This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/953550-0266-4f2e-8dc3-7f4bd9b54e62/1/Uo567tyscKKQ3DowdVwrO2rgRnk.roa File: Uo567tyscKKQ3DowdVwrO2rgRnk.roa (raw, json) Hash identifier: 8NiKn7om8yJNgxOj/PU+Jf1HsBq9mHLW84RDCIVHBtY= Subject key identifier: 52:8E:7A:EE:DC:AC:70:A2:90:DC:3A:30:75:5C:2B:3B:6A:E0:46:79 Certificate issuer: /CN=724518a57069cafd83e21b5c60fb262d8edf342b Certificate serial: 019B7DCA8F446240EAC98B6F7726F934433E Authority key identifier: 72:45:18:A5:70:69:CA:FD:83:E2:1B:5C:60:FB:26:2D:8E:DF:34:2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckUYpXBpyv2D4htcYPsmLY7fNCs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/953550-0266-4f2e-8dc3-7f4bd9b54e62/1/Uo567tyscKKQ3DowdVwrO2rgRnk.roa Signing time: Fri 02 Jan 2026 08:19:45 +0000 ROA not before: Fri 02 Jan 2026 08:19:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203185 IP address blocks: 185.118.228.0/24 maxlen: 24 185.118.229.0/24 maxlen: 24 185.118.230.0/24 maxlen: 24 185.118.231.0/24 maxlen: 24 2a06:9600:1::/48 maxlen: 48 2a06:9600:2::/48 maxlen: 48 2a06:9600:faff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/953550-0266-4f2e-8dc3-7f4bd9b54e62/1/ckUYpXBpyv2D4htcYPsmLY7fNCs.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/953550-0266-4f2e-8dc3-7f4bd9b54e62/1/ckUYpXBpyv2D4htcYPsmLY7fNCs.mft rsync://rpki.ripe.net/repository/DEFAULT/ckUYpXBpyv2D4htcYPsmLY7fNCs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 14:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:8f:44:62:40:ea:c9:8b:6f:77:26:f9:34:43:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=724518a57069cafd83e21b5c60fb262d8edf342b Validity Not Before: Jan 2 08:19:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=528e7aeedcac70a290dc3a30755c2b3b6ae04679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:88:ad:78:39:00:08:aa:00:37:3f:da:e5:c6: 9a:96:c2:6c:e4:26:65:b9:31:83:b3:34:7c:6d:f0: 55:6c:9c:51:d5:57:51:1c:22:59:30:39:8a:62:ef: 88:cb:ed:48:3d:4b:5d:8a:ae:58:ba:20:67:9c:c2: f6:fc:de:20:5a:13:ee:10:a4:5b:b8:be:f0:ee:9a: 12:62:a9:59:39:b0:b3:e3:54:26:a4:37:fe:b6:c2: 21:0b:03:80:f3:a9:d3:a7:99:bc:89:14:d3:67:6a: 4e:dd:88:c4:ad:7c:71:a2:9d:02:08:d3:b5:66:7c: 6d:dc:e7:48:4c:94:e3:61:e7:29:1f:f0:f7:6c:52: b9:44:14:0d:37:46:68:d8:77:e3:a8:74:59:e0:40: 11:63:63:74:f9:10:00:10:3f:38:0f:93:4b:54:83: ca:8f:05:84:e3:d0:74:f3:37:36:08:ca:62:34:70: ac:6f:a1:7d:5c:ff:0e:cf:1e:ce:69:ae:b2:70:e5: 91:25:00:e8:94:81:7c:c2:35:be:d6:eb:2d:cf:cd: 10:ed:59:2a:71:92:72:c5:aa:1b:25:55:fd:3a:52: d8:4e:8f:41:bb:9d:90:95:3f:d3:5d:d1:86:2e:7f: e6:39:e3:19:db:fb:91:9d:29:47:5a:af:c3:b2:dd: e5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:8E:7A:EE:DC:AC:70:A2:90:DC:3A:30:75:5C:2B:3B:6A:E0:46:79 X509v3 Authority Key Identifier: keyid:72:45:18:A5:70:69:CA:FD:83:E2:1B:5C:60:FB:26:2D:8E:DF:34:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckUYpXBpyv2D4htcYPsmLY7fNCs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/953550-0266-4f2e-8dc3-7f4bd9b54e62/1/Uo567tyscKKQ3DowdVwrO2rgRnk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/953550-0266-4f2e-8dc3-7f4bd9b54e62/1/ckUYpXBpyv2D4htcYPsmLY7fNCs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.118.228.0/22 IPv6: 2a06:9600:1::-2a06:9600:2:ffff:ffff:ffff:ffff:ffff 2a06:9600:faff::/48 Signature Algorithm: sha256WithRSAEncryption 45:a2:94:b5:3a:02:67:ef:90:2b:f1:c4:3b:99:7d:7d:3c:c4: b4:e3:3a:1a:a2:4b:0b:a6:27:e1:80:27:1a:1c:3e:18:9b:76: 9e:8b:51:f3:08:cf:32:b6:01:65:b0:d5:dd:c3:95:36:76:96: cf:20:7d:b5:2b:ff:83:6a:72:dd:a6:7a:8a:39:90:23:cc:95: 68:8f:9c:bd:5f:8f:71:66:04:0e:48:81:bb:9e:a4:a3:73:b1: a6:80:71:10:93:86:3c:c8:e5:24:40:00:9b:26:a5:bf:3f:6b: 92:16:cb:74:b1:57:25:be:3d:cf:28:78:d5:ea:b9:10:8d:92: 88:d9:a2:92:07:6c:c6:9b:44:68:2b:b7:70:5c:49:39:76:c6: ff:16:4d:94:5a:ee:28:29:85:cd:4e:65:04:7d:fe:89:56:50: 79:77:e3:ca:33:04:80:52:18:02:90:ef:b3:f6:ad:0c:eb:76: d0:41:a4:49:60:52:8d:76:f1:45:57:99:68:65:d2:40:48:d7: 2d:11:e9:a1:4b:bb:96:50:c5:21:72:0a:6f:dd:25:2f:c2:ed: 3f:ed:80:8b:6e:8f:ad:f4:58:ad:42:ad:70:f6:4f:37:e3:13: ca:5b:6e:2c:bf:63:5b:b4:02:a2:89:33:30:4b:e1:12:a6:04: 1b:03:a7:ce -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgISAZt9yo9EYkDqyYtvdyb5NEM+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNDUxOGE1NzA2OWNhZmQ4M2UyMWI1YzYwZmIyNjJkOGVk ZjM0MmIwHhcNMjYwMTAyMDgxOTQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MjhlN2FlZWRjYWM3MGEyOTBkYzNhMzA3NTVjMmIzYjZhZTA0Njc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4iteDkACKoANz/a5caalsJs5CZl uTGDszR8bfBVbJxR1VdRHCJZMDmKYu+Iy+1IPUtdiq5YuiBnnML2/N4gWhPuEKRb uL7w7poSYqlZObCz41QmpDf+tsIhCwOA86nTp5m8iRTTZ2pO3YjErXxxop0CCNO1 Znxt3OdITJTjYecpH/D3bFK5RBQNN0Zo2HfjqHRZ4EARY2N0+RAAED84D5NLVIPK jwWE49B08zc2CMpiNHCsb6F9XP8Ozx7Oaa6ycOWRJQDolIF8wjW+1ustz80Q7Vkq cZJyxaobJVX9OlLYTo9Bu52QlT/TXdGGLn/mOeMZ2/uRnSlHWq/Dst3lIwIDAQAB o4ICLjCCAiowHQYDVR0OBBYEFFKOeu7crHCikNw6MHVcKztq4EZ5MB8GA1UdIwQY MBaAFHJFGKVwacr9g+IbXGD7Ji2O3zQrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2tVWXBYQnB5djJENGh0Y1lQc21MWTdmTkNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85NTM1NTAtMDI2Ni00ZjJlLThkYzMt N2Y0YmQ5YjU0ZTYyLzEvVW81Njd0eXNjS0tRM0Rvd2RWd3JPMnJnUm5rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC85NTM1NTAtMDI2Ni00ZjJlLThkYzMtN2Y0YmQ5YjU0ZTYy LzEvY2tVWXBYQnB5djJENGh0Y1lQc21MWTdmTkNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEQGCCsGAQUFBwEHAQH/BDUwMzAMBAIAATAGAwQCuXbkMCME AgACMB0wEgMHACoGlgAAAQMHACoGlgAAAgMHACoGlgD6/zANBgkqhkiG9w0BAQsF AAOCAQEARaKUtToCZ++QK/HEO5l9fTzEtOM6GqJLC6Yn4YAnGhw+GJt2notR8wjP MrYBZbDV3cOVNnaWzyB9tSv/g2py3aZ6ijmQI8yVaI+cvV+PcWYEDkiBu56ko3Ox poBxEJOGPMjlJEAAmyalvz9rkhbLdLFXJb49zyh41eq5EI2SiNmikgdsxptEaCu3 cFxJOXbG/xZNlFruKCmFzU5lBH3+iVZQeXfjyjMEgFIYApDvs/atDOt20EGkSWBS jXbxRVeZaGXSQEjXLRHpoUu7llDFIXIKb90lL8LtP+2Ai26PrfRYrUKtcPZPN+MT yltuLL9jW7QCookzMEvhEqYEGwOnzg== -----END CERTIFICATE-----Generated at Mon Jan 26 00:59:31 2026 by rpki-client