This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/UsjKC7eB_MWBtsUBXJK-RFYAYHU.roa File: UsjKC7eB_MWBtsUBXJK-RFYAYHU.roa (raw, json) Hash identifier: NGEpFjBcwXvxm7QU0HUsjAWpitcU0iExVxH5Fk2JaRc= Subject key identifier: 52:C8:CA:0B:B7:81:FC:C5:81:B6:C5:01:5C:92:BE:44:56:00:60:75 Certificate issuer: /CN=9ba94bc14937bb0b3632374355a446724104a981 Certificate serial: 019B77C6F4272151FBA043638C30BA27F7D8 Authority key identifier: 9B:A9:4B:C1:49:37:BB:0B:36:32:37:43:55:A4:46:72:41:04:A9:81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m6lLwUk3uws2MjdDVaRGckEEqYE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/UsjKC7eB_MWBtsUBXJK-RFYAYHU.roa Signing time: Thu 01 Jan 2026 04:18:05 +0000 ROA not before: Thu 01 Jan 2026 04:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208949 IP address blocks: 193.151.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/m6lLwUk3uws2MjdDVaRGckEEqYE.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/m6lLwUk3uws2MjdDVaRGckEEqYE.mft rsync://rpki.ripe.net/repository/DEFAULT/m6lLwUk3uws2MjdDVaRGckEEqYE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:f4:27:21:51:fb:a0:43:63:8c:30:ba:27:f7:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ba94bc14937bb0b3632374355a446724104a981 Validity Not Before: Jan 1 04:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52c8ca0bb781fcc581b6c5015c92be4456006075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8e:9b:47:c4:e2:5a:13:c1:60:83:a4:ad:cb: c7:9d:2d:fa:a2:44:a7:1b:68:94:ab:ad:60:44:9f: 3e:15:65:01:93:9a:e6:dc:47:33:00:5c:b0:aa:09: 12:96:1f:65:e5:e0:26:67:99:36:c9:e1:4f:e1:ad: f2:5f:cf:b9:43:1b:00:b4:78:87:f5:3e:0b:53:3e: a1:11:ef:30:44:27:b4:c1:e6:79:c1:aa:bb:b7:eb: 7e:3c:03:f8:a1:3d:5c:82:9e:6f:7b:41:47:24:d1: 12:23:26:3e:68:32:17:35:62:8a:9b:17:4a:cd:3f: 77:d3:62:29:c4:45:c4:b2:b9:b0:26:ec:b6:e9:d6: e1:a6:ef:43:55:ff:26:b6:cf:b6:d4:f9:b4:42:b0: 2f:1c:01:47:33:77:bb:33:82:50:8d:6e:01:85:f5: 19:2f:fb:03:81:2c:90:8b:ca:d2:70:fb:ce:26:d4: e7:70:ba:84:20:4d:00:76:b4:f4:07:fd:03:7a:6e: db:f0:9e:15:19:ef:01:ab:ce:6e:b9:6c:1e:1a:0f: 05:d8:5d:51:5f:66:7d:79:4c:0b:fa:8f:9d:53:48: e9:1a:eb:45:c1:08:23:ea:17:ff:67:fc:10:d0:7e: 55:03:46:47:de:72:62:31:cc:eb:06:74:d1:e3:ab: 3a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:C8:CA:0B:B7:81:FC:C5:81:B6:C5:01:5C:92:BE:44:56:00:60:75 X509v3 Authority Key Identifier: keyid:9B:A9:4B:C1:49:37:BB:0B:36:32:37:43:55:A4:46:72:41:04:A9:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m6lLwUk3uws2MjdDVaRGckEEqYE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/UsjKC7eB_MWBtsUBXJK-RFYAYHU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/m6lLwUk3uws2MjdDVaRGckEEqYE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.151.109.0/24 Signature Algorithm: sha256WithRSAEncryption 00:a9:b5:7a:a1:6d:de:47:41:95:47:ef:44:c6:c0:6b:ba:16: 48:cd:2a:f4:bb:97:14:5c:18:35:33:35:fa:93:05:ca:9d:4e: 1c:fc:91:1d:4c:fe:3a:bf:9f:25:20:2a:cd:6f:cf:19:2a:6d: 5d:57:35:a6:9e:45:e1:ea:ac:b1:d5:8e:d1:ef:7d:7d:52:0f: 83:6c:07:10:4a:33:8d:17:b5:c0:6e:1e:36:1a:55:5d:95:ff: 79:b4:3c:4e:ec:d2:4c:55:f4:e5:6a:1a:09:8b:db:e9:29:35: 1b:85:86:f6:69:35:71:e0:05:b5:8e:b3:73:cc:00:ed:fe:fd: 76:f2:99:d7:74:d1:27:77:b1:00:11:73:92:da:28:0f:e9:78: 59:b7:3f:08:62:9e:a4:f3:4e:fe:9f:e9:15:c9:f0:9c:48:77: d6:6a:e8:a9:ad:68:22:d6:8e:42:c8:c2:ab:a8:05:c1:15:bb: ba:26:d7:b2:df:16:0d:c2:61:37:a8:80:c3:db:2b:75:25:c4: 48:9d:01:83:0f:70:60:be:8b:fe:82:2b:7c:1c:7f:7e:34:f6: 6c:73:04:cc:cd:e8:e4:3a:54:ae:63:6f:28:e8:5b:f8:73:60: 9a:c6:cc:fb:c1:be:ca:77:ad:4f:00:b6:e6:a0:d3:99:28:ff: b9:36:65:e2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xvQnIVH7oENjjDC6J/fYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliYTk0YmMxNDkzN2JiMGIzNjMyMzc0MzU1YTQ0NjcyNDEw NGE5ODEwHhcNMjYwMTAxMDQxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MmM4Y2EwYmI3ODFmY2M1ODFiNmM1MDE1YzkyYmU0NDU2MDA2MDc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz46bR8TiWhPBYIOkrcvHnS36okSn G2iUq61gRJ8+FWUBk5rm3EczAFywqgkSlh9l5eAmZ5k2yeFP4a3yX8+5QxsAtHiH 9T4LUz6hEe8wRCe0weZ5waq7t+t+PAP4oT1cgp5ve0FHJNESIyY+aDIXNWKKmxdK zT9302IpxEXEsrmwJuy26dbhpu9DVf8mts+21Pm0QrAvHAFHM3e7M4JQjW4BhfUZ L/sDgSyQi8rScPvOJtTncLqEIE0AdrT0B/0Dem7b8J4VGe8Bq85uuWweGg8F2F1R X2Z9eUwL+o+dU0jpGutFwQgj6hf/Z/wQ0H5VA0ZH3nJiMczrBnTR46s6qwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFLIygu3gfzFgbbFAVySvkRWAGB1MB8GA1UdIwQY MBaAFJupS8FJN7sLNjI3Q1WkRnJBBKmBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTZsTHdVazN1d3MyTWpkRFZhUkdja0VFcVlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9jYzc4NDMtZDEzNi00ZmZiLThiOTkt ODM2YzMxMmFjOGMyLzEvVXNqS0M3ZUJfTVdCdHNVQlhKSy1SRllBWUhVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS9jYzc4NDMtZDEzNi00ZmZiLThiOTktODM2YzMxMmFjOGMy LzEvbTZsTHdVazN1d3MyTWpkRFZhUkdja0VFcVlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwZdtMA0G CSqGSIb3DQEBCwUAA4IBAQAAqbV6oW3eR0GVR+9ExsBruhZIzSr0u5cUXBg1MzX6 kwXKnU4c/JEdTP46v58lICrNb88ZKm1dVzWmnkXh6qyx1Y7R7319Ug+DbAcQSjON F7XAbh42GlVdlf95tDxO7NJMVfTlahoJi9vpKTUbhYb2aTVx4AW1jrNzzADt/v12 8pnXdNEnd7EAEXOS2igP6XhZtz8IYp6k807+n+kVyfCcSHfWauiprWgi1o5CyMKr qAXBFbu6Jtey3xYNwmE3qIDD2yt1JcRInQGDD3Bgvov+git8HH9+NPZscwTMzejk OlSuY28o6Fv4c2Caxsz7wb7Kd61PALbmoNOZKP+5NmXi -----END CERTIFICATE-----Generated at Wed Jan 21 13:24:53 2026 by rpki-client