This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/aUPHv82Bqhuun81grUdJW_UVgLM.roa File: aUPHv82Bqhuun81grUdJW_UVgLM.roa (raw, json) Hash identifier: GC6ehY/pZwrw30U0AFJsHvq5vW5Icu4QsaWDm7j6VFo= Subject key identifier: 69:43:C7:BF:CD:81:AA:1B:AE:9F:CD:60:AD:47:49:5B:F5:15:80:B3 Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa Certificate serial: 019B7E3798A31D298C5AEC8D9C6B8AC573FF Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/aUPHv82Bqhuun81grUdJW_UVgLM.roa Signing time: Fri 02 Jan 2026 10:18:51 +0000 ROA not before: Fri 02 Jan 2026 10:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3561 IP address blocks: 46.151.36.0/22 maxlen: 24 77.36.124.0/22 maxlen: 22 81.161.4.0/22 maxlen: 24 91.237.44.0/22 maxlen: 24 93.120.96.0/22 maxlen: 22 194.33.100.0/22 maxlen: 24 194.33.100.0/23 maxlen: 24 194.33.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.mft rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:98:a3:1d:29:8c:5a:ec:8d:9c:6b:8a:c5:73:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa Validity Not Before: Jan 2 10:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6943c7bfcd81aa1bae9fcd60ad47495bf51580b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:15:cd:a1:76:31:f7:ef:d4:c1:88:58:47:b7: de:1b:c5:57:b4:29:c8:4b:d2:c7:cc:d9:39:52:b1: 2c:a2:94:6f:7d:bb:3a:cc:76:24:c4:58:89:41:d5: 96:1a:10:42:27:74:23:b3:7d:b7:bc:55:e8:df:a3: c6:9b:48:bb:d0:08:d4:62:4f:6d:02:6a:d2:fa:3a: 1f:a3:05:d8:04:fa:de:6f:62:02:78:80:18:e0:dd: ec:6d:6f:d5:39:00:f8:6a:32:a3:07:fd:0b:92:ad: cc:02:21:dd:83:87:63:d5:65:fd:2d:03:23:70:dc: 08:e3:5e:6c:ef:b0:24:1f:ee:73:b1:11:a0:3a:7d: a9:a4:a2:1c:b4:12:e6:2e:b5:50:a1:f9:dd:20:ae: f6:fe:19:5a:11:11:7b:fc:74:e5:6f:ad:75:55:d1: b9:45:ce:63:ca:05:38:01:4f:5c:5b:5c:44:ed:c1: bb:83:34:26:60:ce:75:60:87:1d:d5:5a:e2:54:0f: bb:26:1d:dd:d0:13:c9:65:40:3a:5d:00:81:bd:f9: 8b:8e:04:bf:6e:97:fd:c2:51:72:65:bc:bf:a2:1a: dc:c1:b8:a3:11:76:64:6a:4c:49:c0:0a:f3:ef:c4: 4a:a2:63:ca:df:19:fd:60:bd:fc:0b:b6:c0:10:ed: 60:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:43:C7:BF:CD:81:AA:1B:AE:9F:CD:60:AD:47:49:5B:F5:15:80:B3 X509v3 Authority Key Identifier: keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/aUPHv82Bqhuun81grUdJW_UVgLM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.151.36.0/22 77.36.124.0/22 81.161.4.0/22 91.237.44.0/22 93.120.96.0/22 194.33.100.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:4c:ba:61:0a:80:53:2b:8a:77:a8:3c:98:fd:e1:a3:9e:4e: 7a:d0:b9:f7:c0:7e:11:09:06:d1:38:62:c5:ce:06:9d:1d:07: 28:38:d9:f0:22:a7:98:e3:3b:05:c5:67:a6:d8:20:09:56:c0: f8:bb:39:41:4c:1a:37:84:0b:72:75:05:56:b5:8c:1a:47:61: 9a:b2:ef:b8:40:74:9e:ba:cc:72:aa:16:92:3f:96:ed:a0:a3: b8:63:e2:d3:c5:92:06:8c:57:fc:cd:58:4c:ba:5b:3a:9a:ae: 76:3b:70:77:e8:d1:85:8c:f6:3d:3d:5c:10:9d:b2:bf:f4:20: 73:53:9a:c4:b7:c9:08:25:9f:6b:db:68:7f:30:d9:c9:1d:85: cc:a8:95:0f:e7:ea:50:04:46:64:92:ac:6a:9f:be:b9:e9:d6: 83:c5:c1:a6:67:80:9b:a6:0c:f9:ef:b4:3a:c7:ed:8c:e8:f5: c9:2e:97:b6:52:48:ff:23:92:58:47:ea:96:b6:64:b9:02:d0: 9c:33:7c:4a:0e:ee:c2:b6:04:10:57:b2:2c:bd:b3:b4:12:05: b7:b0:68:e0:90:69:34:f1:b2:f5:e8:d2:92:57:ce:6d:c8:16: dd:bb:88:f9:75:d4:cc:bb:42:d8:72:74:c8:7b:46:3a:33:04: 95:19:c3:0e -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt+N5ijHSmMWuyNnGuKxXP/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0OWNiYmQ1YzJjZjQxOTVjYzZlYzdmMjFmNjA3NTgxYTAy MjRkYWEwHhcNMjYwMTAyMTAxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTQzYzdiZmNkODFhYTFiYWU5ZmNkNjBhZDQ3NDk1YmY1MTU4MGIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3RXNoXYx9+/UwYhYR7feG8VXtCnI S9LHzNk5UrEsopRvfbs6zHYkxFiJQdWWGhBCJ3Qjs323vFXo36PGm0i70AjUYk9t AmrS+jofowXYBPreb2ICeIAY4N3sbW/VOQD4ajKjB/0Lkq3MAiHdg4dj1WX9LQMj cNwI415s77AkH+5zsRGgOn2ppKIctBLmLrVQofndIK72/hlaERF7/HTlb611VdG5 Rc5jygU4AU9cW1xE7cG7gzQmYM51YIcd1VriVA+7Jh3d0BPJZUA6XQCBvfmLjgS/ bpf9wlFyZby/ohrcwbijEXZkakxJwArz78RKomPK3xn9YL38C7bAEO1g1wIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFGlDx7/Ngaobrp/NYK1HSVv1FYCzMB8GA1UdIwQY MBaAFDScu9XCz0GVzG7H8h9gdYGgIk2qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUt ZGMwNmRkODA1OTYwLzEvYVVQSHY4MkJxaHV1bjgxZ3JVZEpXX1VWZ0xNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUtZGMwNmRkODA1OTYw LzEvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQCLpckAwQC TSR8AwQCUaEEAwQCW+0sAwQCXXhgAwQCwiFkMA0GCSqGSIb3DQEBCwUAA4IBAQB/ TLphCoBTK4p3qDyY/eGjnk560Ln3wH4RCQbROGLFzgadHQcoONnwIqeY4zsFxWem 2CAJVsD4uzlBTBo3hAtydQVWtYwaR2Gasu+4QHSeusxyqhaSP5btoKO4Y+LTxZIG jFf8zVhMuls6mq52O3B36NGFjPY9PVwQnbK/9CBzU5rEt8kIJZ9r22h/MNnJHYXM qJUP5+pQBEZkkqxqn7656daDxcGmZ4Cbpgz577Q6x+2M6PXJLpe2Ukj/I5JYR+qW tmS5AtCcM3xKDu7CtgQQV7IsvbO0EgW3sGjgkGk08bL16NKSV85tyBbdu4j5ddTM u0LYcnTIe0Y6MwSVGcMO -----END CERTIFICATE-----Generated at Mon Jan 19 19:58:17 2026 by rpki-client