This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/0776a2-5e89-4e2c-9370-5b304eec0025/1/UEi7C6g71kqEC_4UcZi_T3rGfHc.roa File: UEi7C6g71kqEC_4UcZi_T3rGfHc.roa (raw, json) Hash identifier: CjcgG6Mg/PWxyuLrEQaDg1ofyBXCf2eplVdNdWYoKe0= Subject key identifier: 50:48:BB:0B:A8:3B:D6:4A:84:0B:FE:14:71:98:BF:4F:7A:C6:7C:77 Certificate issuer: /CN=ec9b0931118f08bf4a34b3e052fd8f8a5c1ecab0 Certificate serial: 019B7C1317CBFF02E93B520FD9F8177FD472 Authority key identifier: EC:9B:09:31:11:8F:08:BF:4A:34:B3:E0:52:FD:8F:8A:5C:1E:CA:B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7JsJMRGPCL9KNLPgUv2PilweyrA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/0776a2-5e89-4e2c-9370-5b304eec0025/1/UEi7C6g71kqEC_4UcZi_T3rGfHc.roa Signing time: Fri 02 Jan 2026 00:19:44 +0000 ROA not before: Fri 02 Jan 2026 00:19:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42656 IP address blocks: 5.134.208.0/21 maxlen: 24 91.194.188.0/23 maxlen: 24 91.207.14.0/23 maxlen: 24 193.203.222.0/23 maxlen: 24 193.203.223.0/24 maxlen: 24 2a02:dc8::/30 maxlen: 48 2a02:dc8::/32 maxlen: 32 2a02:dc8:22::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/0776a2-5e89-4e2c-9370-5b304eec0025/1/7JsJMRGPCL9KNLPgUv2PilweyrA.crl rsync://rpki.ripe.net/repository/DEFAULT/83/0776a2-5e89-4e2c-9370-5b304eec0025/1/7JsJMRGPCL9KNLPgUv2PilweyrA.mft rsync://rpki.ripe.net/repository/DEFAULT/7JsJMRGPCL9KNLPgUv2PilweyrA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:17:cb:ff:02:e9:3b:52:0f:d9:f8:17:7f:d4:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ec9b0931118f08bf4a34b3e052fd8f8a5c1ecab0 Validity Not Before: Jan 2 00:19:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5048bb0ba83bd64a840bfe147198bf4f7ac67c77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:26:aa:c5:d6:b2:19:76:31:a0:ac:1a:ee:7c: d2:33:21:a9:27:2b:40:54:81:b5:f5:26:d2:07:5e: 30:ec:29:cb:59:19:ca:1b:e4:3c:73:68:9e:e5:9c: 5b:a9:fe:77:e6:20:a7:91:5c:36:4e:4f:34:f6:e1: 4d:56:97:c1:7a:d1:37:51:88:15:e1:46:81:48:82: 1b:18:06:11:c5:bf:a4:7c:0e:24:23:9b:41:ac:68: 3d:61:c4:52:95:d7:75:72:90:20:c4:f7:8a:a3:bd: 77:d5:a3:16:3a:7d:ce:fb:e1:1c:ec:79:72:c0:f2: 14:96:b7:8a:c2:7b:f4:26:21:bc:cc:26:78:79:88: fc:1f:99:5b:be:41:13:82:42:98:ce:d8:7d:46:13: 19:81:45:04:e9:56:5c:d4:bd:e9:03:97:1b:72:49: 83:1f:60:c6:34:99:6a:5a:f5:9e:e0:06:fd:dc:19: 7a:30:49:ab:9a:34:2f:32:75:d0:2f:97:be:69:b5: 51:b2:6d:7a:f6:a4:23:bf:1f:df:fc:3a:28:a2:c2: 0f:4d:61:9f:49:f0:15:2f:81:41:c9:49:0b:cb:21: c3:9f:a1:94:92:67:65:bc:97:d2:fa:a3:01:0e:8f: 7e:ee:5f:68:09:ee:ea:f4:be:37:dd:84:75:60:73: 17:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:48:BB:0B:A8:3B:D6:4A:84:0B:FE:14:71:98:BF:4F:7A:C6:7C:77 X509v3 Authority Key Identifier: keyid:EC:9B:09:31:11:8F:08:BF:4A:34:B3:E0:52:FD:8F:8A:5C:1E:CA:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7JsJMRGPCL9KNLPgUv2PilweyrA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/0776a2-5e89-4e2c-9370-5b304eec0025/1/UEi7C6g71kqEC_4UcZi_T3rGfHc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/0776a2-5e89-4e2c-9370-5b304eec0025/1/7JsJMRGPCL9KNLPgUv2PilweyrA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.134.208.0/21 91.194.188.0/23 91.207.14.0/23 193.203.222.0/23 IPv6: 2a02:dc8::/30 Signature Algorithm: sha256WithRSAEncryption 20:be:64:5e:9a:79:36:a0:fb:c9:ec:05:04:5d:cf:86:56:5f: fb:28:55:92:b5:16:c9:86:55:6c:35:b6:b7:2e:ca:b0:e1:e5: 37:48:b5:a4:6f:e1:f6:d7:2a:0a:da:ff:6d:5d:30:d2:d7:01: 06:0c:d7:70:36:ee:12:db:3c:a8:16:c8:b4:93:b5:07:85:8e: 2e:7a:d5:d1:b3:2f:24:14:3c:82:37:33:11:06:49:11:b6:81: 04:aa:16:4c:6f:dd:d1:04:5e:a7:d4:01:b0:9f:dd:9f:a3:ab: b0:ee:0a:d5:5e:15:a2:c5:05:49:ef:46:f6:40:9d:cb:a5:c5: 27:d0:83:86:7c:95:4b:98:c9:25:92:e6:4c:16:0c:b0:a7:00: df:f4:8c:b0:aa:77:b2:60:ee:73:19:8d:82:f5:c0:39:26:85: f5:aa:43:07:9d:4e:1b:52:1b:3b:42:ec:4f:fc:fc:c1:18:b7: fc:c3:6c:2c:6e:05:0a:48:82:80:0b:e7:a9:66:5e:02:16:af: bf:33:3d:30:f8:ca:6c:7c:4c:ba:f5:66:15:e4:05:a3:86:41: 5c:6c:ab:cb:ee:09:09:b4:cc:60:8e:0d:ed:06:6c:22:bd:d6: 26:8e:6c:5c:33:5f:2f:02:74:c6:ef:b2:bc:d8:5d:64:36:1a: 3f:dc:34:49 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt8ExfL/wLpO1IP2fgXf9RyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVjOWIwOTMxMTE4ZjA4YmY0YTM0YjNlMDUyZmQ4ZjhhNWMx ZWNhYjAwHhcNMjYwMTAyMDAxOTQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MDQ4YmIwYmE4M2JkNjRhODQwYmZlMTQ3MTk4YmY0ZjdhYzY3Yzc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxiaqxdayGXYxoKwa7nzSMyGpJytA VIG19SbSB14w7CnLWRnKG+Q8c2ie5Zxbqf535iCnkVw2Tk809uFNVpfBetE3UYgV 4UaBSIIbGAYRxb+kfA4kI5tBrGg9YcRSldd1cpAgxPeKo7131aMWOn3O++Ec7Hly wPIUlreKwnv0JiG8zCZ4eYj8H5lbvkETgkKYzth9RhMZgUUE6VZc1L3pA5cbckmD H2DGNJlqWvWe4Ab93Bl6MEmrmjQvMnXQL5e+abVRsm169qQjvx/f/DooosIPTWGf SfAVL4FByUkLyyHDn6GUkmdlvJfS+qMBDo9+7l9oCe7q9L433YR1YHMXjQIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFFBIuwuoO9ZKhAv+FHGYv096xnx3MB8GA1UdIwQY MBaAFOybCTERjwi/SjSz4FL9j4pcHsqwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN0pzSk1SR1BDTDlLTkxQZ1V2MlBpbHdleXJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My8wNzc2YTItNWU4OS00ZTJjLTkzNzAt NWIzMDRlZWMwMDI1LzEvVUVpN0M2Zzcxa3FFQ180VWNaaV9UM3JHZkhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My8wNzc2YTItNWU4OS00ZTJjLTkzNzAtNWIzMDRlZWMwMDI1 LzEvN0pzSk1SR1BDTDlLTkxQZ1V2MlBpbHdleXJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQDBYbQAwQB W8K8AwQBW88OAwQBwcveMA0EAgACMAcDBQIqAg3IMA0GCSqGSIb3DQEBCwUAA4IB AQAgvmRemnk2oPvJ7AUEXc+GVl/7KFWStRbJhlVsNba3Lsqw4eU3SLWkb+H21yoK 2v9tXTDS1wEGDNdwNu4S2zyoFsi0k7UHhY4uetXRsy8kFDyCNzMRBkkRtoEEqhZM b93RBF6n1AGwn92fo6uw7grVXhWixQVJ70b2QJ3LpcUn0IOGfJVLmMklkuZMFgyw pwDf9IywqneyYO5zGY2C9cA5JoX1qkMHnU4bUhs7QuxP/PzBGLf8w2wsbgUKSIKA C+epZl4CFq+/Mz0w+MpsfEy69WYV5AWjhkFcbKvL7gkJtMxgjg3tBmwivdYmjmxc M18vAnTG77K82F1kNho/3DRJ -----END CERTIFICATE-----Generated at Tue Feb 10 04:49:01 2026 by rpki-client