This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/uTfCplkKF4NNKr9z0oAQOp5Z6bQ.roa File: uTfCplkKF4NNKr9z0oAQOp5Z6bQ.roa (raw, json) Hash identifier: lIrYsFTfLPn7qzWjWmqg9roRmjTFishbKowqgCzglJ8= Subject key identifier: B9:37:C2:A6:59:0A:17:83:4D:2A:BF:73:D2:80:10:3A:9E:59:E9:B4 Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a Certificate serial: 019B7A5B306905B957E74BFDAC9D1FB22BED Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/uTfCplkKF4NNKr9z0oAQOp5Z6bQ.roa Signing time: Thu 01 Jan 2026 16:19:15 +0000 ROA not before: Thu 01 Jan 2026 16:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48737 IP address blocks: 93.188.135.0/24 maxlen: 24 163.171.215.0/24 maxlen: 24 163.171.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.mft rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:30:69:05:b9:57:e7:4b:fd:ac:9d:1f:b2:2b:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a Validity Not Before: Jan 1 16:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b937c2a6590a17834d2abf73d280103a9e59e9b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bf:50:2b:5e:96:59:65:af:f8:4f:fd:a6:a3: 60:b7:dc:ec:50:6d:72:a5:fa:76:0c:f8:ad:2c:7c: 25:ad:f0:78:c4:ea:a3:00:d8:ee:97:aa:af:85:01: 0f:e2:5b:d3:59:26:7a:7f:77:e9:93:8c:1d:a9:ba: 62:f1:ca:31:3d:6a:28:d8:b2:a2:43:b9:33:56:20: ce:05:da:2b:f6:7b:4f:30:66:24:2b:99:0c:40:37: ff:56:8d:58:69:84:67:03:05:bf:39:82:01:67:26: 98:dc:51:6c:e9:93:79:9a:de:c5:59:29:39:79:a2: 29:79:a3:75:ef:ba:cd:5e:71:99:99:66:3a:d9:31: 93:0b:62:62:8e:8e:d3:c7:73:6c:47:16:8a:c2:af: dd:8e:73:2a:96:00:4c:87:7b:09:ec:d3:bf:14:61: bc:e2:c1:05:c4:4f:e8:48:1b:23:71:01:c9:20:a2: 25:34:0c:24:96:b1:79:18:49:d4:83:7d:49:94:9e: 4e:0a:92:e8:92:33:26:ca:b5:c9:23:24:a0:1a:cd: 99:fd:11:bc:34:57:9d:dc:63:48:6a:f6:5f:ca:79: ad:99:78:0f:fe:17:61:55:f5:3a:27:81:a5:12:ed: 2e:6b:78:9a:cd:ea:a5:41:9c:5e:4d:75:f9:16:3e: 44:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:37:C2:A6:59:0A:17:83:4D:2A:BF:73:D2:80:10:3A:9E:59:E9:B4 X509v3 Authority Key Identifier: keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/uTfCplkKF4NNKr9z0oAQOp5Z6bQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.188.135.0/24 163.171.215.0/24 163.171.252.0/24 Signature Algorithm: sha256WithRSAEncryption 23:3d:74:8f:73:ba:e2:82:1e:94:b9:73:31:07:9f:7a:9a:d5: 25:aa:b2:4a:5c:49:f1:a9:fb:9e:71:9f:ff:9e:e8:f2:f5:2d: ec:41:93:d7:20:1a:21:f5:7f:17:5d:02:5d:9d:88:d7:44:a6: ff:d8:ac:72:e7:e7:21:a4:6f:f8:b2:10:11:de:5f:95:ff:f5: 21:ca:a6:b8:22:5d:1c:35:c8:56:7c:ca:47:7a:c3:56:21:76: 6f:40:09:fd:57:4b:c2:9f:81:4d:52:e0:4a:c2:c6:ef:b4:0d: c3:dc:9e:bc:13:96:72:b5:05:44:65:6a:34:22:dd:a9:90:53: e5:b9:1a:75:99:b0:4c:3f:b3:50:f5:d7:97:19:13:f9:a3:23: 21:bf:11:77:21:56:84:79:66:34:68:95:ca:51:08:38:25:f2: ee:27:e4:3e:31:2a:99:59:73:f2:fd:c6:ae:d1:31:97:93:e8: 85:41:54:16:02:05:43:1a:80:38:25:bd:c3:c2:fb:47:13:1f: 1d:43:df:42:b7:7b:a4:67:7b:c4:9f:83:8c:48:02:82:6c:25: 19:70:0e:0e:32:10:b3:5a:71:44:21:c9:a5:6b:b7:a2:28:a2: 59:a4:8b:c1:b0:1e:5d:0c:f9:45:3f:a5:d1:84:a4:97:44:dd: b9:6d:dd:80 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt6WzBpBblX50v9rJ0fsivtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3YjViMDJkYzQwMTY2NmVlMDQ1YWI5MGNjODg4MTdmZTA5 ZDcwNmEwHhcNMjYwMTAxMTYxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTM3YzJhNjU5MGExNzgzNGQyYWJmNzNkMjgwMTAzYTllNTllOWI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtb9QK16WWWWv+E/9pqNgt9zsUG1y pfp2DPitLHwlrfB4xOqjANjul6qvhQEP4lvTWSZ6f3fpk4wdqbpi8coxPWoo2LKi Q7kzViDOBdor9ntPMGYkK5kMQDf/Vo1YaYRnAwW/OYIBZyaY3FFs6ZN5mt7FWSk5 eaIpeaN177rNXnGZmWY62TGTC2Jijo7Tx3NsRxaKwq/djnMqlgBMh3sJ7NO/FGG8 4sEFxE/oSBsjcQHJIKIlNAwklrF5GEnUg31JlJ5OCpLokjMmyrXJIySgGs2Z/RG8 NFed3GNIavZfynmtmXgP/hdhVfU6J4GlEu0ua3iazeqlQZxeTXX5Fj5EeQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFLk3wqZZCheDTSq/c9KAEDqeWem0MB8GA1UdIwQY MBaAFGe1sC3EAWZu4EWrkMyIgX/gnXBqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjdXd0xjUUJabTdnUmF1UXpJaUJmLUNkY0dvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC82NGEzZGUtODEyYS00YWNlLTgxNGQt YjVkODg4YWRmZDM3LzEvdVRmQ3Bsa0tGNE5OS3I5ejBvQVFPcDVaNmJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC82NGEzZGUtODEyYS00YWNlLTgxNGQtYjVkODg4YWRmZDM3 LzEvWjdXd0xjUUJabTdnUmF1UXpJaUJmLUNkY0dvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAXbyHAwQA o6vXAwQAo6v8MA0GCSqGSIb3DQEBCwUAA4IBAQAjPXSPc7righ6UuXMxB596mtUl qrJKXEnxqfuecZ//nujy9S3sQZPXIBoh9X8XXQJdnYjXRKb/2Kxy5+chpG/4shAR 3l+V//Uhyqa4Il0cNchWfMpHesNWIXZvQAn9V0vCn4FNUuBKwsbvtA3D3J68E5Zy tQVEZWo0It2pkFPluRp1mbBMP7NQ9deXGRP5oyMhvxF3IVaEeWY0aJXKUQg4JfLu J+Q+MSqZWXPy/cau0TGXk+iFQVQWAgVDGoA4Jb3DwvtHEx8dQ99Ct3ukZ3vEn4OM SAKCbCUZcA4OMhCzWnFEIcmla7eiKKJZpIvBsB5dDPlFP6XRhKSXRN25bd2A -----END CERTIFICATE-----Generated at Sun Jan 25 17:36:16 2026 by rpki-client