This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/e1b34a-f388-4ddd-92cd-e1c0a4d04917/1/uhXgdMnU2sK7rATt-_JTycGnweE.roa File: uhXgdMnU2sK7rATt-_JTycGnweE.roa (raw, json) Hash identifier: oOHRvsricrI0IDhV5HO6fjuBbrjUqImOQ3QUZQn7MEo= Subject key identifier: BA:15:E0:74:C9:D4:DA:C2:BB:AC:04:ED:FB:F2:53:C9:C1:A7:C1:E1 Certificate issuer: /CN=7ebb888f2b99de9972e2446eba058ab8e2cd7b3f Certificate serial: 019B78A27D8C50289862D03173EB364DCB40 Authority key identifier: 7E:BB:88:8F:2B:99:DE:99:72:E2:44:6E:BA:05:8A:B8:E2:CD:7B:3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fruIjyuZ3ply4kRuugWKuOLNez8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/e1b34a-f388-4ddd-92cd-e1c0a4d04917/1/uhXgdMnU2sK7rATt-_JTycGnweE.roa Signing time: Thu 01 Jan 2026 08:17:53 +0000 ROA not before: Thu 01 Jan 2026 08:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201032 IP address blocks: 185.77.89.0/24 maxlen: 24 2a05:60c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/e1b34a-f388-4ddd-92cd-e1c0a4d04917/1/fruIjyuZ3ply4kRuugWKuOLNez8.crl rsync://rpki.ripe.net/repository/DEFAULT/89/e1b34a-f388-4ddd-92cd-e1c0a4d04917/1/fruIjyuZ3ply4kRuugWKuOLNez8.mft rsync://rpki.ripe.net/repository/DEFAULT/fruIjyuZ3ply4kRuugWKuOLNez8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:7d:8c:50:28:98:62:d0:31:73:eb:36:4d:cb:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ebb888f2b99de9972e2446eba058ab8e2cd7b3f Validity Not Before: Jan 1 08:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba15e074c9d4dac2bbac04edfbf253c9c1a7c1e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:99:03:d2:42:78:58:79:84:da:99:5e:27:88: b8:63:5a:25:2a:3b:ef:e3:7b:ee:6b:5e:52:93:cb: ae:51:c7:bd:18:0e:4b:b4:ec:f6:00:5d:65:8f:02: 9d:1f:70:4c:8c:b6:e7:07:1d:66:5b:aa:45:8e:b4: 27:da:e1:ad:35:dd:59:64:b2:72:c4:db:fc:09:dd: b6:ef:65:14:6f:fe:28:08:c3:18:82:d4:16:f3:b0: a2:58:03:bb:b7:ad:09:c7:99:24:e6:39:39:73:ca: 1e:b6:09:ca:0e:6b:2d:5d:42:ee:66:2a:35:68:d3: b6:ef:e3:c1:5a:3d:7e:96:3f:f7:0f:af:42:b7:ae: ae:85:52:f5:64:d6:bd:d2:0d:44:0d:b5:19:e0:91: b0:6e:11:8f:a8:63:83:b1:98:70:34:ae:65:3d:29: 95:b5:b2:fd:58:17:01:a8:21:f3:4f:81:f8:0d:59: b0:67:4a:db:d7:f3:a3:43:e2:d5:4f:a2:15:6f:80: 46:a0:56:c0:a1:41:24:16:35:eb:cf:f3:06:90:ab: 9a:90:bf:cf:b0:0c:f0:ba:6a:94:29:7b:20:47:f0: 2a:69:f6:b9:08:b7:b1:48:61:7f:e7:88:3a:a7:8d: c2:42:af:75:5a:f9:57:17:48:f9:d3:85:7a:a2:c7: a6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:15:E0:74:C9:D4:DA:C2:BB:AC:04:ED:FB:F2:53:C9:C1:A7:C1:E1 X509v3 Authority Key Identifier: keyid:7E:BB:88:8F:2B:99:DE:99:72:E2:44:6E:BA:05:8A:B8:E2:CD:7B:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fruIjyuZ3ply4kRuugWKuOLNez8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/e1b34a-f388-4ddd-92cd-e1c0a4d04917/1/uhXgdMnU2sK7rATt-_JTycGnweE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/e1b34a-f388-4ddd-92cd-e1c0a4d04917/1/fruIjyuZ3ply4kRuugWKuOLNez8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.77.89.0/24 IPv6: 2a05:60c0:1::/48 Signature Algorithm: sha256WithRSAEncryption 00:e3:b1:4f:1e:99:42:f5:58:e7:8e:6d:90:93:ff:dc:19:ec: 87:ce:fe:30:96:f1:d7:45:65:b5:5e:5e:d0:1d:6d:70:85:47: bf:ae:31:f6:6d:2f:3b:1d:d1:89:6d:b0:06:bb:41:13:a8:92: 77:f9:b6:f2:4b:e8:e3:31:9f:17:e4:76:ca:a7:08:38:19:35: 27:71:02:78:70:1e:c7:c3:2e:85:1f:da:e3:ec:3e:d0:2a:69: 18:8f:81:b7:4e:30:05:47:b0:3f:11:cc:a4:d8:9a:72:c4:aa: 42:c7:f9:25:e2:37:b0:a8:09:eb:ec:75:f8:30:d5:82:4c:14: e2:c8:db:c6:ff:97:31:74:d8:61:70:78:b4:16:eb:54:91:bb: a4:bf:74:f8:8f:68:d2:2e:9a:b5:3e:d0:5f:36:a6:72:ae:84: 3b:0d:73:79:a7:fe:07:d8:f6:48:b0:60:29:ab:99:11:6f:56: 1c:e5:43:50:c8:a2:ff:4a:a7:5b:28:91:de:27:94:ef:e2:3d: 71:c6:b7:aa:f4:60:61:d9:e9:e6:69:f1:d0:72:4f:ac:b1:88: b9:1f:34:58:9f:ba:bf:ba:2c:67:10:03:ee:61:6e:86:81:ac: c6:c8:42:70:2b:73:73:56:58:c9:4e:3d:67:0c:88:d9:6e:55: dd:9d:d3:ec -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt4on2MUCiYYtAxc+s2TctAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlYmI4ODhmMmI5OWRlOTk3MmUyNDQ2ZWJhMDU4YWI4ZTJj ZDdiM2YwHhcNMjYwMTAxMDgxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTE1ZTA3NGM5ZDRkYWMyYmJhYzA0ZWRmYmYyNTNjOWMxYTdjMWUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA35kD0kJ4WHmE2pleJ4i4Y1olKjvv 43vua15Sk8uuUce9GA5LtOz2AF1ljwKdH3BMjLbnBx1mW6pFjrQn2uGtNd1ZZLJy xNv8Cd2272UUb/4oCMMYgtQW87CiWAO7t60Jx5kk5jk5c8oetgnKDmstXULuZio1 aNO27+PBWj1+lj/3D69Ct66uhVL1ZNa90g1EDbUZ4JGwbhGPqGODsZhwNK5lPSmV tbL9WBcBqCHzT4H4DVmwZ0rb1/OjQ+LVT6IVb4BGoFbAoUEkFjXrz/MGkKuakL/P sAzwumqUKXsgR/Aqafa5CLexSGF/54g6p43CQq91WvlXF0j504V6osemawIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFLoV4HTJ1NrCu6wE7fvyU8nBp8HhMB8GA1UdIwQY MBaAFH67iI8rmd6ZcuJEbroFirjizXs/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZnJ1SWp5dVozcGx5NGtSdXVnV0t1T0xOZXo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9lMWIzNGEtZjM4OC00ZGRkLTkyY2Qt ZTFjMGE0ZDA0OTE3LzEvdWhYZ2RNblUyc0s3ckFUdC1fSlR5Y0dud2VFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS9lMWIzNGEtZjM4OC00ZGRkLTkyY2QtZTFjMGE0ZDA0OTE3 LzEvZnJ1SWp5dVozcGx5NGtSdXVnV0t1T0xOZXo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuU1ZMA8E AgACMAkDBwAqBWDAAAEwDQYJKoZIhvcNAQELBQADggEBAADjsU8emUL1WOeObZCT /9wZ7IfO/jCW8ddFZbVeXtAdbXCFR7+uMfZtLzsd0YltsAa7QROoknf5tvJL6OMx nxfkdsqnCDgZNSdxAnhwHsfDLoUf2uPsPtAqaRiPgbdOMAVHsD8RzKTYmnLEqkLH +SXiN7CoCevsdfgw1YJMFOLI28b/lzF02GFweLQW61SRu6S/dPiPaNIumrU+0F82 pnKuhDsNc3mn/gfY9kiwYCmrmRFvVhzlQ1DIov9Kp1sokd4nlO/iPXHGt6r0YGHZ 6eZp8dByT6yxiLkfNFifur+6LGcQA+5hboaBrMbIQnArc3NWWMlOPWcMiNluVd2d 0+w= -----END CERTIFICATE-----Generated at Mon Jan 26 14:21:48 2026 by rpki-client