68:dc:a3:13:2c: 39:3b:3b:f9:d1:6e:a4:8f:8c:6d:cb:5c:84:0c:50: b8:5f:18:06:d6:56:c4:b9:14:4d:eb:6b:9a:64:74: 18:c3:91:89:d9:91:e3:34:0c:b1:28:9f:38:87:69: c2:cd:b0:b5:c0:36:60:16:d5:42:03:64:df:b1:cd: c7:d8:9d:97:a9:93:5a:30:47:56:44:8b:95:8f:71: 8e:6e:d4:89:9f:f1:9d:d2:01:0f:6e:67:b9:6a:47: 49:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:14:24:0F:DE:46:4D:F6:3A:AE:31:75:B8:76:8F:54:1D:1E:CA:27 X509v3 Authority Key Identifier: keyid:12:4F:16:47:9E:4B:72:AC:A5:89:BA:A0:10:39:FC:8E:92:3B:4C:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ek8WR55LcqylibqgEDn8jpI7TMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/60c7c1-8f0f-4b80-8630-3e4f35b66461/1/uRQkD95GTfY6rjF1uHaPVB0eyic.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/60c7c1-8f0f-4b80-8630-3e4f35b66461/1/Ek8WR55LcqylibqgEDn8jpI7TMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.71.124.0/22 Signature Algorithm: sha256WithRSAEncryption 48:7c:43:54:b5:37:ac:5f:0d:57:14:60:fe:16:1c:34:df:c4: 8b:14:b3:c0:a4:f6:b8:34:74:85:c7:a9:65:ba:2d:7c:4a:b6: 97:72:0e:60:2f:08:06:c8:e1:a9:32:20:89:be:d9:ea:f5:d5: 9f:d1:43:c8:e6:b9:d4:34:96:1c:61:6b:53:a8:37:53:1a:c3: 0f:7f:71:92:d6:b4:98:ed:0f:9d:7c:1f:f0:2d:9b:e0:68:f0: b8:82:85:d5:ed:63:90:b2:4d:de:b2:c4:a1:52:6f:6e:94:80: c2:b4:33:95:66:37:44:1d:d1:d8:f9:5f:03:31:78:b8:d6:34: 57:a9:8d:09:bf:eb:5b:c9:98:6a:0a:5f:88:fb:98:c5:c7:9b: 07:0e:f8:31:7a:9c:5b:12:59:d6:5e:80:ae:a3:e0:ee:51:e3: c9:99:e7:16:a6:4e:06:15:aa:eb:07:2c:02:87:a8:60:3f:b2: 8e:e0:e4:52:ed:af:e6:3b:de:fc:a4:77:96:ef:d9:f3:e3:c9: e5:26:2f:72:ed:cc:80:e5:08:84:b7:7d:d8:15:91:97:e4:fe: d8:cd:43:fe:a7:ea:6a:1d:70:e0:31:c9:5c:6e:19:e8:8d:83: ce:7e:dc:b7:15:e8:b5:4d:7c:9f:16:8c:a3:d3:9e:8e:62:d5: c7:43:7c:31 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87eiu76LMNwREE2CYFBtOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEyNGYxNjQ3OWU0YjcyYWNhNTg5YmFhMDEwMzlmYzhlOTIz YjRjYzMwHhcNMjYwMTAyMDQxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTE0MjQwZmRlNDY0ZGY2M2FhZTMxNzViODc2OGY1NDFkMWVjYTI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArv1KNZ2XbqXmxyxNKzFcfq+gpQrm 7cxlawlm6IayNqg/ryNs38nKAucq3B7m4PeWKsIVuB6eYe4CUGGsSsq5O2/s7+mA cGwu7btZRJLV0uEm7wJTSkipBeptcsfL2Qs3/E9EicAm5ehQ0elkDYPopT18ySNB E9kqMK8BiaTPu5ZvOTX5YGIp0E3+uwKpUQ3572eRe0SfhIS9AwXYX6p4aNyjEyw5 Ozv50W6kj4xty1yEDFC4XxgG1lbEuRRN62uaZHQYw5GJ2ZHjNAyxKJ84h2nCzbC1 wDZgFtVCA2Tfsc3H2J2XqZNaMEdWRIuVj3GObtSJn/Gd0gEPbme5akdJIQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLkUJA/eRk32Oq4xdbh2j1QdHsonMB8GA1UdIwQY MBaAFBJPFkeeS3KspYm6oBA5/I6SO0zDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWs4V1I1NUxjcXlsaWJxZ0VEbjhqcEk3VE1NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS82MGM3YzEtOGYwZi00YjgwLTg2MzAt M2U0ZjM1YjY2NDYxLzEvdVJRa0Q5NUdUZlk2cmpGMXVIYVBWQjBleWljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS82MGM3YzEtOGYwZi00YjgwLTg2MzAtM2U0ZjM1YjY2NDYx LzEvRWs4V1I1NUxjcXlsaWJxZ0VEbjhqcEk3VE1NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuUd8MA0G CSqGSIb3DQEBCwUAA4IBAQBIfENUtTesXw1XFGD+Fhw038SLFLPApPa4NHSFx6ll ui18SraXcg5gLwgGyOGpMiCJvtnq9dWf0UPI5rnUNJYcYWtTqDdTGsMPf3GS1rSY 7Q+dfB/wLZvgaPC4goXV7WOQsk3essShUm9ulIDCtDOVZjdEHdHY+V8DMXi41jRX qY0Jv+tbyZhqCl+I+5jFx5sHDvgxepxbElnWXoCuo+DuUePJmecWpk4GFarrBywC h6hgP7KO4ORS7a/mO978pHeW79nz48nlJi9y7cyA5QiEt33YFZGX5P7YzUP+p+pq HXDgMclcbhnojYPOfty3Fei1TXyfFoyj056OYtXHQ3wx -----END CERTIFICATE-----Generated at Mon Jan 26 05:14:50 2026 by rpki-client