This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/5af6ba-cec9-414c-b766-c015a9d4f8ef/1/uNLIyd7V4HU3pDKXDcfQdjnF5vo.roa File: uNLIyd7V4HU3pDKXDcfQdjnF5vo.roa (raw, json) Hash identifier: p5fGMUK7hRzmC1gWrFuB/aW3upLQMZlcdSjSJk6KWc8= Subject key identifier: B8:D2:C8:C9:DE:D5:E0:75:37:A4:32:97:0D:C7:D0:76:39:C5:E6:FA Certificate issuer: /CN=656e407a6b99c0f052932cc777ff0de9b3a1974e Certificate serial: 019B7910483FA1FE73F2660172B3B04824E7 Authority key identifier: 65:6E:40:7A:6B:99:C0:F0:52:93:2C:C7:77:FF:0D:E9:B3:A1:97:4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZW5AemuZwPBSkyzHd_8N6bOhl04.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/5af6ba-cec9-414c-b766-c015a9d4f8ef/1/uNLIyd7V4HU3pDKXDcfQdjnF5vo.roa Signing time: Thu 01 Jan 2026 10:17:48 +0000 ROA not before: Thu 01 Jan 2026 10:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41847 IP address blocks: 185.187.56.0/22 maxlen: 24 2a0b:9780::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/5af6ba-cec9-414c-b766-c015a9d4f8ef/1/ZW5AemuZwPBSkyzHd_8N6bOhl04.crl rsync://rpki.ripe.net/repository/DEFAULT/84/5af6ba-cec9-414c-b766-c015a9d4f8ef/1/ZW5AemuZwPBSkyzHd_8N6bOhl04.mft rsync://rpki.ripe.net/repository/DEFAULT/ZW5AemuZwPBSkyzHd_8N6bOhl04.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 15:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:48:3f:a1:fe:73:f2:66:01:72:b3:b0:48:24:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=656e407a6b99c0f052932cc777ff0de9b3a1974e Validity Not Before: Jan 1 10:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b8d2c8c9ded5e07537a432970dc7d07639c5e6fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:af:e3:2c:29:1b:4c:78:be:2e:5c:b0:76:e4: 8b:11:20:58:e5:14:7b:99:5a:5b:75:17:e9:a4:b7: bb:a7:01:e2:f0:d4:be:d3:cb:af:05:80:85:c6:4c: 5a:a7:a9:08:66:84:f3:27:ab:52:4b:aa:e7:94:ac: b9:0e:67:c9:d6:ad:a6:cc:c7:bf:75:00:f0:2f:9b: fe:8b:6a:c9:5d:64:9d:96:ce:d8:cb:e1:33:0d:ee: de:0a:dc:b0:30:c9:4e:5d:0a:c0:84:7d:e5:fb:03: df:f1:49:ec:b5:4b:fe:48:85:48:87:44:07:53:70: a9:66:57:87:4d:07:f3:fe:f2:86:1a:7f:d7:89:8a: 51:fe:8d:98:33:51:d6:f2:c6:0e:a8:ad:64:97:4f: 69:33:a4:3f:4a:ae:f6:3c:ab:62:09:52:20:1f:99: 03:b2:d5:e0:33:89:51:3c:eb:67:a2:db:c2:c2:36: 04:cf:c2:c7:09:d4:d9:fd:05:15:4c:c4:f1:b8:3f: 5e:ff:9a:ce:34:d8:1e:23:ac:04:48:44:0c:b5:0e: 84:51:15:14:92:e0:f3:4b:55:0c:04:97:48:e0:2a: cc:db:e1:31:db:18:1a:a6:6f:b6:7d:1d:9f:78:cd: 58:f7:80:28:ff:2a:f4:6f:b5:f7:a6:c8:b7:34:30: 72:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:D2:C8:C9:DE:D5:E0:75:37:A4:32:97:0D:C7:D0:76:39:C5:E6:FA X509v3 Authority Key Identifier: keyid:65:6E:40:7A:6B:99:C0:F0:52:93:2C:C7:77:FF:0D:E9:B3:A1:97:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZW5AemuZwPBSkyzHd_8N6bOhl04.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5af6ba-cec9-414c-b766-c015a9d4f8ef/1/uNLIyd7V4HU3pDKXDcfQdjnF5vo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5af6ba-cec9-414c-b766-c015a9d4f8ef/1/ZW5AemuZwPBSkyzHd_8N6bOhl04.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.187.56.0/22 IPv6: 2a0b:9780::/29 Signature Algorithm: sha256WithRSAEncryption 00:d6:97:b8:bc:7a:46:ca:e0:60:48:1e:c8:67:ae:3d:a9:ed: 52:19:9d:5c:4d:c7:be:8b:f6:58:83:cb:d4:9a:4d:ea:dd:43: 99:99:58:d6:75:f1:2e:e8:12:89:c6:03:3d:c4:57:03:7f:12: fd:1c:fc:82:c5:eb:57:d9:ad:f6:dd:2b:83:d0:76:39:85:2b: 0e:10:4b:d7:17:c0:e2:43:80:88:1e:98:65:3e:a0:71:8a:f2: 27:29:91:1a:88:68:e0:3d:20:8a:1e:4b:ae:69:05:39:17:be: e5:36:f2:9d:77:e1:da:36:6c:09:ec:28:4d:cb:e2:31:34:3c: 31:f4:48:2d:df:e1:a4:5f:27:06:39:ef:64:b3:a4:1f:0c:59: 7a:8d:94:be:41:be:2b:d5:15:f6:70:be:86:05:1d:88:ab:1f: 51:d5:e3:08:31:53:d8:7f:21:3b:f8:b8:6b:af:5a:b8:3c:32: 84:19:b3:1a:73:c6:1c:e6:71:b8:d1:d2:e1:a1:01:95:bc:ba: fb:86:b7:44:84:8b:22:d4:ac:b7:e5:6d:22:0b:49:c7:d0:15: 1d:06:a3:cd:21:e0:55:cf:a3:0d:22:40:67:78:db:65:dd:c9: 76:0d:fe:16:13:64:e6:98:9f:72:37:7a:2e:f7:3c:e7:f0:8d: 06:f4:2b:c6 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EEg/of5z8mYBcrOwSCTnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1NmU0MDdhNmI5OWMwZjA1MjkzMmNjNzc3ZmYwZGU5YjNh MTk3NGUwHhcNMjYwMTAxMTAxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOGQyYzhjOWRlZDVlMDc1MzdhNDMyOTcwZGM3ZDA3NjM5YzVlNmZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqa/jLCkbTHi+LlywduSLESBY5RR7 mVpbdRfppLe7pwHi8NS+08uvBYCFxkxap6kIZoTzJ6tSS6rnlKy5DmfJ1q2mzMe/ dQDwL5v+i2rJXWSdls7Yy+EzDe7eCtywMMlOXQrAhH3l+wPf8UnstUv+SIVIh0QH U3CpZleHTQfz/vKGGn/XiYpR/o2YM1HW8sYOqK1kl09pM6Q/Sq72PKtiCVIgH5kD stXgM4lRPOtnotvCwjYEz8LHCdTZ/QUVTMTxuD9e/5rONNgeI6wESEQMtQ6EURUU kuDzS1UMBJdI4CrM2+Ex2xgapm+2fR2feM1Y94Ao/yr0b7X3psi3NDBy/wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLjSyMne1eB1N6Qylw3H0HY5xeb6MB8GA1UdIwQY MBaAFGVuQHprmcDwUpMsx3f/DemzoZdOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlc1QWVtdVp3UEJTa3l6SGRfOE42Yk9obDA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC81YWY2YmEtY2VjOS00MTRjLWI3NjYt YzAxNWE5ZDRmOGVmLzEvdU5MSXlkN1Y0SFUzcERLWERjZlFkam5GNXZvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC81YWY2YmEtY2VjOS00MTRjLWI3NjYtYzAxNWE5ZDRmOGVm LzEvWlc1QWVtdVp3UEJTa3l6SGRfOE42Yk9obDA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCubs4MA0E AgACMAcDBQMqC5eAMA0GCSqGSIb3DQEBCwUAA4IBAQAA1pe4vHpGyuBgSB7IZ649 qe1SGZ1cTce+i/ZYg8vUmk3q3UOZmVjWdfEu6BKJxgM9xFcDfxL9HPyCxetX2a32 3SuD0HY5hSsOEEvXF8DiQ4CIHphlPqBxivInKZEaiGjgPSCKHkuuaQU5F77lNvKd d+HaNmwJ7ChNy+IxNDwx9Egt3+GkXycGOe9ks6QfDFl6jZS+Qb4r1RX2cL6GBR2I qx9R1eMIMVPYfyE7+Lhrr1q4PDKEGbMac8Yc5nG40dLhoQGVvLr7hrdEhIsi1Ky3 5W0iC0nH0BUdBqPNIeBVz6MNIkBneNtl3cl2Df4WE2TmmJ9yN3ou9zzn8I0G9CvG -----END CERTIFICATE-----Generated at Tue Feb 3 00:04:51 2026 by rpki-client