This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/UfxnZEwkQdyHN4gibAtk_ce1zeI.roa File: UfxnZEwkQdyHN4gibAtk_ce1zeI.roa (raw, json) Hash identifier: Bl9GgITeZ3znWiaIE2fwC3TQwsJfWdhy5zENaMdMELI= Subject key identifier: 51:FC:67:64:4C:24:41:DC:87:37:88:22:6C:0B:64:FD:C7:B5:CD:E2 Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb Certificate serial: 019B7EA58C5AD948BE764D4089966C54C087 Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/UfxnZEwkQdyHN4gibAtk_ce1zeI.roa Signing time: Fri 02 Jan 2026 12:18:57 +0000 ROA not before: Fri 02 Jan 2026 12:18:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202416 IP address blocks: 185.227.5.0/24 maxlen: 24 2a11:100::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:8c:5a:d9:48:be:76:4d:40:89:96:6c:54:c0:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb Validity Not Before: Jan 2 12:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=51fc67644c2441dc873788226c0b64fdc7b5cde2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a3:02:02:1c:e1:6a:c2:c7:4a:36:22:cf:af: ea:19:18:55:40:8b:0a:95:43:10:1f:6e:a0:37:76: 24:54:57:10:02:4f:82:f7:6a:14:7d:27:be:ad:43: b0:dd:13:a4:81:5d:7e:39:9e:62:90:a8:3a:11:fe: 20:1b:f0:fe:7d:a5:b4:2f:57:8c:de:94:f3:5c:21: 76:20:87:65:cc:9f:83:8e:f7:2e:fe:ac:1e:cd:d1: a8:11:03:09:d0:df:90:c6:91:b6:27:b7:34:7e:51: 43:a6:a3:29:40:90:15:29:9f:1c:ac:d7:0f:7c:a2: 3a:b0:8b:2c:54:d0:a3:b6:2e:9f:d0:86:f9:02:18: 40:42:cf:48:1b:fd:d8:94:6a:eb:a0:5c:2e:23:b1: 8d:db:7c:62:96:ad:1f:80:72:81:92:8b:07:ed:55: 0f:ab:5b:be:4a:db:88:ef:cf:15:38:64:ec:73:b4: 43:49:31:91:6a:b9:d8:77:08:b4:2c:c8:f9:46:4a: aa:3c:88:12:d3:c4:b6:5c:7f:ae:11:56:ef:c5:90: a0:96:d7:09:bc:08:5c:02:ef:82:8d:5c:5c:e5:9b: e8:e6:b3:90:e7:f3:78:ac:36:11:61:7e:4d:a3:ce: 5d:07:c3:b0:a9:0d:d7:3a:1a:2f:44:9f:39:00:6c: 62:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:FC:67:64:4C:24:41:DC:87:37:88:22:6C:0B:64:FD:C7:B5:CD:E2 X509v3 Authority Key Identifier: keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/UfxnZEwkQdyHN4gibAtk_ce1zeI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.227.5.0/24 IPv6: 2a11:100::/29 Signature Algorithm: sha256WithRSAEncryption 55:46:ce:5b:1f:f2:01:6e:6c:85:f9:9c:be:61:60:ac:c1:48: 0f:b4:a9:e5:ef:ba:57:30:b0:f5:2e:da:a1:fc:9b:f5:86:26: e0:ad:a3:6e:15:2a:a1:1c:e5:7a:09:11:4c:7d:fa:5b:68:6c: 09:e4:e2:18:25:65:13:83:3e:71:d5:36:f5:2a:d4:6a:6f:7b: 04:92:5e:d9:b0:90:a3:63:4e:d4:54:c7:50:42:8f:aa:5e:e7: 41:d7:e1:0d:41:00:f5:90:69:d9:b4:60:89:3b:a9:fa:c6:17: 28:57:ab:d2:46:a9:1e:60:16:05:23:f9:3b:70:8d:b6:06:3e: 3b:b4:7a:77:f6:71:16:c0:a0:62:dc:5b:ae:61:f5:85:d0:15: bb:06:dd:94:60:31:b0:c8:00:ee:4b:f1:7c:e6:5b:48:a9:0a: bf:39:4f:4f:3e:8c:7e:19:0d:b6:30:20:75:90:ee:05:62:f0: e1:75:28:71:26:c6:9a:df:28:90:6c:35:76:0e:86:ea:c3:3f: e7:49:cf:11:49:30:7a:6d:76:52:cf:38:3d:dd:9a:86:19:e6: 2f:75:54:3e:b4:ec:3d:30:0c:0b:74:66:03:fb:39:34:02:70: 13:f8:aa:b9:ba:be:27:37:93:47:de:bc:00:8b:2f:24:1b:79: ba:65:69:bc -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pYxa2Ui+dk1AiZZsVMCHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNDQzMzg2NTk4NWE3YmI1ZTI2OWMzNzk0YWU2ZjE2NGNm YzJkZGIwHhcNMjYwMTAyMTIxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MWZjNjc2NDRjMjQ0MWRjODczNzg4MjI2YzBiNjRmZGM3YjVjZGUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApaMCAhzhasLHSjYiz6/qGRhVQIsK lUMQH26gN3YkVFcQAk+C92oUfSe+rUOw3ROkgV1+OZ5ikKg6Ef4gG/D+faW0L1eM 3pTzXCF2IIdlzJ+Djvcu/qwezdGoEQMJ0N+QxpG2J7c0flFDpqMpQJAVKZ8crNcP fKI6sIssVNCjti6f0Ib5AhhAQs9IG/3YlGrroFwuI7GN23xilq0fgHKBkosH7VUP q1u+StuI788VOGTsc7RDSTGRarnYdwi0LMj5RkqqPIgS08S2XH+uEVbvxZCgltcJ vAhcAu+CjVxc5Zvo5rOQ5/N4rDYRYX5No85dB8OwqQ3XOhovRJ85AGxi5wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFFH8Z2RMJEHchzeIImwLZP3Htc3iMB8GA1UdIwQY MBaAFLpEM4ZZhae7XiacN5SubxZM/C3bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9hYjMyMTktYzY0Yi00NzBlLTgzNDEt M2ExMjAyNzQwMGU2LzEvVWZ4blpFd2tRZHlITjRnaWJBdGtfY2UxemVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS9hYjMyMTktYzY0Yi00NzBlLTgzNDEtM2ExMjAyNzQwMGU2 LzEvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAueMFMA0E AgACMAcDBQMqEQEAMA0GCSqGSIb3DQEBCwUAA4IBAQBVRs5bH/IBbmyF+Zy+YWCs wUgPtKnl77pXMLD1Ltqh/Jv1hibgraNuFSqhHOV6CRFMffpbaGwJ5OIYJWUTgz5x 1Tb1KtRqb3sEkl7ZsJCjY07UVMdQQo+qXudB1+ENQQD1kGnZtGCJO6n6xhcoV6vS RqkeYBYFI/k7cI22Bj47tHp39nEWwKBi3FuuYfWF0BW7Bt2UYDGwyADuS/F85ltI qQq/OU9PPox+GQ22MCB1kO4FYvDhdShxJsaa3yiQbDV2Dobqwz/nSc8RSTB6bXZS zzg93ZqGGeYvdVQ+tOw9MAwLdGYD+zk0AnAT+Kq5ur4nN5NH3rwAiy8kG3m6ZWm8 -----END CERTIFICATE-----Generated at Mon Jan 26 02:24:11 2026 by rpki-client