This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/UbNuRFOVHUUJwDDzscbPhmRX1j8.roa File: UbNuRFOVHUUJwDDzscbPhmRX1j8.roa (raw, json) Hash identifier: UiS0VJNajfmsH4Zi8nv03I0mVu/mkamsiis7n5jG0Oo= Subject key identifier: 51:B3:6E:44:53:95:1D:45:09:C0:30:F3:B1:C6:CF:86:64:57:D6:3F Certificate issuer: /CN=5b3825b48b3599effaa0bc81a8dddb98f1d802c4 Certificate serial: 019B7D5C5BD3806918836B416718C6A91557 Authority key identifier: 5B:38:25:B4:8B:35:99:EF:FA:A0:BC:81:A8:DD:DB:98:F1:D8:02:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/UbNuRFOVHUUJwDDzscbPhmRX1j8.roa Signing time: Fri 02 Jan 2026 06:19:23 +0000 ROA not before: Fri 02 Jan 2026 06:19:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206859 IP address blocks: 185.173.252.0/22 maxlen: 22 2a0b:7500::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:5b:d3:80:69:18:83:6b:41:67:18:c6:a9:15:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5b3825b48b3599effaa0bc81a8dddb98f1d802c4 Validity Not Before: Jan 2 06:19:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=51b36e4453951d4509c030f3b1c6cf866457d63f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e5:40:f9:d7:d3:4a:26:4e:07:73:50:36:08: d3:25:8a:3b:b1:26:23:5a:96:c3:45:cf:22:94:d5: 5a:c2:6b:77:47:c1:f6:3c:0b:8b:3b:65:4b:57:2b: 65:96:5a:ca:af:9e:0e:ce:55:da:2d:4a:53:32:09: 55:92:55:e9:6f:91:7c:8f:30:d6:de:a3:06:85:ea: cb:58:b9:dd:14:9c:58:fc:ac:0e:6c:78:d4:7f:a5: 47:4b:3b:03:cd:96:d9:23:93:fa:5a:fc:47:5a:c2: f8:f0:43:01:30:a3:0d:c7:75:60:28:49:be:f0:e7: a5:b3:5a:ef:04:e0:83:06:46:7c:c0:fc:d4:21:bd: 45:bb:f8:e1:10:6c:b9:7d:ae:ca:0c:93:11:d7:62: 15:48:d5:f1:3e:e5:b7:4b:d0:bb:78:e5:4b:93:5f: 6d:7d:67:98:e9:e0:96:f4:06:cf:ff:2f:ae:f0:f4: d9:c9:05:7f:8f:f9:26:eb:dc:2e:a6:5d:20:9e:81: 71:43:7f:0b:a2:2c:6a:f5:c6:c1:c8:00:47:e6:a2: 6a:28:d8:45:0b:d6:22:08:c7:aa:83:60:5c:af:9a: 27:92:da:d0:00:4a:28:eb:20:6e:5e:6f:63:47:06: 73:95:97:e8:16:99:96:16:10:2a:30:84:d4:40:05: 06:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B3:6E:44:53:95:1D:45:09:C0:30:F3:B1:C6:CF:86:64:57:D6:3F X509v3 Authority Key Identifier: keyid:5B:38:25:B4:8B:35:99:EF:FA:A0:BC:81:A8:DD:DB:98:F1:D8:02:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/UbNuRFOVHUUJwDDzscbPhmRX1j8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.173.252.0/22 IPv6: 2a0b:7500::/29 Signature Algorithm: sha256WithRSAEncryption 60:e2:f6:a2:fe:d6:a6:00:78:2d:89:8a:c0:7a:fb:a8:35:f4: a7:48:8b:e3:41:0b:bb:06:c7:49:62:9d:85:d5:f2:68:7a:7b: b9:1b:8e:bb:93:cf:1e:e5:68:29:93:22:1c:67:ab:6e:43:62: 62:8d:48:b5:ee:08:55:5a:ef:17:13:7f:bb:2f:88:5e:cb:39: 33:76:3d:75:59:a5:c7:f5:20:96:b2:1f:69:8f:1f:2b:8e:c9: 35:1b:2b:c7:82:23:e3:07:43:53:1c:bd:38:0f:0d:e4:87:5b: bc:f6:cf:ae:a2:61:a6:9d:0c:e2:e9:a4:73:fa:bc:4c:ac:ba: 65:36:6f:fd:24:8a:6d:4a:fa:78:a4:af:3f:79:77:62:d1:fc: 83:85:f2:ce:6e:49:ad:39:70:2d:99:1e:75:a0:ae:06:9f:1e: 04:fa:54:46:65:4a:ce:0a:e4:cb:1a:92:9c:91:56:18:17:04: d3:7c:28:32:ba:49:c6:47:e2:d0:ca:b5:03:0c:5c:80:d6:1c: cd:a0:a8:9d:18:eb:0c:7f:a6:53:87:de:3e:23:b9:84:e6:5d: ca:b3:35:4e:73:e7:02:f0:12:78:f6:f2:ea:a1:6c:a3:4c:ad: ee:08:a1:d4:ae:7e:e0:55:66:cd:0e:da:12:02:96:98:66:f8: af:39:1a:82 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9XFvTgGkYg2tBZxjGqRVXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViMzgyNWI0OGIzNTk5ZWZmYWEwYmM4MWE4ZGRkYjk4ZjFk ODAyYzQwHhcNMjYwMTAyMDYxOTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MWIzNmU0NDUzOTUxZDQ1MDljMDMwZjNiMWM2Y2Y4NjY0NTdkNjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAreVA+dfTSiZOB3NQNgjTJYo7sSYj WpbDRc8ilNVawmt3R8H2PAuLO2VLVytlllrKr54OzlXaLUpTMglVklXpb5F8jzDW 3qMGherLWLndFJxY/KwObHjUf6VHSzsDzZbZI5P6WvxHWsL48EMBMKMNx3VgKEm+ 8Oels1rvBOCDBkZ8wPzUIb1Fu/jhEGy5fa7KDJMR12IVSNXxPuW3S9C7eOVLk19t fWeY6eCW9AbP/y+u8PTZyQV/j/km69wupl0gnoFxQ38Loixq9cbByABH5qJqKNhF C9YiCMeqg2Bcr5onktrQAEoo6yBuXm9jRwZzlZfoFpmWFhAqMITUQAUGBQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFFGzbkRTlR1FCcAw87HGz4ZkV9Y/MB8GA1UdIwQY MBaAFFs4JbSLNZnv+qC8gajd25jx2ALEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV3pnbHRJczFtZV82b0x5QnFOM2JtUEhZQXNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9lMDU1OWQtYWJlNi00NDNiLWE5Nzgt NWU3ZGVkMTQyMWRhLzEvVWJOdVJGT1ZIVVVKd0REenNjYlBobVJYMWo4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9lMDU1OWQtYWJlNi00NDNiLWE5NzgtNWU3ZGVkMTQyMWRh LzEvV3pnbHRJczFtZV82b0x5QnFOM2JtUEhZQXNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCua38MA0E AgACMAcDBQMqC3UAMA0GCSqGSIb3DQEBCwUAA4IBAQBg4vai/tamAHgtiYrAevuo NfSnSIvjQQu7BsdJYp2F1fJoenu5G467k88e5WgpkyIcZ6tuQ2JijUi17ghVWu8X E3+7L4heyzkzdj11WaXH9SCWsh9pjx8rjsk1GyvHgiPjB0NTHL04Dw3kh1u89s+u omGmnQzi6aRz+rxMrLplNm/9JIptSvp4pK8/eXdi0fyDhfLObkmtOXAtmR51oK4G nx4E+lRGZUrOCuTLGpKckVYYFwTTfCgyuknGR+LQyrUDDFyA1hzNoKidGOsMf6ZT h94+I7mE5l3KszVOc+cC8BJ49vLqoWyjTK3uCKHUrn7gVWbNDtoSApaYZvivORqC -----END CERTIFICATE-----Generated at Mon Feb 9 20:46:27 2026 by rpki-client