This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/uKqc7_GARDcKUuHyu7JV-TTdnCk.roa File: uKqc7_GARDcKUuHyu7JV-TTdnCk.roa (raw, json) Hash identifier: 7UOe0uId7LA9u86n+Afj6gW8cLWQbInKlp+hLepKp6Y= Subject key identifier: B8:AA:9C:EF:F1:80:44:37:0A:52:E1:F2:BB:B2:55:F9:34:DD:9C:29 Certificate issuer: /CN=1734db5c41e711b73d8f29dac12e9b8364cd1fbd Certificate serial: 019B77596EAB6F56E509E7EEFA1077D67227 Authority key identifier: 17:34:DB:5C:41:E7:11:B7:3D:8F:29:DA:C1:2E:9B:83:64:CD:1F:BD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FzTbXEHnEbc9jynawS6bg2TNH70.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/uKqc7_GARDcKUuHyu7JV-TTdnCk.roa Signing time: Thu 01 Jan 2026 02:18:28 +0000 ROA not before: Thu 01 Jan 2026 02:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1945 IP address blocks: 140.77.0.0/16 maxlen: 16 192.33.153.0/24 maxlen: 24 192.33.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/FzTbXEHnEbc9jynawS6bg2TNH70.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/FzTbXEHnEbc9jynawS6bg2TNH70.mft rsync://rpki.ripe.net/repository/DEFAULT/FzTbXEHnEbc9jynawS6bg2TNH70.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:6e:ab:6f:56:e5:09:e7:ee:fa:10:77:d6:72:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1734db5c41e711b73d8f29dac12e9b8364cd1fbd Validity Not Before: Jan 1 02:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b8aa9ceff18044370a52e1f2bbb255f934dd9c29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:eb:d1:8f:e4:1a:dc:a0:9e:96:54:ed:27:91: 8d:8b:16:08:48:7a:72:7e:1a:03:d8:97:7d:4d:59: ae:25:7a:c5:26:65:ac:b8:51:92:73:af:c5:6e:dd: 27:b1:4c:66:e0:cc:a0:eb:ca:c1:6d:8b:f0:0c:16: 5f:4f:13:bb:97:01:8f:0b:2d:47:5a:f9:06:45:54: c0:8f:11:fa:8a:cd:82:26:92:ee:bb:c1:a2:90:31: c2:4e:d7:31:24:e6:53:39:17:8e:9c:87:bd:f9:7a: 2c:69:cc:df:95:01:12:5f:b2:3d:03:c4:4e:3d:7a: 6a:69:b3:0a:32:cc:7e:cc:c7:c4:93:91:0b:6d:b3: 3c:04:38:36:46:d4:73:e5:ee:98:c9:e5:4c:e6:22: 9b:4a:86:f6:65:03:7f:1d:e3:8b:9e:6e:f2:8b:9c: 69:78:d6:3b:e9:ca:24:d1:30:80:13:89:ce:8a:78: 43:01:96:40:2b:ec:68:46:51:bf:c8:2e:43:4b:3e: 95:f7:69:c3:5a:60:44:f9:80:19:81:19:8e:b8:46: 0f:78:d0:10:87:20:bd:85:11:e0:e4:3f:ed:db:2f: fe:91:5c:71:da:6f:14:4f:d8:26:ce:65:5a:bf:5c: c4:bd:6d:81:b4:b3:eb:df:3c:ac:e1:4e:fe:e7:78: a5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:AA:9C:EF:F1:80:44:37:0A:52:E1:F2:BB:B2:55:F9:34:DD:9C:29 X509v3 Authority Key Identifier: keyid:17:34:DB:5C:41:E7:11:B7:3D:8F:29:DA:C1:2E:9B:83:64:CD:1F:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FzTbXEHnEbc9jynawS6bg2TNH70.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/uKqc7_GARDcKUuHyu7JV-TTdnCk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/FzTbXEHnEbc9jynawS6bg2TNH70.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.77.0.0/16 192.33.153.0/24 192.33.162.0/24 Signature Algorithm: sha256WithRSAEncryption 01:b1:53:34:c4:1f:34:fe:80:dd:21:89:30:94:79:7e:5b:16: 07:10:aa:63:08:e4:64:4b:1a:db:f1:d7:3e:d4:3a:08:fa:51: ee:67:47:1e:27:7b:82:42:1b:13:27:5a:b7:7e:4d:4d:26:a6: f3:e1:13:f2:3b:af:4f:2f:4d:d8:02:ac:9d:68:39:f0:3c:30: b9:cc:a8:d0:89:29:9e:ee:b1:dd:6c:59:b2:11:57:60:6c:9b: e7:08:a4:cc:85:96:68:32:4f:02:3e:94:18:0b:64:a7:2f:a3: 2d:c1:dc:46:08:dd:63:09:0b:0e:3e:6e:27:d3:b5:91:48:d8: 9d:33:f4:3d:46:14:01:15:7e:13:ad:58:ef:39:87:94:f4:10: c2:53:0c:5a:60:dd:ac:5b:47:8a:f9:0e:69:de:0b:41:ea:09: e5:5c:1b:cd:d4:d6:10:e4:07:3b:d0:08:cd:fa:28:bf:2f:35: 89:d1:d3:93:fe:bb:8b:3f:d1:3c:3d:7e:80:44:33:5f:c9:2b: 56:5c:ea:a7:b6:a9:8e:f0:e8:4d:58:d5:bd:ef:aa:b9:b6:6b: 16:64:11:f6:71:c7:90:87:d9:6f:76:b3:6e:6b:4d:74:32:80: 22:7f:3e:52:b4:72:5c:10:e5:ea:bc:48:68:08:d4:e2:15:c5: cb:e7:78:40 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgISAZt3WW6rb1blCefu+hB31nInMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3MzRkYjVjNDFlNzExYjczZDhmMjlkYWMxMmU5YjgzNjRj ZDFmYmQwHhcNMjYwMTAxMDIxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOGFhOWNlZmYxODA0NDM3MGE1MmUxZjJiYmIyNTVmOTM0ZGQ5YzI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+vRj+Qa3KCellTtJ5GNixYISHpy fhoD2Jd9TVmuJXrFJmWsuFGSc6/Fbt0nsUxm4Myg68rBbYvwDBZfTxO7lwGPCy1H WvkGRVTAjxH6is2CJpLuu8GikDHCTtcxJOZTOReOnIe9+XosaczflQESX7I9A8RO PXpqabMKMsx+zMfEk5ELbbM8BDg2RtRz5e6YyeVM5iKbSob2ZQN/HeOLnm7yi5xp eNY76cok0TCAE4nOinhDAZZAK+xoRlG/yC5DSz6V92nDWmBE+YAZgRmOuEYPeNAQ hyC9hRHg5D/t2y/+kVxx2m8UT9gmzmVav1zEvW2BtLPr3zys4U7+53ilmwIDAQAB o4ICFDCCAhAwHQYDVR0OBBYEFLiqnO/xgEQ3ClLh8ruyVfk03ZwpMB8GA1UdIwQY MBaAFBc021xB5xG3PY8p2sEum4NkzR+9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRnpUYlhFSG5FYmM5anluYXdTNmJnMlROSDcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS85MjUyNTktMjUyNy00NWViLWI5MTYt NWYyNjUwYzkwMTJkLzEvdUtxYzdfR0FSRGNLVXVIeXU3SlYtVFRkbkNrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS85MjUyNTktMjUyNy00NWViLWI5MTYtNWYyNjUwYzkwMTJk LzEvRnpUYlhFSG5FYmM5anluYXdTNmJnMlROSDcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAATARAwMAjE0DBADA IZkDBADAIaIwDQYJKoZIhvcNAQELBQADggEBAAGxUzTEHzT+gN0hiTCUeX5bFgcQ qmMI5GRLGtvx1z7UOgj6Ue5nRx4ne4JCGxMnWrd+TU0mpvPhE/I7r08vTdgCrJ1o OfA8MLnMqNCJKZ7usd1sWbIRV2Bsm+cIpMyFlmgyTwI+lBgLZKcvoy3B3EYI3WMJ Cw4+bifTtZFI2J0z9D1GFAEVfhOtWO85h5T0EMJTDFpg3axbR4r5DmneC0HqCeVc G83U1hDkBzvQCM36KL8vNYnR05P+u4s/0Tw9foBEM1/JK1Zc6qe2qY7w6E1Y1b3v qrm2axZkEfZxx5CH2W92s25rTXQygCJ/PlK0clwQ5eq8SGgI1OIVxcvneEA= -----END CERTIFICATE-----Generated at Mon Jan 26 09:25:05 2026 by rpki-client