This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/uRrZsstrzGEOJvLMKb6O233tS-U.roa File: uRrZsstrzGEOJvLMKb6O233tS-U.roa (raw, json) Hash identifier: hfakJlnSmscUlq1SwhM8hNCbJeeub/2zpsFlue2e450= Subject key identifier: B9:1A:D9:B2:CB:6B:CC:61:0E:26:F2:CC:29:BE:8E:DB:7D:ED:4B:E5 Certificate issuer: /CN=33c342c06aacc359d39439ff58defa8ea1875748 Certificate serial: 019B7911344C1871635D59214533E1BBAB5D Authority key identifier: 33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/uRrZsstrzGEOJvLMKb6O233tS-U.roa Signing time: Thu 01 Jan 2026 10:18:49 +0000 ROA not before: Thu 01 Jan 2026 10:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60513 IP address blocks: 109.236.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.mft rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:34:4c:18:71:63:5d:59:21:45:33:e1:bb:ab:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33c342c06aacc359d39439ff58defa8ea1875748 Validity Not Before: Jan 1 10:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b91ad9b2cb6bcc610e26f2cc29be8edb7ded4be5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:96:c6:fc:cb:3d:93:ca:3b:7c:2e:72:0d:17: 51:dd:de:34:4f:f7:f6:4c:d0:70:49:bf:df:85:91: 94:db:35:b8:f2:f6:8e:5a:86:96:e0:fe:e8:a8:16: b8:01:13:14:79:ea:d5:04:7b:fe:74:fb:93:14:93: 1c:b2:f9:1d:cf:ff:3b:1a:41:92:68:ba:31:74:2d: bd:d9:f1:0f:17:9b:52:61:cd:8b:06:68:a4:71:d4: 96:3c:68:4f:f1:04:23:12:ed:c4:d3:1e:85:f6:c0: 38:34:32:0e:38:b6:0e:ac:c1:a4:c1:b2:70:87:f0: 1c:cb:11:c4:da:7c:1d:a6:6a:d3:22:5b:c5:df:7e: e6:a5:83:a4:5c:3f:51:9a:8e:ae:c6:65:96:8f:06: 53:6e:d3:25:c2:cb:da:be:c7:bf:13:b1:34:7f:03: dd:63:ae:2b:c8:a0:14:9a:11:8c:99:c5:32:36:21: d5:ac:2d:65:ca:d4:14:a9:d9:11:73:5b:4c:1e:6f: e7:af:d4:c6:55:9a:4f:f3:43:7a:aa:5c:27:54:74: 13:b6:7c:b0:7c:ea:7d:59:8e:b7:3e:b1:76:f9:18: 3e:dd:46:ae:de:53:e4:ec:cd:90:d8:c1:e5:29:3a: 48:e6:f7:fe:e5:53:33:0c:02:a3:e8:a3:d2:a4:ba: 7b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:1A:D9:B2:CB:6B:CC:61:0E:26:F2:CC:29:BE:8E:DB:7D:ED:4B:E5 X509v3 Authority Key Identifier: keyid:33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/uRrZsstrzGEOJvLMKb6O233tS-U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.236.253.0/24 Signature Algorithm: sha256WithRSAEncryption 72:cb:41:1f:bc:98:a2:4b:df:96:d8:8e:bc:22:5f:76:80:7b: a3:4e:24:32:a6:bc:5b:51:73:67:9c:85:60:90:28:a4:cb:5e: e4:7d:8c:19:36:3e:89:9f:ad:12:2d:0d:c1:d2:7d:f5:14:dc: 5a:7e:73:c4:ba:4b:c9:33:3e:90:d4:5e:b7:06:f6:92:5a:74: 10:b5:06:46:2a:1a:c0:cc:22:b9:06:aa:e1:8c:65:b3:93:95: 81:72:9e:e2:eb:81:b2:af:8d:a0:f7:32:68:1c:b7:c1:1e:a8: 8b:e4:92:a3:86:b3:02:4c:28:28:42:5f:b2:7f:0a:92:6c:1c: f1:c9:40:e8:bf:03:fa:8c:ce:67:1e:ca:ba:b0:95:16:bb:70: 04:ed:a8:fd:9a:25:c8:7a:d3:12:71:25:3f:68:11:f7:ba:62: 2a:b2:5d:4b:81:29:25:88:14:02:2b:97:b4:53:03:e9:7e:df: 68:a9:80:7d:f9:19:9f:90:d4:62:ce:39:8c:b2:9f:ba:ab:d9: d6:f8:34:e8:26:ca:c0:7e:af:c7:21:10:fa:c2:c2:df:df:7e: 37:24:b4:c0:56:6d:35:f9:76:a2:c1:5d:3c:c7:ae:f3:02:98: 52:cc:d6:ca:a9:e3:fe:ae:45:a7:ba:fa:15:eb:31:10:78:a3: e4:64:6f:ae -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5ETRMGHFjXVkhRTPhu6tdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzYzM0MmMwNmFhY2MzNTlkMzk0MzlmZjU4ZGVmYThlYTE4 NzU3NDgwHhcNMjYwMTAxMTAxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTFhZDliMmNiNmJjYzYxMGUyNmYyY2MyOWJlOGVkYjdkZWQ0YmU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ZbG/Ms9k8o7fC5yDRdR3d40T/f2 TNBwSb/fhZGU2zW48vaOWoaW4P7oqBa4ARMUeerVBHv+dPuTFJMcsvkdz/87GkGS aLoxdC292fEPF5tSYc2LBmikcdSWPGhP8QQjEu3E0x6F9sA4NDIOOLYOrMGkwbJw h/AcyxHE2nwdpmrTIlvF337mpYOkXD9Rmo6uxmWWjwZTbtMlwsvavse/E7E0fwPd Y64ryKAUmhGMmcUyNiHVrC1lytQUqdkRc1tMHm/nr9TGVZpP80N6qlwnVHQTtnyw fOp9WY63PrF2+Rg+3Uau3lPk7M2Q2MHlKTpI5vf+5VMzDAKj6KPSpLp7uQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLka2bLLa8xhDibyzCm+jtt97UvlMB8GA1UdIwQY MBaAFDPDQsBqrMNZ05Q5/1je+o6hh1dIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTThOQ3dHcXN3MW5UbERuX1dONzZqcUdIVjBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9jNTVmZGYtYTY4YS00YWEwLWI4YzUt N2YyMzMzNjA0OTk3LzEvdVJyWnNzdHJ6R0VPSnZMTUtiNk8yMzN0Uy1VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS9jNTVmZGYtYTY4YS00YWEwLWI4YzUtN2YyMzMzNjA0OTk3 LzEvTThOQ3dHcXN3MW5UbERuX1dONzZqcUdIVjBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbez9MA0G CSqGSIb3DQEBCwUAA4IBAQByy0EfvJiiS9+W2I68Il92gHujTiQyprxbUXNnnIVg kCiky17kfYwZNj6Jn60SLQ3B0n31FNxafnPEukvJMz6Q1F63BvaSWnQQtQZGKhrA zCK5BqrhjGWzk5WBcp7i64Gyr42g9zJoHLfBHqiL5JKjhrMCTCgoQl+yfwqSbBzx yUDovwP6jM5nHsq6sJUWu3AE7aj9miXIetMScSU/aBH3umIqsl1LgSkliBQCK5e0 UwPpft9oqYB9+RmfkNRizjmMsp+6q9nW+DToJsrAfq/HIRD6wsLf3343JLTAVm01 +XaiwV08x67zAphSzNbKqeP+rkWnuvoV6zEQeKPkZG+u -----END CERTIFICATE-----Generated at Mon Jan 26 07:42:46 2026 by rpki-client