This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/UFXXNBXVkQDmYCk3gN0hmqZicnQ.roa File: UFXXNBXVkQDmYCk3gN0hmqZicnQ.roa (raw, json) Hash identifier: 2boQBduXg3AV/+hggd9rFckIVj+ZDMi7gLbUbL3OUUQ= Subject key identifier: 50:55:D7:34:15:D5:91:00:E6:60:29:37:80:DD:21:9A:A6:62:72:74 Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c Certificate serial: 019B7F146525E1D633F44AAC9E3EC8EB5AC4 Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/UFXXNBXVkQDmYCk3gN0hmqZicnQ.roa Signing time: Fri 02 Jan 2026 14:20:01 +0000 ROA not before: Fri 02 Jan 2026 14:20:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210352 IP address blocks: 193.233.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.mft rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:65:25:e1:d6:33:f4:4a:ac:9e:3e:c8:eb:5a:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c Validity Not Before: Jan 2 14:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5055d73415d59100e660293780dd219aa6627274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cd:47:d1:7f:c9:ac:f4:aa:2e:a4:7e:a4:15: 7b:a6:4a:4c:69:38:9f:6a:f2:9a:f0:04:b2:0c:a1: 99:e6:25:9e:db:b5:7e:45:41:ce:ed:14:67:b8:cf: bb:ea:b8:52:a8:14:e9:39:45:c5:2b:72:23:f6:d8: 4c:fd:80:71:26:49:b8:a8:fc:9c:51:0c:38:e5:9e: 50:d1:bd:1a:c6:26:d2:89:28:60:0f:8e:97:0e:f1: ee:32:ca:51:c0:37:0d:29:c1:45:21:78:76:e4:6b: f7:ae:00:89:0e:c5:1f:52:f8:ff:dc:b1:ca:58:a6: 4a:5e:cc:5e:c9:18:39:b2:03:34:7f:aa:a9:df:70: 58:e9:3c:fd:35:c4:23:bb:f1:65:31:a0:7e:f2:e3: 4d:cf:4a:47:a1:cc:dd:0a:8f:6e:71:95:8f:86:12: 63:5c:f0:ec:e3:db:36:0b:bb:a3:48:40:9e:41:81: 35:4b:8d:ec:26:8e:f2:1a:13:c6:ce:e0:d5:dc:96: e7:c6:22:4d:1e:c0:7f:49:29:fb:db:51:3f:ec:7c: 30:f6:2a:68:e0:de:2b:81:f7:98:8d:ff:86:9b:54: e0:5f:50:2e:14:42:0e:d1:d7:b1:ad:04:b7:2b:1d: e6:76:1d:01:6f:5f:d3:eb:43:37:20:5b:13:a9:ab: 8d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:55:D7:34:15:D5:91:00:E6:60:29:37:80:DD:21:9A:A6:62:72:74 X509v3 Authority Key Identifier: keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/UFXXNBXVkQDmYCk3gN0hmqZicnQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.233.49.0/24 Signature Algorithm: sha256WithRSAEncryption 67:e8:4e:49:e7:cc:67:ec:cb:9e:50:12:03:cc:67:60:a6:94: 9b:46:ee:a3:8c:f3:25:12:68:2e:73:6b:41:6f:5a:ea:ad:59: e7:ef:b7:b5:d0:cf:ba:d4:aa:bd:c4:05:84:81:1a:ed:f2:02: 29:ff:de:3c:d0:2b:e8:15:62:83:7e:1f:0c:93:03:af:cf:c9: 3e:b7:b9:28:13:c9:e4:9a:2c:25:fd:60:4f:f3:c5:6b:22:69: 32:8a:9f:a5:a5:8a:1c:f7:87:02:88:a6:c9:15:7e:8c:2c:db: 0e:39:e2:18:35:ed:ce:26:0d:03:6f:89:94:a7:d5:92:b1:7b: 3f:7f:88:59:6b:b8:ed:23:75:e0:e1:fd:94:87:54:86:c6:91: fa:fd:6f:7e:58:b0:ce:42:6b:a1:00:34:1c:8d:2f:d2:dd:87: 86:55:1f:1f:4a:c7:22:e1:d7:18:e3:a0:49:24:4b:4b:69:c4: 66:e7:c4:7f:f9:72:be:53:85:7f:a4:0a:e3:93:8a:d1:f5:83: 08:bf:22:77:2c:5c:e7:fb:62:68:2b:b0:5c:88:a8:58:d8:5c: 98:60:3c:e6:7e:be:cd:25:d7:64:3c:c3:67:3f:6a:59:0f:08: ed:28:77:fd:9f:59:8f:d7:47:53:02:16:43:83:02:3b:18:43: 75:e5:88:d5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FGUl4dYz9Eqsnj7I61rEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4 Mjg3M2MwHhcNMjYwMTAyMTQyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MDU1ZDczNDE1ZDU5MTAwZTY2MDI5Mzc4MGRkMjE5YWE2NjI3Mjc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAus1H0X/JrPSqLqR+pBV7pkpMaTif avKa8ASyDKGZ5iWe27V+RUHO7RRnuM+76rhSqBTpOUXFK3Ij9thM/YBxJkm4qPyc UQw45Z5Q0b0axibSiShgD46XDvHuMspRwDcNKcFFIXh25Gv3rgCJDsUfUvj/3LHK WKZKXsxeyRg5sgM0f6qp33BY6Tz9NcQju/FlMaB+8uNNz0pHoczdCo9ucZWPhhJj XPDs49s2C7ujSECeQYE1S43sJo7yGhPGzuDV3JbnxiJNHsB/SSn721E/7Hww9ipo 4N4rgfeYjf+Gm1TgX1AuFEIO0dexrQS3Kx3mdh0Bb1/T60M3IFsTqauNCwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFBV1zQV1ZEA5mApN4DdIZqmYnJ0MB8GA1UdIwQY MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt NGRlYzRkYWZlZTQ5LzEvVUZYWE5CWFZrUURtWUNrM2dOMGhtcVppY25RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5 LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwekxMA0G CSqGSIb3DQEBCwUAA4IBAQBn6E5J58xn7MueUBIDzGdgppSbRu6jjPMlEmguc2tB b1rqrVnn77e10M+61Kq9xAWEgRrt8gIp/9480CvoFWKDfh8MkwOvz8k+t7koE8nk miwl/WBP88VrImkyip+lpYoc94cCiKbJFX6MLNsOOeIYNe3OJg0Db4mUp9WSsXs/ f4hZa7jtI3Xg4f2Uh1SGxpH6/W9+WLDOQmuhADQcjS/S3YeGVR8fSsci4dcY46BJ JEtLacRm58R/+XK+U4V/pArjk4rR9YMIvyJ3LFzn+2JoK7BciKhY2FyYYDzmfr7N JddkPMNnP2pZDwjtKHf9n1mP10dTAhZDgwI7GEN15YjV -----END CERTIFICATE-----Generated at Tue Jan 20 12:49:41 2026 by rpki-client