This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/UCAL8mJQMQrKK768yRuzrun9jKo.roa File: UCAL8mJQMQrKK768yRuzrun9jKo.roa (raw, json) Hash identifier: 2FWaeZ/Xjnvml3vFGPshHhNWSJBlWNKKjSVwImiaJZQ= Subject key identifier: 50:20:0B:F2:62:50:31:0A:CA:2B:BE:BC:C9:1B:B3:AE:E9:FD:8C:AA Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c Certificate serial: 019B7DCB67B044619689800FC5840BF5B2BF Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/UCAL8mJQMQrKK768yRuzrun9jKo.roa Signing time: Fri 02 Jan 2026 08:20:40 +0000 ROA not before: Fri 02 Jan 2026 08:20:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49648 IP address blocks: 37.140.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:67:b0:44:61:96:89:80:0f:c5:84:0b:f5:b2:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c Validity Not Before: Jan 2 08:20:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=50200bf26250310aca2bbebcc91bb3aee9fd8caa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d1:60:63:7d:7d:fe:af:3d:24:a8:7d:19:5e: 69:34:1e:db:e7:54:8b:7c:53:90:96:3d:ae:b7:7d: 64:21:a8:ec:d5:bd:cd:4b:a4:ce:e2:62:1d:78:56: 36:0e:36:10:c6:a4:6f:38:ac:2b:96:e0:77:6f:db: 5e:dc:47:b7:0e:cd:29:5e:06:2b:92:cb:91:ed:1c: 0a:45:b1:c2:a0:5d:42:6a:77:75:b2:a2:75:ab:f2: 09:48:c1:5f:da:b5:9f:12:82:5b:72:67:3a:43:42: a3:3c:d7:87:c1:0e:09:d8:18:1a:a3:eb:28:71:5c: d9:0e:fd:9d:dd:6c:7d:cd:24:91:07:32:98:a9:59: 70:b4:a1:51:fc:3b:8d:9d:60:ce:7d:28:f3:69:80: 0c:7c:6f:14:f2:80:fa:12:d4:8f:d5:f8:1a:fc:3b: 36:3c:f6:1a:f7:c5:4a:53:39:27:3b:3b:fb:a8:80: a5:1b:29:d6:f9:2a:90:91:e4:c0:a6:d1:cf:96:dd: 38:9c:8b:ee:ef:84:04:22:9a:22:19:3d:75:b9:08: 8b:3c:e6:48:20:ef:c3:ee:20:67:ed:7f:31:c3:9c: 8f:34:d0:ce:d6:d8:81:13:6f:e6:83:f4:5e:b0:b5: c8:6c:1c:cf:dd:5f:31:be:a1:53:8c:a8:9a:09:fb: f7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:20:0B:F2:62:50:31:0A:CA:2B:BE:BC:C9:1B:B3:AE:E9:FD:8C:AA X509v3 Authority Key Identifier: keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/UCAL8mJQMQrKK768yRuzrun9jKo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.140.245.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:4d:1f:89:dc:1b:7f:00:da:b3:32:78:e7:81:af:e9:2c:4d: 55:dd:1c:9f:be:d7:bf:69:78:4a:b4:ea:b6:1d:c1:5d:54:79: 4d:81:6f:c0:d9:34:3a:10:f8:c4:4d:95:7a:3a:e7:9a:cf:37: fb:17:86:09:8a:2d:d2:77:d4:2d:42:86:16:6a:d0:e3:6d:53: 12:59:52:ca:92:0f:ad:85:01:90:74:f3:5c:aa:a1:8a:1c:c1: 2f:b9:bf:2d:90:0e:6a:b9:19:5e:8c:ed:b1:76:88:00:55:a2: 8f:45:ec:31:76:df:21:58:06:76:7e:7a:e3:0c:1d:a2:19:d6: 39:fc:ec:3f:44:52:be:07:84:10:03:19:48:97:8c:0e:81:cc: 1a:2a:bf:6d:a1:e9:19:8e:95:32:c2:49:67:36:6e:f2:b2:21: 9e:83:a7:3f:1d:aa:28:47:87:fe:7b:2d:fd:9d:30:59:58:81: e2:5d:8f:29:c9:99:e1:2a:71:92:fe:bd:23:bf:b0:dd:d2:14: ce:7e:88:6e:1e:4d:d4:81:cc:87:1b:00:b7:88:9f:23:54:b2: d4:61:f2:f9:b3:94:1f:55:b5:bd:8d:03:8b:29:4a:91:52:70: f7:47:6d:27:3f:2a:46:e6:eb:b4:e2:e9:a9:cf:60:e3:b5:0a: 74:13:03:b3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y2ewRGGWiYAPxYQL9bK/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4 ZmNjNGMwHhcNMjYwMTAyMDgyMDQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MDIwMGJmMjYyNTAzMTBhY2EyYmJlYmNjOTFiYjNhZWU5ZmQ4Y2FhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29FgY319/q89JKh9GV5pNB7b51SL fFOQlj2ut31kIajs1b3NS6TO4mIdeFY2DjYQxqRvOKwrluB3b9te3Ee3Ds0pXgYr ksuR7RwKRbHCoF1Cand1sqJ1q/IJSMFf2rWfEoJbcmc6Q0KjPNeHwQ4J2Bgao+so cVzZDv2d3Wx9zSSRBzKYqVlwtKFR/DuNnWDOfSjzaYAMfG8U8oD6EtSP1fga/Ds2 PPYa98VKUzknOzv7qIClGynW+SqQkeTAptHPlt04nIvu74QEIpoiGT11uQiLPOZI IO/D7iBn7X8xw5yPNNDO1tiBE2/mg/ResLXIbBzP3V8xvqFTjKiaCfv3BwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFAgC/JiUDEKyiu+vMkbs67p/YyqMB8GA1UdIwQY MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt MjM5ZDJmZTM5OGIxLzEvVUNBTDhtSlFNUXJLSzc2OHlSdXpydW45aktvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJYz1MA0G CSqGSIb3DQEBCwUAA4IBAQAKTR+J3Bt/ANqzMnjnga/pLE1V3Ryfvte/aXhKtOq2 HcFdVHlNgW/A2TQ6EPjETZV6Oueazzf7F4YJii3Sd9QtQoYWatDjbVMSWVLKkg+t hQGQdPNcqqGKHMEvub8tkA5quRlejO2xdogAVaKPRewxdt8hWAZ2fnrjDB2iGdY5 /Ow/RFK+B4QQAxlIl4wOgcwaKr9toekZjpUywklnNm7ysiGeg6c/HaooR4f+ey39 nTBZWIHiXY8pyZnhKnGS/r0jv7Dd0hTOfohuHk3UgcyHGwC3iJ8jVLLUYfL5s5Qf VbW9jQOLKUqRUnD3R20nPypG5uu04umpz2DjtQp0EwOz -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:00 2026 by rpki-client