This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/uXnONdRSkuStXOeU6S1Ejr856sQ.roa File: uXnONdRSkuStXOeU6S1Ejr856sQ.roa (raw, json) Hash identifier: iE8zay5vS1xIrwHdX8mvgBkDzerCAwpILZPlNKmU3E4= Subject key identifier: B9:79:CE:35:D4:52:92:E4:AD:5C:E7:94:E9:2D:44:8E:BF:39:EA:C4 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCBB31F20197D21A58A02553F2E9286 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/uXnONdRSkuStXOeU6S1Ejr856sQ.roa Signing time: Fri 02 Jan 2026 08:21:00 +0000 ROA not before: Fri 02 Jan 2026 08:21:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 400556 IP address blocks: 37.202.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:b3:1f:20:19:7d:21:a5:8a:02:55:3f:2e:92:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:21:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b979ce35d45292e4ad5ce794e92d448ebf39eac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:73:4c:21:3f:2c:32:2c:04:0a:15:30:1e:c6: c4:30:29:77:50:0a:75:45:fa:4b:67:7e:2c:3c:bd: 07:d6:d9:6c:8b:19:c4:63:fd:81:85:66:b3:21:ad: 94:da:73:3e:8e:96:a0:db:47:57:51:01:b7:ac:22: 74:ad:fd:91:fc:0f:a8:7c:05:48:0a:db:f0:dc:d7: e2:73:52:60:f0:ca:a9:05:43:b2:17:15:d8:49:08: 1c:bf:54:6e:1d:ed:0b:88:23:43:12:da:4b:d6:b4: c9:29:b5:56:3d:df:b8:88:76:2c:48:32:aa:eb:41: 77:b3:1d:81:4f:b2:a9:27:e5:b9:7d:e0:fd:61:f3: 32:9f:7b:29:60:05:a9:84:45:55:6a:ff:24:48:ea: 05:bd:d0:c1:4b:ad:82:06:78:94:68:6f:ce:87:ec: 2c:25:6b:25:59:83:8a:ff:5c:0e:03:9e:93:c5:3a: 88:b6:5c:4c:45:f5:99:66:dc:9d:5e:a2:a6:f2:7b: 69:18:b0:65:11:b7:6c:f7:62:2e:31:6a:db:ff:7f: ac:e5:27:48:2a:09:ce:87:bd:76:9d:d2:47:3d:d2: 47:5b:88:d0:29:1c:6e:34:31:8a:98:c6:c7:be:75: d7:92:87:92:a8:95:42:19:9b:44:2e:6c:6e:fe:b6: 6d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:79:CE:35:D4:52:92:E4:AD:5C:E7:94:E9:2D:44:8E:BF:39:EA:C4 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/uXnONdRSkuStXOeU6S1Ejr856sQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.202.199.0/24 Signature Algorithm: sha256WithRSAEncryption 67:e5:d5:2c:74:aa:db:97:cd:9d:de:c5:69:97:e2:a0:8d:40: 99:41:2a:50:2b:82:14:37:19:1e:be:97:57:b4:bb:f2:75:9b: 2a:f4:69:cf:19:1a:1d:6b:9c:99:6a:ee:5d:5a:34:31:ba:4b: 69:61:ea:a0:d0:d0:dd:dc:2d:9c:a7:67:7c:ad:7c:91:44:bb: 39:59:5b:e8:84:9f:b3:74:5d:20:b9:34:1c:b9:fb:51:09:e7: ba:b6:0a:b2:5d:42:7e:47:41:72:9b:03:df:83:92:82:e0:f8: 7f:5c:e0:4c:f8:5b:81:04:3e:c5:48:88:cf:8c:47:cd:c1:7e: f0:c0:d9:7d:3c:0f:84:91:b2:fa:4c:ac:b6:d3:b6:cc:df:0c: 55:1b:45:57:ec:1a:8c:18:2c:d8:04:a2:ea:d5:4d:b2:fb:7e: df:ae:9d:d6:19:23:4a:66:7d:22:c0:44:0a:2a:6d:4a:6d:3f: de:d4:cd:69:41:cd:de:c9:00:58:d7:93:53:4c:e3:6d:d1:35: 29:41:b5:57:31:47:1d:4e:8d:18:45:5c:24:e6:97:35:50:ba: ee:06:fb:25:0a:51:e5:3d:4a:8e:68:97:76:92:2b:d2:d8:a7: 70:84:67:05:27:9e:45:56:81:7a:12:2f:e0:d0:c8:7d:43:41: 4c:70:94:6d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y7MfIBl9IaWKAlU/LpKGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTc5Y2UzNWQ0NTI5MmU0YWQ1Y2U3OTRlOTJkNDQ4ZWJmMzllYWM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnNMIT8sMiwEChUwHsbEMCl3UAp1 RfpLZ34sPL0H1tlsixnEY/2BhWazIa2U2nM+jpag20dXUQG3rCJ0rf2R/A+ofAVI Ctvw3Nfic1Jg8MqpBUOyFxXYSQgcv1RuHe0LiCNDEtpL1rTJKbVWPd+4iHYsSDKq 60F3sx2BT7KpJ+W5feD9YfMyn3spYAWphEVVav8kSOoFvdDBS62CBniUaG/Oh+ws JWslWYOK/1wOA56TxTqItlxMRfWZZtydXqKm8ntpGLBlEbds92IuMWrb/3+s5SdI KgnOh712ndJHPdJHW4jQKRxuNDGKmMbHvnXXkoeSqJVCGZtELmxu/rZtkQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLl5zjXUUpLkrVznlOktRI6/OerEMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvdVhuT05kUlNrdVN0WE9lVTZTMUVqcjg1NnNRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJcrHMA0G CSqGSIb3DQEBCwUAA4IBAQBn5dUsdKrbl82d3sVpl+KgjUCZQSpQK4IUNxkevpdX tLvydZsq9GnPGRoda5yZau5dWjQxuktpYeqg0NDd3C2cp2d8rXyRRLs5WVvohJ+z dF0guTQcuftRCee6tgqyXUJ+R0FymwPfg5KC4Ph/XOBM+FuBBD7FSIjPjEfNwX7w wNl9PA+EkbL6TKy207bM3wxVG0VX7BqMGCzYBKLq1U2y+37frp3WGSNKZn0iwEQK Km1KbT/e1M1pQc3eyQBY15NTTONt0TUpQbVXMUcdTo0YRVwk5pc1ULruBvslClHl PUqOaJd2kivS2KdwhGcFJ55FVoF6Ei/g0Mh9Q0FMcJRt -----END CERTIFICATE-----Generated at Sun Jan 18 06:31:27 2026 by rpki-client