This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/732801-6294-412b-955e-fefd37666741/1/uWQ_yyWTJKlwMIna4dHe1PfEbz8.roa File: uWQ_yyWTJKlwMIna4dHe1PfEbz8.roa (raw, json) Hash identifier: tvPaUHk8Xmgw+avX8XEILYU/M4IbkxRiILy7UdTCanQ= Subject key identifier: B9:64:3F:CB:25:93:24:A9:70:30:89:DA:E1:D1:DE:D4:F7:C4:6F:3F Certificate issuer: /CN=c933481d3fa48710dcb973fdcd29340dedb6229a Certificate serial: 019B7F1523EAB15929FBDCE8157434A5A9D3 Authority key identifier: C9:33:48:1D:3F:A4:87:10:DC:B9:73:FD:CD:29:34:0D:ED:B6:22:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yTNIHT-khxDcuXP9zSk0De22Ipo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/732801-6294-412b-955e-fefd37666741/1/uWQ_yyWTJKlwMIna4dHe1PfEbz8.roa Signing time: Fri 02 Jan 2026 14:20:50 +0000 ROA not before: Fri 02 Jan 2026 14:20:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 36352 IP address blocks: 5.226.171.0/24 maxlen: 24 5.226.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/732801-6294-412b-955e-fefd37666741/1/yTNIHT-khxDcuXP9zSk0De22Ipo.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/732801-6294-412b-955e-fefd37666741/1/yTNIHT-khxDcuXP9zSk0De22Ipo.mft rsync://rpki.ripe.net/repository/DEFAULT/yTNIHT-khxDcuXP9zSk0De22Ipo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:23:ea:b1:59:29:fb:dc:e8:15:74:34:a5:a9:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c933481d3fa48710dcb973fdcd29340dedb6229a Validity Not Before: Jan 2 14:20:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b9643fcb259324a9703089dae1d1ded4f7c46f3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e3:81:32:20:a3:58:6a:4f:19:79:14:58:98: 87:84:55:ba:74:af:7a:69:40:2b:52:9c:1a:99:bc: e0:7b:b3:7e:a8:e4:5c:1c:6c:57:67:f2:f0:a5:ea: fc:39:7b:2e:7c:ad:73:a6:56:59:54:d8:5e:8b:d1: b2:2c:82:0c:75:c5:54:ce:32:5f:f3:c1:8f:9f:42: b2:24:5f:ed:68:28:92:b0:2a:cb:15:a8:90:8b:a5: 1a:65:3e:62:26:0d:03:5b:e3:f9:18:e6:d8:cf:88: 42:32:73:7b:e4:bd:86:77:ed:17:60:13:a1:89:8f: 6a:db:e9:92:de:3a:35:c4:84:91:c2:db:39:5f:8e: 66:6d:75:fe:5d:8f:9b:45:f4:75:ac:d0:be:3e:76: 75:c5:dd:3e:7d:ef:e0:a2:e3:11:fc:2f:93:8b:5d: b2:fe:60:a9:a7:26:23:2c:2c:70:fe:d6:38:71:f2: 25:82:ef:ef:d5:16:bb:f4:1f:e6:ce:01:41:3b:e7: ef:81:91:7b:6e:f2:61:e6:44:cf:fd:2e:60:e0:34: 24:c6:e2:fc:73:21:25:a1:f3:a8:24:1e:0a:d1:66: 81:c2:eb:4b:ca:b3:e3:63:ab:38:be:42:8a:54:38: c1:fd:43:d5:83:b9:0a:2b:4f:6f:79:93:ea:77:7c: 0c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:64:3F:CB:25:93:24:A9:70:30:89:DA:E1:D1:DE:D4:F7:C4:6F:3F X509v3 Authority Key Identifier: keyid:C9:33:48:1D:3F:A4:87:10:DC:B9:73:FD:CD:29:34:0D:ED:B6:22:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yTNIHT-khxDcuXP9zSk0De22Ipo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/732801-6294-412b-955e-fefd37666741/1/uWQ_yyWTJKlwMIna4dHe1PfEbz8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/732801-6294-412b-955e-fefd37666741/1/yTNIHT-khxDcuXP9zSk0De22Ipo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.226.171.0/24 5.226.173.0/24 Signature Algorithm: sha256WithRSAEncryption a1:b5:52:96:2c:5e:4b:43:3e:a6:6a:85:e8:4e:10:69:78:57: da:84:40:c3:a7:63:60:bf:09:dd:06:31:3c:3f:04:f1:59:a3: a7:ce:51:bb:6e:e6:ca:70:36:18:47:70:aa:fb:08:f6:37:25: 61:05:d1:72:45:ba:26:4f:e0:ea:d5:ce:44:4f:7e:71:1f:06: 8b:25:fc:06:3d:7d:fc:b1:92:9b:36:73:77:e5:8d:2b:84:19: 99:fd:46:3d:4d:80:2d:9d:7c:e6:8f:90:4d:34:4d:a3:8b:08: 48:8a:86:e2:7c:09:82:a8:19:01:5b:85:38:9d:a0:db:3f:49: 99:76:0e:2f:29:bc:cd:b6:6f:97:66:7e:e4:6e:02:94:3f:80: 6c:48:69:9d:9a:b2:e4:b5:79:15:7f:79:01:98:d1:da:73:1a: 30:3f:38:0c:24:a6:ca:db:dd:8f:cb:0e:6a:c0:f2:d0:ed:65: a8:95:84:7f:51:41:1d:9d:ef:59:3b:73:f1:1d:49:37:2b:55: c0:86:df:64:8a:d0:bc:90:ad:8f:bf:61:a6:1b:62:6d:68:9e: d8:09:c5:bc:8a:a2:b6:a3:39:9b:4c:e6:8f:d3:14:58:b7:f1: d8:eb:77:d4:65:83:1b:6f:f0:29:36:9b:23:58:0d:f4:84:bc: 76:32:da:4f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FSPqsVkp+9zoFXQ0panTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5MzM0ODFkM2ZhNDg3MTBkY2I5NzNmZGNkMjkzNDBkZWRi NjIyOWEwHhcNMjYwMTAyMTQyMDUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTY0M2ZjYjI1OTMyNGE5NzAzMDg5ZGFlMWQxZGVkNGY3YzQ2ZjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxeOBMiCjWGpPGXkUWJiHhFW6dK96 aUArUpwambzge7N+qORcHGxXZ/Lwper8OXsufK1zplZZVNhei9GyLIIMdcVUzjJf 88GPn0KyJF/taCiSsCrLFaiQi6UaZT5iJg0DW+P5GObYz4hCMnN75L2Gd+0XYBOh iY9q2+mS3jo1xISRwts5X45mbXX+XY+bRfR1rNC+PnZ1xd0+fe/gouMR/C+Ti12y /mCppyYjLCxw/tY4cfIlgu/v1Ra79B/mzgFBO+fvgZF7bvJh5kTP/S5g4DQkxuL8 cyElofOoJB4K0WaBwutLyrPjY6s4vkKKVDjB/UPVg7kKK09veZPqd3wMEQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLlkP8slkySpcDCJ2uHR3tT3xG8/MB8GA1UdIwQY MBaAFMkzSB0/pIcQ3Llz/c0pNA3ttiKaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVROSUhULWtoeERjdVhQOXpTazBEZTIySXBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS83MzI4MDEtNjI5NC00MTJiLTk1NWUt ZmVmZDM3NjY2NzQxLzEvdVdRX3l5V1RKS2x3TUluYTRkSGUxUGZFYno4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS83MzI4MDEtNjI5NC00MTJiLTk1NWUtZmVmZDM3NjY2NzQx LzEveVROSUhULWtoeERjdVhQOXpTazBEZTIySXBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABeKrAwQA BeKtMA0GCSqGSIb3DQEBCwUAA4IBAQChtVKWLF5LQz6maoXoThBpeFfahEDDp2Ng vwndBjE8PwTxWaOnzlG7bubKcDYYR3Cq+wj2NyVhBdFyRbomT+Dq1c5ET35xHwaL JfwGPX38sZKbNnN35Y0rhBmZ/UY9TYAtnXzmj5BNNE2jiwhIiobifAmCqBkBW4U4 naDbP0mZdg4vKbzNtm+XZn7kbgKUP4BsSGmdmrLktXkVf3kBmNHacxowPzgMJKbK 292Pyw5qwPLQ7WWolYR/UUEdne9ZO3PxHUk3K1XAht9kitC8kK2Pv2GmG2JtaJ7Y CcW8iqK2ozmbTOaP0xRYt/HY63fUZYMbb/ApNpsjWA30hLx2MtpP -----END CERTIFICATE-----Generated at Sun Jan 25 17:46:04 2026 by rpki-client