This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/UWAb0Mm5ky6mNvfi8l5lub5PcCw.roa File: UWAb0Mm5ky6mNvfi8l5lub5PcCw.roa (raw, json) Hash identifier: rcYFsRpcKR+N5ImKsmiN6lJZFUsiQQePgWTGn6uyHLE= Subject key identifier: 51:60:1B:D0:C9:B9:93:2E:A6:36:F7:E2:F2:5E:65:B9:BE:4F:70:2C Certificate issuer: /CN=3aca50858a1856ffa02e91356f14236e7c38b85a Certificate serial: 019B7E38B996119BA89F365BB94AE0D8966E Authority key identifier: 3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/UWAb0Mm5ky6mNvfi8l5lub5PcCw.roa Signing time: Fri 02 Jan 2026 10:20:05 +0000 ROA not before: Fri 02 Jan 2026 10:20:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211366 IP address blocks: 45.9.193.0/24 maxlen: 24 2a0e:1106:3000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:b9:96:11:9b:a8:9f:36:5b:b9:4a:e0:d8:96:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3aca50858a1856ffa02e91356f14236e7c38b85a Validity Not Before: Jan 2 10:20:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=51601bd0c9b9932ea636f7e2f25e65b9be4f702c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:aa:b1:ec:be:b9:89:59:2f:c4:7c:4a:3c:f5: 9c:54:03:ff:e7:68:18:fe:c9:ec:09:99:5a:b3:36: 78:b3:f6:a2:94:66:a0:74:95:1b:01:56:3f:98:d0: 97:5d:a0:c2:36:45:cd:e8:f8:7c:7c:b7:0a:01:63: 87:d6:3d:5a:e8:d1:f6:83:8a:7e:5e:2b:a1:a3:46: 9d:ae:c7:c8:35:db:09:0c:7a:3b:34:74:1c:77:53: 82:c4:a5:c0:43:12:cc:6b:63:e1:b5:87:81:b1:92: a4:cf:a7:78:b9:8d:38:ad:5a:b6:0e:86:2a:cb:a8: 89:c7:4e:a5:74:01:ef:84:56:b1:54:d6:b1:d9:ac: 9e:6b:21:ef:81:b7:72:ca:22:d5:ee:93:f8:f5:a1: 0c:68:de:24:a1:97:dc:16:ba:11:3c:2c:97:50:9c: 6f:16:da:42:ae:1e:f5:e3:61:3f:95:fe:19:56:8e: b6:5e:eb:67:de:12:43:6c:26:7d:cd:e2:50:c7:3b: 2e:64:4e:ae:f5:54:1d:a7:73:b0:4c:ea:f5:55:af: bd:a5:ed:7a:d2:ce:91:9c:06:36:4b:f8:af:89:58: a4:6f:75:8a:4b:c7:b6:c8:bf:2f:35:e8:38:b2:4c: fd:98:d8:63:a3:f3:c2:13:c6:36:d1:d8:5a:f8:ef: 39:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:60:1B:D0:C9:B9:93:2E:A6:36:F7:E2:F2:5E:65:B9:BE:4F:70:2C X509v3 Authority Key Identifier: keyid:3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/UWAb0Mm5ky6mNvfi8l5lub5PcCw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.9.193.0/24 IPv6: 2a0e:1106:3000::/40 Signature Algorithm: sha256WithRSAEncryption be:9e:c9:61:1b:6e:00:c9:1d:19:3c:c4:fb:2b:2c:3a:ee:69: f2:40:e8:93:f5:c8:c3:54:96:8f:8d:eb:f6:e6:e0:e8:7f:83: d9:37:40:32:f3:d3:03:d4:cc:ee:ef:77:1d:53:25:f7:fd:ab: f9:7f:47:0e:fe:ea:61:00:6e:cc:13:57:5d:99:e9:66:f1:6f: c2:9c:60:5b:44:65:89:ba:7f:95:8b:34:e0:82:90:24:67:22: 5c:c0:5d:0d:ae:a2:86:37:60:a1:b3:32:28:e7:ca:41:2d:0e: 3b:20:78:ca:a3:48:4c:77:22:73:a0:d6:c9:4b:07:a3:3a:7f: 07:1c:d7:05:1d:96:fd:07:76:62:03:bc:70:09:ae:34:be:7d: 3f:68:ce:a7:95:d7:59:a9:e9:9b:38:7d:6c:9b:6a:2b:c8:8a: 58:a8:6c:5b:36:7a:cf:09:dc:d2:cc:76:37:c1:6d:01:58:e3: e3:21:63:86:87:eb:eb:f0:3c:a7:8d:f9:e2:50:35:77:b8:63: 2e:ed:ca:5f:ab:fc:bd:46:c5:f4:36:88:a3:98:38:78:13:19: 8a:41:92:14:84:8b:a6:1f:a7:3a:1d:cc:0d:d0:86:4e:89:68: 29:63:cb:03:24:8c:19:8b:c0:22:17:d5:01:c2:c1:a5:17:51: 48:f8:e4:e2 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt+OLmWEZuonzZbuUrg2JZuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhY2E1MDg1OGExODU2ZmZhMDJlOTEzNTZmMTQyMzZlN2Mz OGI4NWEwHhcNMjYwMTAyMTAyMDA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MTYwMWJkMGM5Yjk5MzJlYTYzNmY3ZTJmMjVlNjViOWJlNGY3MDJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Kqx7L65iVkvxHxKPPWcVAP/52gY /snsCZlaszZ4s/ailGagdJUbAVY/mNCXXaDCNkXN6Ph8fLcKAWOH1j1a6NH2g4p+ Xiuho0adrsfINdsJDHo7NHQcd1OCxKXAQxLMa2PhtYeBsZKkz6d4uY04rVq2DoYq y6iJx06ldAHvhFaxVNax2ayeayHvgbdyyiLV7pP49aEMaN4koZfcFroRPCyXUJxv FtpCrh7142E/lf4ZVo62Xutn3hJDbCZ9zeJQxzsuZE6u9VQdp3OwTOr1Va+9pe16 0s6RnAY2S/iviVikb3WKS8e2yL8vNeg4skz9mNhjo/PCE8Y20dha+O85GwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFFFgG9DJuZMupjb34vJeZbm+T3AsMB8GA1UdIwQY MBaAFDrKUIWKGFb/oC6RNW8UI258OLhaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3NwUWhZb1lWdi1nTHBFMWJ4UWpibnc0dUZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8xMmI5MzctODkwZC00N2I1LWEwNDEt MzMxZDdmYzc3YmQ0LzEvVVdBYjBNbTVreTZtTnZmaThsNWx1YjVQY0N3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS8xMmI5MzctODkwZC00N2I1LWEwNDEtMzMxZDdmYzc3YmQ0 LzEvT3NwUWhZb1lWdi1nTHBFMWJ4UWpibnc0dUZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQALQnBMA4E AgACMAgDBgAqDhEGMDANBgkqhkiG9w0BAQsFAAOCAQEAvp7JYRtuAMkdGTzE+yss Ou5p8kDok/XIw1SWj43r9ubg6H+D2TdAMvPTA9TM7u93HVMl9/2r+X9HDv7qYQBu zBNXXZnpZvFvwpxgW0Rlibp/lYs04IKQJGciXMBdDa6ihjdgobMyKOfKQS0OOyB4 yqNITHcic6DWyUsHozp/BxzXBR2W/Qd2YgO8cAmuNL59P2jOp5XXWanpmzh9bJtq K8iKWKhsWzZ6zwnc0sx2N8FtAVjj4yFjhofr6/A8p4354lA1d7hjLu3KX6v8vUbF 9DaIo5g4eBMZikGSFISLph+nOh3MDdCGToloKWPLAySMGYvAIhfVAcLBpRdRSPjk 4g== -----END CERTIFICATE-----Generated at Mon Jan 26 02:43:53 2026 by rpki-client