This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/sUumv71LiXKH26laKH0Fmy5EKus.roa File: sUumv71LiXKH26laKH0Fmy5EKus.roa (raw, json) Hash identifier: UrgMT/FdpxZ5nx6LcsU481E/RGBVqhUpUgDsPDRga/U= Subject key identifier: B1:4B:A6:BF:BD:4B:89:72:87:DB:A9:5A:28:7D:05:9B:2E:44:2A:EB Certificate issuer: /CN=c011ee066641750a51147d8dc99a1b105658d203 Certificate serial: 019B797E15EFA224B8DEECBDBAC1051FB009 Authority key identifier: C0:11:EE:06:66:41:75:0A:51:14:7D:8D:C9:9A:1B:10:56:58:D2:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wBHuBmZBdQpRFH2NyZobEFZY0gM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/sUumv71LiXKH26laKH0Fmy5EKus.roa Signing time: Thu 01 Jan 2026 12:17:44 +0000 ROA not before: Thu 01 Jan 2026 12:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59770 IP address blocks: 185.53.72.0/22 maxlen: 22 2a04:cc40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/wBHuBmZBdQpRFH2NyZobEFZY0gM.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/wBHuBmZBdQpRFH2NyZobEFZY0gM.mft rsync://rpki.ripe.net/repository/DEFAULT/wBHuBmZBdQpRFH2NyZobEFZY0gM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:15:ef:a2:24:b8:de:ec:bd:ba:c1:05:1f:b0:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c011ee066641750a51147d8dc99a1b105658d203 Validity Not Before: Jan 1 12:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b14ba6bfbd4b897287dba95a287d059b2e442aeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d8:93:31:83:4d:e9:fb:61:62:ae:28:84:64: d5:01:01:df:5b:5e:a9:82:05:86:4d:82:ef:8e:d7: eb:e4:59:31:f5:57:f0:86:6d:ef:fe:cb:80:4d:00: d3:9a:95:b2:8b:cf:e1:74:33:b8:98:74:fa:c2:b0: 1f:c0:e9:ae:50:a9:f3:2d:8a:e0:e0:d2:c8:5a:29: 86:28:e2:29:05:a6:bb:21:0a:91:44:b9:5e:2e:06: 56:ab:09:33:4d:3c:99:d7:38:1b:94:37:89:51:49: 3d:94:a2:fa:9e:b3:28:12:ae:60:63:6d:41:7f:39: 84:ec:d6:2a:e5:03:ce:fc:72:ea:ba:ff:06:a1:dc: 20:f1:d9:61:48:db:ac:f1:3c:8e:94:57:a6:27:75: 3d:50:9e:07:61:ad:ed:82:f4:83:b8:b3:06:f0:24: e5:ba:13:84:4c:25:b7:d3:d1:34:a8:6f:21:5f:24: 97:48:19:20:8a:41:6f:b0:97:e1:cc:98:5f:d0:3b: ca:d3:20:46:8c:0b:18:4f:77:de:ea:b7:84:12:d4: b8:d7:08:35:68:63:a3:36:11:fe:d2:a6:1e:57:2f: 41:d7:76:41:53:a8:03:d2:a6:c2:92:54:e1:b8:cd: de:b6:84:1b:41:fd:51:c8:35:e8:ea:ba:f4:04:9b: 34:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:4B:A6:BF:BD:4B:89:72:87:DB:A9:5A:28:7D:05:9B:2E:44:2A:EB X509v3 Authority Key Identifier: keyid:C0:11:EE:06:66:41:75:0A:51:14:7D:8D:C9:9A:1B:10:56:58:D2:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wBHuBmZBdQpRFH2NyZobEFZY0gM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/sUumv71LiXKH26laKH0Fmy5EKus.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/wBHuBmZBdQpRFH2NyZobEFZY0gM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.53.72.0/22 IPv6: 2a04:cc40::/29 Signature Algorithm: sha256WithRSAEncryption 79:8b:7b:b8:53:98:f1:65:76:ff:d3:7b:e7:5c:12:d3:cb:80: 37:b3:75:53:d1:2d:c7:d6:23:66:7d:02:78:b4:6f:6b:f6:3e: 09:be:5e:68:f9:ba:62:ca:99:64:00:d9:71:f1:2d:29:bb:29: 4c:84:ad:dd:6e:2a:1a:72:f2:26:06:39:95:1f:cb:2b:86:20: ec:fd:be:c4:8e:98:0f:66:b7:dc:ab:26:95:54:17:72:12:36: b6:b0:3c:24:73:6a:cc:1a:f7:7a:60:f6:d6:dd:2b:64:04:c7: e1:96:52:53:59:ac:b4:12:40:5e:56:a0:25:1f:5e:b7:b7:28: a3:4d:de:73:34:dd:12:f8:85:ff:b8:cb:ce:18:c0:d4:24:4a: dc:0b:a6:2b:ac:20:38:f8:35:bb:2b:3d:87:06:f6:93:d4:57: 71:d8:23:6d:89:0c:09:a6:33:8a:26:da:3e:d3:40:93:e2:ae: 2b:3d:04:0e:21:d2:3e:95:ac:77:30:72:a5:ea:91:0d:02:62: b2:63:2b:a9:74:8c:ba:e0:6f:f7:73:dc:05:c9:9d:dc:68:38: 96:fd:36:10:c0:ff:8e:1d:db:67:8a:57:35:eb:b4:ea:27:38: 1c:19:51:8b:01:06:6a:ed:9f:e3:74:79:33:84:49:d2:bb:07: 06:cf:cc:06 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5fhXvoiS43uy9usEFH7AJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwMTFlZTA2NjY0MTc1MGE1MTE0N2Q4ZGM5OWExYjEwNTY1 OGQyMDMwHhcNMjYwMTAxMTIxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTRiYTZiZmJkNGI4OTcyODdkYmE5NWEyODdkMDU5YjJlNDQyYWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9iTMYNN6fthYq4ohGTVAQHfW16p ggWGTYLvjtfr5Fkx9Vfwhm3v/suATQDTmpWyi8/hdDO4mHT6wrAfwOmuUKnzLYrg 4NLIWimGKOIpBaa7IQqRRLleLgZWqwkzTTyZ1zgblDeJUUk9lKL6nrMoEq5gY21B fzmE7NYq5QPO/HLquv8Godwg8dlhSNus8TyOlFemJ3U9UJ4HYa3tgvSDuLMG8CTl uhOETCW309E0qG8hXySXSBkgikFvsJfhzJhf0DvK0yBGjAsYT3fe6reEEtS41wg1 aGOjNhH+0qYeVy9B13ZBU6gD0qbCklThuM3etoQbQf1RyDXo6rr0BJs0WwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLFLpr+9S4lyh9upWih9BZsuRCrrMB8GA1UdIwQY MBaAFMAR7gZmQXUKURR9jcmaGxBWWNIDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd0JIdUJtWkJkUXBSRkgyTnlab2JFRlpZMGdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi85YmU4NTYtMGUzMi00MDBmLThlODkt MzY5Y2Q4YmUyNWZlLzEvc1V1bXY3MUxpWEtIMjZsYUtIMEZteTVFS3VzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi85YmU4NTYtMGUzMi00MDBmLThlODktMzY5Y2Q4YmUyNWZl LzEvd0JIdUJtWkJkUXBSRkgyTnlab2JFRlpZMGdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTVIMA0E AgACMAcDBQMqBMxAMA0GCSqGSIb3DQEBCwUAA4IBAQB5i3u4U5jxZXb/03vnXBLT y4A3s3VT0S3H1iNmfQJ4tG9r9j4Jvl5o+bpiyplkANlx8S0puylMhK3dbioacvIm BjmVH8srhiDs/b7EjpgPZrfcqyaVVBdyEja2sDwkc2rMGvd6YPbW3StkBMfhllJT Way0EkBeVqAlH163tyijTd5zNN0S+IX/uMvOGMDUJErcC6YrrCA4+DW7Kz2HBvaT 1Fdx2CNtiQwJpjOKJto+00CT4q4rPQQOIdI+lax3MHKl6pENAmKyYyupdIy64G/3 c9wFyZ3caDiW/TYQwP+OHdtnilc167TqJzgcGVGLAQZq7Z/jdHkzhEnSuwcGz8wG -----END CERTIFICATE-----Generated at Tue Feb 10 03:10:30 2026 by rpki-client