This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/ulMkla9cNLpRtYGjdN4ccFqdQ0I.roa File: ulMkla9cNLpRtYGjdN4ccFqdQ0I.roa (raw, json) Hash identifier: RV5xK8Wr5HqCWo3FsJSZW48WPGGL8YBJsBQOrdmtFtA= Subject key identifier: BA:53:24:95:AF:5C:34:BA:51:B5:81:A3:74:DE:1C:70:5A:9D:43:42 Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029 Certificate serial: 019B78A263D3692B9C76697B0301C819E90B Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/ulMkla9cNLpRtYGjdN4ccFqdQ0I.roa Signing time: Thu 01 Jan 2026 08:17:46 +0000 ROA not before: Thu 01 Jan 2026 08:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 398465 IP address blocks: 195.40.145.0/24 maxlen: 24 195.40.146.0/23 maxlen: 24 195.40.148.0/22 maxlen: 24 195.40.192.0/18 maxlen: 24 195.172.0.0/18 maxlen: 24 195.172.64.0/19 maxlen: 24 195.172.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.mft rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 23:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:63:d3:69:2b:9c:76:69:7b:03:01:c8:19:e9:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e20b034e2c497b1884488def106972704765029 Validity Not Before: Jan 1 08:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba532495af5c34ba51b581a374de1c705a9d4342 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:50:de:0c:b2:cd:5f:df:2b:c2:29:58:b4:12: a3:71:06:75:48:03:ec:00:e8:d7:dd:b8:bb:5b:04: dd:1b:c6:ea:d3:82:68:1b:2c:ab:21:a5:d4:9b:2b: a7:f3:e3:90:f5:af:d0:67:46:84:80:9f:bd:b4:39: d4:cf:b0:10:50:c3:9a:52:dd:f1:78:f6:70:0a:0f: 6b:28:6e:91:d3:1d:ac:4d:be:d4:14:a9:6d:62:81: 01:56:80:ba:f2:ec:f3:97:12:d4:2c:3a:c7:aa:2e: 38:ca:b0:33:d1:78:76:eb:17:49:68:9e:d0:9c:e6: 6c:18:ed:40:95:c8:7c:15:8d:5f:b3:08:51:a2:b1: 5d:57:2e:e3:af:97:c1:cf:a6:b6:11:48:95:3b:c2: 8c:7a:13:bb:d0:0d:24:0b:c8:62:58:31:ec:00:d9: a2:19:6b:42:ef:3d:ca:ce:2b:c6:db:13:10:42:54: 81:7a:39:7f:e2:dd:7f:63:97:fc:3f:f5:7a:f4:df: 7e:d5:db:23:d2:79:e4:35:b1:a3:4c:fe:21:06:c9: cd:dc:0e:3c:64:1b:55:7f:af:da:56:e1:37:f6:88: 73:13:cd:fb:51:b9:a8:f5:c6:63:26:e6:59:91:ac: f0:a1:51:ac:93:42:60:75:69:f8:86:d0:95:cc:3b: 5e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:53:24:95:AF:5C:34:BA:51:B5:81:A3:74:DE:1C:70:5A:9D:43:42 X509v3 Authority Key Identifier: keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/ulMkla9cNLpRtYGjdN4ccFqdQ0I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.40.145.0-195.40.151.255 195.40.192.0/18 195.172.0.0-195.172.95.255 195.172.224.0/19 Signature Algorithm: sha256WithRSAEncryption d3:b4:20:0f:96:87:72:00:ef:3d:51:b6:ee:3b:77:a9:5b:3a: 4d:6b:a3:8d:f3:b5:42:47:7e:f3:18:62:77:52:c5:31:cd:ef: 9f:20:7c:7a:5f:84:f8:af:41:c2:82:32:80:17:5b:cb:80:75: 97:85:8a:5b:d1:7e:00:9a:4d:03:e3:3c:f7:f2:7a:5f:0b:9c: b5:87:b9:ab:cc:02:57:61:6b:0e:8c:b7:b7:06:6f:35:70:e0: f2:57:90:a3:76:b8:a3:78:4f:2f:93:fb:c4:91:6d:65:92:b4: b4:75:03:1f:d7:5f:02:8b:1c:44:f3:76:dd:48:a0:9a:ac:d0: 5b:bb:44:e4:97:dd:8b:2c:4f:73:08:ce:91:58:e4:b6:1c:75: f8:06:d6:e1:a8:79:c5:b6:6a:45:df:2d:13:ab:bf:b5:cd:c8: a0:8d:87:63:a9:b7:08:0e:5a:83:3e:ed:99:ad:85:79:22:f0: 32:04:ce:71:9a:25:64:3b:2d:f9:53:b3:12:63:70:75:a6:81: fe:62:94:55:ce:cc:02:d1:54:6d:2c:7a:47:7c:55:cb:66:3c: 73:d9:ce:a7:b3:08:25:f0:1e:2a:25:4b:1b:ea:02:d4:79:3a: 36:d8:49:76:42:71:2b:94:66:fd:65:b1:f3:fd:85:da:e6:8d: 0f:e4:ec:9a -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt4omPTaSucdml7AwHIGekLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlMjBiMDM0ZTJjNDk3YjE4ODQ0ODhkZWYxMDY5NzI3MDQ3 NjUwMjkwHhcNMjYwMTAxMDgxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTUzMjQ5NWFmNWMzNGJhNTFiNTgxYTM3NGRlMWM3MDVhOWQ0MzQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1DeDLLNX98rwilYtBKjcQZ1SAPs AOjX3bi7WwTdG8bq04JoGyyrIaXUmyun8+OQ9a/QZ0aEgJ+9tDnUz7AQUMOaUt3x ePZwCg9rKG6R0x2sTb7UFKltYoEBVoC68uzzlxLULDrHqi44yrAz0Xh26xdJaJ7Q nOZsGO1Alch8FY1fswhRorFdVy7jr5fBz6a2EUiVO8KMehO70A0kC8hiWDHsANmi GWtC7z3KzivG2xMQQlSBejl/4t1/Y5f8P/V69N9+1dsj0nnkNbGjTP4hBsnN3A48 ZBtVf6/aVuE39ohzE837Ubmo9cZjJuZZkazwoVGsk0JgdWn4htCVzDtepwIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFLpTJJWvXDS6UbWBo3TeHHBanUNCMB8GA1UdIwQY MBaAFH4gsDTixJexiESI3vEGlycEdlApMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2Qt MDM1ZDk3N2Y0MjE2LzEvdWxNa2xhOWNOTHBSdFlHamRONGNjRnFkUTBJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2QtMDM1ZDk3N2Y0MjE2 LzEvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAtBAIAATAnMAwDBADDKJED BAPDKJADBAbDKMAwCwMDAsOsAwQFw6xAAwQFw6zgMA0GCSqGSIb3DQEBCwUAA4IB AQDTtCAPlodyAO89UbbuO3epWzpNa6ON87VCR37zGGJ3UsUxze+fIHx6X4T4r0HC gjKAF1vLgHWXhYpb0X4Amk0D4zz38npfC5y1h7mrzAJXYWsOjLe3Bm81cODyV5Cj drijeE8vk/vEkW1lkrS0dQMf118CixxE83bdSKCarNBbu0Tkl92LLE9zCM6RWOS2 HHX4BtbhqHnFtmpF3y0Tq7+1zcigjYdjqbcIDlqDPu2ZrYV5IvAyBM5xmiVkOy35 U7MSY3B1poH+YpRVzswC0VRtLHpHfFXLZjxz2c6nswgl8B4qJUsb6gLUeTo22El2 QnErlGb9ZbHz/YXa5o0P5Oya -----END CERTIFICATE-----Generated at Thu Jan 8 09:23:44 2026 by rpki-client