This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/uhIp9qB7kmChMTb7Zgy6ODlmQ-0.roa File: uhIp9qB7kmChMTb7Zgy6ODlmQ-0.roa (raw, json) Hash identifier: JtrRy8K8JfXY6c0h4tIaVxPoTz6vUyxLw4quWDAs64g= Subject key identifier: BA:12:29:F6:A0:7B:92:60:A1:31:36:FB:66:0C:BA:38:39:66:43:ED Certificate issuer: /CN=1b2c219f3c297b775880c3b651a2003f9be6de5e Certificate serial: 019B7F1467C1E95C8D277CEA38FC4AA6A6B0 Authority key identifier: 1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/uhIp9qB7kmChMTb7Zgy6ODlmQ-0.roa Signing time: Fri 02 Jan 2026 14:20:02 +0000 ROA not before: Fri 02 Jan 2026 14:20:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212792 IP address blocks: 176.98.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.mft rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:67:c1:e9:5c:8d:27:7c:ea:38:fc:4a:a6:a6:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b2c219f3c297b775880c3b651a2003f9be6de5e Validity Not Before: Jan 2 14:20:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba1229f6a07b9260a13136fb660cba38396643ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ff:c3:86:ab:97:c2:3d:65:cd:39:53:c4:b4: 61:3d:50:08:67:b8:44:be:35:6a:14:79:bb:0f:cc: 5c:bd:77:18:ed:3e:1e:44:82:2a:cb:53:9d:7f:b7: d7:c3:b7:2b:43:44:e9:2b:dd:c3:c8:93:a2:c3:b3: d1:85:3e:da:18:f5:af:da:1a:b6:01:e2:1b:09:d6: ca:63:e5:db:6d:8b:37:1b:69:35:49:1f:2a:83:33: 6f:4f:93:de:5f:cb:62:6b:db:64:ac:2e:02:1c:a9: 19:96:d2:2e:8b:8e:46:b8:44:b9:51:33:c2:ab:d2: 9b:36:d3:4a:66:89:8b:f6:04:80:06:ef:40:a9:9d: 2a:55:31:83:c1:81:0c:9e:e5:91:9f:75:fd:76:c6: cb:54:c9:72:dd:80:0f:75:3d:6a:97:00:08:1f:a9: 7b:5c:6a:57:59:a8:08:e8:89:6c:af:fb:cd:37:28: cb:1f:fc:85:75:12:ca:bd:d3:9f:3c:00:82:4c:37: af:64:cf:15:31:ba:ec:be:2f:a5:dd:ca:4d:77:d6: e1:ce:51:d6:0f:1a:ad:9c:14:4b:24:1c:b1:ac:df: 08:6b:cf:eb:27:e2:4f:df:4a:e8:5e:5a:4c:e0:a5: 1c:15:0b:c9:63:3c:95:e4:b3:a7:f4:75:3c:f9:7b: 62:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:12:29:F6:A0:7B:92:60:A1:31:36:FB:66:0C:BA:38:39:66:43:ED X509v3 Authority Key Identifier: keyid:1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/uhIp9qB7kmChMTb7Zgy6ODlmQ-0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.98.190.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:c1:76:b3:0e:2e:81:23:ee:93:21:82:cf:8c:11:61:e7:f1: c5:e3:cf:c7:b7:dd:e5:32:00:2d:82:e5:3d:86:66:3e:a6:fc: 09:39:ab:10:f5:79:d1:15:44:37:cb:d3:d4:a9:7c:4b:0a:44: 2c:70:54:90:e0:8e:68:a8:db:a4:11:ee:cd:bc:4f:3f:53:cb: c6:2b:7f:eb:9c:b5:a4:ef:bd:40:96:c5:61:72:b3:af:ca:70: 4e:cb:f4:b4:fa:b3:96:25:d3:67:5e:dc:b2:76:75:b4:74:f9: bc:3d:e4:2e:c4:70:09:13:4f:f2:8e:76:d6:f8:bf:33:ab:ed: 6d:00:d0:21:da:09:1b:43:c6:95:16:9c:e9:4c:9f:f4:9c:02: 0c:80:a6:44:16:48:cc:cf:6c:0d:2e:5b:86:79:e0:80:28:27: d5:aa:4f:98:87:dd:c4:a4:ee:f2:c6:23:44:b1:e2:67:6c:6e: e2:8b:da:79:f9:d9:86:b0:d1:31:8f:5a:d0:78:7c:7b:a2:fd: ec:d7:89:0c:84:9d:fb:aa:06:d5:91:e6:d7:e0:c4:c3:06:fa: da:9b:44:da:ab:f4:bb:88:b1:42:e5:89:f6:1c:41:89:48:50: a8:c2:d5:9e:cc:48:4b:3a:66:fe:d1:d4:29:06:fe:f4:f8:20: 26:69:54:7a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FGfB6VyNJ3zqOPxKpqawMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiMmMyMTlmM2MyOTdiNzc1ODgwYzNiNjUxYTIwMDNmOWJl NmRlNWUwHhcNMjYwMTAyMTQyMDAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTEyMjlmNmEwN2I5MjYwYTEzMTM2ZmI2NjBjYmEzODM5NjY0M2VkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0P/DhquXwj1lzTlTxLRhPVAIZ7hE vjVqFHm7D8xcvXcY7T4eRIIqy1Odf7fXw7crQ0TpK93DyJOiw7PRhT7aGPWv2hq2 AeIbCdbKY+XbbYs3G2k1SR8qgzNvT5PeX8tia9tkrC4CHKkZltIui45GuES5UTPC q9KbNtNKZomL9gSABu9AqZ0qVTGDwYEMnuWRn3X9dsbLVMly3YAPdT1qlwAIH6l7 XGpXWagI6Ilsr/vNNyjLH/yFdRLKvdOfPACCTDevZM8VMbrsvi+l3cpNd9bhzlHW DxqtnBRLJByxrN8Ia8/rJ+JP30roXlpM4KUcFQvJYzyV5LOn9HU8+XtiSwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLoSKfage5JgoTE2+2YMujg5ZkPtMB8GA1UdIwQY MBaAFBssIZ88KXt3WIDDtlGiAD+b5t5eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3l3aG56d3BlM2RZZ01PMlVhSUFQNXZtM2w0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9iMTFhNDAtNDhlOS00ZTA2LWJmMTEt OTJjODFmMjJlNzEyLzEvdWhJcDlxQjdrbUNoTVRiN1pneTZPRGxtUS0wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi9iMTFhNDAtNDhlOS00ZTA2LWJmMTEtOTJjODFmMjJlNzEy LzEvR3l3aG56d3BlM2RZZ01PMlVhSUFQNXZtM2w0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsGK+MA0G CSqGSIb3DQEBCwUAA4IBAQA8wXazDi6BI+6TIYLPjBFh5/HF48/Ht93lMgAtguU9 hmY+pvwJOasQ9XnRFUQ3y9PUqXxLCkQscFSQ4I5oqNukEe7NvE8/U8vGK3/rnLWk 771AlsVhcrOvynBOy/S0+rOWJdNnXtyydnW0dPm8PeQuxHAJE0/yjnbW+L8zq+1t ANAh2gkbQ8aVFpzpTJ/0nAIMgKZEFkjMz2wNLluGeeCAKCfVqk+Yh93EpO7yxiNE seJnbG7ii9p5+dmGsNExj1rQeHx7ov3s14kMhJ37qgbVkebX4MTDBvram0Taq/S7 iLFC5Yn2HEGJSFCowtWezEhLOmb+0dQpBv70+CAmaVR6 -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:27 2026 by rpki-client