This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/_xRS7utahJ8gQR6iiZCy8OaIRcs.roa File: _xRS7utahJ8gQR6iiZCy8OaIRcs.roa (raw, json) Hash identifier: CAinSb9AXJNwrPcDpDXniVVJE2YzdgzZBVrPXOHN9YM= Subject key identifier: FF:14:52:EE:EB:5A:84:9F:20:41:1E:A2:89:90:B2:F0:E6:88:45:CB Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c Certificate serial: 019B7DCB63B1225F7C21EC48639C925E1150 Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/_xRS7utahJ8gQR6iiZCy8OaIRcs.roa Signing time: Fri 02 Jan 2026 08:20:39 +0000 ROA not before: Fri 02 Jan 2026 08:20:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44559 IP address blocks: 45.91.239.0/24 maxlen: 24 80.242.53.0/24 maxlen: 24 84.252.71.0/24 maxlen: 24 130.193.26.0/24 maxlen: 24 146.19.87.0/24 maxlen: 24 146.19.129.0/24 maxlen: 24 193.176.20.0/24 maxlen: 24 193.176.22.0/24 maxlen: 24 193.201.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:63:b1:22:5f:7c:21:ec:48:63:9c:92:5e:11:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c Validity Not Before: Jan 2 08:20:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ff1452eeeb5a849f20411ea28990b2f0e68845cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:12:60:b2:bb:f9:ca:b3:ec:ed:ae:c7:e7:c2: 6f:32:28:e8:6a:51:91:4b:50:ab:28:67:47:a1:4a: c9:b1:91:24:20:7c:c2:4d:5e:e9:eb:bb:f2:aa:4d: a7:7b:65:6e:6c:7b:d8:25:50:69:11:d3:c0:af:1f: f9:0a:df:39:bb:77:bb:c4:41:b4:78:e1:76:eb:b7: 5c:4c:24:21:c2:54:0c:7b:29:12:37:53:0a:60:2e: 6b:b4:9a:85:99:71:8a:6c:cf:1a:33:e3:17:ab:bb: cf:2a:03:00:ab:4e:86:6c:db:e8:b5:0c:a5:89:02: 00:7e:9b:f8:b8:1f:5d:00:62:17:92:c6:51:f7:c6: fb:13:fc:ec:22:b7:eb:cb:7b:1f:c5:1a:bc:53:0a: a6:b5:18:27:ab:54:3a:33:4b:c6:be:49:c5:24:16: 51:99:2c:a9:d2:ce:f4:52:82:93:9d:f2:a7:b6:10: 76:ce:c5:dc:9a:85:0e:8b:58:61:db:43:8a:5f:3f: 41:85:8a:18:a8:02:14:3f:5f:6c:34:50:b8:e3:1b: 33:c3:90:5b:07:5a:16:a4:6b:f1:89:3d:e4:1b:65: 8d:3e:d4:13:27:cd:d7:a4:25:e0:c4:67:2c:5f:f3: 90:4b:be:e5:81:a1:ae:ba:c2:aa:4a:59:b8:c7:57: 1f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:14:52:EE:EB:5A:84:9F:20:41:1E:A2:89:90:B2:F0:E6:88:45:CB X509v3 Authority Key Identifier: keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/_xRS7utahJ8gQR6iiZCy8OaIRcs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.91.239.0/24 80.242.53.0/24 84.252.71.0/24 130.193.26.0/24 146.19.87.0/24 146.19.129.0/24 193.176.20.0/24 193.176.22.0/24 193.201.9.0/24 Signature Algorithm: sha256WithRSAEncryption 95:d9:3d:71:9b:05:35:13:fd:79:81:74:a8:cd:f4:b5:b6:83: a7:22:52:f9:9f:2a:d1:ec:14:29:05:ec:db:f1:3d:90:1b:0c: 21:fa:fb:79:41:80:fc:89:d8:3f:ff:d2:ba:8e:eb:7e:d4:fb: 52:a5:70:ce:18:f1:3b:2e:54:c0:1b:96:98:f1:62:bb:4a:2c: 8d:f6:ce:fc:13:9a:71:4c:bf:0d:d4:cd:be:36:57:f8:92:7f: 30:d6:68:d3:ac:11:96:77:3c:bc:95:10:7c:18:39:da:7a:37: 44:96:a3:c1:e9:74:05:86:d4:e8:45:cc:e2:42:37:2e:a3:63: 47:6b:2c:b7:35:ce:21:b7:60:c3:2f:40:72:c8:20:17:80:cb: ed:13:6a:3c:61:f5:68:b5:11:1c:30:8d:1d:e0:40:03:55:1c: b0:60:bb:08:30:cc:85:c8:e5:84:bb:1b:6f:16:64:04:b5:4a: 65:86:0e:aa:37:0f:01:ce:23:2c:d5:70:2d:b6:6a:a6:55:03: f0:96:c3:42:bd:6a:62:f6:e8:c8:46:b7:eb:81:ad:d7:01:d4: 86:0d:0f:c7:40:3f:77:c1:e3:5c:e2:9c:48:5d:ea:88:85:05: b8:fe:dd:c7:f4:2a:58:6f:63:72:19:26:01:63:84:8f:17:26: 39:32:dc:00 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISAZt9y2OxIl98IexIY5ySXhFQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4 ZmNjNGMwHhcNMjYwMTAyMDgyMDM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZjE0NTJlZWViNWE4NDlmMjA0MTFlYTI4OTkwYjJmMGU2ODg0NWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAohJgsrv5yrPs7a7H58JvMijoalGR S1CrKGdHoUrJsZEkIHzCTV7p67vyqk2ne2VubHvYJVBpEdPArx/5Ct85u3e7xEG0 eOF267dcTCQhwlQMeykSN1MKYC5rtJqFmXGKbM8aM+MXq7vPKgMAq06GbNvotQyl iQIAfpv4uB9dAGIXksZR98b7E/zsIrfry3sfxRq8UwqmtRgnq1Q6M0vGvknFJBZR mSyp0s70UoKTnfKnthB2zsXcmoUOi1hh20OKXz9BhYoYqAIUP19sNFC44xszw5Bb B1oWpGvxiT3kG2WNPtQTJ83XpCXgxGcsX/OQS77lgaGuusKqSlm4x1cfHQIDAQAB o4ICOTCCAjUwHQYDVR0OBBYEFP8UUu7rWoSfIEEeoomQsvDmiEXLMB8GA1UdIwQY MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt MjM5ZDJmZTM5OGIxLzEvX3hSUzd1dGFoSjhnUVI2aWlaQ3k4T2FJUmNzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQALVvvAwQA UPI1AwQAVPxHAwQAgsEaAwQAkhNXAwQAkhOBAwQAwbAUAwQAwbAWAwQAwckJMA0G CSqGSIb3DQEBCwUAA4IBAQCV2T1xmwU1E/15gXSozfS1toOnIlL5nyrR7BQpBezb 8T2QGwwh+vt5QYD8idg//9K6jut+1PtSpXDOGPE7LlTAG5aY8WK7SiyN9s78E5px TL8N1M2+Nlf4kn8w1mjTrBGWdzy8lRB8GDnaejdElqPB6XQFhtToRcziQjcuo2NH ayy3Nc4ht2DDL0ByyCAXgMvtE2o8YfVotREcMI0d4EADVRywYLsIMMyFyOWEuxtv FmQEtUplhg6qNw8BziMs1XAttmqmVQPwlsNCvWpi9ujIRrfrga3XAdSGDQ/HQD93 weNc4pxIXeqIhQW4/t3H9CpYb2NyGSYBY4SPFyY5MtwA -----END CERTIFICATE-----Generated at Tue Jan 20 01:19:52 2026 by rpki-client