This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/410232-b1fd-4137-832d-bdb21313c3ec/1/UBW5R1HwaG9495WZauzqNIjn4nA.roa File: UBW5R1HwaG9495WZauzqNIjn4nA.roa (raw, json) Hash identifier: duZ19HoAidUjyBvwzeBCc3j9fnU5CniKN9o9GUrYQpw= Subject key identifier: 50:15:B9:47:51:F0:68:6F:78:F7:95:99:6A:EC:EA:34:88:E7:E2:70 Certificate issuer: /CN=36eaa00ea777098b1bf036756d640e9d31d63b3b Certificate serial: 019B7AC7C8950B28C4A9764650400120643F Authority key identifier: 36:EA:A0:0E:A7:77:09:8B:1B:F0:36:75:6D:64:0E:9D:31:D6:3B:3B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NuqgDqd3CYsb8DZ1bWQOnTHWOzs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/410232-b1fd-4137-832d-bdb21313c3ec/1/UBW5R1HwaG9495WZauzqNIjn4nA.roa Signing time: Thu 01 Jan 2026 18:17:51 +0000 ROA not before: Thu 01 Jan 2026 18:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204979 IP address blocks: 185.234.0.0/22 maxlen: 22 185.234.0.0/24 maxlen: 24 2a01:40:4949::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/410232-b1fd-4137-832d-bdb21313c3ec/1/NuqgDqd3CYsb8DZ1bWQOnTHWOzs.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/410232-b1fd-4137-832d-bdb21313c3ec/1/NuqgDqd3CYsb8DZ1bWQOnTHWOzs.mft rsync://rpki.ripe.net/repository/DEFAULT/NuqgDqd3CYsb8DZ1bWQOnTHWOzs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:c8:95:0b:28:c4:a9:76:46:50:40:01:20:64:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36eaa00ea777098b1bf036756d640e9d31d63b3b Validity Not Before: Jan 1 18:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5015b94751f0686f78f795996aecea3488e7e270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d2:34:a5:84:41:d7:17:e3:db:d8:6b:23:46: 93:e8:34:bf:ca:aa:a2:63:7b:ea:8f:ac:6c:ed:38: 3e:ff:d5:16:34:96:75:83:01:9d:4e:d1:12:cf:50: 6b:13:94:ad:e7:30:82:ea:4f:f8:3b:7a:8e:eb:b1: dc:0b:a4:44:50:87:3a:58:b6:45:58:13:d0:4c:31: a7:80:e0:ee:84:af:b5:17:e8:a0:6a:7a:b8:97:8a: 8f:d3:14:b3:78:43:e0:d7:4a:26:84:a0:d5:51:40: c5:4a:c8:08:8b:d2:50:85:c4:ae:6e:5d:e2:05:ae: 62:7b:ea:d2:1d:bf:87:7c:8d:be:d8:68:98:d7:c5: 22:eb:c1:77:11:a6:4f:6f:9d:59:ab:5b:be:74:ec: 10:ef:c4:68:ff:f2:55:1c:b7:7d:ec:46:3e:c9:d8: 16:fc:c0:55:bd:90:d8:ec:ff:cb:24:ae:c5:e3:79: 7f:d6:1b:a1:2d:f8:69:16:b0:5f:8f:76:07:48:21: 67:3a:a5:17:2c:dc:50:d9:99:3e:33:c3:8e:b1:d7: 66:c9:f7:f9:41:62:1c:56:91:6e:99:3e:b9:b9:81: 0d:2d:db:82:05:4d:dd:ce:8f:ea:9a:4e:0a:b9:c2: d9:94:c5:28:b0:f7:cc:88:84:1e:46:e9:dc:dc:03: ef:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:15:B9:47:51:F0:68:6F:78:F7:95:99:6A:EC:EA:34:88:E7:E2:70 X509v3 Authority Key Identifier: keyid:36:EA:A0:0E:A7:77:09:8B:1B:F0:36:75:6D:64:0E:9D:31:D6:3B:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NuqgDqd3CYsb8DZ1bWQOnTHWOzs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/410232-b1fd-4137-832d-bdb21313c3ec/1/UBW5R1HwaG9495WZauzqNIjn4nA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/410232-b1fd-4137-832d-bdb21313c3ec/1/NuqgDqd3CYsb8DZ1bWQOnTHWOzs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.234.0.0/22 IPv6: 2a01:40:4949::/48 Signature Algorithm: sha256WithRSAEncryption 7e:d8:2a:89:6b:0a:bc:57:29:e9:ce:fd:fd:b0:e4:d3:d3:42: f6:b1:20:1c:b2:b9:2b:cc:11:0f:4a:26:00:45:c7:2c:b1:f5: fc:27:ae:4a:2c:c4:7e:a2:0e:85:8e:0f:39:dc:c8:3e:19:7e: c8:b1:00:1f:22:38:68:f1:26:1f:b4:76:7e:19:97:74:1f:01: 78:bf:31:4a:ea:d7:fa:dc:85:c4:28:b6:38:6b:c4:3a:24:83: 97:af:57:6c:26:dd:36:79:bc:8c:98:8e:83:62:9a:7c:36:bd: 3a:60:bb:df:51:eb:b3:f6:1d:aa:87:15:11:e6:eb:18:e6:b6: 3d:fc:12:5e:c5:4a:87:95:48:94:e3:e6:ef:8e:94:76:32:dc: 17:04:70:be:6b:fd:f9:06:b4:85:7b:58:e0:8f:28:10:0e:1e: 05:ef:ff:38:ac:8d:ba:9a:cb:f1:9e:f3:43:53:35:10:09:2e: 4a:b6:e0:6b:a8:50:87:89:83:3e:3c:37:91:6e:d9:ce:df:19: f7:12:aa:ec:70:d6:32:bb:e2:e5:f7:a4:ce:3f:3f:83:d1:4e: 4e:81:86:10:cf:e4:a9:8e:d7:9d:12:97:19:06:f7:8e:36:96: 18:3b:f4:09:32:71:33:92:8a:26:a3:a4:72:99:e8:43:f9:36: 84:31:7f:3d -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt6x8iVCyjEqXZGUEABIGQ/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2ZWFhMDBlYTc3NzA5OGIxYmYwMzY3NTZkNjQwZTlkMzFk NjNiM2IwHhcNMjYwMTAxMTgxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MDE1Yjk0NzUxZjA2ODZmNzhmNzk1OTk2YWVjZWEzNDg4ZTdlMjcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2NI0pYRB1xfj29hrI0aT6DS/yqqi Y3vqj6xs7Tg+/9UWNJZ1gwGdTtESz1BrE5St5zCC6k/4O3qO67HcC6REUIc6WLZF WBPQTDGngODuhK+1F+iganq4l4qP0xSzeEPg10omhKDVUUDFSsgIi9JQhcSubl3i Ba5ie+rSHb+HfI2+2GiY18Ui68F3EaZPb51Zq1u+dOwQ78Ro//JVHLd97EY+ydgW /MBVvZDY7P/LJK7F43l/1huhLfhpFrBfj3YHSCFnOqUXLNxQ2Zk+M8OOsddmyff5 QWIcVpFumT65uYENLduCBU3dzo/qmk4KucLZlMUosPfMiIQeRunc3APvCQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFFAVuUdR8GhvePeVmWrs6jSI5+JwMB8GA1UdIwQY MBaAFDbqoA6ndwmLG/A2dW1kDp0x1js7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnVxZ0RxZDNDWXNiOERaMWJXUU9uVEhXT3pzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS80MTAyMzItYjFmZC00MTM3LTgzMmQt YmRiMjEzMTNjM2VjLzEvVUJXNVIxSHdhRzk0OTVXWmF1enFOSWpuNG5BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS80MTAyMzItYjFmZC00MTM3LTgzMmQtYmRiMjEzMTNjM2Vj LzEvTnVxZ0RxZDNDWXNiOERaMWJXUU9uVEhXT3pzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCueoAMA8E AgACMAkDBwAqAQBASUkwDQYJKoZIhvcNAQELBQADggEBAH7YKolrCrxXKenO/f2w 5NPTQvaxIByyuSvMEQ9KJgBFxyyx9fwnrkosxH6iDoWODzncyD4ZfsixAB8iOGjx Jh+0dn4Zl3QfAXi/MUrq1/rchcQotjhrxDokg5evV2wm3TZ5vIyYjoNimnw2vTpg u99R67P2HaqHFRHm6xjmtj38El7FSoeVSJTj5u+OlHYy3BcEcL5r/fkGtIV7WOCP KBAOHgXv/zisjbqay/Ge80NTNRAJLkq24GuoUIeJgz48N5Fu2c7fGfcSquxw1jK7 4uX3pM4/P4PRTk6BhhDP5KmO150SlxkG9442lhg79AkycTOSiiajpHKZ6EP5NoQx fz0= -----END CERTIFICATE-----Generated at Sat Jan 10 07:01:15 2026 by rpki-client