This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/uPZpym5EybkdCgjmNGMT3DgN2AM.roa File: uPZpym5EybkdCgjmNGMT3DgN2AM.roa (raw, json) Hash identifier: 44Yn20G5BvsIWQRXJ6QSurUWvXyf1+/YltM3VV8+KGI= Subject key identifier: B8:F6:69:CA:6E:44:C9:B9:1D:0A:08:E6:34:63:13:DC:38:0D:D8:03 Certificate issuer: /CN=78b04fbafaa36b71fcd36eca50b5fe0e88dd3551 Certificate serial: 019B79113DC34AA13DB9BA04DF0B30191E41 Authority key identifier: 78:B0:4F:BA:FA:A3:6B:71:FC:D3:6E:CA:50:B5:FE:0E:88:DD:35:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eLBPuvqja3H8027KULX-DojdNVE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/uPZpym5EybkdCgjmNGMT3DgN2AM.roa Signing time: Thu 01 Jan 2026 10:18:51 +0000 ROA not before: Thu 01 Jan 2026 10:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50242 IP address blocks: 109.236.112.0/20 maxlen: 24 2a02:6ca3::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/eLBPuvqja3H8027KULX-DojdNVE.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/eLBPuvqja3H8027KULX-DojdNVE.mft rsync://rpki.ripe.net/repository/DEFAULT/eLBPuvqja3H8027KULX-DojdNVE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:3d:c3:4a:a1:3d:b9:ba:04:df:0b:30:19:1e:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=78b04fbafaa36b71fcd36eca50b5fe0e88dd3551 Validity Not Before: Jan 1 10:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b8f669ca6e44c9b91d0a08e6346313dc380dd803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:17:c0:7e:e0:b5:e1:46:aa:38:15:26:26:eb: 8a:37:f3:a4:04:64:c4:8f:2f:79:90:e9:e8:7f:0d: ad:7b:6b:e3:7b:69:57:4e:bf:6b:b7:f7:7c:af:27: 3f:71:4c:82:fe:b7:00:dd:ae:24:e0:48:c2:d2:a7: 63:34:d9:6f:70:be:26:d1:4b:c3:b6:18:e0:b2:ff: 08:45:ee:3a:6a:d8:2e:a1:31:bb:ec:21:9f:b0:1a: 86:b8:c0:9f:93:46:96:53:b9:d2:93:66:1c:e3:d7: da:75:09:08:90:c3:46:e7:0c:4f:fb:40:f6:10:3e: 8d:d1:17:28:4f:9c:b5:01:b1:44:e9:f4:43:9c:0d: fb:fe:29:9a:75:cd:d2:94:50:3c:35:64:3e:e3:c1: 3f:71:94:d3:4b:82:e0:be:74:57:09:6e:71:ce:6e: c3:18:f2:cb:d9:6b:63:02:b8:d1:b8:77:14:ad:ce: 8f:fe:e8:3b:73:b2:b6:52:12:55:9e:19:c0:83:fa: 86:4f:2d:af:d7:17:73:85:de:e6:40:f4:29:a5:6c: 54:99:25:ce:33:14:65:48:51:49:1d:ef:b2:76:ad: f8:44:4b:f0:6d:0d:60:f0:8d:4f:7c:bb:80:3f:5a: 93:91:88:09:22:7b:24:16:22:1d:fb:b2:43:7d:eb: 9c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:F6:69:CA:6E:44:C9:B9:1D:0A:08:E6:34:63:13:DC:38:0D:D8:03 X509v3 Authority Key Identifier: keyid:78:B0:4F:BA:FA:A3:6B:71:FC:D3:6E:CA:50:B5:FE:0E:88:DD:35:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eLBPuvqja3H8027KULX-DojdNVE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/uPZpym5EybkdCgjmNGMT3DgN2AM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/eLBPuvqja3H8027KULX-DojdNVE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.236.112.0/20 IPv6: 2a02:6ca3::/32 Signature Algorithm: sha256WithRSAEncryption a9:47:83:fa:29:f0:19:50:55:e4:8e:8e:d0:89:fb:f8:1e:35: 14:52:36:62:8b:a0:5b:d5:70:93:1e:b9:cf:5c:61:9f:29:ec: c6:b1:03:95:96:cb:96:f0:1f:8c:14:98:25:9f:a4:67:1b:1a: 84:c3:cc:c0:14:08:d5:3a:e3:27:a6:cb:46:f2:78:75:5e:51: db:39:60:72:bb:20:2e:6f:e9:a6:9f:1c:07:62:e0:5a:88:dd: f5:c7:fd:82:2d:c2:85:93:01:ed:ad:f8:8c:13:e4:2b:9c:da: 3e:26:47:be:b1:21:4f:c4:11:f9:32:7c:df:6a:26:2c:3b:c7: d6:97:b5:52:fd:ec:8c:d5:57:67:97:1b:8d:b6:b1:e4:7c:bf: 09:94:46:c3:ab:59:dd:24:b7:b4:09:b4:3a:bc:38:a4:a6:ae: 97:8b:43:40:77:04:35:e0:9a:66:9d:3e:50:55:f7:2b:10:ad: 20:d3:a6:35:f7:59:82:38:e1:56:8d:d9:ea:34:c8:c1:2c:c6: 3b:11:f1:5a:f6:24:7f:3d:6a:77:0f:cb:48:23:74:c8:e6:f8: 68:6e:49:7a:9b:4d:3b:55:dd:ca:c8:d9:f4:55:04:fa:18:f7: c5:c3:14:62:d4:ab:08:61:1e:d4:65:81:8c:14:43:8e:51:cd: d7:86:4f:e2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5ET3DSqE9uboE3wswGR5BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc4YjA0ZmJhZmFhMzZiNzFmY2QzNmVjYTUwYjVmZTBlODhk ZDM1NTEwHhcNMjYwMTAxMTAxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOGY2NjljYTZlNDRjOWI5MWQwYTA4ZTYzNDYzMTNkYzM4MGRkODAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBfAfuC14UaqOBUmJuuKN/OkBGTE jy95kOnofw2te2vje2lXTr9rt/d8ryc/cUyC/rcA3a4k4EjC0qdjNNlvcL4m0UvD thjgsv8IRe46atguoTG77CGfsBqGuMCfk0aWU7nSk2Yc49fadQkIkMNG5wxP+0D2 ED6N0RcoT5y1AbFE6fRDnA37/imadc3SlFA8NWQ+48E/cZTTS4LgvnRXCW5xzm7D GPLL2WtjArjRuHcUrc6P/ug7c7K2UhJVnhnAg/qGTy2v1xdzhd7mQPQppWxUmSXO MxRlSFFJHe+ydq34REvwbQ1g8I1PfLuAP1qTkYgJInskFiId+7JDfeuctwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLj2acpuRMm5HQoI5jRjE9w4DdgDMB8GA1UdIwQY MBaAFHiwT7r6o2tx/NNuylC1/g6I3TVRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZUxCUHV2cWphM0g4MDI3S1VMWC1Eb2pkTlZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9jNDFjNzQtMGI4Mi00MGU3LWEwYmYt MGFhZTFjY2Q4NzRiLzEvdVBacHltNUV5YmtkQ2dqbU5HTVQzRGdOMkFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9jNDFjNzQtMGI4Mi00MGU3LWEwYmYtMGFhZTFjY2Q4NzRi LzEvZUxCUHV2cWphM0g4MDI3S1VMWC1Eb2pkTlZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQEbexwMA0E AgACMAcDBQAqAmyjMA0GCSqGSIb3DQEBCwUAA4IBAQCpR4P6KfAZUFXkjo7Qifv4 HjUUUjZii6Bb1XCTHrnPXGGfKezGsQOVlsuW8B+MFJgln6RnGxqEw8zAFAjVOuMn pstG8nh1XlHbOWByuyAub+mmnxwHYuBaiN31x/2CLcKFkwHtrfiME+QrnNo+Jke+ sSFPxBH5MnzfaiYsO8fWl7VS/eyM1VdnlxuNtrHkfL8JlEbDq1ndJLe0CbQ6vDik pq6Xi0NAdwQ14JpmnT5QVfcrEK0g06Y191mCOOFWjdnqNMjBLMY7EfFa9iR/PWp3 D8tII3TI5vhobkl6m007Vd3KyNn0VQT6GPfFwxRi1KsIYR7UZYGMFEOOUc3Xhk/i -----END CERTIFICATE-----Generated at Tue Feb 10 01:02:05 2026 by rpki-client