This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/6ed20e-2159-47d5-9b1d-41d509f8b155/1/uFxCF3WHM0DewCxM6YI5fSoNUmE.roa File: uFxCF3WHM0DewCxM6YI5fSoNUmE.roa (raw, json) Hash identifier: g0+UTVvOR0MkNhHeyF9wQULTn2q8tpzwOyvShiAfzfA= Subject key identifier: B8:5C:42:17:75:87:33:40:DE:C0:2C:4C:E9:82:39:7D:2A:0D:52:61 Certificate issuer: /CN=335c3336e2ce3bd75ab29ce81e54ff81ec56f1da Certificate serial: 019B7C1326FE3463124FD1A61C87267BFC75 Authority key identifier: 33:5C:33:36:E2:CE:3B:D7:5A:B2:9C:E8:1E:54:FF:81:EC:56:F1:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1wzNuLOO9daspzoHlT_gexW8do.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/6ed20e-2159-47d5-9b1d-41d509f8b155/1/uFxCF3WHM0DewCxM6YI5fSoNUmE.roa Signing time: Fri 02 Jan 2026 00:19:48 +0000 ROA not before: Fri 02 Jan 2026 00:19:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202823 IP address blocks: 185.150.220.0/24 maxlen: 24 185.150.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/6ed20e-2159-47d5-9b1d-41d509f8b155/1/M1wzNuLOO9daspzoHlT_gexW8do.crl rsync://rpki.ripe.net/repository/DEFAULT/63/6ed20e-2159-47d5-9b1d-41d509f8b155/1/M1wzNuLOO9daspzoHlT_gexW8do.mft rsync://rpki.ripe.net/repository/DEFAULT/M1wzNuLOO9daspzoHlT_gexW8do.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:26:fe:34:63:12:4f:d1:a6:1c:87:26:7b:fc:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=335c3336e2ce3bd75ab29ce81e54ff81ec56f1da Validity Not Before: Jan 2 00:19:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b85c421775873340dec02c4ce982397d2a0d5261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:86:8a:6d:86:ed:15:a5:bb:6a:a9:11:96:1f: 5d:1f:9c:73:8a:a6:44:ee:8a:b6:e6:8c:31:3a:a1: c1:c9:6a:67:ef:79:36:3c:2b:94:0e:76:87:2c:db: ff:f9:80:e2:db:8b:51:1b:cf:3f:17:99:a0:f5:b3: 25:be:07:f9:89:18:cc:04:bd:77:51:d1:ee:bf:f5: c5:8a:ec:de:7f:84:6c:85:57:b3:9a:80:a0:c5:22: fa:81:51:e9:c3:41:ba:2f:78:c6:1a:00:19:c8:23: 31:53:de:00:38:d9:52:61:51:8a:1b:7c:f9:f3:3f: c1:59:1b:cb:bf:6b:e7:79:87:e9:37:6f:b5:b0:2a: dc:ff:09:85:6c:ad:0a:1c:df:68:95:0c:c6:fb:6f: 86:73:c3:f8:86:37:82:e5:3d:27:04:6a:a4:6f:52: 36:ec:d4:02:ba:25:8b:fc:65:9e:f2:65:ee:69:22: 96:93:c1:96:58:0f:1d:59:61:7a:79:24:d1:aa:4a: ca:b4:64:83:1b:95:60:99:d6:53:cc:30:f0:f2:06: d6:bf:de:48:f2:4d:01:75:3e:75:8f:aa:c1:2b:dc: 07:d2:8f:25:db:2e:50:a5:85:de:19:6c:a6:28:5e: 4e:aa:ef:91:26:c6:67:cf:ba:55:62:cf:2d:05:cb: 9f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:5C:42:17:75:87:33:40:DE:C0:2C:4C:E9:82:39:7D:2A:0D:52:61 X509v3 Authority Key Identifier: keyid:33:5C:33:36:E2:CE:3B:D7:5A:B2:9C:E8:1E:54:FF:81:EC:56:F1:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1wzNuLOO9daspzoHlT_gexW8do.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6ed20e-2159-47d5-9b1d-41d509f8b155/1/uFxCF3WHM0DewCxM6YI5fSoNUmE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6ed20e-2159-47d5-9b1d-41d509f8b155/1/M1wzNuLOO9daspzoHlT_gexW8do.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.150.220.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:d7:f6:93:a3:3c:c3:7c:27:85:45:c3:5c:1f:11:af:87:1a: d1:44:6f:90:75:c7:ba:1c:d0:7f:20:17:b8:37:16:70:5f:ea: 1b:32:b0:1a:b6:a1:1d:39:ca:d2:f6:6b:30:35:d6:0e:8c:49: 21:1d:7e:80:3e:a3:6c:5d:d7:c6:bf:88:cd:16:17:8f:a2:05: f1:79:21:bd:a0:e0:af:25:ef:95:28:f5:32:7b:9c:99:7c:8e: 6a:bb:3c:f4:05:ee:b4:db:0b:4a:d8:de:9e:0d:91:b9:25:9f: e3:d1:c3:cc:64:17:05:00:20:e2:d1:49:0a:fe:67:b8:91:a2: 04:20:97:5f:ef:24:ff:75:f0:29:4d:6a:54:f2:e8:53:5d:16: 10:d6:d9:b8:7c:cd:71:22:ff:37:77:90:68:12:15:58:65:83: 3c:9b:79:98:e2:54:a7:1c:aa:70:c4:e0:5a:ba:89:d6:c1:6d: e8:39:63:8c:e3:7a:80:89:43:85:5f:0a:54:94:22:58:c8:ad: bb:ab:29:27:83:9f:ec:15:48:3a:9f:d1:b2:a5:4f:e1:0c:42: bd:92:21:21:14:53:ee:50:9b:fd:30:ab:a3:95:68:2c:a8:6b: a0:61:b0:4e:d8:64:b7:3e:e7:9b:db:a1:79:83:e4:d0:64:1b: 8b:c8:5a:a2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8Eyb+NGMST9GmHIcme/x1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzNWMzMzM2ZTJjZTNiZDc1YWIyOWNlODFlNTRmZjgxZWM1 NmYxZGEwHhcNMjYwMTAyMDAxOTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiODVjNDIxNzc1ODczMzQwZGVjMDJjNGNlOTgyMzk3ZDJhMGQ1MjYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApYaKbYbtFaW7aqkRlh9dH5xziqZE 7oq25owxOqHByWpn73k2PCuUDnaHLNv/+YDi24tRG88/F5mg9bMlvgf5iRjMBL13 UdHuv/XFiuzef4RshVezmoCgxSL6gVHpw0G6L3jGGgAZyCMxU94AONlSYVGKG3z5 8z/BWRvLv2vneYfpN2+1sCrc/wmFbK0KHN9olQzG+2+Gc8P4hjeC5T0nBGqkb1I2 7NQCuiWL/GWe8mXuaSKWk8GWWA8dWWF6eSTRqkrKtGSDG5VgmdZTzDDw8gbWv95I 8k0BdT51j6rBK9wH0o8l2y5QpYXeGWymKF5Oqu+RJsZnz7pVYs8tBcufMQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLhcQhd1hzNA3sAsTOmCOX0qDVJhMB8GA1UdIwQY MBaAFDNcMzbizjvXWrKc6B5U/4HsVvHaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTF3ek51TE9POWRhc3B6b0hsVF9nZXhXOGRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My82ZWQyMGUtMjE1OS00N2Q1LTliMWQt NDFkNTA5ZjhiMTU1LzEvdUZ4Q0YzV0hNMERld0N4TTZZSTVmU29OVW1FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My82ZWQyMGUtMjE1OS00N2Q1LTliMWQtNDFkNTA5ZjhiMTU1 LzEvTTF3ek51TE9POWRhc3B6b0hsVF9nZXhXOGRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuZbcMA0G CSqGSIb3DQEBCwUAA4IBAQB81/aTozzDfCeFRcNcHxGvhxrRRG+Qdce6HNB/IBe4 NxZwX+obMrAatqEdOcrS9mswNdYOjEkhHX6APqNsXdfGv4jNFhePogXxeSG9oOCv Je+VKPUye5yZfI5quzz0Be602wtK2N6eDZG5JZ/j0cPMZBcFACDi0UkK/me4kaIE IJdf7yT/dfApTWpU8uhTXRYQ1tm4fM1xIv83d5BoEhVYZYM8m3mY4lSnHKpwxOBa uonWwW3oOWOM43qAiUOFXwpUlCJYyK27qykng5/sFUg6n9GypU/hDEK9kiEhFFPu UJv9MKujlWgsqGugYbBO2GS3Pueb26F5g+TQZBuLyFqi -----END CERTIFICATE-----Generated at Mon Jan 26 06:17:55 2026 by rpki-client