This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/uEJjwrWpF2mDlz1O3YOtQ9C7Pdc.roa File: uEJjwrWpF2mDlz1O3YOtQ9C7Pdc.roa (raw, json) Hash identifier: b1nfMPZRPPDDro1fHm0Daju3CBsYH69sgRLCQSpxd8o= Subject key identifier: B8:42:63:C2:B5:A9:17:69:83:97:3D:4E:DD:83:AD:43:D0:BB:3D:D7 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019BC8AC62740B86873F7FE9F493E374B22A Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/uEJjwrWpF2mDlz1O3YOtQ9C7Pdc.roa Signing time: Fri 16 Jan 2026 21:18:19 +0000 ROA not before: Fri 16 Jan 2026 21:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210654 IP address blocks: 144.31.172.0/22 maxlen: 24 144.31.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:c8:ac:62:74:0b:86:87:3f:7f:e9:f4:93:e3:74:b2:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 16 21:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b84263c2b5a9176983973d4edd83ad43d0bb3dd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a0:29:0c:79:47:84:83:ae:28:57:63:09:20: d3:88:b2:6d:f2:5d:04:31:ae:a8:60:40:2d:a4:3d: 86:ff:96:0e:6c:d0:d9:53:41:b8:03:3b:8d:19:ab: 89:a7:13:25:b9:2a:92:46:8c:21:f4:e4:32:b8:80: 90:b6:71:9d:e1:55:e1:9c:49:4a:22:16:12:71:6c: da:d7:d7:ec:c0:7e:53:ea:f1:00:e1:30:b5:4c:2f: 90:c8:80:cd:1a:6d:ac:3e:74:5b:1c:30:23:2e:6a: 78:70:42:f8:b9:f5:4f:6e:ad:85:55:ea:12:2b:4b: 30:30:08:04:38:05:d5:e7:da:62:9d:ba:37:94:47: 79:3f:31:82:b2:a4:de:59:31:d8:49:96:8a:01:ac: ea:18:4b:56:7d:9e:d9:cd:1e:52:53:de:55:24:84: 41:7b:73:91:c7:a5:17:31:51:da:5c:4c:b3:ef:c8: f4:27:e5:66:3c:10:d5:12:50:af:49:5e:f6:5b:ad: 88:53:51:43:13:64:51:1b:1e:e3:42:91:73:1c:ac: 27:f9:8d:3b:05:84:25:6b:34:f5:d4:4a:51:2a:2a: 4d:a8:83:4f:71:fd:48:cb:e7:60:4c:f3:99:2f:3a: ad:18:c8:2a:6e:15:0e:5a:83:56:2b:a7:0c:dc:62: 4d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:42:63:C2:B5:A9:17:69:83:97:3D:4E:DD:83:AD:43:D0:BB:3D:D7 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/uEJjwrWpF2mDlz1O3YOtQ9C7Pdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.31.172.0/22 144.31.208.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:a6:83:b8:93:c9:b6:07:dd:46:08:30:af:e5:ce:b5:6b:01: 8f:48:5e:6a:96:17:06:7d:fc:0f:ce:8c:e4:57:7f:4b:6b:05: bb:e3:db:3b:1d:54:ed:b6:2f:6f:88:d5:c0:24:81:d7:e3:2e: 48:95:2f:52:9a:67:e8:9e:60:c3:27:55:97:f3:a0:fb:74:c0: 9e:4e:dd:fc:52:60:6d:7e:5f:6f:4e:d1:ab:cd:bd:6d:b7:8a: 78:a8:71:d9:04:a3:85:4d:39:5d:da:a0:b8:9e:01:1b:be:51: a9:9e:d1:7f:9e:db:76:60:cd:3f:c3:0f:bf:98:e1:99:c2:b0: 17:b5:c2:e0:94:b8:db:7d:74:a5:63:d2:36:c9:26:bb:53:b6: 34:95:0f:cf:df:a7:5f:43:86:f0:6a:33:27:23:df:92:bd:5d: 5e:b9:2b:46:f7:6e:23:7b:1a:57:ac:11:c7:ca:63:af:88:b4: 90:59:3b:87:ea:d8:b7:8a:03:6f:5b:4d:f9:5e:7a:fd:60:19: 0a:a9:bc:17:37:b0:af:0c:87:42:cc:ef:32:07:4e:35:a1:86: ee:33:7f:32:7f:eb:eb:87:22:94:d2:f7:10:14:94:0e:ea:9d: 4d:c6:cf:43:c4:9d:a9:fd:cc:4a:ba:d2:4e:40:71:3e:94:03: 4e:ec:de:92 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZvIrGJ0C4aHP3/p9JPjdLIqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTE2MjExODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiODQyNjNjMmI1YTkxNzY5ODM5NzNkNGVkZDgzYWQ0M2QwYmIzZGQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3qApDHlHhIOuKFdjCSDTiLJt8l0E Ma6oYEAtpD2G/5YObNDZU0G4AzuNGauJpxMluSqSRowh9OQyuICQtnGd4VXhnElK IhYScWza19fswH5T6vEA4TC1TC+QyIDNGm2sPnRbHDAjLmp4cEL4ufVPbq2FVeoS K0swMAgEOAXV59pinbo3lEd5PzGCsqTeWTHYSZaKAazqGEtWfZ7ZzR5SU95VJIRB e3ORx6UXMVHaXEyz78j0J+VmPBDVElCvSV72W62IU1FDE2RRGx7jQpFzHKwn+Y07 BYQlazT11EpRKipNqINPcf1Iy+dgTPOZLzqtGMgqbhUOWoNWK6cM3GJNWQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLhCY8K1qRdpg5c9Tt2DrUPQuz3XMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvdUVKandyV3BGMm1EbHoxTzNZT3RROUM3UGRjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCkB+sAwQC kB/QMA0GCSqGSIb3DQEBCwUAA4IBAQCbpoO4k8m2B91GCDCv5c61awGPSF5qlhcG ffwPzozkV39LawW749s7HVTtti9viNXAJIHX4y5IlS9SmmfonmDDJ1WX86D7dMCe Tt38UmBtfl9vTtGrzb1tt4p4qHHZBKOFTTld2qC4ngEbvlGpntF/ntt2YM0/ww+/ mOGZwrAXtcLglLjbfXSlY9I2ySa7U7Y0lQ/P36dfQ4bwajMnI9+SvV1euStG924j expXrBHHymOviLSQWTuH6ti3igNvW035Xnr9YBkKqbwXN7CvDIdCzO8yB041oYbu M38yf+vrhyKU0vcQFJQO6p1Nxs9DxJ2p/cxKutJOQHE+lANO7N6S -----END CERTIFICATE-----Generated at Sun Jan 25 10:20:48 2026 by rpki-client