This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/006225-9bff-4583-8a15-7cc2945f2ca6/1/UuJYJB8qqQVCGi-vt_wHrI42MfU.roa File: UuJYJB8qqQVCGi-vt_wHrI42MfU.roa (raw, json) Hash identifier: jzA4jxCzEMlyx7GLDIuObiY90eTPpxuRqUa3CtlcCok= Subject key identifier: 52:E2:58:24:1F:2A:A9:05:42:1A:2F:AF:B7:FC:07:AC:8E:36:31:F5 Certificate issuer: /CN=68d6604c88c2e04e6167241315b74a758ce648c3 Certificate serial: 019B79102DBDAF19FB17848833D40DD3B271 Authority key identifier: 68:D6:60:4C:88:C2:E0:4E:61:67:24:13:15:B7:4A:75:8C:E6:48:C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNZgTIjC4E5hZyQTFbdKdYzmSMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/006225-9bff-4583-8a15-7cc2945f2ca6/1/UuJYJB8qqQVCGi-vt_wHrI42MfU.roa Signing time: Thu 01 Jan 2026 10:17:42 +0000 ROA not before: Thu 01 Jan 2026 10:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35362 IP address blocks: 5.83.16.0/21 maxlen: 21 37.17.240.0/22 maxlen: 22 62.84.248.0/21 maxlen: 21 95.158.0.0/18 maxlen: 18 146.0.80.0/21 maxlen: 21 176.113.168.0/21 maxlen: 21 185.11.28.0/22 maxlen: 22 2a07:1080::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/006225-9bff-4583-8a15-7cc2945f2ca6/1/aNZgTIjC4E5hZyQTFbdKdYzmSMM.crl rsync://rpki.ripe.net/repository/DEFAULT/14/006225-9bff-4583-8a15-7cc2945f2ca6/1/aNZgTIjC4E5hZyQTFbdKdYzmSMM.mft rsync://rpki.ripe.net/repository/DEFAULT/aNZgTIjC4E5hZyQTFbdKdYzmSMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:2d:bd:af:19:fb:17:84:88:33:d4:0d:d3:b2:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68d6604c88c2e04e6167241315b74a758ce648c3 Validity Not Before: Jan 1 10:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52e258241f2aa905421a2fafb7fc07ac8e3631f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:74:e6:3d:80:69:8e:f4:e1:70:a7:69:d9:d0: 03:99:77:1f:d3:bf:82:a9:43:e0:75:29:ca:43:72: c2:c6:df:af:b5:7f:1e:74:88:da:1f:f1:7c:ad:18: 5b:02:8c:79:14:83:c5:54:60:f9:6a:76:84:5c:40: df:a3:f4:f2:f9:19:5e:b4:d4:c0:e3:83:9e:3a:83: bd:9d:9b:35:7f:39:3e:1b:a9:5a:45:19:0a:29:80: 18:c2:e1:90:14:1f:aa:c1:68:a5:cf:94:50:b8:8a: c8:64:9a:2b:01:13:a8:7d:3a:bd:df:2d:0a:89:c0: 19:dd:5d:67:b2:08:8a:e9:14:de:83:6c:af:93:c7: 9a:45:9e:4b:2e:17:1e:77:29:18:1a:67:5d:dd:a2: f4:d7:f4:09:ee:b8:6b:05:46:d9:56:17:38:e5:7b: b8:b6:69:ca:fb:6f:4d:28:71:16:ba:7d:f1:38:3c: ac:dc:33:4b:15:ef:17:d1:5d:9d:51:f4:29:7c:b6: 18:4f:c8:76:a2:e4:67:f2:5c:ac:3b:c7:ff:9b:ea: ae:af:7e:b8:c7:c0:12:7a:73:37:2c:9b:58:9e:cd: 6e:45:68:e7:d5:6c:47:21:66:db:bc:de:dd:f4:ad: 00:53:eb:5c:4a:a4:01:a0:0f:67:5c:97:18:cf:85: bc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E2:58:24:1F:2A:A9:05:42:1A:2F:AF:B7:FC:07:AC:8E:36:31:F5 X509v3 Authority Key Identifier: keyid:68:D6:60:4C:88:C2:E0:4E:61:67:24:13:15:B7:4A:75:8C:E6:48:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNZgTIjC4E5hZyQTFbdKdYzmSMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/006225-9bff-4583-8a15-7cc2945f2ca6/1/UuJYJB8qqQVCGi-vt_wHrI42MfU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/006225-9bff-4583-8a15-7cc2945f2ca6/1/aNZgTIjC4E5hZyQTFbdKdYzmSMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.16.0/21 37.17.240.0/22 62.84.248.0/21 95.158.0.0/18 146.0.80.0/21 176.113.168.0/21 185.11.28.0/22 IPv6: 2a07:1080::/29 Signature Algorithm: sha256WithRSAEncryption 10:00:a4:8a:56:68:c3:08:ac:93:c5:20:cb:68:22:07:c3:58: 67:63:6d:07:6e:10:c5:b2:1a:1b:b9:70:24:79:d8:69:b7:cf: 91:fb:8c:d2:ff:c9:5c:da:6f:ec:40:f9:e2:ed:fe:61:41:4a: 92:7d:85:25:17:0e:6e:94:98:f9:56:38:d4:43:91:80:82:47: 5c:b8:6e:64:65:ff:7d:20:0c:4f:ac:9a:a6:aa:6f:e4:1c:c9: 24:4b:e2:fc:e6:27:31:97:ba:0f:e6:07:4f:60:36:5c:59:50: 98:c1:c8:4e:0d:da:3b:0c:f0:cc:93:80:2e:46:c5:0c:67:c2: 64:91:22:c3:76:33:25:df:69:16:52:e9:ab:bb:f8:f8:85:35: 04:b8:1c:df:1d:b7:8e:7e:e3:2f:ab:5e:6b:bc:02:a3:9e:5a: 7b:34:fd:0a:d4:10:95:9b:7a:59:4a:87:e7:7a:2f:76:90:17: 0a:a7:08:a7:8a:4b:4e:98:ae:e2:6f:5a:9e:a0:98:c9:62:fc: 82:05:d6:4d:0c:ec:44:cd:47:5a:a6:5b:b3:11:76:cd:c5:1f: 95:9a:26:e1:0b:e5:be:c1:77:0d:70:cd:83:03:c8:c9:23:c4: 6d:f1:3b:fb:d2:44:14:71:bf:8a:0d:16:da:4e:21:9c:89:c9: e8:a0:1a:6a -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt5EC29rxn7F4SIM9QN07JxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZDY2MDRjODhjMmUwNGU2MTY3MjQxMzE1Yjc0YTc1OGNl NjQ4YzMwHhcNMjYwMTAxMTAxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MmUyNTgyNDFmMmFhOTA1NDIxYTJmYWZiN2ZjMDdhYzhlMzYzMWY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1HTmPYBpjvThcKdp2dADmXcf07+C qUPgdSnKQ3LCxt+vtX8edIjaH/F8rRhbAox5FIPFVGD5anaEXEDfo/Ty+RletNTA 44OeOoO9nZs1fzk+G6laRRkKKYAYwuGQFB+qwWilz5RQuIrIZJorAROofTq93y0K icAZ3V1nsgiK6RTeg2yvk8eaRZ5LLhcedykYGmdd3aL01/QJ7rhrBUbZVhc45Xu4 tmnK+29NKHEWun3xODys3DNLFe8X0V2dUfQpfLYYT8h2ouRn8lysO8f/m+qur364 x8ASenM3LJtYns1uRWjn1WxHIWbbvN7d9K0AU+tcSqQBoA9nXJcYz4W8fQIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFFLiWCQfKqkFQhovr7f8B6yONjH1MB8GA1UdIwQY MBaAFGjWYEyIwuBOYWckExW3SnWM5kjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU5aZ1RJakM0RTVoWnlRVEZiZEtkWXptU01NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8wMDYyMjUtOWJmZi00NTgzLThhMTUt N2NjMjk0NWYyY2E2LzEvVXVKWUpCOHFxUVZDR2ktdnRfd0hySTQyTWZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8wMDYyMjUtOWJmZi00NTgzLThhMTUtN2NjMjk0NWYyY2E2 LzEvYU5aZ1RJakM0RTVoWnlRVEZiZEtkWXptU01NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQDBVMQAwQC JRHwAwQDPlT4AwQGX54AAwQDkgBQAwQDsHGoAwQCuQscMA0EAgACMAcDBQMqBxCA MA0GCSqGSIb3DQEBCwUAA4IBAQAQAKSKVmjDCKyTxSDLaCIHw1hnY20HbhDFshob uXAkedhpt8+R+4zS/8lc2m/sQPni7f5hQUqSfYUlFw5ulJj5VjjUQ5GAgkdcuG5k Zf99IAxPrJqmqm/kHMkkS+L85icxl7oP5gdPYDZcWVCYwchODdo7DPDMk4AuRsUM Z8JkkSLDdjMl32kWUumru/j4hTUEuBzfHbeOfuMvq15rvAKjnlp7NP0K1BCVm3pZ Sofnei92kBcKpwiniktOmK7ib1qeoJjJYvyCBdZNDOxEzUdapluzEXbNxR+Vmibh C+W+wXcNcM2DA8jJI8Rt8Tv70kQUcb+KDRbaTiGcicnooBpq -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:29 2026 by rpki-client