This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/UcCqMTHisbto-8lkUT_tLgAeR84.roa File: UcCqMTHisbto-8lkUT_tLgAeR84.roa (raw, json) Hash identifier: MKKos7zvQxC3AHlxEIyIz2TorbEhj+M5Gg1Z5qYM5Vw= Subject key identifier: 51:C0:AA:31:31:E2:B1:BB:68:FB:C9:64:51:3F:ED:2E:00:1E:47:CE Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7 Certificate serial: 019B7B358B61DCFF50DE77594C3E5A726FAC Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/UcCqMTHisbto-8lkUT_tLgAeR84.roa Signing time: Thu 01 Jan 2026 20:17:45 +0000 ROA not before: Thu 01 Jan 2026 20:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 400897 IP address blocks: 83.136.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.mft rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:8b:61:dc:ff:50:de:77:59:4c:3e:5a:72:6f:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7 Validity Not Before: Jan 1 20:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=51c0aa3131e2b1bb68fbc964513fed2e001e47ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:94:dd:f4:23:2a:51:fa:77:c8:8f:09:ea:57: 55:46:b5:24:8b:2a:94:8a:25:27:59:08:03:6f:e9: 6f:bc:d1:55:04:dc:f6:cc:b4:50:72:fd:5f:8c:00: 92:03:a5:db:e7:75:ac:3b:a5:8b:25:7c:12:08:b2: 69:b9:e2:d4:7d:3d:85:e5:31:f2:ea:65:51:83:b8: 20:d2:f3:3c:c3:32:82:65:70:6b:57:1e:aa:23:09: da:af:5f:c9:29:d9:e1:cb:f6:02:e6:03:16:f9:c6: fe:4c:e4:b0:ed:b1:ff:05:63:47:1f:11:54:16:f5: 58:99:cf:8e:2d:d1:9b:b3:3c:49:d0:8f:40:1d:d8: 30:dc:fe:47:12:34:41:79:df:8d:cb:f0:8d:98:45: 05:7c:39:e1:83:9e:1d:80:c2:6b:c4:4e:5d:38:c8: 75:9e:c6:31:e6:af:4e:ba:8d:04:34:28:d8:aa:d7: e5:6f:f3:34:c9:ca:59:f3:58:06:0a:bf:bd:1d:a9: 9a:44:f1:95:d3:f5:c7:c0:26:bb:35:e0:6b:ce:a6: 7c:2d:ef:4b:6e:c8:1d:85:cf:68:ba:c5:fb:ee:8e: c6:2a:af:aa:67:08:43:80:e7:71:f5:32:8e:32:93: d0:1b:b9:48:65:3d:ab:44:e5:b8:d3:c4:2e:e6:6b: 07:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C0:AA:31:31:E2:B1:BB:68:FB:C9:64:51:3F:ED:2E:00:1E:47:CE X509v3 Authority Key Identifier: keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/UcCqMTHisbto-8lkUT_tLgAeR84.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.136.208.0/22 Signature Algorithm: sha256WithRSAEncryption 27:ab:5e:00:f1:74:45:41:c4:9c:60:bd:38:66:4e:82:c6:5c: fb:34:6e:5b:37:76:d8:e4:e2:6f:39:20:12:3e:51:77:c4:dc: 7f:e7:af:91:55:35:ef:51:6c:c3:fb:38:af:50:39:4b:55:72: 85:3d:97:82:f6:63:63:e0:59:8e:5c:d7:28:02:53:a5:c8:30: cc:af:8e:dc:a0:0c:00:1a:af:75:e4:da:02:1b:8f:86:c6:04: 7a:5d:7e:85:36:ed:d1:17:e6:7a:0c:6f:89:ce:bc:e4:42:5a: 88:e6:1b:cb:bd:df:8c:d1:55:a8:c7:d7:4f:30:09:36:c2:07: 90:1f:5b:70:77:c6:7f:05:05:15:cc:d6:83:d0:03:14:14:80: 4e:70:0b:b3:61:00:6a:a0:5d:09:d9:a2:cc:6c:fa:69:e6:08: a9:bf:65:e8:9d:89:01:32:95:a7:6a:71:3e:2e:7b:de:d6:27: eb:86:3f:35:a4:4f:6f:4d:67:03:d3:88:7b:4b:02:80:a6:95: 19:ce:af:b8:f6:0f:dc:d6:ad:af:ba:4d:13:ce:e0:5a:e2:43: 65:99:42:fb:c5:72:86:8a:7d:9c:06:a7:ab:81:5f:bb:09:9d: c1:39:77:84:d3:77:75:87:d2:9a:18:9a:1d:26:0c:8a:00:60: e7:e8:df:dc -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt7NYth3P9Q3ndZTD5acm+sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4Nzk5ODhlMGY0OTk3MWEzMjZmNDE5ZTVjZmFjYmZkZGNj OTkzZTcwHhcNMjYwMTAxMjAxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MWMwYWEzMTMxZTJiMWJiNjhmYmM5NjQ1MTNmZWQyZTAwMWU0N2NlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4ZTd9CMqUfp3yI8J6ldVRrUkiyqU iiUnWQgDb+lvvNFVBNz2zLRQcv1fjACSA6Xb53WsO6WLJXwSCLJpueLUfT2F5THy 6mVRg7gg0vM8wzKCZXBrVx6qIwnar1/JKdnhy/YC5gMW+cb+TOSw7bH/BWNHHxFU FvVYmc+OLdGbszxJ0I9AHdgw3P5HEjRBed+Ny/CNmEUFfDnhg54dgMJrxE5dOMh1 nsYx5q9Ouo0ENCjYqtflb/M0ycpZ81gGCr+9HamaRPGV0/XHwCa7NeBrzqZ8Le9L bsgdhc9ousX77o7GKq+qZwhDgOdx9TKOMpPQG7lIZT2rROW408Qu5msH6wIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFFHAqjEx4rG7aPvJZFE/7S4AHkfOMB8GA1UdIwQY MBaAFPh5mI4PSZcaMm9Bnlz6y/3cyZPnMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1IbVlqZzlKbHhveWIwR2VYUHJMX2R6SmstYy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDUvYWYzZDgxLTAwNDctNDEzYy05MWY0 LTA0NzBiNGJiMzBkYi8xL1VjQ3FNVEhpc2J0by04bGtVVF90TGdBZVI4NC5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMDUvYWYzZDgxLTAwNDctNDEzYy05MWY0LTA0NzBiNGJiMzBk Yi8xLzEtSG1Zamc5Smx4b3liMEdlWFByTF9kekprLWMuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJTiNAw DQYJKoZIhvcNAQELBQADggEBACerXgDxdEVBxJxgvThmToLGXPs0bls3dtjk4m85 IBI+UXfE3H/nr5FVNe9RbMP7OK9QOUtVcoU9l4L2Y2PgWY5c1ygCU6XIMMyvjtyg DAAar3Xk2gIbj4bGBHpdfoU27dEX5noMb4nOvORCWojmG8u934zRVajH108wCTbC B5AfW3B3xn8FBRXM1oPQAxQUgE5wC7NhAGqgXQnZosxs+mnmCKm/ZeidiQEyladq cT4ue97WJ+uGPzWkT29NZwPTiHtLAoCmlRnOr7j2D9zWra+6TRPO4FriQ2WZQvvF coaKfZwGp6uBX7sJncE5d4TTd3WH0poYmh0mDIoAYOfo39w= -----END CERTIFICATE-----Generated at Tue Jan 20 02:15:56 2026 by rpki-client