This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/85d097-0153-4902-af7a-b8c331a848aa/1/UrVvZVnA9sxhDnytnq_6CJMVGDY.roa File: UrVvZVnA9sxhDnytnq_6CJMVGDY.roa (raw, json) Hash identifier: Eo7tDFpvsB5+kGHIClxenKJ/I8v5IPSf0jD2mkBbqy8= Subject key identifier: 52:B5:6F:65:59:C0:F6:CC:61:0E:7C:AD:9E:AF:FA:08:93:15:18:36 Certificate issuer: /CN=a84471a66f7907107e4534716bfa4208d406969f Certificate serial: 019B7C7FD77A1F65B9EBF17AC82E1244A4A7 Authority key identifier: A8:44:71:A6:6F:79:07:10:7E:45:34:71:6B:FA:42:08:D4:06:96:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qERxpm95BxB-RTRxa_pCCNQGlp8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/85d097-0153-4902-af7a-b8c331a848aa/1/UrVvZVnA9sxhDnytnq_6CJMVGDY.roa Signing time: Fri 02 Jan 2026 02:18:31 +0000 ROA not before: Fri 02 Jan 2026 02:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198153 IP address blocks: 79.98.64.0/21 maxlen: 30 185.197.0.0/22 maxlen: 32 2a03:ad80::/32 maxlen: 126 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/85d097-0153-4902-af7a-b8c331a848aa/1/qERxpm95BxB-RTRxa_pCCNQGlp8.crl rsync://rpki.ripe.net/repository/DEFAULT/28/85d097-0153-4902-af7a-b8c331a848aa/1/qERxpm95BxB-RTRxa_pCCNQGlp8.mft rsync://rpki.ripe.net/repository/DEFAULT/qERxpm95BxB-RTRxa_pCCNQGlp8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:d7:7a:1f:65:b9:eb:f1:7a:c8:2e:12:44:a4:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a84471a66f7907107e4534716bfa4208d406969f Validity Not Before: Jan 2 02:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52b56f6559c0f6cc610e7cad9eaffa0893151836 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:59:b4:1c:c3:e6:9c:17:29:2e:65:e7:4f:74: 2a:54:02:da:c3:90:d2:65:b5:91:90:13:52:20:70: 07:68:d8:1b:bd:2c:b5:e4:ab:81:09:37:9e:2f:20: c2:89:8d:df:16:98:90:dc:fc:ed:c1:f4:af:7b:7e: ea:20:4e:b2:f4:f1:86:8a:51:19:68:95:d6:0a:a8: c4:90:a1:0f:1d:db:d5:cb:63:5d:8c:09:5b:c6:f7: 50:da:80:94:37:99:86:8b:cb:5a:cb:a4:4e:1a:4d: ab:54:e6:ca:da:33:c0:c8:55:93:60:d1:68:40:6e: 1e:2c:b4:1e:47:ce:e3:d4:72:c2:b6:bd:04:91:16: be:c8:86:22:13:f7:30:cb:ac:c4:c6:57:ec:e6:41: b1:c6:83:e2:ee:3d:c5:bb:db:d9:4b:61:7e:e5:6a: 0b:c5:f1:7c:b8:d2:f4:42:d2:eb:f4:42:5f:3d:3c: 12:b7:61:09:eb:e4:84:0e:93:8f:90:1c:d1:08:43: 2e:2d:4a:b8:72:f3:5f:01:2e:4e:27:ea:77:e8:a6: 53:31:dc:67:d5:e7:4b:85:30:41:94:b4:05:79:24: c4:c5:da:ed:e5:80:33:6a:67:23:39:b8:a2:47:d4: 4c:d5:dc:e4:0f:6b:bd:5d:45:5a:0a:26:df:6f:1a: b1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:B5:6F:65:59:C0:F6:CC:61:0E:7C:AD:9E:AF:FA:08:93:15:18:36 X509v3 Authority Key Identifier: keyid:A8:44:71:A6:6F:79:07:10:7E:45:34:71:6B:FA:42:08:D4:06:96:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qERxpm95BxB-RTRxa_pCCNQGlp8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/85d097-0153-4902-af7a-b8c331a848aa/1/UrVvZVnA9sxhDnytnq_6CJMVGDY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/85d097-0153-4902-af7a-b8c331a848aa/1/qERxpm95BxB-RTRxa_pCCNQGlp8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.98.64.0/21 185.197.0.0/22 IPv6: 2a03:ad80::/32 Signature Algorithm: sha256WithRSAEncryption 60:b7:01:33:2e:22:c7:b7:26:d6:8c:da:e6:e6:61:94:b8:6b: b8:e1:e2:7e:d0:95:4d:3f:ad:82:c7:b1:59:e4:37:e2:42:95: 86:d7:9f:b8:83:ea:0b:9d:06:81:5a:c9:60:0b:8b:19:75:eb: da:a7:54:95:e3:b6:57:ce:7b:af:c8:e5:c0:9c:06:07:36:4d: 60:d6:ed:c6:11:91:a0:6d:7f:6b:d4:77:47:7a:3a:a1:0f:d4: de:4a:1d:64:f5:c4:60:9e:1a:ed:4b:6f:d2:1f:e4:ed:e8:1f: a7:d6:f7:b4:55:5f:3d:03:1b:37:cb:b5:18:c4:42:1c:fc:51: df:11:de:22:c6:e6:f8:85:e4:ca:c9:3a:88:c6:cb:cc:d9:20: c5:54:25:60:b0:69:66:6b:1d:52:85:65:1a:7d:0d:e9:cc:12: 9c:18:cb:ee:be:19:e0:a7:d9:29:82:1e:6f:6f:d7:92:59:c8: 59:c5:03:36:34:2b:9a:17:78:4d:f5:d0:54:92:e4:4a:2b:27: 38:e0:b9:b8:c9:d0:4e:88:a2:2d:02:84:a6:c0:73:96:e0:a1: 39:31:77:cc:c7:7b:c9:d9:8a:ed:43:00:1e:86:bc:45:c0:2f: d7:6d:d1:03:01:60:0b:d6:0c:98:68:fa:ef:4c:f9:f0:b2:7a: 3d:42:11:97 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt8f9d6H2W56/F6yC4SRKSnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NDQ3MWE2NmY3OTA3MTA3ZTQ1MzQ3MTZiZmE0MjA4ZDQw Njk2OWYwHhcNMjYwMTAyMDIxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MmI1NmY2NTU5YzBmNmNjNjEwZTdjYWQ5ZWFmZmEwODkzMTUxODM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFm0HMPmnBcpLmXnT3QqVALaw5DS ZbWRkBNSIHAHaNgbvSy15KuBCTeeLyDCiY3fFpiQ3PztwfSve37qIE6y9PGGilEZ aJXWCqjEkKEPHdvVy2NdjAlbxvdQ2oCUN5mGi8tay6ROGk2rVObK2jPAyFWTYNFo QG4eLLQeR87j1HLCtr0EkRa+yIYiE/cwy6zExlfs5kGxxoPi7j3Fu9vZS2F+5WoL xfF8uNL0QtLr9EJfPTwSt2EJ6+SEDpOPkBzRCEMuLUq4cvNfAS5OJ+p36KZTMdxn 1edLhTBBlLQFeSTExdrt5YAzamcjObiiR9RM1dzkD2u9XUVaCibfbxqx2QIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFFK1b2VZwPbMYQ58rZ6v+giTFRg2MB8GA1UdIwQY MBaAFKhEcaZveQcQfkU0cWv6QgjUBpafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUVSeHBtOTVCeEItUlRSeGFfcENDTlFHbHA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC84NWQwOTctMDE1My00OTAyLWFmN2Et YjhjMzMxYTg0OGFhLzEvVXJWdlpWbkE5c3hoRG55dG5xXzZDSk1WR0RZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC84NWQwOTctMDE1My00OTAyLWFmN2EtYjhjMzMxYTg0OGFh LzEvcUVSeHBtOTVCeEItUlRSeGFfcENDTlFHbHA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDT2JAAwQC ucUAMA0EAgACMAcDBQAqA62AMA0GCSqGSIb3DQEBCwUAA4IBAQBgtwEzLiLHtybW jNrm5mGUuGu44eJ+0JVNP62Cx7FZ5DfiQpWG15+4g+oLnQaBWslgC4sZdevap1SV 47ZXznuvyOXAnAYHNk1g1u3GEZGgbX9r1HdHejqhD9TeSh1k9cRgnhrtS2/SH+Tt 6B+n1ve0VV89Axs3y7UYxEIc/FHfEd4ixub4heTKyTqIxsvM2SDFVCVgsGlmax1S hWUafQ3pzBKcGMvuvhngp9kpgh5vb9eSWchZxQM2NCuaF3hN9dBUkuRKKyc44Lm4 ydBOiKItAoSmwHOW4KE5MXfMx3vJ2YrtQwAehrxFwC/XbdEDAWAL1gyYaPrvTPnw sno9QhGX -----END CERTIFICATE-----Generated at Tue Feb 10 00:13:45 2026 by rpki-client