This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ukccMNas8VXe5gj6YIJ-fGbZAkA.roa File: ukccMNas8VXe5gj6YIJ-fGbZAkA.roa (raw, json) Hash identifier: DE10P/oTfIwS3uSF6Vf1J9aFlOMKqnh0CZj/XIv5jnQ= Subject key identifier: BA:47:1C:30:D6:AC:F1:55:DE:E6:08:FA:60:82:7E:7C:66:D9:02:40 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B78348E82C55C6AF95B4A9A1DB2F132E3 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ukccMNas8VXe5gj6YIJ-fGbZAkA.roa Signing time: Thu 01 Jan 2026 06:17:48 +0000 ROA not before: Thu 01 Jan 2026 06:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209454 IP address blocks: 193.181.26.0/24 maxlen: 24 194.132.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:8e:82:c5:5c:6a:f9:5b:4a:9a:1d:b2:f1:32:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba471c30d6acf155dee608fa60827e7c66d90240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6e:7b:77:62:7b:77:9e:a6:62:38:f0:27:4b: 97:bb:60:bf:d6:f1:15:83:33:83:ac:bd:a8:30:ff: b2:a6:07:ab:8d:23:12:64:af:3f:d0:64:ff:97:34: 10:51:65:8d:7e:f9:b2:c2:31:f0:e6:40:3c:16:45: 91:1a:f4:1e:9f:19:d0:cb:92:cc:6a:e9:11:08:65: 7d:c3:0a:8b:07:e0:4f:22:dc:10:7f:77:8a:7c:36: af:27:82:c1:10:10:67:18:d3:73:38:77:2a:6a:9a: dd:e5:2d:a8:8a:07:ee:62:2c:29:af:05:a8:1d:7c: c0:47:1b:86:65:64:5c:c0:f1:9c:a4:ef:c9:4c:9b: c0:61:f1:f0:a9:87:dc:55:dd:90:fc:85:29:cc:d6: 6f:b4:ec:be:b3:f0:cb:df:7b:8c:1f:54:92:48:68: 74:66:c0:a1:52:1f:12:b3:ad:da:04:5f:86:db:5f: 78:38:78:93:9e:c3:02:4e:04:ad:ad:de:4d:22:33: 46:57:5a:d0:b6:0b:08:3d:97:f5:83:a9:7a:ab:e0: 65:70:c4:b5:e4:84:c3:27:8b:fe:7c:c8:f0:de:6e: 61:1d:94:36:a4:fa:4f:59:07:20:f8:2a:3c:28:62: ce:c0:35:14:08:5c:27:c0:50:22:6e:6b:10:67:fb: 37:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:47:1C:30:D6:AC:F1:55:DE:E6:08:FA:60:82:7E:7C:66:D9:02:40 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ukccMNas8VXe5gj6YIJ-fGbZAkA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.181.26.0/24 194.132.58.0/24 Signature Algorithm: sha256WithRSAEncryption ad:ee:c4:3a:00:a7:b3:f5:94:2b:89:1e:d7:03:20:b4:64:21: f4:57:0e:86:ba:7b:50:27:09:16:a3:b2:db:c6:f7:a5:a8:8e: 57:61:09:b6:ad:5c:ae:4b:20:cd:46:f2:05:44:8f:ff:86:56: 33:e5:53:e2:ea:0b:b6:a5:73:20:9e:5c:01:86:e6:d7:1e:43: d3:80:ae:53:be:aa:85:44:5a:10:8a:a4:9c:4a:84:c7:6e:d2: 52:96:29:51:95:b1:d8:01:ce:c6:bb:9e:10:36:ad:52:bc:54: 08:40:e7:4a:d2:d8:cd:15:c6:95:54:ce:e2:16:90:fc:06:c3: dd:f4:42:2e:00:46:5c:4c:02:64:81:65:22:c2:8b:0a:8d:26: 36:41:3d:6f:08:99:db:d6:d5:89:2d:8b:f7:05:80:bd:b2:59: fc:87:c6:31:00:9e:08:c8:bc:6e:c0:33:10:f7:ba:84:d8:a0: 1a:48:24:f5:71:76:f6:32:42:bb:ed:6c:b4:79:c9:b4:9a:08: 11:9c:01:2e:29:9c:6e:da:51:2b:c1:cf:e1:8d:19:53:82:d2: ba:61:a9:7a:f6:2a:d3:47:f6:99:f4:b8:a5:70:b6:f4:9d:e9: 92:0a:38:45:b5:b0:ed:01:ad:6f:da:c8:cd:38:68:df:ce:66: 71:92:cc:e5 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NI6CxVxq+VtKmh2y8TLjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTQ3MWMzMGQ2YWNmMTU1ZGVlNjA4ZmE2MDgyN2U3YzY2ZDkwMjQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr257d2J7d56mYjjwJ0uXu2C/1vEV gzODrL2oMP+ypgerjSMSZK8/0GT/lzQQUWWNfvmywjHw5kA8FkWRGvQenxnQy5LM aukRCGV9wwqLB+BPItwQf3eKfDavJ4LBEBBnGNNzOHcqaprd5S2oigfuYiwprwWo HXzARxuGZWRcwPGcpO/JTJvAYfHwqYfcVd2Q/IUpzNZvtOy+s/DL33uMH1SSSGh0 ZsChUh8Ss63aBF+G2194OHiTnsMCTgStrd5NIjNGV1rQtgsIPZf1g6l6q+BlcMS1 5ITDJ4v+fMjw3m5hHZQ2pPpPWQcg+Co8KGLOwDUUCFwnwFAibmsQZ/s3gQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLpHHDDWrPFV3uYI+mCCfnxm2QJAMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvdWtjY01OYXM4VlhlNWdqNllJSi1mR2JaQWtBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwbUaAwQA woQ6MA0GCSqGSIb3DQEBCwUAA4IBAQCt7sQ6AKez9ZQriR7XAyC0ZCH0Vw6GuntQ JwkWo7LbxvelqI5XYQm2rVyuSyDNRvIFRI//hlYz5VPi6gu2pXMgnlwBhubXHkPT gK5TvqqFRFoQiqScSoTHbtJSlilRlbHYAc7Gu54QNq1SvFQIQOdK0tjNFcaVVM7i FpD8BsPd9EIuAEZcTAJkgWUiwosKjSY2QT1vCJnb1tWJLYv3BYC9sln8h8YxAJ4I yLxuwDMQ97qE2KAaSCT1cXb2MkK77Wy0ecm0mggRnAEuKZxu2lErwc/hjRlTgtK6 Yal69irTR/aZ9LilcLb0nemSCjhFtbDtAa1v2sjNOGjfzmZxkszl -----END CERTIFICATE-----Generated at Sun Jan 25 11:01:39 2026 by rpki-client