This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/UBtkAIZtogJrMhGvbs0CbonHTS4.roa File: UBtkAIZtogJrMhGvbs0CbonHTS4.roa (raw, json) Hash identifier: jo8TUuFmHzrj5Su3sdBnCB1ATJWy2tfFfxqEhpA5v6A= Subject key identifier: 50:1B:64:00:86:6D:A2:02:6B:32:11:AF:6E:CD:02:6E:89:C7:4D:2E Certificate issuer: /CN=683b33dc7218b3fe883c49505134cb39a664fd28 Certificate serial: 019B7C7FF76F79BF8D9687AAE6F12FC3E314 Authority key identifier: 68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/UBtkAIZtogJrMhGvbs0CbonHTS4.roa Signing time: Fri 02 Jan 2026 02:18:39 +0000 ROA not before: Fri 02 Jan 2026 02:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29275 IP address blocks: 195.137.196.0/23 maxlen: 23 195.137.196.0/24 maxlen: 24 195.137.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:f7:6f:79:bf:8d:96:87:aa:e6:f1:2f:c3:e3:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=683b33dc7218b3fe883c49505134cb39a664fd28 Validity Not Before: Jan 2 02:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=501b6400866da2026b3211af6ecd026e89c74d2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:eb:c4:c7:ee:e8:9f:cc:55:38:7d:c7:05:c4: 24:d8:7a:a1:e4:45:69:1f:e1:a4:ec:97:20:d4:bc: 2d:d9:23:f9:c3:aa:1c:5e:96:5a:f2:3c:8e:ab:dd: db:88:86:35:11:61:6b:73:22:18:7b:41:0c:6f:30: c3:1e:47:80:79:26:7e:68:f6:88:c5:18:1b:d2:27: ad:5f:e9:f3:d5:31:2f:eb:c0:b1:9e:d0:5d:a7:3c: 99:d7:b2:ed:5a:16:0d:a6:0a:6d:01:97:f2:cd:77: bb:f0:66:be:37:8c:ae:a8:37:32:4a:61:df:b5:3b: e2:cf:aa:34:93:55:4a:47:ec:2a:c6:cd:c9:a9:70: 55:16:57:c9:98:2d:74:3c:d0:6c:a2:b5:9d:de:f7: 46:97:5f:9a:90:b3:88:02:91:f5:71:5e:ae:24:14: 0b:da:24:87:f1:71:0e:69:29:64:31:5c:04:f0:1c: 12:c8:2b:4b:a2:dd:9a:fc:b9:00:76:20:93:77:42: d8:ba:2f:a9:df:7b:43:11:d4:f0:9d:e9:99:90:ed: 58:3e:92:e9:4d:15:88:ac:fb:98:c5:80:5e:b6:04: 90:61:4d:7e:a5:ca:b2:71:c3:97:54:cf:9e:9b:dc: 7f:57:a9:8e:fc:f3:5e:8c:4b:cd:5f:61:0e:38:f6: 6e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:1B:64:00:86:6D:A2:02:6B:32:11:AF:6E:CD:02:6E:89:C7:4D:2E X509v3 Authority Key Identifier: keyid:68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/UBtkAIZtogJrMhGvbs0CbonHTS4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.137.196.0/23 Signature Algorithm: sha256WithRSAEncryption a2:a6:0b:40:5f:12:8a:24:fc:05:b3:cc:3e:e8:59:3f:e7:4a: a5:6c:2f:e6:a0:ac:8a:42:39:e0:d5:e7:2f:49:80:5d:83:13: aa:81:69:03:6d:b6:96:96:85:da:db:1e:9d:52:47:00:3b:14: 23:7e:e2:cc:c6:d8:9e:80:27:db:22:e7:e0:2f:ff:f4:83:26: 2a:2f:8a:21:ac:22:d9:14:7b:41:c7:d3:e2:6e:74:de:be:c5: cc:64:d5:62:91:22:bd:f9:53:ec:20:db:ac:49:3c:67:1f:48: ce:7a:73:c3:1b:ef:8d:12:2f:3b:73:94:58:d7:1f:40:18:33: 00:ff:55:a8:4e:0e:91:f0:56:59:86:f2:5e:3c:f9:2d:af:f9: 1b:58:e4:d5:bd:a5:95:e8:66:3d:b0:72:12:43:d8:d9:5a:05: 09:24:52:1c:9e:a8:8f:e3:76:7f:f5:45:d1:59:aa:d8:0a:c9: b2:cd:c5:18:fd:bc:1e:9e:71:a0:81:b5:44:4a:4d:70:0e:b3: c2:60:de:28:4e:90:fe:57:d2:a0:17:8f:6c:11:26:3d:2a:1c: c9:df:af:41:56:62:9e:93:86:fa:5e:50:a4:bd:74:23:ea:85: 61:99:ae:c2:e5:30:e5:d2:88:7c:9a:f3:88:61:56:fa:cb:63: 4a:42:0d:3a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8f/dveb+Nloeq5vEvw+MUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4M2IzM2RjNzIxOGIzZmU4ODNjNDk1MDUxMzRjYjM5YTY2 NGZkMjgwHhcNMjYwMTAyMDIxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MDFiNjQwMDg2NmRhMjAyNmIzMjExYWY2ZWNkMDI2ZTg5Yzc0ZDJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuvEx+7on8xVOH3HBcQk2Hqh5EVp H+Gk7Jcg1Lwt2SP5w6ocXpZa8jyOq93biIY1EWFrcyIYe0EMbzDDHkeAeSZ+aPaI xRgb0ietX+nz1TEv68CxntBdpzyZ17LtWhYNpgptAZfyzXe78Ga+N4yuqDcySmHf tTviz6o0k1VKR+wqxs3JqXBVFlfJmC10PNBsorWd3vdGl1+akLOIApH1cV6uJBQL 2iSH8XEOaSlkMVwE8BwSyCtLot2a/LkAdiCTd0LYui+p33tDEdTwnemZkO1YPpLp TRWIrPuYxYBetgSQYU1+pcqyccOXVM+em9x/V6mO/PNejEvNX2EOOPZuJwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFAbZACGbaICazIRr27NAm6Jx00uMB8GA1UdIwQY MBaAFGg7M9xyGLP+iDxJUFE0yzmmZP0oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEt MTRjNmI5NTRkOTc2LzEvVUJ0a0FJWnRvZ0pyTWhHdmJzMENib25IVFM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEtMTRjNmI5NTRkOTc2 LzEvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw4nEMA0G CSqGSIb3DQEBCwUAA4IBAQCipgtAXxKKJPwFs8w+6Fk/50qlbC/moKyKQjng1ecv SYBdgxOqgWkDbbaWloXa2x6dUkcAOxQjfuLMxtiegCfbIufgL//0gyYqL4ohrCLZ FHtBx9PibnTevsXMZNVikSK9+VPsINusSTxnH0jOenPDG++NEi87c5RY1x9AGDMA /1WoTg6R8FZZhvJePPktr/kbWOTVvaWV6GY9sHISQ9jZWgUJJFIcnqiP43Z/9UXR WarYCsmyzcUY/bwennGggbVESk1wDrPCYN4oTpD+V9KgF49sESY9KhzJ369BVmKe k4b6XlCkvXQj6oVhma7C5TDl0oh8mvOIYVb6y2NKQg06 -----END CERTIFICATE-----Generated at Tue Feb 10 01:13:22 2026 by rpki-client