This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/5ba81e-e274-4ba3-954d-bdf94a3fb32d/1/UKP4TUcHQtGrFZOuVGeoJQ7WW6Q.roa File: UKP4TUcHQtGrFZOuVGeoJQ7WW6Q.roa (raw, json) Hash identifier: 99B0w3hw/yKL8K1EFcdu+2H+KrVDmHXCwq/A1IUCotg= Subject key identifier: 50:A3:F8:4D:47:07:42:D1:AB:15:93:AE:54:67:A8:25:0E:D6:5B:A4 Certificate issuer: /CN=4dcfd001a667e1645ab40c5bbed89f5927004f85 Certificate serial: 019B79ECE4406FE5D5BB9C4655287953A52C Authority key identifier: 4D:CF:D0:01:A6:67:E1:64:5A:B4:0C:5B:BE:D8:9F:59:27:00:4F:85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tc_QAaZn4WRatAxbvtifWScAT4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/5ba81e-e274-4ba3-954d-bdf94a3fb32d/1/UKP4TUcHQtGrFZOuVGeoJQ7WW6Q.roa Signing time: Thu 01 Jan 2026 14:18:46 +0000 ROA not before: Thu 01 Jan 2026 14:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34947 IP address blocks: 45.89.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/5ba81e-e274-4ba3-954d-bdf94a3fb32d/1/Tc_QAaZn4WRatAxbvtifWScAT4U.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/5ba81e-e274-4ba3-954d-bdf94a3fb32d/1/Tc_QAaZn4WRatAxbvtifWScAT4U.mft rsync://rpki.ripe.net/repository/DEFAULT/Tc_QAaZn4WRatAxbvtifWScAT4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:e4:40:6f:e5:d5:bb:9c:46:55:28:79:53:a5:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4dcfd001a667e1645ab40c5bbed89f5927004f85 Validity Not Before: Jan 1 14:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=50a3f84d470742d1ab1593ae5467a8250ed65ba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fd:9e:86:d3:3f:93:be:ec:e6:74:0e:40:33: 30:84:69:92:55:13:8a:d2:b0:8f:2c:fe:9c:9e:c0: ca:c0:3c:c7:c1:aa:1e:20:11:5c:8f:cf:7c:43:15: 51:fc:f7:d7:bf:eb:57:76:75:5e:5a:7b:ea:54:27: 20:88:e6:57:0e:79:8c:d4:fb:fb:8a:90:18:e2:45: 07:a7:1f:f9:6c:d7:a5:08:ad:49:51:5d:ce:26:b9: 3e:1f:08:11:24:4e:1e:9e:99:21:29:b3:67:27:57: a5:b3:07:45:d3:2f:09:c0:8e:53:9c:5f:e7:47:a2: c9:ff:3c:a2:63:7c:2c:6d:fc:31:d2:ee:46:93:8e: a2:e1:71:76:cf:c2:b7:92:68:21:ed:a2:a0:0b:b1: 4c:82:f7:70:cb:88:f4:a6:2f:38:e4:0b:42:72:bf: be:c3:5c:0d:ff:21:a8:9c:aa:e3:7d:55:ff:55:e0: 90:e0:a9:af:78:14:cc:66:cf:04:bc:ac:39:7a:78: 52:75:e9:ef:0a:82:b6:b3:55:3f:76:91:e4:ac:a1: a1:f0:92:fe:c7:35:36:35:fa:19:ac:91:56:95:a2: 5b:20:2a:60:8a:88:34:28:31:a3:c7:14:79:3f:05: 99:9d:62:9d:8d:07:33:30:ef:a2:e9:55:12:3c:86: aa:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:A3:F8:4D:47:07:42:D1:AB:15:93:AE:54:67:A8:25:0E:D6:5B:A4 X509v3 Authority Key Identifier: keyid:4D:CF:D0:01:A6:67:E1:64:5A:B4:0C:5B:BE:D8:9F:59:27:00:4F:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tc_QAaZn4WRatAxbvtifWScAT4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5ba81e-e274-4ba3-954d-bdf94a3fb32d/1/UKP4TUcHQtGrFZOuVGeoJQ7WW6Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5ba81e-e274-4ba3-954d-bdf94a3fb32d/1/Tc_QAaZn4WRatAxbvtifWScAT4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.89.200.0/22 Signature Algorithm: sha256WithRSAEncryption dc:9c:d0:5e:5f:55:fb:4f:22:5f:79:a8:7b:e5:93:a7:3c:57: 43:3b:8b:72:9a:18:67:01:61:4f:8b:de:37:4b:c3:0c:c1:ed: 53:34:26:d5:6d:24:64:b9:2e:1d:5d:04:4d:8f:b9:ee:1e:2e: 19:3c:9c:d5:fc:92:52:6d:a8:03:ec:0b:65:6f:da:2c:c2:6d: bf:5f:dd:28:7c:21:34:c0:66:f4:25:52:2c:7b:8b:37:89:b2: 6d:51:16:32:09:40:69:11:ed:00:af:6d:0d:cf:14:c0:08:03: 58:74:54:b3:4b:c8:f5:ea:6f:a4:5b:c0:d4:ff:0b:fe:6d:5e: f4:fa:25:d6:4e:32:c6:29:2f:3a:f1:ff:b8:8c:8f:33:6f:51: e0:b8:55:4b:9d:9d:be:3d:d4:05:4f:db:71:8d:a3:8c:57:7c: 21:a0:7d:e3:ab:12:fd:2d:d3:79:00:f1:c2:ea:b2:dd:ed:46: 89:68:a7:38:ff:ac:12:d3:8a:19:fa:fd:a7:d4:c1:4e:2d:84: fb:75:cc:3f:ba:6c:65:91:38:54:d2:38:c0:18:21:b0:1f:3c: 65:cc:e8:4b:58:c8:b4:af:d0:64:30:ad:b7:5d:d2:0e:f7:02: 0e:f4:d0:c8:cf:63:6c:e9:db:aa:30:66:9d:69:52:2d:e8:40: dc:4f:51:a4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57ORAb+XVu5xGVSh5U6UsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkY2ZkMDAxYTY2N2UxNjQ1YWI0MGM1YmJlZDg5ZjU5Mjcw MDRmODUwHhcNMjYwMTAxMTQxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MGEzZjg0ZDQ3MDc0MmQxYWIxNTkzYWU1NDY3YTgyNTBlZDY1YmE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm/2ehtM/k77s5nQOQDMwhGmSVROK 0rCPLP6cnsDKwDzHwaoeIBFcj898QxVR/PfXv+tXdnVeWnvqVCcgiOZXDnmM1Pv7 ipAY4kUHpx/5bNelCK1JUV3OJrk+HwgRJE4enpkhKbNnJ1elswdF0y8JwI5TnF/n R6LJ/zyiY3wsbfwx0u5Gk46i4XF2z8K3kmgh7aKgC7FMgvdwy4j0pi845AtCcr++ w1wN/yGonKrjfVX/VeCQ4KmveBTMZs8EvKw5enhSdenvCoK2s1U/dpHkrKGh8JL+ xzU2NfoZrJFWlaJbICpgiog0KDGjxxR5PwWZnWKdjQczMO+i6VUSPIaqeQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFCj+E1HB0LRqxWTrlRnqCUO1lukMB8GA1UdIwQY MBaAFE3P0AGmZ+FkWrQMW77Yn1knAE+FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGNfUUFhWm40V1JhdEF4YnZ0aWZXU2NBVDRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC81YmE4MWUtZTI3NC00YmEzLTk1NGQt YmRmOTRhM2ZiMzJkLzEvVUtQNFRVY0hRdEdyRlpPdVZHZW9KUTdXVzZRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC81YmE4MWUtZTI3NC00YmEzLTk1NGQtYmRmOTRhM2ZiMzJk LzEvVGNfUUFhWm40V1JhdEF4YnZ0aWZXU2NBVDRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLVnIMA0G CSqGSIb3DQEBCwUAA4IBAQDcnNBeX1X7TyJfeah75ZOnPFdDO4tymhhnAWFPi943 S8MMwe1TNCbVbSRkuS4dXQRNj7nuHi4ZPJzV/JJSbagD7Atlb9oswm2/X90ofCE0 wGb0JVIse4s3ibJtURYyCUBpEe0Ar20NzxTACANYdFSzS8j16m+kW8DU/wv+bV70 +iXWTjLGKS868f+4jI8zb1HguFVLnZ2+PdQFT9txjaOMV3whoH3jqxL9LdN5APHC 6rLd7UaJaKc4/6wS04oZ+v2n1MFOLYT7dcw/umxlkThU0jjAGCGwHzxlzOhLWMi0 r9BkMK23XdIO9wIO9NDIz2Ns6duqMGadaVIt6EDcT1Gk -----END CERTIFICATE-----Generated at Tue Feb 10 03:09:19 2026 by rpki-client