This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5047e8-c547-4b75-afc0-c6ece5901580/1/U7ys6itFnvuaePn4ScsbAtbzsp0.roa File: U7ys6itFnvuaePn4ScsbAtbzsp0.roa (raw, json) Hash identifier: d+i6tJ5mzYcRwG/S0qIlnLIWWa0XIkizyeSNRfnsoAI= Subject key identifier: 53:BC:AC:EA:2B:45:9E:FB:9A:78:F9:F8:49:CB:1B:02:D6:F3:B2:9D Certificate issuer: /CN=c0f0ee9842627031eca264dac65e5fef63943f98 Certificate serial: 019B78A217CB6DADA1C8E41083545052C061 Authority key identifier: C0:F0:EE:98:42:62:70:31:EC:A2:64:DA:C6:5E:5F:EF:63:94:3F:98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wPDumEJicDHsomTaxl5f72OUP5g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5047e8-c547-4b75-afc0-c6ece5901580/1/U7ys6itFnvuaePn4ScsbAtbzsp0.roa Signing time: Thu 01 Jan 2026 08:17:27 +0000 ROA not before: Thu 01 Jan 2026 08:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28952 IP address blocks: 90.176.0.0/19 maxlen: 19 90.176.13.0/24 maxlen: 24 185.103.144.0/22 maxlen: 22 2a06:2c40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/5047e8-c547-4b75-afc0-c6ece5901580/1/wPDumEJicDHsomTaxl5f72OUP5g.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/5047e8-c547-4b75-afc0-c6ece5901580/1/wPDumEJicDHsomTaxl5f72OUP5g.mft rsync://rpki.ripe.net/repository/DEFAULT/wPDumEJicDHsomTaxl5f72OUP5g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:17:cb:6d:ad:a1:c8:e4:10:83:54:50:52:c0:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c0f0ee9842627031eca264dac65e5fef63943f98 Validity Not Before: Jan 1 08:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=53bcacea2b459efb9a78f9f849cb1b02d6f3b29d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:71:c9:36:2f:1a:0c:2f:4e:63:21:1f:8f:d8: e7:6f:0e:21:9f:c0:17:6f:40:84:a8:e3:ee:fe:88: 36:fb:73:06:a2:7f:fd:92:40:ba:93:83:c8:ac:ac: 1c:37:fc:ff:f2:78:2b:fa:7e:8a:14:9b:76:ea:52: ba:a4:86:35:34:a9:24:70:68:84:e5:0f:35:bb:ae: a2:fd:be:72:72:10:fd:ad:a6:72:71:76:dc:b3:db: 4f:b7:83:b7:36:ee:af:bf:5f:92:0d:f6:0a:7e:3e: a6:a3:d5:58:d0:70:d8:fb:7d:05:e4:a6:26:11:00: be:53:7d:75:d1:7f:b8:26:77:0b:f5:02:e6:38:b3: bd:33:6d:23:07:b5:d1:da:db:1b:ea:df:1a:5e:0a: 46:86:d3:3a:4a:e9:eb:b1:87:f6:62:f7:a1:a7:84: de:04:f6:bc:00:c3:06:d2:64:e3:54:05:8e:3b:00: 47:6a:46:bd:d0:f5:13:12:dd:58:4e:3d:03:89:1b: d9:07:a6:c5:22:f5:f9:99:55:e9:e9:e3:21:3a:c5: a0:21:88:95:25:a0:16:25:e9:8a:6b:b3:66:ed:7f: ae:fa:d1:92:ae:02:87:de:63:a6:7b:19:4b:79:68: 25:6f:a1:89:1f:e6:e1:e7:85:8b:43:17:ac:9a:a8: 42:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:BC:AC:EA:2B:45:9E:FB:9A:78:F9:F8:49:CB:1B:02:D6:F3:B2:9D X509v3 Authority Key Identifier: keyid:C0:F0:EE:98:42:62:70:31:EC:A2:64:DA:C6:5E:5F:EF:63:94:3F:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wPDumEJicDHsomTaxl5f72OUP5g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5047e8-c547-4b75-afc0-c6ece5901580/1/U7ys6itFnvuaePn4ScsbAtbzsp0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5047e8-c547-4b75-afc0-c6ece5901580/1/wPDumEJicDHsomTaxl5f72OUP5g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 90.176.0.0/19 185.103.144.0/22 IPv6: 2a06:2c40::/29 Signature Algorithm: sha256WithRSAEncryption 64:5f:b8:a8:8c:65:8e:b6:de:4b:71:e4:66:5f:e3:51:46:95: 97:c2:87:ad:3c:9d:51:e9:91:e1:41:96:94:77:70:e4:e2:44: 36:b8:3c:50:1f:00:bf:ac:a8:df:6c:e3:7e:65:5d:5e:90:c0: 19:b2:42:3f:fc:5e:cb:4a:2a:0c:f5:87:e1:09:07:dc:3b:ff: 3c:a7:3e:af:1a:6a:e9:fa:71:33:b8:c2:c6:00:47:ae:b4:06: 92:4f:75:92:c7:58:cb:65:fb:b7:19:19:26:9b:53:5d:dd:e4: 30:c1:7c:7f:14:f7:92:69:ee:cc:68:c0:64:ac:92:e6:80:5d: ec:c4:0e:62:d6:22:91:84:02:03:6b:f8:ba:46:81:15:5a:ed: 57:36:ee:94:58:be:78:73:3f:e4:44:a9:dd:f5:da:1d:d0:73: 59:39:ae:aa:d7:97:e2:bf:32:d1:36:1b:6a:07:4d:e9:b8:55: f5:ef:97:14:35:9e:32:58:38:aa:9e:2b:40:67:0d:f3:51:8c: 0b:98:b5:46:55:c2:ac:01:6c:4c:cb:3f:60:c6:0c:7b:a3:cf: b3:11:0a:38:0f:92:22:07:c3:c8:f1:41:6d:27:ec:74:c8:9b: d2:e0:a3:a2:82:a0:e1:1e:6f:35:3c:ab:d4:21:cb:2d:8c:88: 9d:62:69:c1 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt4ohfLba2hyOQQg1RQUsBhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwZjBlZTk4NDI2MjcwMzFlY2EyNjRkYWM2NWU1ZmVmNjM5 NDNmOTgwHhcNMjYwMTAxMDgxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1M2JjYWNlYTJiNDU5ZWZiOWE3OGY5Zjg0OWNiMWIwMmQ2ZjNiMjlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzHHJNi8aDC9OYyEfj9jnbw4hn8AX b0CEqOPu/og2+3MGon/9kkC6k4PIrKwcN/z/8ngr+n6KFJt26lK6pIY1NKkkcGiE 5Q81u66i/b5ychD9raZycXbcs9tPt4O3Nu6vv1+SDfYKfj6mo9VY0HDY+30F5KYm EQC+U3110X+4JncL9QLmOLO9M20jB7XR2tsb6t8aXgpGhtM6SunrsYf2Yvehp4Te BPa8AMMG0mTjVAWOOwBHaka90PUTEt1YTj0DiRvZB6bFIvX5mVXp6eMhOsWgIYiV JaAWJemKa7Nm7X+u+tGSrgKH3mOmexlLeWglb6GJH+bh54WLQxesmqhCgwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFFO8rOorRZ77mnj5+EnLGwLW87KdMB8GA1UdIwQY MBaAFMDw7phCYnAx7KJk2sZeX+9jlD+YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd1BEdW1FSmljREhzb21UYXhsNWY3Mk9VUDVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy81MDQ3ZTgtYzU0Ny00Yjc1LWFmYzAt YzZlY2U1OTAxNTgwLzEvVTd5czZpdEZudnVhZVBuNFNjc2JBdGJ6c3AwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy81MDQ3ZTgtYzU0Ny00Yjc1LWFmYzAtYzZlY2U1OTAxNTgw LzEvd1BEdW1FSmljREhzb21UYXhsNWY3Mk9VUDVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQFWrAAAwQC uWeQMA0EAgACMAcDBQMqBixAMA0GCSqGSIb3DQEBCwUAA4IBAQBkX7iojGWOtt5L ceRmX+NRRpWXwoetPJ1R6ZHhQZaUd3Dk4kQ2uDxQHwC/rKjfbON+ZV1ekMAZskI/ /F7LSioM9YfhCQfcO/88pz6vGmrp+nEzuMLGAEeutAaST3WSx1jLZfu3GRkmm1Nd 3eQwwXx/FPeSae7MaMBkrJLmgF3sxA5i1iKRhAIDa/i6RoEVWu1XNu6UWL54cz/k RKnd9dod0HNZOa6q15fivzLRNhtqB03puFX175cUNZ4yWDiqnitAZw3zUYwLmLVG VcKsAWxMyz9gxgx7o8+zEQo4D5IiB8PI8UFtJ+x0yJvS4KOigqDhHm81PKvUIcst jIidYmnB -----END CERTIFICATE-----Generated at Mon Jan 26 09:23:52 2026 by rpki-client