This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/Uu5AvhTDjVK-tI3TCvF77jLnNnQ.roa File: Uu5AvhTDjVK-tI3TCvF77jLnNnQ.roa (raw, json) Hash identifier: VfPKoupUWY1e6hAJD/3kEighR/WmA0s0CaYPBV13Zf8= Subject key identifier: 52:EE:40:BE:14:C3:8D:52:BE:B4:8D:D3:0A:F1:7B:EE:32:E7:36:74 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCB57A77B9F4A75EB85D21A7594758C Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/Uu5AvhTDjVK-tI3TCvF77jLnNnQ.roa Signing time: Fri 02 Jan 2026 08:20:36 +0000 ROA not before: Fri 02 Jan 2026 08:20:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 151336 IP address blocks: 151.241.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:57:a7:7b:9f:4a:75:eb:85:d2:1a:75:94:75:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52ee40be14c38d52beb48dd30af17bee32e73674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8a:12:40:4f:8b:24:a8:e5:5f:50:06:df:71: 45:04:36:b8:33:d7:aa:d7:1c:82:b5:ec:78:f7:e8: 5f:89:ec:7e:75:83:16:2d:76:c8:05:3e:91:6c:14: 7e:a1:fa:18:ee:fc:2e:10:4b:f8:da:ea:2e:ea:43: dd:c5:67:82:9a:ef:36:00:50:a9:7a:62:6f:99:1b: 11:67:db:6d:58:ae:40:c0:99:7c:86:4b:97:eb:2d: 81:55:82:30:a4:1b:d6:f1:54:8d:99:fd:c5:d2:6a: 71:87:bb:b6:50:45:a8:60:4a:a4:b6:2c:05:96:c9: 8a:be:a6:03:04:a2:7f:2f:ea:f1:0a:50:be:69:72: 08:89:3d:9f:e8:7a:7c:2e:fd:9b:2c:14:d4:ec:32: 14:41:1e:5c:0b:f5:9c:7b:3e:4c:fa:89:4e:bb:da: 8d:6c:46:26:63:f6:78:df:a2:af:59:ef:09:98:62: 53:fb:1b:49:ca:56:84:57:46:c3:24:21:d3:10:17: 54:2a:3f:36:bb:02:77:80:6b:0e:63:c4:c3:48:ed: cf:d9:12:a9:50:33:50:38:20:a7:15:57:65:17:65: 0e:dc:2c:c4:29:04:56:c8:b1:5f:38:24:77:46:c6: 86:6c:41:fe:e8:b8:79:71:72:d1:9c:33:fd:8a:54: 56:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:EE:40:BE:14:C3:8D:52:BE:B4:8D:D3:0A:F1:7B:EE:32:E7:36:74 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/Uu5AvhTDjVK-tI3TCvF77jLnNnQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.241.28.0/24 Signature Algorithm: sha256WithRSAEncryption 70:7e:d7:07:b2:6a:d2:9b:6d:c4:92:b4:8c:86:ef:fd:74:3e: b9:54:1f:d0:eb:da:8e:d8:e8:d7:64:d1:ee:48:7e:79:31:f1: 73:93:76:f6:e8:55:83:e2:2a:65:7f:26:7c:f5:4b:57:c7:a2: dc:eb:61:44:65:d8:0b:2b:89:b6:8f:c7:00:6c:14:27:6c:f1: 7b:a9:32:e6:26:cc:9b:49:d9:e4:93:98:d0:df:09:86:d8:d0: da:5a:aa:36:f8:cb:a6:22:44:f3:cf:c1:ca:9b:20:34:9b:05: 48:44:f1:9b:7b:ce:05:be:8e:e4:f1:a8:5b:26:26:19:1d:a9: 99:4d:de:1a:fd:cd:80:f4:a2:10:8e:87:ca:4f:c2:78:96:88: 0d:c5:c2:0a:33:f5:97:7f:f8:53:a2:c9:74:98:fe:7c:a1:aa: 41:88:02:ee:d4:1f:ab:c9:68:56:c9:c6:28:a7:4a:51:dd:ca: 74:e2:3f:67:71:a0:d6:df:50:bb:59:41:4a:04:d6:c7:89:fa: fa:a2:34:2d:9f:97:2b:d2:99:34:31:9d:cd:cd:b2:99:ca:3f: 72:45:0d:5d:92:18:6d:ac:b3:22:11:7f:cb:8b:8f:df:e8:29: a3:13:d2:5c:81:a3:ad:0c:57:2e:75:d4:b9:90:58:c5:2b:20: 28:cf:5c:4c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y1ene59KdeuF0hp1lHWMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MmVlNDBiZTE0YzM4ZDUyYmViNDhkZDMwYWYxN2JlZTMyZTczNjc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4oSQE+LJKjlX1AG33FFBDa4M9eq 1xyCtex49+hfiex+dYMWLXbIBT6RbBR+ofoY7vwuEEv42uou6kPdxWeCmu82AFCp emJvmRsRZ9ttWK5AwJl8hkuX6y2BVYIwpBvW8VSNmf3F0mpxh7u2UEWoYEqktiwF lsmKvqYDBKJ/L+rxClC+aXIIiT2f6Hp8Lv2bLBTU7DIUQR5cC/Wcez5M+olOu9qN bEYmY/Z436KvWe8JmGJT+xtJylaEV0bDJCHTEBdUKj82uwJ3gGsOY8TDSO3P2RKp UDNQOCCnFVdlF2UO3CzEKQRWyLFfOCR3RsaGbEH+6Lh5cXLRnDP9ilRWXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFLuQL4Uw41SvrSN0wrxe+4y5zZ0MB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvVXU1QXZoVERqVkstdEkzVEN2Rjc3akxuTm5RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/EcMA0G CSqGSIb3DQEBCwUAA4IBAQBwftcHsmrSm23EkrSMhu/9dD65VB/Q69qO2OjXZNHu SH55MfFzk3b26FWD4iplfyZ89UtXx6Lc62FEZdgLK4m2j8cAbBQnbPF7qTLmJsyb Sdnkk5jQ3wmG2NDaWqo2+MumIkTzz8HKmyA0mwVIRPGbe84Fvo7k8ahbJiYZHamZ Td4a/c2A9KIQjofKT8J4logNxcIKM/WXf/hTosl0mP58oapBiALu1B+ryWhWycYo p0pR3cp04j9ncaDW31C7WUFKBNbHifr6ojQtn5cr0pk0MZ3NzbKZyj9yRQ1dkhht rLMiEX/Li4/f6CmjE9JcgaOtDFcuddS5kFjFKyAoz1xM -----END CERTIFICATE-----Generated at Sun Jan 18 06:30:31 2026 by rpki-client