This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/UYFYTT4IpXzIHzyEPD5-6MYn_Fc.roa File: UYFYTT4IpXzIHzyEPD5-6MYn_Fc.roa (raw, json) Hash identifier: /XFb3LYgQI+SavE/Jfgg7IpIlM8gDGTFSBitmcTTPeM= Subject key identifier: 51:81:58:4D:3E:08:A5:7C:C8:1F:3C:84:3C:3E:7E:E8:C6:27:FC:57 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019BD50FC55605873BAF968E774D8F291DE0 Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/UYFYTT4IpXzIHzyEPD5-6MYn_Fc.roa Signing time: Mon 19 Jan 2026 07:02:19 +0000 ROA not before: Mon 19 Jan 2026 07:02:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9232 IP address blocks: 158.173.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d5:0f:c5:56:05:87:3b:af:96:8e:77:4d:8f:29:1d:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 19 07:02:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5181584d3e08a57cc81f3c843c3e7ee8c627fc57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a3:34:03:fb:2a:6f:dc:f5:b7:f6:0f:ba:34: 33:a8:11:41:29:88:bc:32:2e:f0:a4:f7:b5:16:c7: 0e:a6:83:7c:9c:f2:3b:27:05:56:79:66:91:4b:5d: 7e:15:d7:49:41:da:b8:4c:aa:70:e4:b9:21:98:2b: b4:97:bf:0a:a3:18:32:2b:4d:84:44:3c:e4:9d:17: c3:05:ec:f1:6e:b6:50:fb:af:9d:ee:0d:1a:cd:ee: 3e:fa:9e:3a:d9:a0:e2:dd:6a:b4:85:bc:13:c3:e0: 0f:05:09:f5:78:eb:1e:ac:c0:6d:6a:a4:8a:c3:43: 17:e6:9a:63:ef:0b:ef:26:82:f7:2e:35:50:ee:7a: df:2c:e7:4a:7a:40:f6:02:75:b7:25:52:04:ca:cf: 89:3f:3d:c3:88:4e:c1:2f:47:ab:9f:32:0c:4d:52: be:9a:d6:8a:a6:5c:7c:19:f8:1e:c1:6c:75:10:1b: 2f:91:8c:13:0d:62:fd:35:44:a4:00:90:60:1a:af: 19:13:ea:a9:08:72:5f:af:9f:ff:44:c8:19:ad:44: c5:eb:d5:e5:07:99:28:2d:6f:75:c0:56:84:84:e5: c4:c1:0b:56:7d:47:51:a5:51:f3:c3:6d:a1:b1:16: 16:1d:2b:4f:8d:73:49:f7:f2:ff:59:11:51:85:8f: 3d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:81:58:4D:3E:08:A5:7C:C8:1F:3C:84:3C:3E:7E:E8:C6:27:FC:57 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/UYFYTT4IpXzIHzyEPD5-6MYn_Fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.173.202.0/24 Signature Algorithm: sha256WithRSAEncryption c8:30:fc:d6:e7:16:69:c5:ab:0e:17:96:2c:94:02:9d:dd:6c: e0:02:c9:53:bc:ed:06:4a:49:ae:35:e0:c4:6d:c6:12:f0:47: f3:e0:5f:d0:37:fe:15:5b:ee:7e:b7:d1:c0:f7:9a:88:ba:9c: 60:66:bb:1a:d2:72:8a:8e:6e:6d:d8:1d:51:92:3c:96:9d:12: 02:f2:1f:af:42:f8:11:4f:69:02:b1:40:94:d3:45:39:81:9d: 1c:ca:30:69:77:ba:9f:8b:16:99:e5:e0:ec:ff:6f:f2:34:65: 4f:6d:af:1e:9c:75:73:d0:3d:6d:87:e7:08:f5:2f:b0:5a:1f: 39:b7:49:1c:fd:1b:91:0f:a5:86:9b:d6:4e:a5:3f:06:d0:6f: 0f:3a:52:16:10:60:ea:df:98:83:d5:c9:1b:a6:60:8d:7a:51: 7c:c2:26:02:dc:87:7d:a4:3a:3c:1a:29:26:f8:7d:28:c8:d4: b1:88:f0:bb:41:90:24:82:7a:65:a3:5e:91:87:12:11:22:f8: 6d:8b:52:40:cf:e9:3e:43:da:0a:2a:0c:9e:bd:7a:78:47:95: 78:64:ba:2d:5f:ea:c4:c5:0b:03:ef:03:7d:be:9c:aa:56:b9: 4f:c1:e5:44:bb:23:7d:45:5f:86:c2:66:1b:92:cc:11:f7:3e: 3e:bb:26:f1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZvVD8VWBYc7r5aOd02PKR3gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTE5MDcwMjE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MTgxNTg0ZDNlMDhhNTdjYzgxZjNjODQzYzNlN2VlOGM2MjdmYzU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKM0A/sqb9z1t/YPujQzqBFBKYi8 Mi7wpPe1FscOpoN8nPI7JwVWeWaRS11+FddJQdq4TKpw5LkhmCu0l78KoxgyK02E RDzknRfDBezxbrZQ+6+d7g0aze4++p462aDi3Wq0hbwTw+APBQn1eOserMBtaqSK w0MX5ppj7wvvJoL3LjVQ7nrfLOdKekD2AnW3JVIEys+JPz3DiE7BL0ernzIMTVK+ mtaKplx8GfgewWx1EBsvkYwTDWL9NUSkAJBgGq8ZE+qpCHJfr5//RMgZrUTF69Xl B5koLW91wFaEhOXEwQtWfUdRpVHzw22hsRYWHStPjXNJ9/L/WRFRhY895wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFGBWE0+CKV8yB88hDw+fujGJ/xXMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvVVlGWVRUNElwWHpJSHp5RVBENS02TVluX0ZjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnq3KMA0G CSqGSIb3DQEBCwUAA4IBAQDIMPzW5xZpxasOF5YslAKd3WzgAslTvO0GSkmuNeDE bcYS8Efz4F/QN/4VW+5+t9HA95qIupxgZrsa0nKKjm5t2B1RkjyWnRIC8h+vQvgR T2kCsUCU00U5gZ0cyjBpd7qfixaZ5eDs/2/yNGVPba8enHVz0D1th+cI9S+wWh85 t0kc/RuRD6WGm9ZOpT8G0G8POlIWEGDq35iD1ckbpmCNelF8wiYC3Id9pDo8Gikm +H0oyNSxiPC7QZAkgnplo16RhxIRIvhti1JAz+k+Q9oKKgyevXp4R5V4ZLotX+rE xQsD7wN9vpyqVrlPweVEuyN9RV+GwmYbkswR9z4+uybx -----END CERTIFICATE-----Generated at Fri Jan 23 04:39:11 2026 by rpki-client