This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/757fc5-8029-4828-8547-62e260313e4c/1/uyOFyGJDHMXG3t3pO277WLsoGqE.roa File: uyOFyGJDHMXG3t3pO277WLsoGqE.roa (raw, json) Hash identifier: BzXP/08Zx0Wir6Qt4Wu5utPmmZQXa+TM9Drawn5Grls= Subject key identifier: BB:23:85:C8:62:43:1C:C5:C6:DE:DD:E9:3B:6E:FB:58:BB:28:1A:A1 Certificate issuer: /CN=9b89b8cf47f7c485d628d0a359a16a815cd004ab Certificate serial: 019B76EB6746395191D26E98E5185F14D6E6 Authority key identifier: 9B:89:B8:CF:47:F7:C4:85:D6:28:D0:A3:59:A1:6A:81:5C:D0:04:AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m4m4z0f3xIXWKNCjWaFqgVzQBKs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/757fc5-8029-4828-8547-62e260313e4c/1/uyOFyGJDHMXG3t3pO277WLsoGqE.roa Signing time: Thu 01 Jan 2026 00:18:17 +0000 ROA not before: Thu 01 Jan 2026 00:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209635 IP address blocks: 185.185.78.0/23 maxlen: 23 185.185.79.0/24 maxlen: 24 2a0f:a0c0:fffe::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/757fc5-8029-4828-8547-62e260313e4c/1/m4m4z0f3xIXWKNCjWaFqgVzQBKs.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/757fc5-8029-4828-8547-62e260313e4c/1/m4m4z0f3xIXWKNCjWaFqgVzQBKs.mft rsync://rpki.ripe.net/repository/DEFAULT/m4m4z0f3xIXWKNCjWaFqgVzQBKs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 00:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:67:46:39:51:91:d2:6e:98:e5:18:5f:14:d6:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9b89b8cf47f7c485d628d0a359a16a815cd004ab Validity Not Before: Jan 1 00:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bb2385c862431cc5c6dedde93b6efb58bb281aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e1:34:fe:a0:3b:c7:30:76:5a:29:db:58:30: f1:a9:80:db:76:a6:a9:fa:91:88:a1:db:f9:51:bf: cd:9b:96:68:c0:9e:31:8d:94:a5:20:9c:4f:38:9d: e5:75:88:70:7e:f9:68:4e:cd:a0:2a:9e:04:b2:c5: 99:08:4a:d5:75:bd:e7:05:25:4a:c4:14:28:d0:05: c5:55:8a:78:e9:f1:cb:87:a1:e1:03:2e:98:cc:14: ae:a6:65:a1:d5:ab:33:eb:06:c9:d0:8b:13:5b:0a: 53:2b:6d:60:cb:1b:44:5c:59:6b:5e:6b:fd:ab:74: 1f:9e:56:f8:ca:79:76:d6:30:c0:0d:ca:27:47:20: 29:dd:39:52:1c:8f:4f:a7:70:e5:63:e0:e6:02:11: 16:40:99:8f:82:bb:52:db:21:f8:14:5a:44:b4:5f: 91:ab:cb:00:ac:46:b7:b4:2c:7f:92:76:e2:e0:d8: b5:16:53:b5:1a:62:1b:81:cf:4f:44:be:4a:f4:f1: e2:0d:aa:24:c7:8f:ff:56:d9:cd:a9:e6:f6:96:50: ae:73:79:d6:7a:b7:e0:b6:08:a3:65:3b:bd:45:e9: f0:65:6c:49:f2:67:b0:06:0c:d3:39:2f:af:d5:31: a2:61:8a:12:db:e3:50:c4:85:08:62:b6:8c:81:78: a9:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:23:85:C8:62:43:1C:C5:C6:DE:DD:E9:3B:6E:FB:58:BB:28:1A:A1 X509v3 Authority Key Identifier: keyid:9B:89:B8:CF:47:F7:C4:85:D6:28:D0:A3:59:A1:6A:81:5C:D0:04:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m4m4z0f3xIXWKNCjWaFqgVzQBKs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/757fc5-8029-4828-8547-62e260313e4c/1/uyOFyGJDHMXG3t3pO277WLsoGqE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/757fc5-8029-4828-8547-62e260313e4c/1/m4m4z0f3xIXWKNCjWaFqgVzQBKs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.185.78.0/23 IPv6: 2a0f:a0c0:fffe::/47 Signature Algorithm: sha256WithRSAEncryption 81:7d:b7:14:0d:81:7d:d9:fc:53:7d:47:ad:76:58:98:4b:6a: c6:40:6b:e1:a6:35:66:ac:88:46:18:17:f5:05:ae:25:ad:03: bd:00:8f:67:6e:14:e3:5e:0a:36:e9:dc:ce:66:27:76:d6:b6: 50:3d:78:d3:85:b4:05:44:90:df:72:3b:38:68:de:2d:a8:a6: 9d:a6:04:10:2a:fe:e1:84:9e:13:1c:bb:e3:d6:f2:07:e8:95: dc:ec:4e:4c:2d:c8:02:27:f1:59:1d:5a:98:20:41:14:8a:48: d4:f7:31:b8:d1:6b:b1:1c:47:fd:64:d2:f2:ee:6e:dc:12:7d: 33:ed:3e:be:68:72:e2:af:18:53:79:9c:95:4b:7c:3c:de:ce: cf:d1:d5:3c:c5:d6:00:ef:c5:19:a3:99:e5:d6:ac:27:03:a3: 86:81:4c:bf:ff:81:4f:f7:98:9d:37:f5:18:b7:78:19:21:a5: 6e:c3:34:61:d2:3d:2e:06:e6:ef:a0:1c:b0:31:25:3f:cc:0d: c8:1d:5f:4f:f6:e8:ab:c7:14:02:0a:e5:5e:5f:6b:9f:42:dc: 85:bc:9f:b0:6a:58:6c:60:9f:40:d8:86:ff:f1:56:cd:81:48: 52:32:a9:f6:af:bc:3f:a8:2d:67:ad:db:24:08:fd:07:37:56: 4f:c4:e4:1c -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt262dGOVGR0m6Y5RhfFNbmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliODliOGNmNDdmN2M0ODVkNjI4ZDBhMzU5YTE2YTgxNWNk MDA0YWIwHhcNMjYwMTAxMDAxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYjIzODVjODYyNDMxY2M1YzZkZWRkZTkzYjZlZmI1OGJiMjgxYWExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxeE0/qA7xzB2WinbWDDxqYDbdqap +pGIodv5Ub/Nm5ZowJ4xjZSlIJxPOJ3ldYhwfvloTs2gKp4EssWZCErVdb3nBSVK xBQo0AXFVYp46fHLh6HhAy6YzBSupmWh1asz6wbJ0IsTWwpTK21gyxtEXFlrXmv9 q3Qfnlb4ynl21jDADconRyAp3TlSHI9Pp3DlY+DmAhEWQJmPgrtS2yH4FFpEtF+R q8sArEa3tCx/knbi4Ni1FlO1GmIbgc9PRL5K9PHiDaokx4//VtnNqeb2llCuc3nW erfgtgijZTu9RenwZWxJ8mewBgzTOS+v1TGiYYoS2+NQxIUIYraMgXipTwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFLsjhchiQxzFxt7d6Ttu+1i7KBqhMB8GA1UdIwQY MBaAFJuJuM9H98SF1ijQo1mhaoFc0ASrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTRtNHowZjN4SVhXS05DaldhRnFnVnpRQktzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS83NTdmYzUtODAyOS00ODI4LTg1NDct NjJlMjYwMzEzZTRjLzEvdXlPRnlHSkRITVhHM3QzcE8yNzdXTHNvR3FFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS83NTdmYzUtODAyOS00ODI4LTg1NDctNjJlMjYwMzEzZTRj LzEvbTRtNHowZjN4SVhXS05DaldhRnFnVnpRQktzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBublOMA8E AgACMAkDBwEqD6DA//4wDQYJKoZIhvcNAQELBQADggEBAIF9txQNgX3Z/FN9R612 WJhLasZAa+GmNWasiEYYF/UFriWtA70Aj2duFONeCjbp3M5mJ3bWtlA9eNOFtAVE kN9yOzho3i2opp2mBBAq/uGEnhMcu+PW8gfoldzsTkwtyAIn8VkdWpggQRSKSNT3 MbjRa7EcR/1k0vLubtwSfTPtPr5ocuKvGFN5nJVLfDzezs/R1TzF1gDvxRmjmeXW rCcDo4aBTL//gU/3mJ039Ri3eBkhpW7DNGHSPS4G5u+gHLAxJT/MDcgdX0/26KvH FAIK5V5fa59C3IW8n7BqWGxgn0DYhv/xVs2BSFIyqfavvD+oLWet2yQI/Qc3Vk/E 5Bw= -----END CERTIFICATE-----Generated at Sun Jan 25 11:17:06 2026 by rpki-client