This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/Uocr9SIrv8jbsgJXhQAIDOX3hGs.roa File: Uocr9SIrv8jbsgJXhQAIDOX3hGs.roa (raw, json) Hash identifier: 4iPmjoYeqHL7835MhflNIw3FaZg4Ojg4Y6QdIx6OiEc= Subject key identifier: 52:87:2B:F5:22:2B:BF:C8:DB:B2:02:57:85:00:08:0C:E5:F7:84:6B Certificate issuer: /CN=686d1840493eee345f8c02ad8aa7f0f0f41ba450 Certificate serial: 019B7A59E1AC6E9CDF45483F94F52C8CA964 Authority key identifier: 68:6D:18:40:49:3E:EE:34:5F:8C:02:AD:8A:A7:F0:F0:F4:1B:A4:50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aG0YQEk-7jRfjAKtiqfw8PQbpFA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/Uocr9SIrv8jbsgJXhQAIDOX3hGs.roa Signing time: Thu 01 Jan 2026 16:17:49 +0000 ROA not before: Thu 01 Jan 2026 16:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208988 IP address blocks: 31.214.150.0/23 maxlen: 23 37.10.68.0/23 maxlen: 23 37.10.110.0/23 maxlen: 23 62.221.228.0/22 maxlen: 22 85.190.184.0/21 maxlen: 21 85.222.208.0/20 maxlen: 20 91.208.17.0/24 maxlen: 24 94.126.36.0/22 maxlen: 22 109.169.120.0/21 maxlen: 21 128.0.120.0/23 maxlen: 23 185.44.4.0/22 maxlen: 22 185.50.108.0/22 maxlen: 22 185.68.240.0/22 maxlen: 22 185.123.4.0/22 maxlen: 22 185.125.232.0/22 maxlen: 22 185.195.120.0/22 maxlen: 22 2a01:71a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.mft rsync://rpki.ripe.net/repository/DEFAULT/aG0YQEk-7jRfjAKtiqfw8PQbpFA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:59:e1:ac:6e:9c:df:45:48:3f:94:f5:2c:8c:a9:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=686d1840493eee345f8c02ad8aa7f0f0f41ba450 Validity Not Before: Jan 1 16:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52872bf5222bbfc8dbb202578500080ce5f7846b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:50:af:20:30:50:ca:d8:a6:5a:24:7b:f7:29: 41:97:d3:4b:69:f1:5f:1f:8b:da:84:3b:20:e6:34: a5:b0:81:17:23:e5:71:16:98:66:31:8a:8e:82:24: 68:b9:a5:71:0f:1d:31:e1:26:df:d4:67:d1:18:1e: bc:b4:75:55:e5:13:48:0c:a0:3e:a5:1f:5c:20:f1: 65:9f:d6:2c:66:4b:69:a2:d1:7b:67:92:cc:23:c0: 80:70:da:c7:ca:1b:b9:35:4b:cc:3b:a3:fa:ba:af: f5:c4:e5:43:01:50:e3:c9:b4:3b:a9:f4:7c:cd:e1: 2f:a2:98:52:e8:86:ef:3e:5a:e6:e6:77:47:87:a6: 7b:3e:2b:b8:c9:79:15:a1:13:00:cf:69:a2:5f:76: d3:26:98:25:cd:72:63:ca:0b:1a:fe:0f:ee:bd:6b: f1:0b:fb:ec:1a:6f:de:71:82:d9:21:d5:d3:2c:b2: 74:17:71:c4:46:f9:93:fc:56:58:e4:af:fa:26:0f: d2:6d:b8:5d:c5:08:22:20:4a:f2:12:85:11:f9:28: 2f:75:ce:a7:9a:2e:d5:1a:42:f7:69:30:b4:09:30: d0:3e:be:41:25:d4:31:c1:35:1b:4c:e0:74:fe:b9: 1a:e0:f3:98:57:4c:b8:8a:d3:26:9e:3f:e8:23:cc: ef:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:87:2B:F5:22:2B:BF:C8:DB:B2:02:57:85:00:08:0C:E5:F7:84:6B X509v3 Authority Key Identifier: keyid:68:6D:18:40:49:3E:EE:34:5F:8C:02:AD:8A:A7:F0:F0:F4:1B:A4:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aG0YQEk-7jRfjAKtiqfw8PQbpFA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/Uocr9SIrv8jbsgJXhQAIDOX3hGs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.214.150.0/23 37.10.68.0/23 37.10.110.0/23 62.221.228.0/22 85.190.184.0/21 85.222.208.0/20 91.208.17.0/24 94.126.36.0/22 109.169.120.0/21 128.0.120.0/23 185.44.4.0/22 185.50.108.0/22 185.68.240.0/22 185.123.4.0/22 185.125.232.0/22 185.195.120.0/22 IPv6: 2a01:71a0::/32 Signature Algorithm: sha256WithRSAEncryption 69:9a:fa:bf:f2:ab:22:11:54:2a:c8:02:61:4b:47:f6:f0:bb: 90:58:95:ff:8e:64:f5:1e:4c:1b:20:8b:63:5f:30:36:aa:7f: 22:44:fb:77:3f:5a:42:ba:7d:7d:03:63:8a:da:c5:8f:31:a2: db:9f:f1:cf:49:81:b6:c7:90:be:7a:95:08:12:01:59:ff:26: 63:52:61:e5:6f:a3:b6:e5:be:78:ad:77:c2:9e:c7:fc:f3:fa: 56:1f:94:df:f1:85:e7:76:71:f0:a5:2a:94:23:b3:fc:55:a4: 51:25:f9:14:30:f7:5f:a4:71:64:c0:50:35:3c:f9:cb:d8:0c: 82:9a:ac:62:a8:ef:b3:bf:57:98:09:44:a0:35:4f:e4:1d:80: d4:ca:92:03:0b:e7:0d:bf:cb:51:c3:3e:01:bb:bc:a9:89:c4: a7:4c:36:a9:9d:0c:1e:3c:a9:f2:36:36:56:a1:46:4b:0c:f6: 00:2b:12:5b:0e:e4:7b:6d:94:84:54:91:d6:1b:36:bc:3a:f4: d6:a0:6a:d4:96:eb:85:c2:5f:e7:ef:8b:b0:a9:4d:91:b1:90: ae:62:ef:29:bf:d6:f0:4a:24:66:c6:a2:2b:00:cc:80:6a:e1: 2d:04:11:4a:31:96:4b:59:f8:c0:ef:a9:c9:a5:57:11:67:4a: ba:cc:f1:d7 -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgISAZt6WeGsbpzfRUg/lPUsjKlkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4NmQxODQwNDkzZWVlMzQ1ZjhjMDJhZDhhYTdmMGYwZjQx YmE0NTAwHhcNMjYwMTAxMTYxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Mjg3MmJmNTIyMmJiZmM4ZGJiMjAyNTc4NTAwMDgwY2U1Zjc4NDZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVCvIDBQytimWiR79ylBl9NLafFf H4vahDsg5jSlsIEXI+VxFphmMYqOgiRouaVxDx0x4Sbf1GfRGB68tHVV5RNIDKA+ pR9cIPFln9YsZktpotF7Z5LMI8CAcNrHyhu5NUvMO6P6uq/1xOVDAVDjybQ7qfR8 zeEvophS6IbvPlrm5ndHh6Z7Piu4yXkVoRMAz2miX3bTJpglzXJjygsa/g/uvWvx C/vsGm/ecYLZIdXTLLJ0F3HERvmT/FZY5K/6Jg/SbbhdxQgiIEryEoUR+Sgvdc6n mi7VGkL3aTC0CTDQPr5BJdQxwTUbTOB0/rka4POYV0y4itMmnj/oI8zvqwIDAQAB o4ICczCCAm8wHQYDVR0OBBYEFFKHK/UiK7/I27ICV4UACAzl94RrMB8GA1UdIwQY MBaAFGhtGEBJPu40X4wCrYqn8PD0G6RQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUcwWVFFay03alJmakFLdGlxZnc4UFFicEZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9lNDJlY2YtNzhmZi00YjU4LTg3NjAt ODI2ZDA1Y2NmZTI1LzEvVW9jcjlTSXJ2OGpic2dKWGhRQUlET1gzaEdzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9lNDJlY2YtNzhmZi00YjU4LTg3NjAtODI2ZDA1Y2NmZTI1 LzEvYUcwWVFFay03alJmakFLdGlxZnc4UFFicEZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGIBggrBgEFBQcBBwEB/wR5MHcwZgQCAAEwYAMEAR/WlgME ASUKRAMEASUKbgMEAj7d5AMEA1W+uAMEBFXe0AMEAFvQEQMEAl5+JAMEA22peAME AYAAeAMEArksBAMEArkybAMEArlE8AMEArl7BAMEArl96AMEArnDeDANBAIAAjAH AwUAKgFxoDANBgkqhkiG9w0BAQsFAAOCAQEAaZr6v/KrIhFUKsgCYUtH9vC7kFiV /45k9R5MGyCLY18wNqp/IkT7dz9aQrp9fQNjitrFjzGi25/xz0mBtseQvnqVCBIB Wf8mY1Jh5W+jtuW+eK13wp7H/PP6Vh+U3/GF53Zx8KUqlCOz/FWkUSX5FDD3X6Rx ZMBQNTz5y9gMgpqsYqjvs79XmAlEoDVP5B2A1MqSAwvnDb/LUcM+Abu8qYnEp0w2 qZ0MHjyp8jY2VqFGSwz2ACsSWw7ke22UhFSR1hs2vDr01qBq1JbrhcJf5++LsKlN kbGQrmLvKb/W8EokZsaiKwDMgGrhLQQRSjGWS1n4wO+pyaVXEWdKuszx1w== -----END CERTIFICATE-----Generated at Mon Feb 9 21:25:50 2026 by rpki-client