This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/u0gCoVvJlaH5c9RmVs2aFaVxEI0.roa File: u0gCoVvJlaH5c9RmVs2aFaVxEI0.roa (raw, json) Hash identifier: 3/xloXs0cDVGC93MNMPVc610Q8tfYtQqqQWvRtTXfJ0= Subject key identifier: BB:48:02:A1:5B:C9:95:A1:F9:73:D4:66:56:CD:9A:15:A5:71:10:8D Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019B79EC60AED8B6EAA7346BBF6D23CD174E Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/u0gCoVvJlaH5c9RmVs2aFaVxEI0.roa Signing time: Thu 01 Jan 2026 14:18:12 +0000 ROA not before: Thu 01 Jan 2026 14:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15083 IP address blocks: 144.31.20.0/22 maxlen: 24 144.31.88.0/24 maxlen: 24 144.31.124.0/24 maxlen: 24 150.241.92.0/24 maxlen: 24 150.241.93.0/24 maxlen: 24 150.241.94.0/24 maxlen: 24 150.241.95.0/24 maxlen: 24 150.241.100.0/24 maxlen: 24 150.241.101.0/24 maxlen: 24 150.241.102.0/24 maxlen: 24 150.241.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:60:ae:d8:b6:ea:a7:34:6b:bf:6d:23:cd:17:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 1 14:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bb4802a15bc995a1f973d46656cd9a15a571108d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:16:89:ab:1a:06:15:c6:0e:ca:ff:87:8b:9a: 50:44:ce:dc:2a:8f:43:2b:15:13:09:0a:63:e9:ae: af:d8:f1:ab:05:a1:d6:96:63:dc:07:f5:07:a6:09: 42:63:1a:7c:d0:f3:07:9f:f8:36:df:96:4a:6c:97: 1b:8c:99:88:d5:38:1f:67:95:d3:2d:7f:ee:91:12: e4:34:77:7b:fd:5e:aa:b9:29:77:40:9e:ab:bc:30: 93:3c:1a:e8:4b:92:91:3a:e5:63:8d:40:88:de:bd: ff:6a:28:25:3b:cd:4c:d7:71:da:cf:c9:d8:a0:a3: d7:98:63:84:8f:67:73:63:1a:55:ba:d3:88:d6:e9: 0e:50:7c:51:c8:07:f5:ad:34:ab:82:88:60:b1:2a: 5a:2e:22:bc:fc:6b:11:b8:b6:f8:e2:a4:00:09:ca: 04:f5:76:96:b2:c2:bd:03:fa:ae:ed:80:f0:8e:9e: 18:39:0c:6d:fd:2a:96:8c:c0:71:55:b3:97:db:3f: e5:3c:14:d7:1b:1c:e7:e7:58:c1:49:d2:b9:d8:9a: f7:f1:fd:a6:a3:e9:70:15:2b:bf:9a:81:39:52:45: d2:10:ca:47:e7:7b:92:e0:b3:ca:db:8c:b9:c7:b4: ff:17:79:b1:a6:6c:58:ee:89:e0:2d:fe:ce:b9:ee: 49:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:48:02:A1:5B:C9:95:A1:F9:73:D4:66:56:CD:9A:15:A5:71:10:8D X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/u0gCoVvJlaH5c9RmVs2aFaVxEI0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.31.20.0/22 144.31.88.0/24 144.31.124.0/24 150.241.92.0/22 150.241.100.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:41:27:04:83:7b:42:c4:48:88:c0:8c:f2:66:0e:92:f4:99: c3:bb:a1:1a:78:84:bc:84:20:6b:01:0a:88:aa:7a:dd:f2:09: 87:0d:17:38:5b:e6:d6:a4:9f:7c:9c:d1:c1:f7:9f:2e:ed:12: 8e:b9:80:a6:84:a2:95:88:bf:36:c9:b4:33:75:00:96:3f:d2: 82:a3:3c:a2:0d:04:ae:0e:49:82:d9:03:c4:18:b6:2e:17:ec: e4:41:56:3b:08:ae:02:ef:d8:e7:9f:d1:1c:ba:10:06:51:14: 49:74:bf:f2:ad:7a:52:07:20:e3:04:35:cf:fc:ab:84:b8:8d: d4:01:31:71:88:52:f1:c6:ee:8a:f2:9d:fa:f0:74:82:f4:cc: b2:ec:19:00:27:cc:60:db:31:9a:ac:48:d6:31:f0:06:20:16: cb:80:59:25:5f:5f:c0:44:47:99:17:db:cd:a1:94:28:c6:f4: 25:d1:2e:f5:42:59:30:29:f7:75:6f:29:8f:6a:f7:06:ae:6a: a5:d1:d3:72:e6:69:1b:88:33:17:90:af:12:cb:f6:4a:dd:85: 06:d6:23:0c:ff:d1:4d:9f:fc:da:59:af:e8:41:1f:0a:56:d6: 04:92:60:2a:48:36:4c:56:d0:60:ef:8d:dd:6f:2e:4f:fc:43: 3c:60:c9:a6 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt57GCu2LbqpzRrv20jzRdOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTAxMTQxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYjQ4MDJhMTViYzk5NWExZjk3M2Q0NjY1NmNkOWExNWE1NzExMDhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxaJqxoGFcYOyv+Hi5pQRM7cKo9D KxUTCQpj6a6v2PGrBaHWlmPcB/UHpglCYxp80PMHn/g235ZKbJcbjJmI1TgfZ5XT LX/ukRLkNHd7/V6quSl3QJ6rvDCTPBroS5KROuVjjUCI3r3/aiglO81M13Haz8nY oKPXmGOEj2dzYxpVutOI1ukOUHxRyAf1rTSrgohgsSpaLiK8/GsRuLb44qQACcoE 9XaWssK9A/qu7YDwjp4YOQxt/SqWjMBxVbOX2z/lPBTXGxzn51jBSdK52Jr38f2m o+lwFSu/moE5UkXSEMpH53uS4LPK24y5x7T/F3mxpmxY7ongLf7Oue5J1wIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFLtIAqFbyZWh+XPUZlbNmhWlcRCNMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvdTBnQ29WdkpsYUg1YzlSbVZzMmFGYVZ4RUkwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQCkB8UAwQA kB9YAwQAkB98AwQClvFcAwQClvFkMA0GCSqGSIb3DQEBCwUAA4IBAQBeQScEg3tC xEiIwIzyZg6S9JnDu6EaeIS8hCBrAQqIqnrd8gmHDRc4W+bWpJ98nNHB958u7RKO uYCmhKKViL82ybQzdQCWP9KCozyiDQSuDkmC2QPEGLYuF+zkQVY7CK4C79jnn9Ec uhAGURRJdL/yrXpSByDjBDXP/KuEuI3UATFxiFLxxu6K8p368HSC9Myy7BkAJ8xg 2zGarEjWMfAGIBbLgFklX1/AREeZF9vNoZQoxvQl0S71QlkwKfd1bymPavcGrmql 0dNy5mkbiDMXkK8Sy/ZK3YUG1iMM/9FNn/zaWa/oQR8KVtYEkmAqSDZMVtBg743d by5P/EM8YMmm -----END CERTIFICATE-----Generated at Sun Jan 25 07:36:28 2026 by rpki-client