This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/2f78cf-3260-433b-9e91-e43a52b604ca/1/UUFkgDHnR-0F8lOxAZm-NLU67J4.roa File: UUFkgDHnR-0F8lOxAZm-NLU67J4.roa (raw, json) Hash identifier: rvVeUb9I1xFcpHYp5yi+r3b7sO0cyT/6JlEZ7q0j+po= Subject key identifier: 51:41:64:80:31:E7:47:ED:05:F2:53:B1:01:99:BE:34:B5:3A:EC:9E Certificate issuer: /CN=2453da50e879bba7d7cff4f07d2caa5e9c01087d Certificate serial: 019B7B35B8DE92AC89E339F51DFC44E3A86A Authority key identifier: 24:53:DA:50:E8:79:BB:A7:D7:CF:F4:F0:7D:2C:AA:5E:9C:01:08:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFPaUOh5u6fXz_TwfSyqXpwBCH0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/2f78cf-3260-433b-9e91-e43a52b604ca/1/UUFkgDHnR-0F8lOxAZm-NLU67J4.roa Signing time: Thu 01 Jan 2026 20:17:56 +0000 ROA not before: Thu 01 Jan 2026 20:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207291 IP address blocks: 2.57.236.0/24 maxlen: 24 141.136.40.0/24 maxlen: 24 195.191.140.0/24 maxlen: 24 195.191.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/2f78cf-3260-433b-9e91-e43a52b604ca/1/JFPaUOh5u6fXz_TwfSyqXpwBCH0.crl rsync://rpki.ripe.net/repository/DEFAULT/18/2f78cf-3260-433b-9e91-e43a52b604ca/1/JFPaUOh5u6fXz_TwfSyqXpwBCH0.mft rsync://rpki.ripe.net/repository/DEFAULT/JFPaUOh5u6fXz_TwfSyqXpwBCH0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:b8:de:92:ac:89:e3:39:f5:1d:fc:44:e3:a8:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2453da50e879bba7d7cff4f07d2caa5e9c01087d Validity Not Before: Jan 1 20:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5141648031e747ed05f253b10199be34b53aec9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:82:38:18:96:f0:e1:4a:f4:ed:64:e4:c4:dc: 41:82:85:b6:6c:ef:2d:ac:27:78:d2:b4:18:a0:54: 1f:9b:a2:f0:05:35:ad:9a:21:ca:14:88:3f:5e:44: 8c:89:1e:6b:76:83:37:84:66:2c:b3:c1:d7:ea:e6: 44:57:ae:e0:62:78:84:d5:12:02:18:7e:b6:75:54: ee:41:73:e4:5d:2d:20:c7:9f:d8:0b:62:4a:68:dc: ff:a8:1d:72:09:79:97:c9:6b:79:10:8b:f4:96:28: 83:9b:0f:e9:01:a4:2f:ca:d4:e3:60:7f:a4:55:a7: bb:35:25:51:d8:11:c5:1c:26:62:bc:3f:c7:89:05: 92:d7:0b:05:54:a7:37:12:bb:05:0f:a5:e6:17:b4: c1:71:7e:42:8c:63:99:50:e8:55:7d:fa:f4:75:15: 22:82:4a:2d:4e:ad:aa:c7:f6:66:c0:0a:96:a0:7b: ed:f6:c4:d1:ff:0f:30:60:24:21:a7:06:28:0d:21: ce:b0:a6:63:1f:a7:c8:3c:41:28:11:5f:a4:2f:c9: e5:0b:40:ec:2d:fb:ec:94:b0:c7:17:4a:c6:90:29: e1:0f:42:9d:1e:51:ee:54:63:19:03:c1:ac:48:5e: 88:68:0e:7f:7e:7e:e5:70:3f:0b:43:c2:2a:17:8b: 54:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:41:64:80:31:E7:47:ED:05:F2:53:B1:01:99:BE:34:B5:3A:EC:9E X509v3 Authority Key Identifier: keyid:24:53:DA:50:E8:79:BB:A7:D7:CF:F4:F0:7D:2C:AA:5E:9C:01:08:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFPaUOh5u6fXz_TwfSyqXpwBCH0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/2f78cf-3260-433b-9e91-e43a52b604ca/1/UUFkgDHnR-0F8lOxAZm-NLU67J4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/2f78cf-3260-433b-9e91-e43a52b604ca/1/JFPaUOh5u6fXz_TwfSyqXpwBCH0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.57.236.0/24 141.136.40.0/24 195.191.140.0/24 195.191.176.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:e2:27:67:66:17:8b:5c:9d:16:df:c2:75:0d:a1:b0:a6:90: da:c5:9f:6c:1f:fb:2d:1a:17:31:dd:54:58:2c:f0:04:26:6c: c8:aa:aa:89:e9:66:6a:0a:3d:92:2a:33:6f:71:e0:f9:49:67: 49:98:13:53:ba:c0:bc:64:fc:23:f1:d9:25:30:e2:de:d2:0d: 6b:74:47:a2:c4:67:22:de:e1:d9:db:9b:93:f9:6e:e8:45:94: 73:f1:4a:fa:83:5a:73:d8:cf:a3:36:a7:20:3c:84:17:fc:b3: a2:a6:08:ef:41:5b:2c:8c:f8:1e:a0:0f:6e:76:9a:30:11:05: 78:d2:69:97:fb:25:70:bb:cc:a4:27:29:f7:be:cf:35:2a:7b: 42:c3:61:c7:fd:13:c6:93:14:c7:48:ed:15:80:98:d7:e5:9d: bb:8d:55:ca:39:30:95:2b:01:0d:77:33:be:35:4d:26:3c:d5: 0f:92:36:cc:f1:fe:c3:18:cb:e2:ff:fe:4c:88:a6:62:a0:05: ac:80:42:27:7c:61:bc:89:f5:05:c7:17:57:d7:af:e3:a5:39: f2:82:a8:48:c6:b5:fc:54:a8:9f:f0:87:14:e8:c4:1b:70:25: e9:21:93:59:9f:c1:c5:c6:bd:df:f3:06:36:3c:5a:d4:e1:f5: fb:41:ed:6c -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt7NbjekqyJ4zn1HfxE46hqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0NTNkYTUwZTg3OWJiYTdkN2NmZjRmMDdkMmNhYTVlOWMw MTA4N2QwHhcNMjYwMTAxMjAxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MTQxNjQ4MDMxZTc0N2VkMDVmMjUzYjEwMTk5YmUzNGI1M2FlYzllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYI4GJbw4Ur07WTkxNxBgoW2bO8t rCd40rQYoFQfm6LwBTWtmiHKFIg/XkSMiR5rdoM3hGYss8HX6uZEV67gYniE1RIC GH62dVTuQXPkXS0gx5/YC2JKaNz/qB1yCXmXyWt5EIv0liiDmw/pAaQvytTjYH+k Vae7NSVR2BHFHCZivD/HiQWS1wsFVKc3ErsFD6XmF7TBcX5CjGOZUOhVffr0dRUi gkotTq2qx/ZmwAqWoHvt9sTR/w8wYCQhpwYoDSHOsKZjH6fIPEEoEV+kL8nlC0Ds LfvslLDHF0rGkCnhD0KdHlHuVGMZA8GsSF6IaA5/fn7lcD8LQ8IqF4tUlQIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFFFBZIAx50ftBfJTsQGZvjS1OuyeMB8GA1UdIwQY MBaAFCRT2lDoebun18/08H0sql6cAQh9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSkZQYVVPaDV1NmZYel9Ud2ZTeXFYcHdCQ0gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8yZjc4Y2YtMzI2MC00MzNiLTllOTEt ZTQzYTUyYjYwNGNhLzEvVVVGa2dESG5SLTBGOGxPeEFabS1OTFU2N0o0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC8yZjc4Y2YtMzI2MC00MzNiLTllOTEtZTQzYTUyYjYwNGNh LzEvSkZQYVVPaDV1NmZYel9Ud2ZTeXFYcHdCQ0gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAAjnsAwQA jYgoAwQAw7+MAwQAw7+wMA0GCSqGSIb3DQEBCwUAA4IBAQAO4idnZheLXJ0W38J1 DaGwppDaxZ9sH/stGhcx3VRYLPAEJmzIqqqJ6WZqCj2SKjNvceD5SWdJmBNTusC8 ZPwj8dklMOLe0g1rdEeixGci3uHZ25uT+W7oRZRz8Ur6g1pz2M+jNqcgPIQX/LOi pgjvQVssjPgeoA9udpowEQV40mmX+yVwu8ykJyn3vs81KntCw2HH/RPGkxTHSO0V gJjX5Z27jVXKOTCVKwENdzO+NU0mPNUPkjbM8f7DGMvi//5MiKZioAWsgEInfGG8 ifUFxxdX16/jpTnygqhIxrX8VKif8IcU6MQbcCXpIZNZn8HFxr3f8wY2PFrU4fX7 Qe1s -----END CERTIFICATE-----Generated at Tue Feb 10 03:10:34 2026 by rpki-client