This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/UPIaBkWGzaTy0TA3-tI_LkKobzM.roa File: UPIaBkWGzaTy0TA3-tI_LkKobzM.roa (raw, json) Hash identifier: oDZ/80oreUTLVvbpSGCNCk34aNFM0ewW7BPpkE4J5wo= Subject key identifier: 50:F2:1A:06:45:86:CD:A4:F2:D1:30:37:FA:D2:3F:2E:42:A8:6F:33 Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47 Certificate serial: 019B7CEE053511C18BE4F09EF1CBD4D2F076 Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/UPIaBkWGzaTy0TA3-tI_LkKobzM.roa Signing time: Fri 02 Jan 2026 04:18:52 +0000 ROA not before: Fri 02 Jan 2026 04:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209274 IP address blocks: 80.71.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.mft rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:05:35:11:c1:8b:e4:f0:9e:f1:cb:d4:d2:f0:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47 Validity Not Before: Jan 2 04:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=50f21a064586cda4f2d13037fad23f2e42a86f33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:99:68:3e:79:d2:83:16:e9:a6:b3:55:b2:f3: 86:d8:bc:d1:a1:e8:e6:d2:e4:64:71:ef:23:7b:37: 33:2a:ce:ee:e9:31:03:28:62:21:b8:5c:41:93:99: 0c:ad:ec:35:0e:3a:41:89:4b:ee:31:ca:11:64:90: 7a:b8:ef:2e:7f:2b:25:92:93:56:f0:2d:24:92:7a: 00:79:8d:0b:7d:34:28:4c:ae:00:a9:a6:24:c0:75: b0:75:50:db:2f:3d:b0:bf:02:46:25:b6:09:ff:5c: de:6f:dc:c1:f7:9d:42:e6:2d:b6:af:f0:79:13:b2: a0:96:a9:d7:d8:f3:3d:89:eb:ea:b9:c4:62:ae:1c: 57:35:70:e1:9e:18:74:3c:da:7e:03:69:fc:02:1d: eb:25:83:31:97:6f:1a:6d:bc:f1:81:7b:0d:f4:fd: 65:77:d1:25:e2:68:c9:84:a3:66:8a:c9:d0:8b:db: a5:73:91:98:41:6f:bc:21:03:38:63:70:e4:fe:14: e9:dd:2d:14:6d:4c:d2:7e:12:d5:7e:55:f9:77:d7: a3:7e:ff:56:34:13:f0:e1:df:d8:f2:5f:84:a0:53: 05:5c:20:10:06:cf:b8:d2:bf:8f:15:86:17:1a:68: 2f:70:77:16:fd:30:49:df:45:6f:39:63:31:86:34: f2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:F2:1A:06:45:86:CD:A4:F2:D1:30:37:FA:D2:3F:2E:42:A8:6F:33 X509v3 Authority Key Identifier: keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/UPIaBkWGzaTy0TA3-tI_LkKobzM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.71.224.0/24 Signature Algorithm: sha256WithRSAEncryption 65:0d:94:17:49:90:e6:a3:52:28:37:94:ac:69:bc:48:ba:eb: 0a:c3:00:ee:b9:54:e7:ad:e7:35:ff:d4:5e:86:39:72:3c:f8: 54:34:b7:80:6c:f9:85:68:da:a1:4d:88:cc:a1:d6:85:da:80: e6:1d:16:50:c4:32:07:b8:bf:0a:c1:23:2f:e2:c2:56:02:c7: 7c:db:61:89:94:78:f4:82:29:e8:d9:54:fa:ce:98:47:cc:43: 1e:2d:e0:75:07:f1:6b:47:6e:2e:e3:54:b1:03:ed:26:0d:75: 36:a4:48:44:6e:64:3e:73:8e:52:2a:2e:50:ae:da:35:bf:24: 7a:04:b1:b5:09:24:53:22:a0:e0:3f:cb:5b:05:4b:d0:b7:78: 60:80:77:1c:7e:c6:81:eb:2c:64:97:18:ce:92:1e:33:a7:d1: f8:eb:fa:54:26:ad:c2:ad:f7:e1:45:5a:e0:d7:a3:8d:81:d8: c7:f8:50:06:a4:25:63:17:28:fd:4b:1d:04:e1:60:cc:9d:93: 00:fd:a1:f1:68:c4:76:a2:de:27:80:dc:0e:ab:eb:60:26:01: ff:f2:16:05:2c:a5:73:77:d5:21:c5:b7:e7:c2:4c:e0:ce:dd: 5b:4a:43:6b:93:98:23:37:4f:c5:f4:30:95:37:e5:66:21:69: ab:9f:c8:a0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87gU1EcGL5PCe8cvU0vB2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx MDhlNDcwHhcNMjYwMTAyMDQxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MGYyMWEwNjQ1ODZjZGE0ZjJkMTMwMzdmYWQyM2YyZTQyYTg2ZjMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmploPnnSgxbpprNVsvOG2LzRoejm 0uRkce8jezczKs7u6TEDKGIhuFxBk5kMrew1DjpBiUvuMcoRZJB6uO8ufyslkpNW 8C0kknoAeY0LfTQoTK4AqaYkwHWwdVDbLz2wvwJGJbYJ/1zeb9zB951C5i22r/B5 E7KglqnX2PM9ievqucRirhxXNXDhnhh0PNp+A2n8Ah3rJYMxl28abbzxgXsN9P1l d9El4mjJhKNmisnQi9ulc5GYQW+8IQM4Y3Dk/hTp3S0UbUzSfhLVflX5d9ejfv9W NBPw4d/Y8l+EoFMFXCAQBs+40r+PFYYXGmgvcHcW/TBJ30VvOWMxhjTyLwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFDyGgZFhs2k8tEwN/rSPy5CqG8zMB8GA1UdIwQY MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt MTkxODliM2M5YzdkLzEvVVBJYUJrV0d6YVR5MFRBMy10SV9Ma0tvYnpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEfgMA0G CSqGSIb3DQEBCwUAA4IBAQBlDZQXSZDmo1IoN5SsabxIuusKwwDuuVTnrec1/9Re hjlyPPhUNLeAbPmFaNqhTYjModaF2oDmHRZQxDIHuL8KwSMv4sJWAsd822GJlHj0 gino2VT6zphHzEMeLeB1B/FrR24u41SxA+0mDXU2pEhEbmQ+c45SKi5Qrto1vyR6 BLG1CSRTIqDgP8tbBUvQt3hggHccfsaB6yxklxjOkh4zp9H46/pUJq3CrffhRVrg 16ONgdjH+FAGpCVjFyj9Sx0E4WDMnZMA/aHxaMR2ot4ngNwOq+tgJgH/8hYFLKVz d9Uhxbfnwkzgzt1bSkNrk5gjN0/F9DCVN+VmIWmrn8ig -----END CERTIFICATE-----Generated at Sun Jan 25 14:04:43 2026 by rpki-client