This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/785090-f864-4dbe-9a4b-80faeca9c2ee/1/uqlwtwz2Qs2EiNBrxD0-ZbsYVHs.roa File: uqlwtwz2Qs2EiNBrxD0-ZbsYVHs.roa (raw, json) Hash identifier: IkhV4yizozk2dsaRcLN2hmBNAiBYulp+U7a9yEZXbLk= Subject key identifier: BA:A9:70:B7:0C:F6:42:CD:84:88:D0:6B:C4:3D:3E:65:BB:18:54:7B Certificate issuer: /CN=ce9d0647dc17141d842b32f5115d99aa9c9f33dd Certificate serial: 019B7B36A85512983432DE356D805E409E3D Authority key identifier: CE:9D:06:47:DC:17:14:1D:84:2B:32:F5:11:5D:99:AA:9C:9F:33:DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zp0GR9wXFB2EKzL1EV2ZqpyfM90.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/785090-f864-4dbe-9a4b-80faeca9c2ee/1/uqlwtwz2Qs2EiNBrxD0-ZbsYVHs.roa Signing time: Thu 01 Jan 2026 20:18:58 +0000 ROA not before: Thu 01 Jan 2026 20:18:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57866 IP address blocks: 46.226.126.0/24 maxlen: 24 2a11:7b80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/785090-f864-4dbe-9a4b-80faeca9c2ee/1/zp0GR9wXFB2EKzL1EV2ZqpyfM90.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/785090-f864-4dbe-9a4b-80faeca9c2ee/1/zp0GR9wXFB2EKzL1EV2ZqpyfM90.mft rsync://rpki.ripe.net/repository/DEFAULT/zp0GR9wXFB2EKzL1EV2ZqpyfM90.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:a8:55:12:98:34:32:de:35:6d:80:5e:40:9e:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce9d0647dc17141d842b32f5115d99aa9c9f33dd Validity Not Before: Jan 1 20:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=baa970b70cf642cd8488d06bc43d3e65bb18547b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:5b:c7:e5:e9:18:91:d7:d6:96:70:42:0a:5b: 86:ea:0a:51:5c:37:d1:8d:f8:f9:6b:42:7c:79:3e: 76:57:df:53:d4:d1:1a:3f:52:87:97:54:16:ba:f6: 0f:8a:4d:a6:2c:d9:06:23:88:dc:3a:7a:db:4f:21: df:14:98:ee:50:a6:b7:c2:ac:2f:2c:c6:c2:20:44: dd:a2:28:fe:a6:7f:48:ef:fa:b4:86:9d:cd:bf:eb: 36:a0:61:a0:b9:46:0f:de:bc:4c:07:f9:86:f2:55: 74:85:c3:14:43:ca:eb:09:49:9b:87:7c:75:38:33: d1:a4:18:c5:0d:dc:9d:a7:79:81:2d:1f:f4:27:cf: a7:32:81:41:54:2e:87:ed:42:61:82:d4:2d:09:2c: f3:a5:c8:05:96:e6:6d:0d:5b:a3:64:69:9e:5b:39: b6:32:c5:70:b9:06:f2:fb:a9:cc:33:f8:b2:25:dd: 7c:0a:32:b0:73:94:ca:1a:7d:3e:86:d0:84:54:86: 2b:a2:5e:e2:24:21:41:f0:32:e1:bb:6e:fb:ef:06: cd:d5:84:5f:8a:6c:ff:98:a9:cb:a3:c1:10:9b:a4: fd:e2:f3:76:9b:10:71:6a:72:52:15:04:1c:80:e5: bf:2b:52:39:33:df:20:c9:74:fd:77:f7:b6:b1:93: a1:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A9:70:B7:0C:F6:42:CD:84:88:D0:6B:C4:3D:3E:65:BB:18:54:7B X509v3 Authority Key Identifier: keyid:CE:9D:06:47:DC:17:14:1D:84:2B:32:F5:11:5D:99:AA:9C:9F:33:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zp0GR9wXFB2EKzL1EV2ZqpyfM90.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/785090-f864-4dbe-9a4b-80faeca9c2ee/1/uqlwtwz2Qs2EiNBrxD0-ZbsYVHs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/785090-f864-4dbe-9a4b-80faeca9c2ee/1/zp0GR9wXFB2EKzL1EV2ZqpyfM90.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.226.126.0/24 IPv6: 2a11:7b80::/29 Signature Algorithm: sha256WithRSAEncryption 88:8c:15:68:93:96:c5:60:26:6f:d0:7d:96:cf:b4:f5:ce:1c: dc:a0:01:95:cd:12:41:35:f5:85:ca:da:c1:4f:42:35:f3:6b: ae:22:84:c4:e2:3a:04:af:02:8a:98:d1:74:37:4b:ab:9e:f1: 6a:18:bf:ae:ba:d6:d1:29:17:05:f0:50:9b:ee:15:4a:93:f5: a8:6b:c9:0b:e4:2e:79:ac:29:c2:c6:40:96:0b:24:d3:33:a5: d0:ef:96:70:c7:da:9d:d1:a3:7e:24:a2:7a:ab:8c:bf:b6:57: 9d:f6:95:b2:c9:b2:cd:3f:3b:9c:c1:fb:39:3a:a7:d4:e6:ce: 69:1e:26:ff:a7:6b:eb:7c:7b:cb:77:24:9e:dd:24:11:cd:6b: 49:ca:dc:63:c3:da:ac:22:32:25:e4:ee:11:34:72:0f:0c:91: de:cd:c5:7e:f2:cc:88:5b:9b:27:9c:ee:08:32:7b:1b:1a:ed: d9:73:09:87:8e:a6:05:40:53:ac:51:72:39:c7:23:ee:cf:ff: 79:61:cd:4d:4d:07:2f:5b:8c:e1:94:82:24:e7:4a:6a:95:2d: fd:4f:d1:e0:fe:d0:e9:6f:55:9e:01:b8:74:be:ef:0d:a0:28: b6:f3:c8:c6:fe:f2:8a:75:12:72:dc:02:c7:71:94:64:a8:44: cb:9b:86:b7 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7NqhVEpg0Mt41bYBeQJ49MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlOWQwNjQ3ZGMxNzE0MWQ4NDJiMzJmNTExNWQ5OWFhOWM5 ZjMzZGQwHhcNMjYwMTAxMjAxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYWE5NzBiNzBjZjY0MmNkODQ4OGQwNmJjNDNkM2U2NWJiMTg1NDdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5VvH5ekYkdfWlnBCCluG6gpRXDfR jfj5a0J8eT52V99T1NEaP1KHl1QWuvYPik2mLNkGI4jcOnrbTyHfFJjuUKa3wqwv LMbCIETdoij+pn9I7/q0hp3Nv+s2oGGguUYP3rxMB/mG8lV0hcMUQ8rrCUmbh3x1 ODPRpBjFDdydp3mBLR/0J8+nMoFBVC6H7UJhgtQtCSzzpcgFluZtDVujZGmeWzm2 MsVwuQby+6nMM/iyJd18CjKwc5TKGn0+htCEVIYrol7iJCFB8DLhu2777wbN1YRf imz/mKnLo8EQm6T94vN2mxBxanJSFQQcgOW/K1I5M98gyXT9d/e2sZOh6QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLqpcLcM9kLNhIjQa8Q9PmW7GFR7MB8GA1UdIwQY MBaAFM6dBkfcFxQdhCsy9RFdmaqcnzPdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenAwR1I5d1hGQjJFS3pMMUVWMlpxcHlmTTkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS83ODUwOTAtZjg2NC00ZGJlLTlhNGIt ODBmYWVjYTljMmVlLzEvdXFsd3R3ejJRczJFaU5CcnhEMC1aYnNZVkhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS83ODUwOTAtZjg2NC00ZGJlLTlhNGItODBmYWVjYTljMmVl LzEvenAwR1I5d1hGQjJFS3pMMUVWMlpxcHlmTTkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALuJ+MA0E AgACMAcDBQMqEXuAMA0GCSqGSIb3DQEBCwUAA4IBAQCIjBVok5bFYCZv0H2Wz7T1 zhzcoAGVzRJBNfWFytrBT0I182uuIoTE4joErwKKmNF0N0urnvFqGL+uutbRKRcF 8FCb7hVKk/Woa8kL5C55rCnCxkCWCyTTM6XQ75Zwx9qd0aN+JKJ6q4y/tled9pWy ybLNPzucwfs5OqfU5s5pHib/p2vrfHvLdySe3SQRzWtJytxjw9qsIjIl5O4RNHIP DJHezcV+8syIW5snnO4IMnsbGu3ZcwmHjqYFQFOsUXI5xyPuz/95Yc1NTQcvW4zh lIIk50pqlS39T9Hg/tDpb1WeAbh0vu8NoCi288jG/vKKdRJy3ALHcZRkqETLm4a3 -----END CERTIFICATE-----Generated at Sun Jan 25 22:13:22 2026 by rpki-client