This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/sUa1qZfE6YDq3QMgLH1F6vdwxUU.roa File: sUa1qZfE6YDq3QMgLH1F6vdwxUU.roa (raw, json) Hash identifier: fTQiV/tRslTYxHykfit6SFwjZkI2ltHIm9g/9F6nVW0= Subject key identifier: B1:46:B5:A9:97:C4:E9:80:EA:DD:03:20:2C:7D:45:EA:F7:70:C5:45 Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Certificate serial: 019B7BA516204744F1106D07291094172C83 Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/sUa1qZfE6YDq3QMgLH1F6vdwxUU.roa Signing time: Thu 01 Jan 2026 22:19:35 +0000 ROA not before: Thu 01 Jan 2026 22:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34232 IP address blocks: 176.53.194.0/23 maxlen: 23 176.53.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:16:20:47:44:f1:10:6d:07:29:10:94:17:2c:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Validity Not Before: Jan 1 22:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b146b5a997c4e980eadd03202c7d45eaf770c545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:19:5e:b7:34:7d:99:07:c5:9d:a0:24:e9:8a: bb:0d:a7:ec:f6:1a:28:cb:c6:52:5f:8e:26:cc:3b: 51:63:1f:31:91:df:0d:1e:70:15:5e:e6:d8:43:bb: 9f:ce:d0:26:47:ad:4e:10:55:c7:f6:9e:51:e0:68: 11:5d:b0:5d:23:82:e7:50:3b:c3:d3:6c:45:f4:91: 20:63:7a:17:79:34:d0:75:65:64:9d:20:7a:53:66: 26:6d:1d:ee:7d:f0:7d:e5:72:7a:8c:49:f0:17:34: 65:78:9d:a4:88:e1:22:aa:96:57:d8:a8:a8:da:13: 66:2f:c7:2a:3a:40:82:92:94:d4:87:f9:5c:f9:d7: c6:11:4a:e7:43:f1:f6:59:07:cf:49:0b:1e:0a:52: 76:22:78:ab:0f:f5:c9:80:f4:70:6c:7e:4c:8f:df: 11:09:e9:c6:02:bb:6d:8b:e5:98:bd:d7:74:63:15: 0f:90:02:b4:f4:63:25:7c:9a:36:c4:09:9c:56:f2: 46:a3:de:c5:6e:08:bf:c0:bc:b7:64:c8:88:a2:2b: b2:0d:0d:ec:5a:71:93:a0:6a:aa:65:db:02:29:3d: a4:6b:0c:35:87:c8:21:8e:33:27:66:f8:df:e7:b1: f2:92:c1:9d:69:ad:69:8d:93:56:f7:3c:2f:b8:d7: 5b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:46:B5:A9:97:C4:E9:80:EA:DD:03:20:2C:7D:45:EA:F7:70:C5:45 X509v3 Authority Key Identifier: keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/sUa1qZfE6YDq3QMgLH1F6vdwxUU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.53.194.0/23 176.53.208.0/22 Signature Algorithm: sha256WithRSAEncryption 08:6c:da:69:84:2c:48:8a:7c:07:47:c0:ea:c8:e9:34:d8:08: 97:f2:09:9d:51:f1:80:c8:30:18:1b:b1:cd:70:56:6b:e1:37: 9d:8b:4b:fe:a0:9d:83:de:15:5d:81:bc:24:ce:8a:e6:ba:bb: fe:10:cd:d0:e2:41:bb:34:89:d8:cc:47:0e:f7:60:c8:94:27: d0:d3:45:89:d1:ad:38:de:d6:6e:36:5f:46:8a:2d:51:56:ff: d9:42:37:d1:53:50:28:8a:36:cd:54:6a:aa:1c:90:90:33:6e: b9:ac:63:65:24:d7:93:b8:9a:4e:f3:fc:83:35:7f:fb:53:dc: a0:33:73:47:66:e6:7a:cc:7f:99:29:a9:81:09:5a:bb:0e:f2: e4:2f:bb:b0:22:ad:7b:d7:c9:76:ba:0e:59:6b:2f:81:19:60: bb:5a:da:c2:65:2a:43:f2:7a:4a:e9:2f:1f:9f:93:f2:dc:b3: c7:f1:8e:50:ea:4e:96:03:4f:c6:fb:d4:bb:98:7b:4a:a7:e3: 31:b9:18:31:e7:e8:67:71:df:9f:25:98:fc:4a:74:2d:a7:72: cf:cf:e6:3b:d9:65:2a:f3:71:3c:6a:1a:c9:e9:61:0a:cc:3f: 19:3c:e9:21:f6:ea:1a:1c:e9:3f:f0:75:cc:17:67:62:ee:60: 16:f1:71:7f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7pRYgR0TxEG0HKRCUFyyDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkODMxM2U0MWU2NDZhMDljZDAxZTJlNmY0NzM5ZDNiZDIz NmM0ZmYwHhcNMjYwMTAxMjIxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTQ2YjVhOTk3YzRlOTgwZWFkZDAzMjAyYzdkNDVlYWY3NzBjNTQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhletzR9mQfFnaAk6Yq7Dafs9hoo y8ZSX44mzDtRYx8xkd8NHnAVXubYQ7ufztAmR61OEFXH9p5R4GgRXbBdI4LnUDvD 02xF9JEgY3oXeTTQdWVknSB6U2YmbR3uffB95XJ6jEnwFzRleJ2kiOEiqpZX2Kio 2hNmL8cqOkCCkpTUh/lc+dfGEUrnQ/H2WQfPSQseClJ2InirD/XJgPRwbH5Mj98R CenGArtti+WYvdd0YxUPkAK09GMlfJo2xAmcVvJGo97Fbgi/wLy3ZMiIoiuyDQ3s WnGToGqqZdsCKT2kaww1h8ghjjMnZvjf57HyksGdaa1pjZNW9zwvuNdbbQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLFGtamXxOmA6t0DICx9Rer3cMVFMB8GA1UdIwQY MBaAFM2DE+QeZGoJzQHi5vRznTvSNsT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQt ODg2MmI1MTczMTdjLzEvc1VhMXFaZkU2WURxM1FNZ0xIMUY2dmR3eFVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQtODg2MmI1MTczMTdj LzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBsDXCAwQC sDXQMA0GCSqGSIb3DQEBCwUAA4IBAQAIbNpphCxIinwHR8DqyOk02AiX8gmdUfGA yDAYG7HNcFZr4Tedi0v+oJ2D3hVdgbwkzormurv+EM3Q4kG7NInYzEcO92DIlCfQ 00WJ0a043tZuNl9Gii1RVv/ZQjfRU1AoijbNVGqqHJCQM265rGNlJNeTuJpO8/yD NX/7U9ygM3NHZuZ6zH+ZKamBCVq7DvLkL7uwIq1718l2ug5Zay+BGWC7WtrCZSpD 8npK6S8fn5Py3LPH8Y5Q6k6WA0/G+9S7mHtKp+MxuRgx5+hncd+fJZj8SnQtp3LP z+Y72WUq83E8ahrJ6WEKzD8ZPOkh9uoaHOk/8HXMF2di7mAW8XF/ -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:58 2026 by rpki-client