This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/UNh9HBTbmAczkdMFcByOEAYWU0Y.roa File: UNh9HBTbmAczkdMFcByOEAYWU0Y.roa (raw, json) Hash identifier: W4lijVHAWghHFrkC7iuPEmv32YE3H28oL8DpFRFvg/c= Subject key identifier: 50:D8:7D:1C:14:DB:98:07:33:91:D3:05:70:1C:8E:10:06:16:53:46 Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75 Certificate serial: 019B76EB0D9146D899F6A9CCC53925C08F1F Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/UNh9HBTbmAczkdMFcByOEAYWU0Y.roa Signing time: Thu 01 Jan 2026 00:17:54 +0000 ROA not before: Thu 01 Jan 2026 00:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198411 IP address blocks: 5.226.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.mft rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:0d:91:46:d8:99:f6:a9:cc:c5:39:25:c0:8f:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75 Validity Not Before: Jan 1 00:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=50d87d1c14db98073391d305701c8e1006165346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c2:af:75:19:53:d1:59:43:d3:8b:ef:4f:79: 0f:cb:14:ce:3d:ff:21:57:8b:c8:f1:35:c9:7a:27: 9e:36:0f:53:c0:92:e1:f6:a6:68:f7:a1:ca:e0:71: 11:6a:56:1b:2e:0e:58:84:91:6c:f2:94:3e:1f:be: 32:a4:ce:63:82:1c:ca:15:d2:bf:87:bf:09:d5:31: 1e:65:b6:8b:52:14:2f:7f:82:25:ff:c7:54:75:28: 53:bb:cb:67:17:cf:5e:d4:af:13:57:80:91:28:62: 07:07:1c:9d:ad:0f:1b:fc:71:a5:62:e0:b3:32:f4: b7:89:44:4b:ad:10:47:0f:34:5d:c1:af:b6:ed:6b: 09:b1:36:3b:46:ec:e6:74:73:bc:84:fe:7d:22:7e: 32:b7:15:37:6f:4d:85:e4:1f:5e:84:e5:0c:08:32: 12:2e:b4:51:c8:56:b6:3a:e0:d5:c9:e3:6b:75:23: 69:df:53:ab:b0:9c:c6:3d:42:70:9b:b9:15:b2:85: f8:d1:40:b7:d3:0a:0e:86:ea:b4:06:62:5f:85:62: 0b:3f:ff:9b:25:7b:a3:a1:ff:48:5d:dd:cb:3f:3a: a4:b2:28:b6:b8:c6:b9:ab:01:f0:f0:64:8f:92:f8: 0a:b6:42:6a:03:21:a1:af:26:7b:fa:e5:dd:34:e5: be:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:D8:7D:1C:14:DB:98:07:33:91:D3:05:70:1C:8E:10:06:16:53:46 X509v3 Authority Key Identifier: keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/UNh9HBTbmAczkdMFcByOEAYWU0Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.226.16.0/20 Signature Algorithm: sha256WithRSAEncryption 04:83:e4:d0:39:6d:4f:e7:ba:75:f7:10:c3:da:44:d1:8e:63: 61:3e:21:1c:a3:93:c8:41:06:31:53:41:2b:7f:95:67:77:d8: 12:e9:91:a3:69:4b:08:a3:1e:6f:af:0f:ef:fb:1b:fe:94:1d: 0a:b7:5c:e9:ff:b1:da:c5:f1:79:5c:5b:fc:5d:30:93:38:70: 62:02:9f:b7:7e:ed:9e:c5:1c:83:a7:a3:19:f5:63:17:b6:14: 61:3e:6d:74:c5:09:e7:c7:9a:2f:68:9e:f1:cb:22:be:4f:c0: a6:b8:58:c8:43:e6:bd:67:8c:16:9e:1e:c1:eb:b9:c8:60:14: a2:1a:34:ae:05:de:06:1f:2b:7c:4b:18:96:3e:10:bb:0f:49: 11:3d:55:24:4c:61:3f:48:61:a6:0a:21:ab:f6:4c:b8:27:17: 87:ac:52:36:51:5a:6e:92:6c:99:40:f8:c2:76:61:80:4d:b6: 75:1a:ba:cd:f5:2c:1e:b8:e1:ea:e1:5b:a0:53:57:5b:5d:f5: 8b:ea:3d:0a:67:4f:2c:c0:3c:24:69:22:be:e2:d3:e9:60:98: 1e:bb:a6:7f:f2:55:3a:d4:8c:31:18:7f:f7:69:7e:54:ee:f7: c1:9c:ac:c8:6d:8a:31:d9:21:4f:d6:6b:f5:6e:6f:f1:05:51: 17:c8:77:c6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26w2RRtiZ9qnMxTklwI8fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4 YjZiNzUwHhcNMjYwMTAxMDAxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MGQ4N2QxYzE0ZGI5ODA3MzM5MWQzMDU3MDFjOGUxMDA2MTY1MzQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMKvdRlT0VlD04vvT3kPyxTOPf8h V4vI8TXJeieeNg9TwJLh9qZo96HK4HERalYbLg5YhJFs8pQ+H74ypM5jghzKFdK/ h78J1TEeZbaLUhQvf4Il/8dUdShTu8tnF89e1K8TV4CRKGIHBxydrQ8b/HGlYuCz MvS3iURLrRBHDzRdwa+27WsJsTY7RuzmdHO8hP59In4ytxU3b02F5B9ehOUMCDIS LrRRyFa2OuDVyeNrdSNp31OrsJzGPUJwm7kVsoX40UC30woOhuq0BmJfhWILP/+b JXujof9IXd3LPzqksii2uMa5qwHw8GSPkvgKtkJqAyGhryZ7+uXdNOW+mwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFDYfRwU25gHM5HTBXAcjhAGFlNGMB8GA1UdIwQY MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt Yzc5MTRhYjY0MjczLzEvVU5oOUhCVGJtQWN6a2RNRmNCeU9FQVlXVTBZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEBeIQMA0G CSqGSIb3DQEBCwUAA4IBAQAEg+TQOW1P57p19xDD2kTRjmNhPiEco5PIQQYxU0Er f5Vnd9gS6ZGjaUsIox5vrw/v+xv+lB0Kt1zp/7HaxfF5XFv8XTCTOHBiAp+3fu2e xRyDp6MZ9WMXthRhPm10xQnnx5ovaJ7xyyK+T8CmuFjIQ+a9Z4wWnh7B67nIYBSi GjSuBd4GHyt8SxiWPhC7D0kRPVUkTGE/SGGmCiGr9ky4JxeHrFI2UVpukmyZQPjC dmGATbZ1GrrN9SweuOHq4VugU1dbXfWL6j0KZ08swDwkaSK+4tPpYJgeu6Z/8lU6 1IwxGH/3aX5U7vfBnKzIbYox2SFP1mv1bm/xBVEXyHfG -----END CERTIFICATE-----Generated at Sun Jan 25 16:27:37 2026 by rpki-client