This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/uhVewxHevpMHT9Vwqhs2oxQFyCs.roa File: uhVewxHevpMHT9Vwqhs2oxQFyCs.roa (raw, json) Hash identifier: wVttK0CYjEZiRPDjwBZLejNRTkNAN3AqB1UHgInSwjw= Subject key identifier: BA:15:5E:C3:11:DE:BE:93:07:4F:D5:70:AA:1B:36:A3:14:05:C8:2B Certificate issuer: /CN=d87821a7c8761e08121e70c9ff42ff9b6ad34e51 Certificate serial: 019B7DCA8B2939DC00D577FA1808CE4C5F33 Authority key identifier: D8:78:21:A7:C8:76:1E:08:12:1E:70:C9:FF:42:FF:9B:6A:D3:4E:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Hghp8h2HggSHnDJ_0L_m2rTTlE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/uhVewxHevpMHT9Vwqhs2oxQFyCs.roa Signing time: Fri 02 Jan 2026 08:19:44 +0000 ROA not before: Fri 02 Jan 2026 08:19:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 138.43.11.0/24 maxlen: 24 217.147.180.0/23 maxlen: 24 217.147.180.0/24 maxlen: 24 217.147.181.0/24 maxlen: 24 2a0b:2900:1100::/40 maxlen: 48 2a0b:2900:1f00::/40 maxlen: 40 2a0b:2900:1f00::/48 maxlen: 48 2a0b:2900:ff00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/2Hghp8h2HggSHnDJ_0L_m2rTTlE.crl rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/2Hghp8h2HggSHnDJ_0L_m2rTTlE.mft rsync://rpki.ripe.net/repository/DEFAULT/2Hghp8h2HggSHnDJ_0L_m2rTTlE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 17 Jan 2026 23:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:8b:29:39:dc:00:d5:77:fa:18:08:ce:4c:5f:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d87821a7c8761e08121e70c9ff42ff9b6ad34e51 Validity Not Before: Jan 2 08:19:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba155ec311debe93074fd570aa1b36a31405c82b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:14:c4:99:13:25:83:42:78:b5:a9:91:52:b9: 3a:76:ed:0a:d7:3b:e7:84:66:f1:c2:60:6d:9e:f0: 7e:3a:61:76:a7:7c:9f:d0:a2:17:6b:ff:be:20:83: 61:66:3d:7e:e2:67:e1:c5:dd:81:29:20:d5:14:a9: ab:51:9a:41:12:ee:cc:9f:dc:0a:fd:af:8e:2f:ff: 14:e5:fb:ed:c2:72:1c:8f:3b:e0:14:33:06:7b:12: 87:8f:62:d6:77:b8:df:f6:ee:24:ac:8d:d4:4a:20: 2d:c2:f5:73:76:ea:cb:47:85:a3:52:4f:76:72:5a: 33:d7:15:d6:2c:37:36:35:07:a1:04:c3:64:41:ee: 15:db:2d:04:e1:ca:85:58:8e:4f:66:6b:29:a4:7e: c0:25:54:6b:e7:dd:01:74:7d:a4:e0:3c:db:63:24: fb:f2:be:c7:1d:5b:ac:aa:45:40:e1:22:f4:92:a4: 40:e8:de:7b:68:9d:e6:bd:e5:6c:34:df:5a:97:ec: 87:ea:4d:74:da:40:e3:63:c3:22:8d:5f:c6:be:db: 19:8b:14:b0:fb:7f:8e:42:a9:90:49:5a:93:c1:6a: ad:a0:66:a8:0d:fa:f1:74:72:f3:e2:6c:51:93:6a: e9:7c:06:3d:2b:e5:83:ee:f8:29:ed:1f:9d:7b:9c: 45:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:15:5E:C3:11:DE:BE:93:07:4F:D5:70:AA:1B:36:A3:14:05:C8:2B X509v3 Authority Key Identifier: keyid:D8:78:21:A7:C8:76:1E:08:12:1E:70:C9:FF:42:FF:9B:6A:D3:4E:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Hghp8h2HggSHnDJ_0L_m2rTTlE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/uhVewxHevpMHT9Vwqhs2oxQFyCs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/2Hghp8h2HggSHnDJ_0L_m2rTTlE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.43.11.0/24 217.147.180.0/23 IPv6: 2a0b:2900:1100::/40 2a0b:2900:1f00::/40 2a0b:2900:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 59:a6:1d:0f:5a:df:f7:4a:c5:a7:55:53:1c:ec:c5:2a:d9:87: c1:8e:c6:53:44:b4:b4:0b:5b:98:95:ff:bf:ac:a5:4b:97:51: 0e:96:11:ff:c3:c7:c9:a3:64:b6:6c:72:92:55:40:12:64:c3: a2:f2:37:97:9d:d7:0e:6c:20:d7:7b:7a:99:71:f6:aa:16:e5: db:5e:da:b1:a1:a5:6b:af:54:e4:0c:2b:3c:d1:94:7a:9f:2f: a0:e2:9a:05:ec:98:fe:d5:53:44:a7:30:19:21:0b:f7:7a:c8: 12:a3:f3:86:aa:55:54:b5:ff:2f:d4:71:43:54:fb:29:e8:21: b6:87:88:91:a0:75:21:31:55:1a:77:97:6f:00:24:2c:d7:ee: ee:f2:66:be:e4:9c:08:3e:25:4e:c8:7f:7c:db:0e:bc:d4:fd: 8d:6c:a0:9a:81:59:1f:57:fc:de:83:14:05:f3:49:22:b3:fe: 7e:aa:48:49:92:0d:d4:3b:5d:9e:c6:0f:bc:a3:5d:55:fe:28: fb:c0:12:5a:43:ea:a4:d6:bd:25:88:eb:9a:78:03:d2:66:10: 87:a3:dc:04:5b:d3:e9:90:9a:50:71:98:a0:d8:9a:4d:89:3f: 04:f2:94:32:19:82:8c:d2:9e:ea:f4:b9:2d:0d:04:6c:01:92: 57:11:6e:7b -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZt9yospOdwA1Xf6GAjOTF8zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4NzgyMWE3Yzg3NjFlMDgxMjFlNzBjOWZmNDJmZjliNmFk MzRlNTEwHhcNMjYwMTAyMDgxOTQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTE1NWVjMzExZGViZTkzMDc0ZmQ1NzBhYTFiMzZhMzE0MDVjODJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxBTEmRMlg0J4tamRUrk6du0K1zvn hGbxwmBtnvB+OmF2p3yf0KIXa/++IINhZj1+4mfhxd2BKSDVFKmrUZpBEu7Mn9wK /a+OL/8U5fvtwnIcjzvgFDMGexKHj2LWd7jf9u4krI3USiAtwvVzdurLR4WjUk92 cloz1xXWLDc2NQehBMNkQe4V2y0E4cqFWI5PZmsppH7AJVRr590BdH2k4DzbYyT7 8r7HHVusqkVA4SL0kqRA6N57aJ3mveVsNN9al+yH6k102kDjY8MijV/GvtsZixSw +3+OQqmQSVqTwWqtoGaoDfrxdHLz4mxRk2rpfAY9K+WD7vgp7R+de5xFowIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFLoVXsMR3r6TB0/VcKobNqMUBcgrMB8GA1UdIwQY MBaAFNh4IafIdh4IEh5wyf9C/5tq005RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkhnaHA4aDJIZ2dTSG5ESl8wTF9tMnJUVGxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ni9lNTcyNWItMzEyOC00NGIzLTlmODMt NWFhNjIwYTgxMTQ5LzEvdWhWZXd4SGV2cE1IVDlWd3FoczJveFFGeUNzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ni9lNTcyNWItMzEyOC00NGIzLTlmODMtNWFhNjIwYTgxMTQ5 LzEvMkhnaHA4aDJIZ2dTSG5ESl8wTF9tMnJUVGxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDASBAIAATAMAwQAiisLAwQB 2ZO0MB4EAgACMBgDBgAqCykAEQMGACoLKQAfAwYAKgspAP8wDQYJKoZIhvcNAQEL BQADggEBAFmmHQ9a3/dKxadVUxzsxSrZh8GOxlNEtLQLW5iV/7+spUuXUQ6WEf/D x8mjZLZscpJVQBJkw6LyN5ed1w5sINd7eplx9qoW5dte2rGhpWuvVOQMKzzRlHqf L6DimgXsmP7VU0SnMBkhC/d6yBKj84aqVVS1/y/UcUNU+ynoIbaHiJGgdSExVRp3 l28AJCzX7u7yZr7knAg+JU7If3zbDrzU/Y1soJqBWR9X/N6DFAXzSSKz/n6qSEmS DdQ7XZ7GD7yjXVX+KPvAElpD6qTWvSWI65p4A9JmEIej3ARb0+mQmlBxmKDYmk2J PwTylDIZgozSnur0uS0NBGwBklcRbns= -----END CERTIFICATE-----Generated at Sat Jan 17 06:46:24 2026 by rpki-client