This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/UVQdNLpTxYPWVgM7O1ugc19tewM.roa File: UVQdNLpTxYPWVgM7O1ugc19tewM.roa (raw, json) Hash identifier: VV3oJ4t4vZ+k1rW2iUkYmtmU+7zFdat9ptqRTkac0b4= Subject key identifier: 51:54:1D:34:BA:53:C5:83:D6:56:03:3B:3B:5B:A0:73:5F:6D:7B:03 Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db Certificate serial: 019B7DF26B93C1A6EB592AD210BFA705F0D0 Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/UVQdNLpTxYPWVgM7O1ugc19tewM.roa Signing time: Fri 02 Jan 2026 09:03:17 +0000 ROA not before: Fri 02 Jan 2026 09:03:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 834 IP address blocks: 194.64.89.0/24 maxlen: 24 194.163.68.0/24 maxlen: 24 194.163.92.0/24 maxlen: 24 194.233.31.0/24 maxlen: 24 194.233.148.0/24 maxlen: 24 194.233.149.0/24 maxlen: 24 194.233.151.0/24 maxlen: 24 195.180.128.0/22 maxlen: 24 195.180.139.0/24 maxlen: 24 195.180.149.0/24 maxlen: 24 195.252.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.mft rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 12:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:f2:6b:93:c1:a6:eb:59:2a:d2:10:bf:a7:05:f0:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db Validity Not Before: Jan 2 09:03:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=51541d34ba53c583d656033b3b5ba0735f6d7b03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:3c:d8:be:f1:d1:22:36:c1:8c:62:7e:22:9f: 38:b7:b5:19:23:d1:52:28:af:a4:1c:6d:14:dd:ae: c0:0a:8d:37:fc:13:32:77:45:29:71:13:e3:76:ce: d5:5d:ed:2e:ce:0c:f0:9f:f8:96:75:ae:bd:b4:7f: e9:2f:76:2c:62:70:1f:c1:b3:0f:56:05:e2:e2:1b: 5c:ee:c6:d4:ca:da:38:de:91:e0:92:1b:63:bf:0e: 12:42:7c:d9:6f:61:83:f1:00:fa:3e:51:fb:3a:37: 8f:e0:66:98:a7:66:d3:f3:ad:d1:41:bc:e6:d1:8e: 2d:78:45:5c:ef:00:f6:2b:05:47:fe:54:ad:91:f6: 81:03:5e:a0:df:3b:a7:5f:bd:00:18:77:36:51:3c: c9:ba:ec:df:3d:6f:9b:dc:d9:42:e2:22:cf:ee:6d: 73:59:51:50:14:40:1c:92:6a:06:51:8e:52:be:03: e9:8f:51:bd:17:95:46:76:a7:30:8e:cf:d1:5a:ef: d6:a5:41:a9:b9:4e:1a:3a:01:7a:ba:d2:6b:5b:ee: fe:41:d0:05:ac:03:90:3b:39:2a:56:02:73:b6:cb: 66:6c:26:b3:ff:08:c8:24:b3:da:6d:01:b9:cf:8d: f2:c6:9b:bf:8b:bb:a6:74:2c:00:da:da:42:bd:c0: 91:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:54:1D:34:BA:53:C5:83:D6:56:03:3B:3B:5B:A0:73:5F:6D:7B:03 X509v3 Authority Key Identifier: keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/UVQdNLpTxYPWVgM7O1ugc19tewM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.64.89.0/24 194.163.68.0/24 194.163.92.0/24 194.233.31.0/24 194.233.148.0/23 194.233.151.0/24 195.180.128.0/22 195.180.139.0/24 195.180.149.0/24 195.252.175.0/24 Signature Algorithm: sha256WithRSAEncryption 87:0d:0f:7b:91:c3:a1:4a:88:43:77:74:6a:5e:15:27:f2:48: 67:7f:4c:53:ca:ce:9f:77:d8:4e:d0:d6:64:86:c2:ee:d3:9f: 1d:db:f8:51:82:0e:61:28:f4:e0:02:41:1a:56:c9:64:ad:e8: a1:a8:9e:fa:e3:fd:35:d1:d8:f9:83:30:2e:29:40:2e:73:bc: fd:1a:de:a3:de:ab:0c:50:21:88:3c:3d:db:7c:c1:23:14:f7: 07:0c:94:7a:ec:0c:78:3b:a8:bd:47:90:d2:02:73:d0:c8:81: 59:9c:69:e7:b5:b6:49:99:e8:71:2d:45:1f:c3:cb:60:01:31: a5:49:01:36:c7:d4:72:8d:d9:b7:60:06:28:ff:5b:3c:48:1d: 4d:85:80:51:46:25:e7:76:d6:d3:89:b8:2d:e2:cb:83:ed:37: a8:05:a7:78:fe:35:9d:38:c0:58:dd:f8:7c:c3:f4:2b:97:29: 96:07:a3:f8:4f:e9:a3:a7:85:19:7f:2a:37:b2:21:9d:8a:bb: 4a:b8:c4:07:27:e5:cb:c4:cc:69:6c:e2:82:82:61:28:89:6e: 99:f5:78:19:7a:ce:fc:f6:6b:95:3a:22:36:3d:df:74:c2:b1: 66:b2:f6:c5:96:dc:36:bd:fb:7a:b9:47:21:1a:93:08:9c:b1: 3b:26:0d:7b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgISAZt98muTwabrWSrSEL+nBfDQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3NDcwMTc1NjRjNzExYmNiZDU3NjgwYTBkZmQwMGYyYTVk MDk5ZGIwHhcNMjYwMTAyMDkwMzE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MTU0MWQzNGJhNTNjNTgzZDY1NjAzM2IzYjViYTA3MzVmNmQ3YjAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDzYvvHRIjbBjGJ+Ip84t7UZI9FS KK+kHG0U3a7ACo03/BMyd0UpcRPjds7VXe0uzgzwn/iWda69tH/pL3YsYnAfwbMP VgXi4htc7sbUyto43pHgkhtjvw4SQnzZb2GD8QD6PlH7OjeP4GaYp2bT863RQbzm 0Y4teEVc7wD2KwVH/lStkfaBA16g3zunX70AGHc2UTzJuuzfPW+b3NlC4iLP7m1z WVFQFEAckmoGUY5SvgPpj1G9F5VGdqcwjs/RWu/WpUGpuU4aOgF6utJrW+7+QdAF rAOQOzkqVgJztstmbCaz/wjIJLPabQG5z43yxpu/i7umdCwA2tpCvcCROQIDAQAB o4ICPzCCAjswHQYDVR0OBBYEFFFUHTS6U8WD1lYDOztboHNfbXsDMB8GA1UdIwQY MBaAFNdHAXVkxxG8vVdoCg39APKl0JnbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMTBjQmRXVEhFYnk5VjJnS0RmMEE4cVhRbWRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9iYTIzNjItMGNjNS00OWJkLWE1MjIt NGYwZThjZTExYTdkLzEvVVZRZE5McFR4WVBXVmdNN08xdWdjMTl0ZXdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9iYTIzNjItMGNjNS00OWJkLWE1MjItNGYwZThjZTExYTdk LzEvMTBjQmRXVEhFYnk5VjJnS0RmMEE4cVhRbWRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8AwQAwkBZAwQA wqNEAwQAwqNcAwQAwukfAwQBwumUAwQAwumXAwQCw7SAAwQAw7SLAwQAw7SVAwQA w/yvMA0GCSqGSIb3DQEBCwUAA4IBAQCHDQ97kcOhSohDd3RqXhUn8khnf0xTys6f d9hO0NZkhsLu058d2/hRgg5hKPTgAkEaVslkreihqJ764/010dj5gzAuKUAuc7z9 Gt6j3qsMUCGIPD3bfMEjFPcHDJR67Ax4O6i9R5DSAnPQyIFZnGnntbZJmehxLUUf w8tgATGlSQE2x9Ryjdm3YAYo/1s8SB1NhYBRRiXndtbTibgt4suD7TeoBad4/jWd OMBY3fh8w/QrlymWB6P4T+mjp4UZfyo3siGdirtKuMQHJ+XLxMxpbOKCgmEoiW6Z 9XgZes789muVOiI2Pd90wrFmsvbFltw2vft6uUchGpMInLE7Jg17 -----END CERTIFICATE-----Generated at Wed Jan 21 18:43:21 2026 by rpki-client