This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/UYOEbjPyLAeXDjmWXka43xNSBrc.roa File: UYOEbjPyLAeXDjmWXka43xNSBrc.roa (raw, json) Hash identifier: Ea7vb/KbqpdCWL5Nsui+X7+vrHZiuSMLp+d9Fc0ie4Y= Subject key identifier: 51:83:84:6E:33:F2:2C:07:97:0E:39:96:5E:46:B8:DF:13:52:06:B7 Certificate issuer: /CN=aeac1b2129abbac6539f80da6550c49721d0a8c4 Certificate serial: 019B7CEE383193C05C19AC6EF1978AC3B283 Authority key identifier: AE:AC:1B:21:29:AB:BA:C6:53:9F:80:DA:65:50:C4:97:21:D0:A8:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rqwbISmrusZTn4DaZVDElyHQqMQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/UYOEbjPyLAeXDjmWXka43xNSBrc.roa Signing time: Fri 02 Jan 2026 04:19:05 +0000 ROA not before: Fri 02 Jan 2026 04:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39904 IP address blocks: 46.227.168.0/21 maxlen: 32 91.215.12.0/22 maxlen: 32 195.189.0.0/22 maxlen: 32 2a02:7a00::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/rqwbISmrusZTn4DaZVDElyHQqMQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/rqwbISmrusZTn4DaZVDElyHQqMQ.mft rsync://rpki.ripe.net/repository/DEFAULT/rqwbISmrusZTn4DaZVDElyHQqMQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 30 Jan 2026 12:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:38:31:93:c0:5c:19:ac:6e:f1:97:8a:c3:b2:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aeac1b2129abbac6539f80da6550c49721d0a8c4 Validity Not Before: Jan 2 04:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5183846e33f22c07970e39965e46b8df135206b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:22:69:5d:a8:86:a6:78:52:3f:de:ac:5c:c1: cd:1c:10:3b:0c:33:9a:f4:6a:22:eb:5e:e7:ee:cc: 6f:36:43:e4:dc:59:1b:ea:10:8c:39:6c:92:65:47: c7:cc:d5:e2:78:22:cc:a3:62:4e:7c:fa:f4:3b:54: 82:77:f1:d3:44:01:19:fb:49:27:07:3f:3a:a7:5e: 59:aa:ce:58:5e:9d:4b:bb:61:06:c0:56:c1:f1:2e: ad:73:0d:a5:01:2c:bd:13:31:f0:7f:e9:a8:3d:6a: 87:52:dc:23:d9:04:ba:fc:7a:8f:f5:63:32:bb:72: 56:3b:9b:1a:89:62:5d:b1:91:68:f6:ec:86:ec:50: 64:8c:50:21:72:65:e2:18:f4:0a:ca:13:cf:cf:21: 14:10:c2:44:f0:c5:91:59:22:78:3b:47:31:eb:49: c9:63:f8:af:55:86:52:41:10:b1:43:b4:44:5f:06: b4:d9:79:8e:28:2a:5f:5c:8b:a1:2b:f2:ed:ee:1d: f2:51:0f:06:c5:92:c8:c9:51:45:9c:63:27:7c:6c: fa:8f:a3:12:e6:b8:f1:ec:be:ca:41:39:9f:eb:dd: ed:0a:67:f5:83:3c:ec:5d:f2:13:f0:f6:58:1e:7b: eb:b8:28:b7:d1:00:b3:eb:a2:76:7b:eb:6e:03:5c: 0b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:83:84:6E:33:F2:2C:07:97:0E:39:96:5E:46:B8:DF:13:52:06:B7 X509v3 Authority Key Identifier: keyid:AE:AC:1B:21:29:AB:BA:C6:53:9F:80:DA:65:50:C4:97:21:D0:A8:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rqwbISmrusZTn4DaZVDElyHQqMQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/UYOEbjPyLAeXDjmWXka43xNSBrc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/rqwbISmrusZTn4DaZVDElyHQqMQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.227.168.0/21 91.215.12.0/22 195.189.0.0/22 IPv6: 2a02:7a00::/32 Signature Algorithm: sha256WithRSAEncryption 58:9c:9f:48:0d:de:86:f8:c3:4c:b2:cd:30:2c:8f:84:27:f1: f3:80:bd:b8:dd:9b:5c:c9:60:04:d0:dd:63:ec:d6:80:a7:c4: 14:40:46:37:21:8c:12:6c:77:ed:3e:98:ee:01:60:9e:ca:13: 3a:e1:91:b1:00:e5:7b:df:90:fc:85:b4:0d:12:d9:2f:0f:55: 97:c7:48:67:99:d4:ba:dd:06:15:c8:9d:1d:50:da:e8:6b:38: df:cd:08:41:17:ba:3b:58:f2:8d:50:ed:0a:13:f9:94:a3:6b: d0:83:5b:5e:59:88:33:7e:83:0b:db:06:d1:44:6e:da:a6:12: 72:14:d9:5d:56:0c:61:ea:1c:f5:60:1c:dc:bc:4b:a8:b5:b6: 7f:b9:3d:9c:da:65:0d:0b:79:1c:a8:51:09:a5:2d:35:92:52: a1:39:08:02:1f:f4:20:f1:46:18:88:e1:e5:ad:24:45:3e:0f: fb:54:75:94:de:02:4b:6d:7a:05:d5:37:62:96:f5:15:9f:db: df:65:f3:eb:f0:cb:1c:cd:27:c2:a8:6b:13:d7:1c:c1:f2:47: a2:a0:7c:50:b2:85:66:9d:32:c5:02:ad:d2:c9:e7:9f:6d:9e: cc:cd:f8:bb:b1:bd:a3:cc:58:00:d5:fb:9d:88:2b:7b:8f:5a: 66:62:36:32 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt87jgxk8BcGaxu8ZeKw7KDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlYWMxYjIxMjlhYmJhYzY1MzlmODBkYTY1NTBjNDk3MjFk MGE4YzQwHhcNMjYwMTAyMDQxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MTgzODQ2ZTMzZjIyYzA3OTcwZTM5OTY1ZTQ2YjhkZjEzNTIwNmI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyCJpXaiGpnhSP96sXMHNHBA7DDOa 9Goi617n7sxvNkPk3Fkb6hCMOWySZUfHzNXieCLMo2JOfPr0O1SCd/HTRAEZ+0kn Bz86p15Zqs5YXp1Lu2EGwFbB8S6tcw2lASy9EzHwf+moPWqHUtwj2QS6/HqP9WMy u3JWO5saiWJdsZFo9uyG7FBkjFAhcmXiGPQKyhPPzyEUEMJE8MWRWSJ4O0cx60nJ Y/ivVYZSQRCxQ7REXwa02XmOKCpfXIuhK/Lt7h3yUQ8GxZLIyVFFnGMnfGz6j6MS 5rjx7L7KQTmf693tCmf1gzzsXfIT8PZYHnvruCi30QCz66J2e+tuA1wLhQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFFGDhG4z8iwHlw45ll5GuN8TUga3MB8GA1UdIwQY MBaAFK6sGyEpq7rGU5+A2mVQxJch0KjEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnF3YklTbXJ1c1pUbjREYVpWREVseUhRcU1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9iOWJiN2YtMTY2ZC00MWFmLWExZGIt ODY2YjJiMDIxZmM1LzEvVVlPRWJqUHlMQWVYRGptV1hrYTQzeE5TQnJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9iOWJiN2YtMTY2ZC00MWFmLWExZGItODY2YjJiMDIxZmM1 LzEvcnF3YklTbXJ1c1pUbjREYVpWREVseUhRcU1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQDLuOoAwQC W9cMAwQCw70AMA0EAgACMAcDBQAqAnoAMA0GCSqGSIb3DQEBCwUAA4IBAQBYnJ9I Dd6G+MNMss0wLI+EJ/HzgL243ZtcyWAE0N1j7NaAp8QUQEY3IYwSbHftPpjuAWCe yhM64ZGxAOV735D8hbQNEtkvD1WXx0hnmdS63QYVyJ0dUNroazjfzQhBF7o7WPKN UO0KE/mUo2vQg1teWYgzfoML2wbRRG7aphJyFNldVgxh6hz1YBzcvEuotbZ/uT2c 2mUNC3kcqFEJpS01klKhOQgCH/Qg8UYYiOHlrSRFPg/7VHWU3gJLbXoF1TdilvUV n9vfZfPr8MsczSfCqGsT1xzB8keioHxQsoVmnTLFAq3SyeefbZ7Mzfi7sb2jzFgA 1fudiCt7j1pmYjYy -----END CERTIFICATE-----Generated at Thu Jan 29 16:09:57 2026 by rpki-client