This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/ugMrWtr-AgbWpTxdCrlYjC4RyWA.roa File: ugMrWtr-AgbWpTxdCrlYjC4RyWA.roa (raw, json) Hash identifier: 5ukMlR12Rye0g+suC8BFsAQhk/pWlg5h05IGSX13iYM= Subject key identifier: BA:03:2B:5A:DA:FE:02:06:D6:A5:3C:5D:0A:B9:58:8C:2E:11:C9:60 Certificate issuer: /CN=4074a7895875cf2c678544f6ce6f4b239f4929fb Certificate serial: 019B7CED481166C594C251286DFC49468C24 Authority key identifier: 40:74:A7:89:58:75:CF:2C:67:85:44:F6:CE:6F:4B:23:9F:49:29:FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/ugMrWtr-AgbWpTxdCrlYjC4RyWA.roa Signing time: Fri 02 Jan 2026 04:18:03 +0000 ROA not before: Fri 02 Jan 2026 04:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5564 IP address blocks: 194.247.64.0/19 maxlen: 24 213.128.224.0/19 maxlen: 24 2a00:5580::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:48:11:66:c5:94:c2:51:28:6d:fc:49:46:8c:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4074a7895875cf2c678544f6ce6f4b239f4929fb Validity Not Before: Jan 2 04:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba032b5adafe0206d6a53c5d0ab9588c2e11c960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:2a:7e:47:4e:2a:8d:98:81:71:43:3a:40:a2: 88:56:2d:a6:a2:db:6d:34:e7:49:4b:a8:02:9f:29: 1d:f5:bd:8f:d3:ca:f8:1d:9c:b0:0b:95:e1:c8:d0: d2:dd:43:df:19:cb:7e:21:78:60:b6:3d:37:6b:7c: c2:7c:f7:3e:f2:25:99:c7:7f:de:bb:f3:3f:e1:9f: 28:17:e2:19:25:f0:7f:66:1a:b3:0d:06:a7:9f:db: 04:43:c1:c1:ac:29:c9:78:d1:15:12:34:ac:ee:49: ce:dd:6e:66:5d:85:77:f7:eb:d1:fe:b4:66:f5:1a: 41:af:d5:9a:14:9e:26:46:f8:14:0f:c8:53:81:36: 32:62:ee:18:88:5f:ea:3f:99:7f:a4:ac:d2:ac:0a: 0b:5d:5d:1c:5e:59:a7:6e:99:c9:83:2b:df:d4:8c: ae:98:7e:37:e2:02:d2:67:f4:14:91:19:7f:b6:85: 11:c9:33:45:6a:36:1d:64:41:27:ce:6e:bd:75:ce: 4e:55:15:14:84:7a:16:1c:6b:3f:cf:e4:d3:8a:dd: c9:49:cb:b3:97:32:1c:73:b5:65:1b:40:3e:3c:1a: 89:7b:79:a7:c5:bc:23:a6:3a:fb:bc:5c:31:66:3d: e8:e6:49:f4:99:01:5f:1b:b9:5c:5f:b2:af:23:d3: 2c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:03:2B:5A:DA:FE:02:06:D6:A5:3C:5D:0A:B9:58:8C:2E:11:C9:60 X509v3 Authority Key Identifier: keyid:40:74:A7:89:58:75:CF:2C:67:85:44:F6:CE:6F:4B:23:9F:49:29:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/ugMrWtr-AgbWpTxdCrlYjC4RyWA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.247.64.0/19 213.128.224.0/19 IPv6: 2a00:5580::/29 Signature Algorithm: sha256WithRSAEncryption 0d:72:ee:88:95:1c:f1:bf:ec:8c:44:a0:7e:bc:19:71:e3:11: 0d:89:50:9b:34:85:58:5d:ab:7d:91:cf:06:d9:95:f0:6a:21: 98:33:73:ab:03:cb:65:79:f0:84:5c:e4:0a:3a:1b:9a:38:8f: aa:a5:05:92:a1:22:0c:e7:47:c7:d0:1d:f6:eb:65:fd:94:c0: cc:d7:57:94:2b:d6:19:cc:86:b1:ab:36:ec:c7:d9:62:79:05: 21:24:61:23:8a:f4:a0:65:2e:e2:e4:dc:1a:ed:f1:4f:b4:00: 12:14:61:36:2c:a5:cb:41:03:93:0d:83:b4:c4:e4:d9:30:e0: 2f:8b:9e:29:f4:62:ad:9a:2e:c3:bd:ab:55:19:ef:7c:e2:c9: f0:89:45:f3:93:b0:0b:65:f3:62:a4:fe:ff:18:47:24:07:c7: cb:9a:7a:66:dc:4f:a7:3f:4f:08:74:69:92:b4:2c:cd:07:90: 32:84:a2:15:1f:65:c6:d3:cf:b3:33:d6:38:c7:e8:f5:d0:f4: bb:8e:90:69:cc:79:2d:37:57:42:1f:a8:c2:75:80:89:6c:57: 99:f1:7d:b6:cf:e4:42:57:91:2e:3f:fc:7e:73:cb:a6:bf:83: ea:1e:73:b8:2b:57:f0:16:59:80:c7:eb:bf:0c:16:bf:b8:20: f4:52:82:b7 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt87UgRZsWUwlEobfxJRowkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwNzRhNzg5NTg3NWNmMmM2Nzg1NDRmNmNlNmY0YjIzOWY0 OTI5ZmIwHhcNMjYwMTAyMDQxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTAzMmI1YWRhZmUwMjA2ZDZhNTNjNWQwYWI5NTg4YzJlMTFjOTYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkip+R04qjZiBcUM6QKKIVi2mottt NOdJS6gCnykd9b2P08r4HZywC5XhyNDS3UPfGct+IXhgtj03a3zCfPc+8iWZx3/e u/M/4Z8oF+IZJfB/ZhqzDQann9sEQ8HBrCnJeNEVEjSs7knO3W5mXYV39+vR/rRm 9RpBr9WaFJ4mRvgUD8hTgTYyYu4YiF/qP5l/pKzSrAoLXV0cXlmnbpnJgyvf1Iyu mH434gLSZ/QUkRl/toURyTNFajYdZEEnzm69dc5OVRUUhHoWHGs/z+TTit3JScuz lzIcc7VlG0A+PBqJe3mnxbwjpjr7vFwxZj3o5kn0mQFfG7lcX7KvI9Ms7QIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFLoDK1ra/gIG1qU8XQq5WIwuEclgMB8GA1UdIwQY MBaAFEB0p4lYdc8sZ4VE9s5vSyOfSSn7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUhTbmlWaDF6eXhuaFVUMnptOUxJNTlKS2ZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9kMTc3ZGMtNDNiMy00YmRkLThiZjUt ZjUyZDYwNjRkZDhiLzEvdWdNcld0ci1BZ2JXcFR4ZENybFlqQzRSeVdBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC9kMTc3ZGMtNDNiMy00YmRkLThiZjUtZjUyZDYwNjRkZDhi LzEvUUhTbmlWaDF6eXhuaFVUMnptOUxJNTlKS2ZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQFwvdAAwQF 1YDgMA0EAgACMAcDBQMqAFWAMA0GCSqGSIb3DQEBCwUAA4IBAQANcu6IlRzxv+yM RKB+vBlx4xENiVCbNIVYXat9kc8G2ZXwaiGYM3OrA8tlefCEXOQKOhuaOI+qpQWS oSIM50fH0B3262X9lMDM11eUK9YZzIaxqzbsx9lieQUhJGEjivSgZS7i5Nwa7fFP tAASFGE2LKXLQQOTDYO0xOTZMOAvi54p9GKtmi7DvatVGe984snwiUXzk7ALZfNi pP7/GEckB8fLmnpm3E+nP08IdGmStCzNB5AyhKIVH2XG08+zM9Y4x+j10PS7jpBp zHktN1dCH6jCdYCJbFeZ8X22z+RCV5EuP/x+c8umv4PqHnO4K1fwFlmAx+u/DBa/ uCD0UoK3 -----END CERTIFICATE-----Generated at Sun Jan 25 18:22:16 2026 by rpki-client