This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/7ec1d8-be76-41ed-97c5-aafe8a8c165e/1/UgzCF8ypTqD3-oEvIopeK7eKv4Y.roa File: UgzCF8ypTqD3-oEvIopeK7eKv4Y.roa (raw, json) Hash identifier: DlTUI/1IFNUCoEUiGr69G6Nmq4+NJdFbzY4oNjUHVuY= Subject key identifier: 52:0C:C2:17:CC:A9:4E:A0:F7:FA:81:2F:22:8A:5E:2B:B7:8A:BF:86 Certificate issuer: /CN=462bcb1b528da9944bd9544bc7b388cee1a01390 Certificate serial: 019B7A5B68286268EA6C2AC82AF9B729190F Authority key identifier: 46:2B:CB:1B:52:8D:A9:94:4B:D9:54:4B:C7:B3:88:CE:E1:A0:13:90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RivLG1KNqZRL2VRLx7OIzuGgE5A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/7ec1d8-be76-41ed-97c5-aafe8a8c165e/1/UgzCF8ypTqD3-oEvIopeK7eKv4Y.roa Signing time: Thu 01 Jan 2026 16:19:29 +0000 ROA not before: Thu 01 Jan 2026 16:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3352 IP address blocks: 185.132.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/7ec1d8-be76-41ed-97c5-aafe8a8c165e/1/RivLG1KNqZRL2VRLx7OIzuGgE5A.crl rsync://rpki.ripe.net/repository/DEFAULT/58/7ec1d8-be76-41ed-97c5-aafe8a8c165e/1/RivLG1KNqZRL2VRLx7OIzuGgE5A.mft rsync://rpki.ripe.net/repository/DEFAULT/RivLG1KNqZRL2VRLx7OIzuGgE5A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:68:28:62:68:ea:6c:2a:c8:2a:f9:b7:29:19:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=462bcb1b528da9944bd9544bc7b388cee1a01390 Validity Not Before: Jan 1 16:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=520cc217cca94ea0f7fa812f228a5e2bb78abf86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c2:b8:a4:30:a8:22:cc:de:67:4f:d4:c7:bb: c1:46:84:4a:ea:aa:e0:38:9c:58:29:16:7c:53:4f: e4:c4:93:81:d6:8c:68:2e:5e:14:cb:46:03:bf:92: 8e:43:2e:8e:b8:9b:b2:09:81:25:fe:90:1d:12:74: 21:81:2c:2e:57:98:5a:f4:b3:51:0c:61:a5:c2:ec: 53:52:5f:cb:ce:db:82:f1:95:1c:bb:d3:d9:18:1e: 29:0e:f0:e9:09:14:d0:5c:05:b4:bb:a4:8f:87:c9: 1f:04:94:ba:40:e6:83:6d:94:5e:e9:c8:c7:09:10: d3:63:e6:a7:ff:7b:eb:c3:4d:87:c3:4c:6d:c6:ac: 0b:6b:75:87:4a:04:dd:ba:01:aa:fa:c1:3b:bf:b7: 53:2b:58:73:b9:6f:d2:9e:b8:38:eb:3c:91:5c:95: 3b:1a:37:a1:d7:97:69:91:b3:a8:10:cd:39:c4:64: 5b:d5:33:0e:82:36:7a:7e:11:e8:da:db:22:87:0b: d0:f0:28:3d:6b:c7:6b:94:d7:f7:16:8f:fc:d6:6a: 51:48:9c:d0:22:23:ae:e5:c6:46:66:78:03:cc:24: 1c:d0:0e:4e:fd:2b:85:1d:3a:f5:74:48:ce:f5:2a: 4c:5c:7c:b4:5a:e6:01:fd:93:75:a1:44:2f:d0:45: 3b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:0C:C2:17:CC:A9:4E:A0:F7:FA:81:2F:22:8A:5E:2B:B7:8A:BF:86 X509v3 Authority Key Identifier: keyid:46:2B:CB:1B:52:8D:A9:94:4B:D9:54:4B:C7:B3:88:CE:E1:A0:13:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RivLG1KNqZRL2VRLx7OIzuGgE5A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/7ec1d8-be76-41ed-97c5-aafe8a8c165e/1/UgzCF8ypTqD3-oEvIopeK7eKv4Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/7ec1d8-be76-41ed-97c5-aafe8a8c165e/1/RivLG1KNqZRL2VRLx7OIzuGgE5A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.132.190.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:8d:2f:bb:e1:f9:09:af:17:19:61:8d:38:bc:76:5d:99:19: 66:7f:f8:1d:06:6f:14:92:1e:9f:6d:7b:ff:6f:b8:17:fd:ea: d3:df:8b:ca:7b:78:57:c5:be:f8:97:26:7f:c8:f0:c4:7d:7e: f3:e1:18:06:ed:8d:75:86:d0:88:88:26:63:e1:f7:92:84:bc: bc:cf:3e:43:73:6f:1f:44:d4:d7:a5:08:e3:a4:20:23:63:b9: d8:81:a5:13:d9:2d:0c:03:58:a0:ef:77:17:1f:c7:f3:5d:46: ff:34:ca:6a:4b:7f:d9:e3:1f:91:5e:33:a4:26:9b:fe:0d:40: b0:35:92:8e:ee:48:95:c5:bf:11:96:e9:c7:79:0e:ea:8c:a5: b3:fe:dd:79:b4:04:1a:91:95:f2:bf:27:31:f5:49:05:10:b5: 0f:9e:7a:56:68:b6:b3:d1:0c:05:a9:8d:5b:e4:56:4b:4f:b3: 2e:8a:fb:eb:27:d7:ee:e6:2c:80:58:33:22:0c:d6:66:01:cd: 95:55:c3:dc:54:ef:a9:d1:f1:df:90:35:8d:bb:26:7b:43:2f: fc:d5:9e:cf:50:10:ae:f3:0a:80:d4:42:1f:c5:77:f3:b5:ad: 3d:82:11:0f:30:46:3d:ab:87:84:bc:89:91:ec:ac:db:99:b9: af:5f:07:f9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6W2goYmjqbCrIKvm3KRkPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2MmJjYjFiNTI4ZGE5OTQ0YmQ5NTQ0YmM3YjM4OGNlZTFh MDEzOTAwHhcNMjYwMTAxMTYxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MjBjYzIxN2NjYTk0ZWEwZjdmYTgxMmYyMjhhNWUyYmI3OGFiZjg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssK4pDCoIszeZ0/Ux7vBRoRK6qrg OJxYKRZ8U0/kxJOB1oxoLl4Uy0YDv5KOQy6OuJuyCYEl/pAdEnQhgSwuV5ha9LNR DGGlwuxTUl/LztuC8ZUcu9PZGB4pDvDpCRTQXAW0u6SPh8kfBJS6QOaDbZRe6cjH CRDTY+an/3vrw02Hw0xtxqwLa3WHSgTdugGq+sE7v7dTK1hzuW/Snrg46zyRXJU7 Gjeh15dpkbOoEM05xGRb1TMOgjZ6fhHo2tsihwvQ8Cg9a8drlNf3Fo/81mpRSJzQ IiOu5cZGZngDzCQc0A5O/SuFHTr1dEjO9SpMXHy0WuYB/ZN1oUQv0EU7gwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFIMwhfMqU6g9/qBLyKKXiu3ir+GMB8GA1UdIwQY MBaAFEYryxtSjamUS9lUS8eziM7hoBOQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUml2TEcxS05xWlJMMlZSTHg3T0l6dUdnRTVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC83ZWMxZDgtYmU3Ni00MWVkLTk3YzUt YWFmZThhOGMxNjVlLzEvVWd6Q0Y4eXBUcUQzLW9FdklvcGVLN2VLdjRZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC83ZWMxZDgtYmU3Ni00MWVkLTk3YzUtYWFmZThhOGMxNjVl LzEvUml2TEcxS05xWlJMMlZSTHg3T0l6dUdnRTVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYS+MA0G CSqGSIb3DQEBCwUAA4IBAQB/jS+74fkJrxcZYY04vHZdmRlmf/gdBm8Ukh6fbXv/ b7gX/erT34vKe3hXxb74lyZ/yPDEfX7z4RgG7Y11htCIiCZj4feShLy8zz5Dc28f RNTXpQjjpCAjY7nYgaUT2S0MA1ig73cXH8fzXUb/NMpqS3/Z4x+RXjOkJpv+DUCw NZKO7kiVxb8RlunHeQ7qjKWz/t15tAQakZXyvycx9UkFELUPnnpWaLaz0QwFqY1b 5FZLT7MuivvrJ9fu5iyAWDMiDNZmAc2VVcPcVO+p0fHfkDWNuyZ7Qy/81Z7PUBCu 8wqA1EIfxXfzta09ghEPMEY9q4eEvImR7KzbmbmvXwf5 -----END CERTIFICATE-----Generated at Tue Jan 27 06:38:58 2026 by rpki-client