This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/uTmRoqIr9umVZ7Rpa8WxfGYSEFE.roa File: uTmRoqIr9umVZ7Rpa8WxfGYSEFE.roa (raw, json) Hash identifier: AXmfTKEKpQYTtlGdLEFRDWTGnCANvRA0jESYANo0qQY= Subject key identifier: B9:39:91:A2:A2:2B:F6:E9:95:67:B4:69:6B:C5:B1:7C:66:12:10:51 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84B504877605292D94F7098B75853D Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/uTmRoqIr9umVZ7Rpa8WxfGYSEFE.roa Signing time: Fri 02 Jan 2026 16:22:41 +0000 ROA not before: Fri 02 Jan 2026 16:22:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48709 IP address blocks: 31.148.24.0/24 maxlen: 24 2a02:128:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:b5:04:87:76:05:29:2d:94:f7:09:8b:75:85:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b93991a2a22bf6e99567b4696bc5b17c66121051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:96:98:f3:4e:6b:bd:79:31:b3:7b:ef:96:39: 84:5b:64:11:dc:16:46:79:94:5e:32:9a:f9:88:90: 35:fe:48:98:3a:07:4d:3c:23:15:6a:47:40:65:87: 48:b8:e7:8e:5a:6a:fb:23:55:e3:4f:82:ed:b8:49: f2:f1:70:33:de:ee:88:ec:d5:30:9d:88:a6:ab:50: c7:09:29:13:66:bc:f8:06:d1:b4:70:c5:61:b4:c5: 73:26:48:09:9c:08:27:d4:0d:54:01:73:33:60:fa: fd:7c:56:80:dc:a1:61:c1:56:cd:fe:e8:3e:c0:56: 52:db:67:78:c7:db:59:2c:51:59:89:05:48:61:ed: 6b:c8:3a:72:f5:76:5b:40:3d:6f:ef:08:d9:2d:7c: 8a:41:53:36:74:3b:c4:e0:7e:d7:5d:88:fa:8b:e4: ac:39:d5:6a:6c:6c:e7:1d:a5:3a:ca:5e:f4:91:ed: a7:71:60:65:00:a5:9c:58:fc:55:34:83:8f:57:ef: 6e:bc:62:85:05:aa:66:39:a4:9b:45:45:b2:2b:c1: f7:4a:42:10:e2:ec:c5:df:0f:47:e6:39:fe:fa:e8: 68:1f:ca:dc:c8:29:8a:19:70:c4:60:fd:90:ff:15: 3b:6c:dc:2b:8d:5e:ea:49:27:32:fc:41:4c:27:3a: a3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:39:91:A2:A2:2B:F6:E9:95:67:B4:69:6B:C5:B1:7C:66:12:10:51 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/uTmRoqIr9umVZ7Rpa8WxfGYSEFE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.148.24.0/24 IPv6: 2a02:128:10::/48 Signature Algorithm: sha256WithRSAEncryption 2c:67:70:6d:0e:46:87:61:0a:0f:9d:0f:d9:bf:aa:a7:bc:d4: 2d:3a:a5:c5:2a:79:9d:52:cd:7c:f3:6c:f5:0c:a9:9f:6c:52: 4d:28:7f:0c:d3:ef:38:8a:95:6b:80:c2:c5:ba:ce:71:ea:79: 1b:b4:96:aa:b9:98:fb:ad:4a:6e:93:be:76:31:a6:dc:6b:87: 5f:0a:4a:c0:47:21:2b:ee:f5:e8:1b:b3:04:ce:4d:f9:93:4d: c1:8e:90:da:0e:92:d2:ec:05:23:ed:65:2c:54:5c:25:07:d7: 7c:bf:95:26:b7:bc:fb:7c:e2:73:a4:dc:98:ec:38:6f:d4:07: a1:7e:34:1f:4c:5e:bf:a9:fc:96:24:ec:cc:4f:41:2e:c9:6b: bd:f3:f8:8d:0e:3e:14:49:1c:98:57:62:7e:52:e6:61:70:de: 5b:b7:43:dd:9b:06:2c:47:fc:e1:6d:7f:52:68:d9:59:58:3c: 22:44:1f:e0:7d:e3:4c:0a:02:31:55:d9:a4:47:70:f8:8d:ad: 27:cc:f9:bc:16:33:37:9c:ce:0c:07:df:0e:77:31:88:ce:84: 2c:4f:19:60:f0:ec:f9:8d:9c:cf:c1:b8:63:2a:20:40:72:38: 5f:94:7d:fe:2b:4e:54:8b:f3:eb:ec:28:89:0a:a2:55:b3:11: dc:19:d1:fc -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/hLUEh3YFKS2U9wmLdYU9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTM5OTFhMmEyMmJmNmU5OTU2N2I0Njk2YmM1YjE3YzY2MTIxMDUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZaY805rvXkxs3vvljmEW2QR3BZG eZReMpr5iJA1/kiYOgdNPCMVakdAZYdIuOeOWmr7I1XjT4LtuEny8XAz3u6I7NUw nYimq1DHCSkTZrz4BtG0cMVhtMVzJkgJnAgn1A1UAXMzYPr9fFaA3KFhwVbN/ug+ wFZS22d4x9tZLFFZiQVIYe1ryDpy9XZbQD1v7wjZLXyKQVM2dDvE4H7XXYj6i+Ss OdVqbGznHaU6yl70ke2ncWBlAKWcWPxVNIOPV+9uvGKFBapmOaSbRUWyK8H3SkIQ 4uzF3w9H5jn++uhoH8rcyCmKGXDEYP2Q/xU7bNwrjV7qSScy/EFMJzqjaQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFLk5kaKiK/bplWe0aWvFsXxmEhBRMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvdVRtUm9xSXI5dW1WWjdScGE4V3hmR1lTRUZFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAH5QYMA8E AgACMAkDBwAqAgEoABAwDQYJKoZIhvcNAQELBQADggEBACxncG0ORodhCg+dD9m/ qqe81C06pcUqeZ1SzXzzbPUMqZ9sUk0ofwzT7ziKlWuAwsW6znHqeRu0lqq5mPut Sm6TvnYxptxrh18KSsBHISvu9egbswTOTfmTTcGOkNoOktLsBSPtZSxUXCUH13y/ lSa3vPt84nOk3JjsOG/UB6F+NB9MXr+p/JYk7MxPQS7Ja73z+I0OPhRJHJhXYn5S 5mFw3lu3Q92bBixH/OFtf1Jo2VlYPCJEH+B940wKAjFV2aRHcPiNrSfM+bwWMzec zgwH3w53MYjOhCxPGWDw7PmNnM/BuGMqIEByOF+Uff4rTlSL8+vsKIkKolWzEdwZ 0fw= -----END CERTIFICATE-----Generated at Mon Jan 26 08:04:23 2026 by rpki-client