This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/uocAhhBHBra0ODge7OOLK9aTFIc.roa File: uocAhhBHBra0ODge7OOLK9aTFIc.roa (raw, json) Hash identifier: oBpQMaQKW9QFUbGv72QiYqlRk6w8Opo+61BD41Uub2I= Subject key identifier: BA:87:00:86:10:47:06:B6:B4:38:38:1E:EC:E3:8B:2B:D6:93:14:87 Certificate issuer: /CN=9017b0bd90827de08d24fef61bcc44862024bf7e Certificate serial: 019B7FF1DFB9A64D98252759F160BBD4D5D5 Authority key identifier: 90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/uocAhhBHBra0ODge7OOLK9aTFIc.roa Signing time: Fri 02 Jan 2026 18:21:56 +0000 ROA not before: Fri 02 Jan 2026 18:21:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210367 IP address blocks: 89.187.198.0/24 maxlen: 24 195.234.49.0/24 maxlen: 24 2a12:840:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:df:b9:a6:4d:98:25:27:59:f1:60:bb:d4:d5:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9017b0bd90827de08d24fef61bcc44862024bf7e Validity Not Before: Jan 2 18:21:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba870086104706b6b438381eece38b2bd6931487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9b:55:24:db:82:ed:c1:b0:9f:a5:ae:a6:08: 64:0c:d5:46:a0:98:d8:aa:a7:8d:c3:74:04:b4:17: 15:d2:da:bf:33:93:d2:9c:fb:38:1a:62:2f:1c:2c: c2:e9:b4:b9:37:5c:6d:10:cc:62:68:98:9b:bb:bf: b2:35:0c:34:2b:3e:e6:80:80:c4:d4:97:69:1b:a6: ed:c7:a9:4a:75:f9:e3:0d:db:6d:56:40:77:1d:f8: 82:cb:5d:6a:e6:37:95:da:b9:f8:0d:a4:a8:f5:42: e0:8e:65:a5:b3:34:ff:30:f4:ec:8c:6f:89:df:7f: d3:75:73:ee:70:d9:24:70:84:c6:d9:03:c9:68:ae: a1:08:65:e4:62:fc:7b:7e:63:7a:c3:6e:a1:95:ab: 21:37:4b:a4:26:b9:28:a5:91:e0:d9:47:12:20:76: 4f:51:d5:46:da:39:66:8c:61:24:26:ae:d3:2f:1b: 46:a9:87:d6:86:9b:c1:24:c5:f0:28:34:ef:78:9b: ae:09:e2:47:80:1d:14:4e:a9:49:2e:bc:3a:c7:67: 47:e2:f9:6d:ec:ca:25:c6:5c:ff:8b:0d:93:b3:41: bc:cf:40:f9:0f:4f:f6:10:45:82:16:d5:a3:c8:8c: 7d:53:37:17:7a:00:67:26:87:c2:3a:7c:3a:0e:82: 91:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:87:00:86:10:47:06:B6:B4:38:38:1E:EC:E3:8B:2B:D6:93:14:87 X509v3 Authority Key Identifier: keyid:90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/uocAhhBHBra0ODge7OOLK9aTFIc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.187.198.0/24 195.234.49.0/24 IPv6: 2a12:840:1::/48 Signature Algorithm: sha256WithRSAEncryption 89:27:db:fd:fc:67:41:84:ea:60:23:9c:b2:2e:f6:8d:5b:35: ca:de:fd:75:79:53:aa:79:39:6c:50:4c:82:12:89:0d:8d:20: bf:50:c6:84:5e:6f:06:c4:ae:29:1c:7d:88:94:92:36:2f:6e: 7a:b8:bd:e9:63:d4:83:b8:5e:c2:e6:dc:aa:ed:e6:1c:1a:fc: 38:b7:ca:18:4d:c2:60:44:ac:16:a9:9d:d9:31:d5:db:ea:e3: 2f:fd:12:a9:d3:d0:73:f2:65:a9:4c:da:8c:35:5e:06:a1:74: 4a:e7:eb:ea:c7:84:6e:e5:15:91:30:8d:f7:df:19:86:37:2b: 52:0b:3d:71:29:0e:bd:44:64:95:95:58:af:a1:ff:aa:d2:ad: 74:89:f9:6d:a6:16:76:5c:30:c4:b1:84:f1:ca:4b:60:bf:cc: e8:e9:34:bb:8d:ac:ca:a5:9d:45:94:35:ff:ce:c5:1f:63:4a: 88:f2:cd:cc:00:a8:c7:6e:bc:e6:e4:2c:1c:33:ba:20:b8:25: aa:dc:24:41:ab:d2:2a:4f:2e:d2:d5:ca:d0:4a:f1:95:09:ca: 13:a5:ae:6e:03:75:3e:6e:fb:cd:f9:9f:95:d0:22:ab:73:4d: 84:6b:87:81:28:42:ba:a0:bf:82:f1:a0:ad:36:26:3d:83:40: bc:b9:db:f8 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt/8d+5pk2YJSdZ8WC71NXVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwMTdiMGJkOTA4MjdkZTA4ZDI0ZmVmNjFiY2M0NDg2MjAy NGJmN2UwHhcNMjYwMTAyMTgyMTU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTg3MDA4NjEwNDcwNmI2YjQzODM4MWVlY2UzOGIyYmQ2OTMxNDg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqptVJNuC7cGwn6WupghkDNVGoJjY qqeNw3QEtBcV0tq/M5PSnPs4GmIvHCzC6bS5N1xtEMxiaJibu7+yNQw0Kz7mgIDE 1JdpG6btx6lKdfnjDdttVkB3HfiCy11q5jeV2rn4DaSo9ULgjmWlszT/MPTsjG+J 33/TdXPucNkkcITG2QPJaK6hCGXkYvx7fmN6w26hlashN0ukJrkopZHg2UcSIHZP UdVG2jlmjGEkJq7TLxtGqYfWhpvBJMXwKDTveJuuCeJHgB0UTqlJLrw6x2dH4vlt 7Molxlz/iw2Ts0G8z0D5D0/2EEWCFtWjyIx9UzcXegBnJofCOnw6DoKRrwIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFLqHAIYQRwa2tDg4HuzjiyvWkxSHMB8GA1UdIwQY MBaAFJAXsL2Qgn3gjST+9hvMRIYgJL9+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0Jld3ZaQ0NmZUNOSlA3Mkc4eEVoaUFrdjM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9iYjU2MGEtNDI4NC00ZmMwLWIwNWQt YThiZTk5MzJhYTg5LzEvdW9jQWhoQkhCcmEwT0RnZTdPT0xLOWFURkljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My9iYjU2MGEtNDI4NC00ZmMwLWIwNWQtYThiZTk5MzJhYTg5 LzEva0Jld3ZaQ0NmZUNOSlA3Mkc4eEVoaUFrdjM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAWbvGAwQA w+oxMA8EAgACMAkDBwAqEghAAAEwDQYJKoZIhvcNAQELBQADggEBAIkn2/38Z0GE 6mAjnLIu9o1bNcre/XV5U6p5OWxQTIISiQ2NIL9QxoRebwbErikcfYiUkjYvbnq4 velj1IO4XsLm3Krt5hwa/Di3yhhNwmBErBapndkx1dvq4y/9EqnT0HPyZalM2ow1 XgahdErn6+rHhG7lFZEwjfffGYY3K1ILPXEpDr1EZJWVWK+h/6rSrXSJ+W2mFnZc MMSxhPHKS2C/zOjpNLuNrMqlnUWUNf/OxR9jSojyzcwAqMduvObkLBwzuiC4Jarc JEGr0ipPLtLVytBK8ZUJyhOlrm4DdT5u+835n5XQIqtzTYRrh4EoQrqgv4LxoK02 Jj2DQLy52/g= -----END CERTIFICATE-----Generated at Tue Feb 10 06:06:54 2026 by rpki-client