This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/uBEokvW7aAgryoMWD6Cv0elcFmo.roa File: uBEokvW7aAgryoMWD6Cv0elcFmo.roa (raw, json) Hash identifier: H/a3hMppgWLont3KdCAnRpO2zISV9Otu71OhQuyZUU4= Subject key identifier: B8:11:28:92:F5:BB:68:08:2B:CA:83:16:0F:A0:AF:D1:E9:5C:16:6A Certificate issuer: /CN=f7aa039b886b226578bdb6a42781bf59044bb138 Certificate serial: 019B7E380F89493E6A05D24EA6F5568BCABF Authority key identifier: F7:AA:03:9B:88:6B:22:65:78:BD:B6:A4:27:81:BF:59:04:4B:B1:38 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/uBEokvW7aAgryoMWD6Cv0elcFmo.roa Signing time: Fri 02 Jan 2026 10:19:21 +0000 ROA not before: Fri 02 Jan 2026 10:19:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203703 IP address blocks: 185.124.188.0/22 maxlen: 25 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/96oDm4hrImV4vbakJ4G_WQRLsTg.crl rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/96oDm4hrImV4vbakJ4G_WQRLsTg.mft rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:0f:89:49:3e:6a:05:d2:4e:a6:f5:56:8b:ca:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7aa039b886b226578bdb6a42781bf59044bb138 Validity Not Before: Jan 2 10:19:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b8112892f5bb68082bca83160fa0afd1e95c166a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:bb:c1:e1:ab:b3:55:69:a5:7a:5e:a5:4d:0f: b0:91:75:a4:74:37:0a:ca:ac:fc:25:60:d6:57:5c: a2:24:2b:14:e7:60:9e:3f:8d:6d:a1:e4:d5:cd:f1: 55:50:31:3c:30:f2:a1:32:fb:36:ba:21:a0:cc:d5: c5:4a:9c:4c:ca:e8:7e:e4:c7:7e:cf:94:98:bb:52: c8:9b:be:e5:51:c5:af:25:c8:02:bf:4a:0a:2c:b5: d1:6c:58:ef:da:52:7d:79:11:39:1d:0c:5b:a9:12: 2f:44:19:9a:4c:eb:73:7e:ea:56:34:40:14:3e:09: 09:f7:1d:9c:d0:4e:9c:c2:dd:b6:46:b2:56:43:0d: 0d:ad:6c:00:11:2d:35:10:f7:53:d7:76:9f:28:c8: 4b:58:8c:16:eb:8c:55:29:ce:14:ed:8d:4a:25:cf: 27:1c:db:eb:38:3f:04:f8:6a:65:93:4c:83:31:eb: b2:ea:76:39:8e:48:cc:4e:0f:9d:ce:24:04:86:7f: af:68:ce:de:b2:79:19:6b:11:2a:37:e3:83:09:35: 60:d8:87:dd:60:f1:c4:ee:91:cd:4c:67:6f:48:df: bc:2b:75:d1:ae:ed:7e:95:84:f9:2f:ac:ec:e3:82: ae:80:51:42:54:58:5e:48:17:b9:99:c6:44:c6:d6: 43:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:11:28:92:F5:BB:68:08:2B:CA:83:16:0F:A0:AF:D1:E9:5C:16:6A X509v3 Authority Key Identifier: keyid:F7:AA:03:9B:88:6B:22:65:78:BD:B6:A4:27:81:BF:59:04:4B:B1:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/uBEokvW7aAgryoMWD6Cv0elcFmo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/96oDm4hrImV4vbakJ4G_WQRLsTg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.124.188.0/22 Signature Algorithm: sha256WithRSAEncryption b3:e6:d1:5d:27:56:c0:e4:e9:91:d5:26:62:1f:3f:b6:c0:e6: 15:dc:b0:41:76:4f:32:2e:2b:0d:6e:f2:9b:b6:81:7f:2c:1c: 0a:32:c0:d6:94:7a:1d:d2:7e:0d:26:4c:77:0d:c7:33:6d:5d: 60:31:40:7d:ca:36:c0:6a:0f:dd:c8:21:31:8a:e0:64:86:64: 0a:f9:9b:0e:7c:5e:a6:eb:f0:4e:c4:7d:90:74:89:2e:4c:e2: 6c:01:8f:9f:85:df:07:84:c8:d3:82:22:d9:2a:cc:05:f1:84: e9:75:8e:21:90:65:89:12:67:26:60:61:bd:f3:60:bc:b8:3c: 4c:a7:d2:fe:f9:87:d1:cc:38:af:57:ca:b8:21:ba:fe:51:17: e0:f1:49:9d:ac:2f:fb:1b:12:41:04:2e:cf:ce:3a:94:74:b2: 82:e3:b1:9e:9c:bf:13:5a:60:cd:32:31:5f:bc:05:ef:57:43: 1a:ce:b7:ff:2d:7b:8b:0b:e7:38:e5:2a:66:e7:fa:9b:20:66: 89:14:00:db:ca:81:2e:7e:a0:23:9c:f4:cb:ae:d4:be:ca:7f: cf:8f:28:1a:92:a9:9f:c8:91:eb:0d:0c:03:15:f3:a0:3d:02: 1a:fd:7a:65:cf:a0:f0:9f:15:27:bf:97:d6:bf:6e:a3:5e:90: d6:3b:ba:55 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OA+JST5qBdJOpvVWi8q/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3YWEwMzliODg2YjIyNjU3OGJkYjZhNDI3ODFiZjU5MDQ0 YmIxMzgwHhcNMjYwMTAyMTAxOTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiODExMjg5MmY1YmI2ODA4MmJjYTgzMTYwZmEwYWZkMWU5NWMxNjZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2LvB4auzVWmlel6lTQ+wkXWkdDcK yqz8JWDWV1yiJCsU52CeP41toeTVzfFVUDE8MPKhMvs2uiGgzNXFSpxMyuh+5Md+ z5SYu1LIm77lUcWvJcgCv0oKLLXRbFjv2lJ9eRE5HQxbqRIvRBmaTOtzfupWNEAU PgkJ9x2c0E6cwt22RrJWQw0NrWwAES01EPdT13afKMhLWIwW64xVKc4U7Y1KJc8n HNvrOD8E+Gplk0yDMeuy6nY5jkjMTg+dziQEhn+vaM7esnkZaxEqN+ODCTVg2Ifd YPHE7pHNTGdvSN+8K3XRru1+lYT5L6zs44KugFFCVFheSBe5mcZExtZDhwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLgRKJL1u2gIK8qDFg+gr9HpXBZqMB8GA1UdIwQY MBaAFPeqA5uIayJleL22pCeBv1kES7E4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTZvRG00aHJJbVY0dmJha0o0R19XUVJMc1RnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS80YmJkNmMtOTFlZi00NDYxLTgyMWIt NmY2MjFkNzM2YWZmLzEvdUJFb2t2VzdhQWdyeW9NV0Q2Q3YwZWxjRm1vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS80YmJkNmMtOTFlZi00NDYxLTgyMWItNmY2MjFkNzM2YWZm LzEvOTZvRG00aHJJbVY0dmJha0o0R19XUVJMc1RnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuXy8MA0G CSqGSIb3DQEBCwUAA4IBAQCz5tFdJ1bA5OmR1SZiHz+2wOYV3LBBdk8yLisNbvKb toF/LBwKMsDWlHod0n4NJkx3DcczbV1gMUB9yjbAag/dyCExiuBkhmQK+ZsOfF6m 6/BOxH2QdIkuTOJsAY+fhd8HhMjTgiLZKswF8YTpdY4hkGWJEmcmYGG982C8uDxM p9L++YfRzDivV8q4Ibr+URfg8UmdrC/7GxJBBC7PzjqUdLKC47GenL8TWmDNMjFf vAXvV0Mazrf/LXuLC+c45Spm5/qbIGaJFADbyoEufqAjnPTLrtS+yn/Pjygakqmf yJHrDQwDFfOgPQIa/Xplz6DwnxUnv5fWv26jXpDWO7pV -----END CERTIFICATE-----Generated at Sun Jan 25 17:45:08 2026 by rpki-client