This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/uaBl3IuVLYuuuleKEWOZxOD35A4.roa File: uaBl3IuVLYuuuleKEWOZxOD35A4.roa (raw, json) Hash identifier: 9X106DiTa0/JFjv/OdupHJIhnyh0GwC5DbRmwzuvEu0= Subject key identifier: B9:A0:65:DC:8B:95:2D:8B:AE:BA:57:8A:11:63:99:C4:E0:F7:E4:0E Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37A701FC2F3A1CDD0B7666E9942E4E Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/uaBl3IuVLYuuuleKEWOZxOD35A4.roa Signing time: Fri 02 Jan 2026 10:18:55 +0000 ROA not before: Fri 02 Jan 2026 10:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3170 IP address blocks: 167.160.13.0/24 maxlen: 24 185.161.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:a7:01:fc:2f:3a:1c:dd:0b:76:66:e9:94:2e:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b9a065dc8b952d8baeba578a116399c4e0f7e40e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fc:f9:6b:78:ff:a2:2d:ee:1f:5c:c7:6b:c4: 6d:51:12:57:e4:fd:c5:d2:95:cd:c5:a4:40:5b:e8: ad:77:7f:ee:a1:3a:39:16:39:c9:35:8e:b8:a3:1c: b9:68:d3:41:7e:6c:b3:22:a3:4d:a0:05:ed:17:32: e4:68:fc:94:ba:73:b2:a4:3f:8d:2d:e7:eb:03:16: 12:b6:1d:fd:30:86:d2:70:11:a3:8d:71:e8:c9:01: 21:2d:3a:11:0b:16:37:9a:20:c3:b3:19:0c:2d:60: f8:9c:7f:4d:e5:62:0d:72:88:23:ef:48:66:ab:4f: 08:05:1c:d2:c8:96:98:db:76:ca:14:40:c3:f6:b9: fe:82:cf:e2:41:c1:56:91:2f:6c:df:53:07:d6:9f: c1:3b:93:81:fa:62:e1:63:2f:ad:fc:f7:76:d5:7b: fd:b2:3a:25:39:e2:27:28:c4:de:5e:8d:64:8a:7a: 5d:ca:09:20:f7:92:19:eb:d0:63:3e:41:c3:95:a2: 11:36:79:6e:1e:60:2c:d8:f6:14:b7:6f:62:18:c3: 15:9d:20:16:f2:a1:12:8f:e8:17:a0:00:56:0e:4c: 0e:83:1d:ba:61:d9:af:c7:a9:fa:b4:b7:a0:d8:a5: f0:dc:37:22:eb:6a:31:e0:59:2d:db:6a:08:3d:5f: c4:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A0:65:DC:8B:95:2D:8B:AE:BA:57:8A:11:63:99:C4:E0:F7:E4:0E X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/uaBl3IuVLYuuuleKEWOZxOD35A4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.160.13.0/24 185.161.110.0/24 Signature Algorithm: sha256WithRSAEncryption a8:9e:83:e8:3a:28:a7:67:07:a4:95:e2:8c:bf:aa:a0:e7:64: 63:3e:61:16:8d:82:e5:37:08:0d:ef:29:d3:02:e4:fa:fb:b6: c9:b3:0d:49:00:a4:f7:0d:d5:35:a3:8d:66:29:a5:db:17:4f: 76:6f:e4:3a:8a:0f:8c:19:a0:f2:b0:f2:68:68:22:0f:26:b5: 01:e7:67:9d:91:2b:b1:d7:cf:5e:01:90:7f:d9:9f:b9:d0:77: 17:bf:b2:09:1a:e7:94:d9:73:e4:29:82:71:52:5c:cc:e7:bc: c1:2d:db:d2:bc:6e:84:d0:81:94:47:9e:de:44:f8:21:fb:cb: bb:28:4a:56:24:a1:47:9e:0d:5b:59:ef:23:d2:b1:ac:15:c3: 7a:0a:7f:a1:e7:e7:08:a4:63:e7:03:b8:b8:e3:df:cf:fe:04: e9:1a:c9:d6:5b:dd:91:8c:02:9b:26:e0:b6:81:52:9c:cd:b2: a2:69:fb:00:7b:0f:9a:32:6f:21:ec:4e:94:a9:01:de:5f:65: 85:34:a1:c5:f8:f7:1f:85:d7:9f:bd:bd:da:9a:fd:98:fe:2a: ac:14:fc:a6:cc:fc:17:79:6c:d1:bc:94:b9:59:79:1f:19:73: 48:bc:36:57:87:76:88:8b:6f:62:16:63:49:19:a0:98:c5:d9: 50:aa:b9:d4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+N6cB/C86HN0LdmbplC5OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOWEwNjVkYzhiOTUyZDhiYWViYTU3OGExMTYzOTljNGUwZjdlNDBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Pz5a3j/oi3uH1zHa8RtURJX5P3F 0pXNxaRAW+itd3/uoTo5FjnJNY64oxy5aNNBfmyzIqNNoAXtFzLkaPyUunOypD+N LefrAxYSth39MIbScBGjjXHoyQEhLToRCxY3miDDsxkMLWD4nH9N5WINcogj70hm q08IBRzSyJaY23bKFEDD9rn+gs/iQcFWkS9s31MH1p/BO5OB+mLhYy+t/Pd21Xv9 sjolOeInKMTeXo1kinpdygkg95IZ69BjPkHDlaIRNnluHmAs2PYUt29iGMMVnSAW 8qESj+gXoABWDkwOgx26Ydmvx6n6tLeg2KXw3Dci62ox4Fkt22oIPV/EMwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLmgZdyLlS2LrrpXihFjmcTg9+QOMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvdWFCbDNJdVZMWXV1dWxlS0VXT1p4T0QzNUE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAp6ANAwQA uaFuMA0GCSqGSIb3DQEBCwUAA4IBAQConoPoOiinZwekleKMv6qg52RjPmEWjYLl NwgN7ynTAuT6+7bJsw1JAKT3DdU1o41mKaXbF092b+Q6ig+MGaDysPJoaCIPJrUB 52edkSux189eAZB/2Z+50HcXv7IJGueU2XPkKYJxUlzM57zBLdvSvG6E0IGUR57e RPgh+8u7KEpWJKFHng1bWe8j0rGsFcN6Cn+h5+cIpGPnA7i449/P/gTpGsnWW92R jAKbJuC2gVKczbKiafsAew+aMm8h7E6UqQHeX2WFNKHF+Pcfhdefvb3amv2Y/iqs FPymzPwXeWzRvJS5WXkfGXNIvDZXh3aIi29iFmNJGaCYxdlQqrnU -----END CERTIFICATE-----Generated at Fri Jan 23 04:39:27 2026 by rpki-client