This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/dff4d0-1d0a-4951-8b27-7f7394be8ce4/1/Uklboo3tG2E8bmpaNpWg7iBT500.roa File: Uklboo3tG2E8bmpaNpWg7iBT500.roa (raw, json) Hash identifier: 3bdk4yfdkJQ/C4ZvETpkPR6Yh1F2fFWoUHJ2qwV5MwY= Subject key identifier: 52:49:5B:A2:8D:ED:1B:61:3C:6E:6A:5A:36:95:A0:EE:20:53:E7:4D Certificate issuer: /CN=f42d0cad0eaed1a61f478fb0919c7a4322724695 Certificate serial: 019B7EA489271C14CF2920EF956F5D1FA700 Authority key identifier: F4:2D:0C:AD:0E:AE:D1:A6:1F:47:8F:B0:91:9C:7A:43:22:72:46:95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9C0MrQ6u0aYfR4-wkZx6QyJyRpU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/dff4d0-1d0a-4951-8b27-7f7394be8ce4/1/Uklboo3tG2E8bmpaNpWg7iBT500.roa Signing time: Fri 02 Jan 2026 12:17:50 +0000 ROA not before: Fri 02 Jan 2026 12:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50379 IP address blocks: 195.191.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/dff4d0-1d0a-4951-8b27-7f7394be8ce4/1/9C0MrQ6u0aYfR4-wkZx6QyJyRpU.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/dff4d0-1d0a-4951-8b27-7f7394be8ce4/1/9C0MrQ6u0aYfR4-wkZx6QyJyRpU.mft rsync://rpki.ripe.net/repository/DEFAULT/9C0MrQ6u0aYfR4-wkZx6QyJyRpU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:89:27:1c:14:cf:29:20:ef:95:6f:5d:1f:a7:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f42d0cad0eaed1a61f478fb0919c7a4322724695 Validity Not Before: Jan 2 12:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52495ba28ded1b613c6e6a5a3695a0ee2053e74d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:eb:96:d7:01:0b:92:42:7d:87:2a:80:fe:4f: ad:91:f3:5d:68:45:c6:7f:4e:a0:66:b5:3f:a5:30: e5:06:12:03:62:e8:59:43:5f:5f:44:11:00:09:ec: e6:6f:a9:71:1c:5b:26:78:b4:a6:9a:66:37:e3:93: 23:82:41:65:9e:f3:d9:8b:48:28:c9:1d:8f:dc:9b: a3:87:d9:f7:05:c7:6d:da:5a:99:1c:d0:1b:dd:1b: 16:3e:b7:3e:4c:1d:83:7a:29:f1:10:81:72:23:26: 36:66:d5:f9:93:b5:d2:41:f2:4b:9c:b1:d6:71:a8: 7e:52:ed:d4:7f:5c:66:f5:24:05:20:98:fc:11:29: f6:d4:6b:b9:7c:9e:e4:2c:9d:ff:b5:c7:f0:07:bb: fe:97:ec:ec:ec:a9:e5:90:80:6b:07:7f:f2:2f:fc: e0:28:1d:ec:0e:b0:cb:95:91:63:44:78:be:b3:32: 5e:47:a6:64:d9:21:43:29:5f:74:9b:d6:eb:61:bd: 81:0a:67:60:98:cd:8a:19:93:a1:c8:3d:aa:71:e9: 5a:ab:8d:35:22:40:be:fc:ca:f0:e4:9f:bf:21:ac: b2:64:74:27:2f:22:b7:90:17:06:67:b7:f4:39:e9: 94:a6:cc:70:39:93:88:f6:4f:43:56:7a:60:6c:71: 2d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:49:5B:A2:8D:ED:1B:61:3C:6E:6A:5A:36:95:A0:EE:20:53:E7:4D X509v3 Authority Key Identifier: keyid:F4:2D:0C:AD:0E:AE:D1:A6:1F:47:8F:B0:91:9C:7A:43:22:72:46:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9C0MrQ6u0aYfR4-wkZx6QyJyRpU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/dff4d0-1d0a-4951-8b27-7f7394be8ce4/1/Uklboo3tG2E8bmpaNpWg7iBT500.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/dff4d0-1d0a-4951-8b27-7f7394be8ce4/1/9C0MrQ6u0aYfR4-wkZx6QyJyRpU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.191.60.0/23 Signature Algorithm: sha256WithRSAEncryption b8:34:81:44:02:bb:00:bf:24:60:c5:8b:76:dc:d2:fa:3c:dc: a6:f4:65:ef:ff:f5:1b:86:78:af:2a:52:a4:87:c0:c5:0e:b7: b8:4d:21:95:f8:67:a5:23:06:b0:3b:44:0a:29:a7:be:26:bb: f9:42:38:4d:b5:3e:30:54:40:ab:69:a7:6d:4f:18:51:a9:ee: 62:7c:6b:9b:b8:b4:c4:e5:8a:39:c1:57:2d:14:f8:f1:4a:3b: 3e:ac:64:c3:29:72:13:a8:ac:f9:fc:80:19:3c:01:bb:c9:2a: 33:00:87:b8:68:97:89:e1:87:92:7a:f0:2f:36:cb:00:07:05: 11:43:96:f5:f2:8d:52:36:df:ef:0a:a4:d4:77:af:5e:bd:95: 61:27:b6:13:d7:ce:49:d8:20:ac:60:29:06:ac:8d:cb:0d:18: 44:d9:54:39:f5:16:8b:86:4f:c8:cc:0b:1a:bd:d3:88:8c:c7: a4:11:17:75:0a:33:04:48:ae:6a:ad:9e:91:8b:6a:55:27:17: ea:be:46:b7:ee:26:af:f3:65:20:c5:27:a3:d2:88:fb:22:b5: 65:a9:92:44:f2:84:72:3f:bf:82:97:80:86:c5:65:88:5d:2e: 44:02:c8:d1:2e:7b:be:49:13:39:96:f1:f1:50:f3:32:9b:71: 30:be:01:e3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pIknHBTPKSDvlW9dH6cAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0MmQwY2FkMGVhZWQxYTYxZjQ3OGZiMDkxOWM3YTQzMjI3 MjQ2OTUwHhcNMjYwMTAyMTIxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MjQ5NWJhMjhkZWQxYjYxM2M2ZTZhNWEzNjk1YTBlZTIwNTNlNzRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOuW1wELkkJ9hyqA/k+tkfNdaEXG f06gZrU/pTDlBhIDYuhZQ19fRBEACezmb6lxHFsmeLSmmmY345MjgkFlnvPZi0go yR2P3Jujh9n3Bcdt2lqZHNAb3RsWPrc+TB2DeinxEIFyIyY2ZtX5k7XSQfJLnLHW cah+Uu3Uf1xm9SQFIJj8ESn21Gu5fJ7kLJ3/tcfwB7v+l+zs7KnlkIBrB3/yL/zg KB3sDrDLlZFjRHi+szJeR6Zk2SFDKV90m9brYb2BCmdgmM2KGZOhyD2qcelaq401 IkC+/Mrw5J+/IayyZHQnLyK3kBcGZ7f0OemUpsxwOZOI9k9DVnpgbHEt/wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFJJW6KN7RthPG5qWjaVoO4gU+dNMB8GA1UdIwQY MBaAFPQtDK0OrtGmH0ePsJGcekMickaVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOUMwTXJRNnUwYVlmUjQtd2taeDZReUp5UnBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9kZmY0ZDAtMWQwYS00OTUxLThiMjct N2Y3Mzk0YmU4Y2U0LzEvVWtsYm9vM3RHMkU4Ym1wYU5wV2c3aUJUNTAwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS9kZmY0ZDAtMWQwYS00OTUxLThiMjctN2Y3Mzk0YmU4Y2U0 LzEvOUMwTXJRNnUwYVlmUjQtd2taeDZReUp5UnBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw788MA0G CSqGSIb3DQEBCwUAA4IBAQC4NIFEArsAvyRgxYt23NL6PNym9GXv//UbhnivKlKk h8DFDre4TSGV+GelIwawO0QKKae+Jrv5QjhNtT4wVECraadtTxhRqe5ifGubuLTE 5Yo5wVctFPjxSjs+rGTDKXITqKz5/IAZPAG7ySozAIe4aJeJ4YeSevAvNssABwUR Q5b18o1SNt/vCqTUd69evZVhJ7YT185J2CCsYCkGrI3LDRhE2VQ59RaLhk/IzAsa vdOIjMekERd1CjMESK5qrZ6Ri2pVJxfqvka37iav82UgxSej0oj7IrVlqZJE8oRy P7+Cl4CGxWWIXS5EAsjRLnu+SRM5lvHxUPMym3EwvgHj -----END CERTIFICATE-----Generated at Mon Feb 9 18:44:41 2026 by rpki-client