This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/UoZkRPL-FXoKPENqQZq-Qq68rWY.roa File: UoZkRPL-FXoKPENqQZq-Qq68rWY.roa (raw, json) Hash identifier: 0jm/o2tJoCDO4CN8w0CmL8YJAHAKLKrSAcf7/PK+6ME= Subject key identifier: 52:86:64:44:F2:FE:15:7A:0A:3C:43:6A:41:9A:BE:42:AE:BC:AD:66 Certificate issuer: /CN=5baa35401e5297b3b527e84f93ea8aa110d97b95 Certificate serial: 019B7910A4C83000229C51431C5B851780E6 Authority key identifier: 5B:AA:35:40:1E:52:97:B3:B5:27:E8:4F:93:EA:8A:A1:10:D9:7B:95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/UoZkRPL-FXoKPENqQZq-Qq68rWY.roa Signing time: Thu 01 Jan 2026 10:18:12 +0000 ROA not before: Thu 01 Jan 2026 10:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51984 IP address blocks: 46.253.40.0/24 maxlen: 24 46.253.41.0/24 maxlen: 24 46.253.42.0/24 maxlen: 24 46.253.43.0/24 maxlen: 24 46.253.44.0/24 maxlen: 24 46.253.45.0/24 maxlen: 24 46.253.46.0/24 maxlen: 24 46.253.47.0/24 maxlen: 24 185.182.152.0/24 maxlen: 24 185.182.153.0/24 maxlen: 24 185.182.154.0/24 maxlen: 24 185.182.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.crl rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.mft rsync://rpki.ripe.net/repository/DEFAULT/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:a4:c8:30:00:22:9c:51:43:1c:5b:85:17:80:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5baa35401e5297b3b527e84f93ea8aa110d97b95 Validity Not Before: Jan 1 10:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52866444f2fe157a0a3c436a419abe42aebcad66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:09:68:8a:ac:3a:6b:ea:8e:3e:4c:55:4c:fb: bc:85:1e:fc:df:c6:cb:44:82:37:22:8c:3c:84:9f: ae:75:8f:ba:ed:55:0b:3f:29:53:de:24:4f:8c:3d: 35:e1:f7:b3:44:f1:3b:4c:72:35:16:e0:dd:b5:bf: 4c:21:52:04:de:9a:c5:cc:ec:56:8a:a1:75:d5:bb: 7a:7b:d7:cc:23:e3:a4:7b:b8:08:9f:b8:ce:55:7c: b3:b0:ae:41:a9:1a:07:d3:28:c9:88:3e:c7:9b:18: 8f:98:87:7b:53:03:ad:1e:d0:09:bc:58:11:71:e4: e9:78:09:d8:13:21:f0:87:49:d2:db:21:9d:50:bc: c1:54:6b:ba:2e:5a:ec:25:0f:59:22:3d:d3:ae:ec: 06:0c:f1:59:30:d6:36:1f:68:e9:71:d0:d9:52:95: c0:26:3d:16:74:40:a8:c6:52:02:b6:51:10:3d:40: 85:db:dd:38:07:eb:44:84:de:6e:a7:18:22:da:cb: ef:b9:13:a4:14:f5:aa:b0:cb:b4:39:13:91:7e:ad: 84:46:1a:09:c3:95:78:3e:b9:48:f8:bf:26:2c:b9: 80:f4:f8:1b:0e:4e:22:d3:09:3e:91:38:88:49:db: 8c:2c:81:44:8e:d0:e1:13:2a:be:33:9a:68:da:db: 6a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:86:64:44:F2:FE:15:7A:0A:3C:43:6A:41:9A:BE:42:AE:BC:AD:66 X509v3 Authority Key Identifier: keyid:5B:AA:35:40:1E:52:97:B3:B5:27:E8:4F:93:EA:8A:A1:10:D9:7B:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/UoZkRPL-FXoKPENqQZq-Qq68rWY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.253.40.0/21 185.182.152.0/22 Signature Algorithm: sha256WithRSAEncryption 67:55:42:a9:f2:cf:e5:b7:d0:10:ed:00:06:5d:75:c3:9f:ac: 59:8a:5b:0a:bb:40:6e:2f:8a:5b:3b:56:a1:20:df:f6:84:e2: d8:1b:f3:a7:42:47:9a:74:96:27:3e:7b:51:97:7e:f3:c3:d4: 72:c2:6d:88:6f:95:39:97:be:a4:42:e5:d6:b6:46:c0:8f:ba: ab:f1:59:cf:b7:2e:bc:4d:2d:a3:56:e3:83:57:b0:bf:be:5f: 17:ce:e2:f0:44:e6:f5:23:24:e9:8c:72:53:40:f8:c6:fd:e5: c8:1b:7c:c5:90:6d:54:f2:55:0e:9c:51:ce:8a:38:d7:f3:e3: 10:9c:32:1f:88:24:ac:b6:8a:cc:29:87:e4:39:90:ce:3b:4e: c6:46:ab:10:75:8a:15:b0:f8:d6:5f:99:b4:0b:54:57:4e:64: 96:f3:cf:bf:0f:a1:11:ab:e9:3d:26:06:a6:5a:07:ae:22:70: 2b:c9:bb:43:d2:62:68:3a:cf:a2:49:4a:0c:72:47:d0:79:4a: 30:f1:5d:a0:f7:9d:f2:43:2e:85:1d:bf:91:4f:ed:a6:eb:a7: a3:ca:b4:56:ce:02:eb:79:41:86:48:5b:bd:9a:60:19:b8:0e: b8:ae:b1:0e:35:43:18:77:4f:82:45:dc:c4:bf:da:49:ea:96: e2:2c:84:e6 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5EKTIMAAinFFDHFuFF4DmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViYWEzNTQwMWU1Mjk3YjNiNTI3ZTg0ZjkzZWE4YWExMTBk OTdiOTUwHhcNMjYwMTAxMTAxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Mjg2NjQ0NGYyZmUxNTdhMGEzYzQzNmE0MTlhYmU0MmFlYmNhZDY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlwloiqw6a+qOPkxVTPu8hR7838bL RII3Iow8hJ+udY+67VULPylT3iRPjD014fezRPE7THI1FuDdtb9MIVIE3prFzOxW iqF11bt6e9fMI+Oke7gIn7jOVXyzsK5BqRoH0yjJiD7HmxiPmId7UwOtHtAJvFgR ceTpeAnYEyHwh0nS2yGdULzBVGu6LlrsJQ9ZIj3TruwGDPFZMNY2H2jpcdDZUpXA Jj0WdECoxlICtlEQPUCF2904B+tEhN5upxgi2svvuROkFPWqsMu0ORORfq2ERhoJ w5V4PrlI+L8mLLmA9PgbDk4i0wk+kTiISduMLIFEjtDhEyq+M5po2ttqtwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFKGZETy/hV6CjxDakGavkKuvK1mMB8GA1UdIwQY MBaAFFuqNUAeUpeztSfoT5PqiqEQ2XuVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVzZvMVFCNVNsN08xSi1oUGstcUtvUkRaZTVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni9hMWRjZmItODAxMC00MTRlLTllM2Et NDQwMDE3MDBiOGNhLzEvVW9aa1JQTC1GWG9LUEVOcVFacS1RcTY4cldZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni9hMWRjZmItODAxMC00MTRlLTllM2EtNDQwMDE3MDBiOGNh LzEvVzZvMVFCNVNsN08xSi1oUGstcUtvUkRaZTVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDLv0oAwQC ubaYMA0GCSqGSIb3DQEBCwUAA4IBAQBnVUKp8s/lt9AQ7QAGXXXDn6xZilsKu0Bu L4pbO1ahIN/2hOLYG/OnQkeadJYnPntRl37zw9Rywm2Ib5U5l76kQuXWtkbAj7qr 8VnPty68TS2jVuODV7C/vl8XzuLwROb1IyTpjHJTQPjG/eXIG3zFkG1U8lUOnFHO ijjX8+MQnDIfiCSstorMKYfkOZDOO07GRqsQdYoVsPjWX5m0C1RXTmSW88+/D6ER q+k9JgamWgeuInArybtD0mJoOs+iSUoMckfQeUow8V2g953yQy6FHb+RT+2m66ej yrRWzgLreUGGSFu9mmAZuA64rrEONUMYd0+CRdzEv9pJ6pbiLITm -----END CERTIFICATE-----Generated at Mon Feb 9 22:28:02 2026 by rpki-client