This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/uEdKtSEqLX5Iz_4fkxgMbr53LUE.roa File: uEdKtSEqLX5Iz_4fkxgMbr53LUE.roa (raw, json) Hash identifier: dz0TqFesDk6dPWKdMZqZb11QZzW0a5NzIkgvjFU9Kbs= Subject key identifier: B8:47:4A:B5:21:2A:2D:7E:48:CF:FE:1F:93:18:0C:6E:BE:77:2D:41 Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954 Certificate serial: 019B7E3928E292B4F3EB341429051B99B841 Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/uEdKtSEqLX5Iz_4fkxgMbr53LUE.roa Signing time: Fri 02 Jan 2026 10:20:33 +0000 ROA not before: Fri 02 Jan 2026 10:20:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209709 IP address blocks: 185.210.204.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:28:e2:92:b4:f3:eb:34:14:29:05:1b:99:b8:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954 Validity Not Before: Jan 2 10:20:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b8474ab5212a2d7e48cffe1f93180c6ebe772d41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:07:03:07:9d:5f:82:f5:49:d9:33:20:3f:6e: 2b:87:e2:76:9c:9b:72:32:00:00:d3:96:88:79:14: 8d:91:5c:df:b5:2a:b4:1d:b4:4b:9b:1c:57:ee:12: b3:79:4a:d5:37:7d:80:f9:95:2f:b8:5b:32:40:64: 66:22:ae:1e:e8:40:3d:1a:62:ad:cd:da:0e:68:a4: 23:89:71:a2:df:ac:fa:dc:94:76:41:e4:c4:2b:9e: 50:30:f7:23:2c:47:48:17:7a:bb:fb:5b:79:cc:a5: bb:12:b6:5d:f9:66:a3:10:12:a6:6e:76:ba:18:02: 76:2c:8a:03:4d:74:6a:cc:f0:d5:16:f3:b9:19:8a: e8:30:93:9a:49:ad:88:d9:90:2b:f2:be:df:2a:19: 5b:86:7e:c1:d5:b0:33:a4:2a:e7:1f:9e:44:0a:ca: ed:6b:d3:19:5c:3a:e7:5b:bd:89:86:c6:0e:17:58: c7:4f:3d:b7:22:94:6a:2a:af:e1:0d:da:45:c7:15: 82:c8:8c:1b:54:2b:f1:45:eb:29:5c:90:af:e7:8e: b5:76:8f:79:8b:6f:c4:27:c1:40:68:4e:9a:05:f9: 5d:69:da:da:f3:2a:6e:56:f9:d4:a5:f6:64:34:31: 3d:77:ff:78:01:88:14:70:3a:c7:26:e8:44:59:7a: dd:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:47:4A:B5:21:2A:2D:7E:48:CF:FE:1F:93:18:0C:6E:BE:77:2D:41 X509v3 Authority Key Identifier: keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/uEdKtSEqLX5Iz_4fkxgMbr53LUE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.210.204.0/22 Signature Algorithm: sha256WithRSAEncryption 20:ac:28:32:a6:44:cf:e5:b6:a8:a5:7b:3a:e7:ee:e4:ec:16: 04:35:df:b2:fc:fb:87:4a:32:8c:8f:ba:9d:d9:15:7d:ec:56: 8f:0f:8f:05:f3:db:70:cb:89:aa:c7:69:01:1d:d7:37:ee:9a: cb:b8:dc:8b:21:98:43:49:0d:80:3b:2c:c9:c7:e0:1d:57:5c: c3:32:76:42:f4:01:75:12:a3:01:38:b0:da:48:c7:1a:eb:2e: a5:78:6d:e3:58:6c:66:b3:d0:3b:55:4c:6c:63:d5:c5:8b:8d: 5e:9d:1d:aa:05:a4:fd:ae:ff:31:82:b6:7b:69:03:85:53:cd: a7:b4:76:c0:d0:df:22:a0:ee:b7:a9:bb:cb:ed:da:f0:49:9e: 39:14:0a:8d:52:22:f9:8e:83:c2:fe:aa:31:d4:22:e0:36:01: a4:0a:26:bb:46:87:23:ec:47:18:60:9f:b0:59:6e:61:bd:96: 02:4d:f3:b0:69:94:d8:d9:0b:ff:d8:2b:a1:47:62:90:eb:10: 05:fa:cd:ca:1f:a8:59:f4:cc:3a:cb:b7:de:c4:4b:08:e3:c2: f5:a7:ad:b3:cf:03:85:48:9f:29:93:cd:7e:05:cb:ba:c0:40: f2:02:8d:97:25:26:9b:6b:e7:f9:b5:15:a6:86:0f:63:e2:19: b2:7d:cb:89 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OSjikrTz6zQUKQUbmbhBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDIxYjI1MjIyMjk5N2JmZTMzYjdlNGIzMTVhYzhkNWUw Njc5NTQwHhcNMjYwMTAyMTAyMDMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiODQ3NGFiNTIxMmEyZDdlNDhjZmZlMWY5MzE4MGM2ZWJlNzcyZDQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiQcDB51fgvVJ2TMgP24rh+J2nJty MgAA05aIeRSNkVzftSq0HbRLmxxX7hKzeUrVN32A+ZUvuFsyQGRmIq4e6EA9GmKt zdoOaKQjiXGi36z63JR2QeTEK55QMPcjLEdIF3q7+1t5zKW7ErZd+WajEBKmbna6 GAJ2LIoDTXRqzPDVFvO5GYroMJOaSa2I2ZAr8r7fKhlbhn7B1bAzpCrnH55ECsrt a9MZXDrnW72JhsYOF1jHTz23IpRqKq/hDdpFxxWCyIwbVCvxRespXJCv5461do95 i2/EJ8FAaE6aBfldadra8ypuVvnUpfZkNDE9d/94AYgUcDrHJuhEWXrdOwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLhHSrUhKi1+SM/+H5MYDG6+dy1BMB8GA1UdIwQY MBaAFCECGyUiIpl7/jO35LMVrI1eBnlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMt NmVhYzYyZTYwZGY3LzEvdUVkS3RTRXFMWDVJel80Zmt4Z01icjUzTFVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMtNmVhYzYyZTYwZGY3 LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCudLMMA0G CSqGSIb3DQEBCwUAA4IBAQAgrCgypkTP5baopXs65+7k7BYENd+y/PuHSjKMj7qd 2RV97FaPD48F89twy4mqx2kBHdc37prLuNyLIZhDSQ2AOyzJx+AdV1zDMnZC9AF1 EqMBOLDaSMca6y6leG3jWGxms9A7VUxsY9XFi41enR2qBaT9rv8xgrZ7aQOFU82n tHbA0N8ioO63qbvL7drwSZ45FAqNUiL5joPC/qox1CLgNgGkCia7Rocj7EcYYJ+w WW5hvZYCTfOwaZTY2Qv/2CuhR2KQ6xAF+s3KH6hZ9Mw6y7fexEsI48L1p62zzwOF SJ8pk81+Bcu6wEDyAo2XJSaba+f5tRWmhg9j4hmyfcuJ -----END CERTIFICATE-----Generated at Sun Jan 25 03:14:52 2026 by rpki-client