This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/UvcJIP9GU_V2Mt4tyf-MC05D4z4.roa File: UvcJIP9GU_V2Mt4tyf-MC05D4z4.roa (raw, json) Hash identifier: Irba1/9xm6DmXZQD7UmL9JlVgVcOaYu4q1AwZlIIIho= Subject key identifier: 52:F7:09:20:FF:46:53:F5:76:32:DE:2D:C9:FF:8C:0B:4E:43:E3:3E Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026 Certificate serial: 019B7C11FA1C84E2264B7B64A076ADBEB760 Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/UvcJIP9GU_V2Mt4tyf-MC05D4z4.roa Signing time: Fri 02 Jan 2026 00:18:31 +0000 ROA not before: Fri 02 Jan 2026 00:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 141420 IP address blocks: 193.118.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.mft rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:fa:1c:84:e2:26:4b:7b:64:a0:76:ad:be:b7:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026 Validity Not Before: Jan 2 00:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52f70920ff4653f57632de2dc9ff8c0b4e43e33e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:26:87:1e:2d:b2:75:05:ce:e7:68:e8:35:77: f5:31:3f:c9:1b:1b:93:f8:14:72:41:39:a0:7c:0a: 44:97:38:29:07:9d:19:5f:14:85:0f:80:c7:be:68: ad:40:41:23:d7:74:68:39:86:54:ea:e3:56:38:73: 72:57:ae:49:a5:2b:ef:a5:69:9d:4b:02:a7:e7:34: eb:09:bf:f9:38:09:9c:ad:a1:5e:9c:3c:59:18:9c: 40:34:1c:bd:bf:fa:9e:33:d5:11:03:1f:20:3b:b1: 59:e6:d5:27:b6:29:ea:ca:89:50:a3:47:1f:7f:ef: b6:34:aa:f7:27:78:7c:2c:bd:0d:ca:fa:2a:cf:9e: 97:14:a7:ad:80:61:6c:ab:91:fe:99:d0:c0:3d:9b: 4a:e3:d5:8f:e3:d0:da:20:73:17:b4:cc:0c:43:dd: 85:8f:6d:c9:5c:8e:dc:51:4e:d7:fb:3c:a1:bb:6c: b1:0c:66:f0:73:e9:9e:54:fc:cf:fc:45:25:07:8c: 43:2e:f6:ae:eb:13:03:15:d8:0b:de:fa:4e:29:fc: 4a:2f:a2:6c:0e:45:ba:3a:26:03:10:96:96:ff:a7: fa:45:a1:d1:2e:5e:d8:a2:8c:f5:b3:6d:70:8c:0f: 1a:63:d3:62:2b:ea:4c:bd:37:40:c9:9a:ef:c9:a3: 8b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F7:09:20:FF:46:53:F5:76:32:DE:2D:C9:FF:8C:0B:4E:43:E3:3E X509v3 Authority Key Identifier: keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/UvcJIP9GU_V2Mt4tyf-MC05D4z4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.118.168.0/24 Signature Algorithm: sha256WithRSAEncryption 85:28:cc:f2:5e:e7:13:4a:80:24:ae:38:a3:85:cc:40:df:02: 59:aa:2e:0b:da:19:5b:b9:a0:33:95:5b:90:5f:55:8b:58:40: ef:84:21:d1:da:f0:f3:07:3e:6d:e0:b2:1a:2c:bd:90:31:78: 36:83:47:4a:42:81:59:e1:ef:d9:86:01:6d:ea:ee:da:e8:51: cb:13:39:b7:f3:e6:9d:6e:a2:84:49:2f:f0:b5:59:c7:f8:b4: 8b:36:c1:66:46:f5:8c:12:d9:0b:fa:b4:45:eb:be:3b:df:b5: a7:e6:ce:f8:1e:f4:b6:6a:04:ba:8e:b9:8d:ce:c8:e4:c2:94: 9e:85:4d:76:1f:fc:8d:23:3c:80:58:c6:17:49:ea:90:e6:62: a3:52:3d:f8:14:15:08:8e:6f:23:75:b2:79:7c:9b:42:71:30: 08:e7:a3:13:c1:0c:ae:e2:2d:d2:5d:81:99:41:88:25:28:3b: 36:7d:23:7e:12:50:f5:b7:3e:2e:cc:47:46:63:d5:f3:20:89: 22:45:2f:64:26:33:cb:9c:7f:4c:9d:dc:38:2b:fb:e0:61:b7: a2:7d:5b:51:8a:fb:91:d9:62:ab:d3:8a:4a:14:d3:fe:3b:d9: 6c:b8:02:99:dd:85:7c:06:5c:bd:87:d2:34:3f:75:1d:e0:3a: 23:97:a2:bc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EfochOImS3tkoHatvrdgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjZjhmZmMwODg1OTFlNGYyNDNiYWFmYTIxYjQyOThiZmIz NjYwMjYwHhcNMjYwMTAyMDAxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MmY3MDkyMGZmNDY1M2Y1NzYzMmRlMmRjOWZmOGMwYjRlNDNlMzNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoiaHHi2ydQXO52joNXf1MT/JGxuT +BRyQTmgfApElzgpB50ZXxSFD4DHvmitQEEj13RoOYZU6uNWOHNyV65JpSvvpWmd SwKn5zTrCb/5OAmcraFenDxZGJxANBy9v/qeM9URAx8gO7FZ5tUntinqyolQo0cf f++2NKr3J3h8LL0Nyvoqz56XFKetgGFsq5H+mdDAPZtK49WP49DaIHMXtMwMQ92F j23JXI7cUU7X+zyhu2yxDGbwc+meVPzP/EUlB4xDLvau6xMDFdgL3vpOKfxKL6Js DkW6OiYDEJaW/6f6RaHRLl7Yooz1s21wjA8aY9NiK+pMvTdAyZrvyaOLlQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFL3CSD/RlP1djLeLcn/jAtOQ+M+MB8GA1UdIwQY MBaAFEz4/8CIWR5PJDuq+iG0KYv7NmAmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMt YjNiNzhiMGI2NmVhLzEvVXZjSklQOUdVX1YyTXQ0dHlmLU1DMDVENHo0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMtYjNiNzhiMGI2NmVh LzEvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwXaoMA0G CSqGSIb3DQEBCwUAA4IBAQCFKMzyXucTSoAkrjijhcxA3wJZqi4L2hlbuaAzlVuQ X1WLWEDvhCHR2vDzBz5t4LIaLL2QMXg2g0dKQoFZ4e/ZhgFt6u7a6FHLEzm38+ad bqKESS/wtVnH+LSLNsFmRvWMEtkL+rRF674737Wn5s74HvS2agS6jrmNzsjkwpSe hU12H/yNIzyAWMYXSeqQ5mKjUj34FBUIjm8jdbJ5fJtCcTAI56MTwQyu4i3SXYGZ QYglKDs2fSN+ElD1tz4uzEdGY9XzIIkiRS9kJjPLnH9Mndw4K/vgYbeifVtRivuR 2WKr04pKFNP+O9lsuAKZ3YV8Bly9h9I0P3Ud4Dojl6K8 -----END CERTIFICATE-----Generated at Mon Jan 26 23:42:53 2026 by rpki-client