This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/uoPZT_uIWtt1y75pLuVRiaAOCA8.roa File: uoPZT_uIWtt1y75pLuVRiaAOCA8.roa (raw, json) Hash identifier: 9YrNpBfyPkS8WM22E6fKQ7KTx+jlfiKDKpzF0Ults2s= Subject key identifier: BA:83:D9:4F:FB:88:5A:DB:75:CB:BE:69:2E:E5:51:89:A0:0E:08:0F Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479 Certificate serial: 019B7DCA54318E813C0808FBDB7F5DB11F02 Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/uoPZT_uIWtt1y75pLuVRiaAOCA8.roa Signing time: Fri 02 Jan 2026 08:19:30 +0000 ROA not before: Fri 02 Jan 2026 08:19:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3238 IP address blocks: 79.133.0.0/19 maxlen: 19 82.199.160.0/19 maxlen: 24 194.110.176.0/20 maxlen: 24 194.112.0.0/20 maxlen: 24 212.17.160.0/19 maxlen: 24 213.204.32.0/19 maxlen: 24 2a00:5500::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:54:31:8e:81:3c:08:08:fb:db:7f:5d:b1:1f:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479 Validity Not Before: Jan 2 08:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba83d94ffb885adb75cbbe692ee55189a00e080f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:66:12:35:48:bc:8a:12:94:d4:cb:40:28:c8: 34:2a:e4:ab:e7:34:10:a4:dd:7a:67:cc:5f:76:20: 8c:97:67:f5:7c:55:00:f3:10:c4:86:f5:0c:65:f3: e1:61:7d:01:21:2f:48:73:a0:d4:0f:16:63:5d:07: ef:aa:de:f8:9f:75:c0:6c:83:a3:c5:98:62:49:b4: aa:78:16:5f:1e:80:86:e6:65:0c:ce:b4:d5:0a:2b: ff:92:50:62:c4:58:5b:7c:32:60:d4:d3:2c:23:13: c5:37:19:22:88:04:bb:bb:67:42:44:d1:ba:71:e5: c9:a7:fa:98:1f:d0:0e:01:c5:00:26:7e:a8:37:b4: 66:9c:e4:3a:98:aa:09:0f:83:62:50:d7:28:40:d0: 1a:ef:2c:eb:0d:d0:40:73:22:d3:3d:a6:75:b2:e4: 33:3d:16:03:e8:7e:b1:dd:74:7d:f3:5e:ee:d8:b3: 84:f8:2b:47:0b:ce:0b:e7:65:0a:3d:f1:8a:a4:70: 84:7e:8e:f0:24:46:d0:02:00:4c:06:04:2f:6c:65: 06:56:41:89:63:ce:01:00:fa:13:00:15:3c:0f:a9: c7:7b:54:6a:15:84:08:55:15:92:82:ed:1e:f7:1e: cf:4f:8a:61:8c:bf:c6:ae:aa:2a:b0:b8:f2:1d:31: 42:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:83:D9:4F:FB:88:5A:DB:75:CB:BE:69:2E:E5:51:89:A0:0E:08:0F X509v3 Authority Key Identifier: keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/uoPZT_uIWtt1y75pLuVRiaAOCA8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.133.0.0/19 82.199.160.0/19 194.110.176.0/20 194.112.0.0/20 212.17.160.0/19 213.204.32.0/19 IPv6: 2a00:5500::/32 Signature Algorithm: sha256WithRSAEncryption 09:d0:4b:24:e2:6c:24:70:1d:bb:50:86:24:94:e9:d7:f5:da: 7f:bb:1e:36:de:da:82:ed:4a:5c:73:70:4e:cf:df:cb:9c:fd: 94:8b:fa:ff:81:85:ed:19:54:b5:a8:4e:b3:76:fc:6a:a3:a5: ac:24:5d:eb:f3:71:ab:3e:53:af:43:60:ca:3c:af:73:ad:1f: 08:cd:f2:4e:21:fe:2f:0f:bd:c5:6d:b0:a8:8e:4f:ac:28:56: 35:ed:87:73:c4:cc:ae:9f:1b:ae:89:1f:c0:7b:93:45:a9:48: 7c:21:92:c3:f9:78:4e:40:69:a4:96:31:71:9e:95:2b:3d:45: e0:48:39:5f:14:a2:9d:b2:7c:6d:8a:a5:41:62:a7:8d:36:d9: 17:ee:64:9e:47:bd:b7:c6:b0:f1:87:43:a5:f6:a9:dd:7c:5d: 71:a4:cf:d3:c1:80:27:e0:5a:14:d8:13:2c:5b:a7:fc:84:de: ce:24:fd:04:b0:86:b7:73:29:6c:11:99:87:e1:fb:3a:8c:f2: 1a:9b:98:93:e2:05:68:1d:6f:8c:b2:cc:0a:d9:bc:df:73:88: 60:31:50:e0:15:bb:e2:99:e9:8b:be:5c:92:98:e6:6b:0c:04: fc:c6:7e:ad:c9:bc:54:3b:1f:5b:5c:7c:63:d1:19:ee:18:bd: fe:31:e1:c3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt9ylQxjoE8CAj7239dsR8CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllNTYzYzQyNmQxYWFlNGVkMWU3ZjU5NTM2NzQ5MDIyMDg5 ZTg0NzkwHhcNMjYwMTAyMDgxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTgzZDk0ZmZiODg1YWRiNzVjYmJlNjkyZWU1NTE4OWEwMGUwODBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxWYSNUi8ihKU1MtAKMg0KuSr5zQQ pN16Z8xfdiCMl2f1fFUA8xDEhvUMZfPhYX0BIS9Ic6DUDxZjXQfvqt74n3XAbIOj xZhiSbSqeBZfHoCG5mUMzrTVCiv/klBixFhbfDJg1NMsIxPFNxkiiAS7u2dCRNG6 ceXJp/qYH9AOAcUAJn6oN7RmnOQ6mKoJD4NiUNcoQNAa7yzrDdBAcyLTPaZ1suQz PRYD6H6x3XR9817u2LOE+CtHC84L52UKPfGKpHCEfo7wJEbQAgBMBgQvbGUGVkGJ Y84BAPoTABU8D6nHe1RqFYQIVRWSgu0e9x7PT4phjL/GrqoqsLjyHTFCcwIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFLqD2U/7iFrbdcu+aS7lUYmgDggPMB8GA1UdIwQY MBaAFJ5WPEJtGq5O0ef1lTZ0kCIInoR5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmxZOFFtMGFyazdSNV9XVk5uU1FJZ2llaEhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi81NWQ1OTUtZDBiYy00YmEyLTgwYTAt YWZiY2YzNjZiYjA3LzEvdW9QWlRfdUlXdHQxeTc1cEx1VlJpYUFPQ0E4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi81NWQ1OTUtZDBiYy00YmEyLTgwYTAtYWZiY2YzNjZiYjA3 LzEvbmxZOFFtMGFyazdSNV9XVk5uU1FJZ2llaEhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQFT4UAAwQF UsegAwQEwm6wAwQEwnAAAwQF1BGgAwQF1cwgMA0EAgACMAcDBQAqAFUAMA0GCSqG SIb3DQEBCwUAA4IBAQAJ0Esk4mwkcB27UIYklOnX9dp/ux423tqC7Upcc3BOz9/L nP2Ui/r/gYXtGVS1qE6zdvxqo6WsJF3r83GrPlOvQ2DKPK9zrR8IzfJOIf4vD73F bbCojk+sKFY17YdzxMyunxuuiR/Ae5NFqUh8IZLD+XhOQGmkljFxnpUrPUXgSDlf FKKdsnxtiqVBYqeNNtkX7mSeR723xrDxh0Ol9qndfF1xpM/TwYAn4FoU2BMsW6f8 hN7OJP0EsIa3cylsEZmH4fs6jPIam5iT4gVoHW+MsswK2bzfc4hgMVDgFbvimemL vlySmOZrDAT8xn6tybxUOx9bXHxj0RnuGL3+MeHD -----END CERTIFICATE-----Generated at Tue Feb 10 02:58:26 2026 by rpki-client