This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/2-UV01cri_Tkt9HMwAGr0YMiDm8.roa File: 2-UV01cri_Tkt9HMwAGr0YMiDm8.roa (raw, json) Hash identifier: 8lzBTeMFFC/QQWlByg2v3O+jJJl7BJzIJjLCUHEcGPg= Subject key identifier: DB:E5:15:D3:57:2B:8B:F4:E4:B7:D1:CC:C0:01:AB:D1:83:22:0E:6F Certificate issuer: /CN=a2088e06d553cff293d277f4d76c3a710bd8b2f7 Certificate serial: 019B77C702FE6CEA453EE81E23A097414153 Authority key identifier: A2:08:8E:06:D5:53:CF:F2:93:D2:77:F4:D7:6C:3A:71:0B:D8:B2:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/2-UV01cri_Tkt9HMwAGr0YMiDm8.roa Signing time: Thu 01 Jan 2026 04:18:09 +0000 ROA not before: Thu 01 Jan 2026 04:18:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3320 IP address blocks: 85.204.181.0/24 maxlen: 24 86.105.58.0/24 maxlen: 24 86.105.211.0/24 maxlen: 24 86.107.164.0/24 maxlen: 24 89.39.97.0/24 maxlen: 24 93.113.70.0/24 maxlen: 24 93.119.144.0/24 maxlen: 24 93.119.201.0/24 maxlen: 24 93.119.232.0/24 maxlen: 24 188.208.124.0/24 maxlen: 24 188.214.136.0/24 maxlen: 24 188.214.137.0/24 maxlen: 24 188.214.138.0/24 maxlen: 24 188.214.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/ogiOBtVTz_KT0nf012w6cQvYsvc.crl rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/ogiOBtVTz_KT0nf012w6cQvYsvc.mft rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 05:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:02:fe:6c:ea:45:3e:e8:1e:23:a0:97:41:41:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2088e06d553cff293d277f4d76c3a710bd8b2f7 Validity Not Before: Jan 1 04:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dbe515d3572b8bf4e4b7d1ccc001abd183220e6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2a:72:09:a2:38:e7:95:8d:a6:f9:48:08:da: 9b:16:86:09:4d:5d:0f:23:a7:ca:4a:c6:0f:9c:6a: a5:30:35:a3:2a:20:a4:5b:b4:d9:fe:0d:dc:9d:90: 7f:70:3b:08:f5:01:ca:8f:3f:3a:b6:f1:3f:5d:d7: 52:e2:d1:13:c3:f5:3d:35:4c:7c:2e:98:95:ab:dd: e5:ce:41:d9:bb:e3:44:79:d2:c0:13:a1:82:f1:f8: 82:0a:bd:8c:7b:da:9c:a4:f2:87:f1:ac:09:41:79: 09:2b:72:57:d0:4b:c6:66:74:5d:53:20:5c:ad:a1: 21:53:a5:2d:23:d2:2e:ea:e2:d5:1c:bd:5d:5a:a4: 5b:fd:9e:e1:e8:b7:88:2f:c8:10:9f:9a:af:5e:b5: b3:e6:8a:9d:5b:a2:83:98:54:ff:98:3a:7c:a3:43: 4a:89:70:08:55:8c:e0:c0:4a:a3:59:fd:11:26:e2: e0:f4:27:b9:f8:98:c2:7f:74:df:1e:63:35:67:b8: 5b:e8:b7:2d:ae:bc:81:e6:de:f7:32:0a:34:fa:e3: 71:76:07:ec:97:1f:8c:3b:57:97:0e:1a:dc:b6:ed: 9f:35:01:36:4d:88:1a:3e:0e:94:f6:86:8e:96:40: 59:fc:d0:7f:c6:cd:36:20:6e:21:4b:6c:6e:22:a9: ea:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E5:15:D3:57:2B:8B:F4:E4:B7:D1:CC:C0:01:AB:D1:83:22:0E:6F X509v3 Authority Key Identifier: keyid:A2:08:8E:06:D5:53:CF:F2:93:D2:77:F4:D7:6C:3A:71:0B:D8:B2:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/2-UV01cri_Tkt9HMwAGr0YMiDm8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/ogiOBtVTz_KT0nf012w6cQvYsvc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.204.181.0/24 86.105.58.0/24 86.105.211.0/24 86.107.164.0/24 89.39.97.0/24 93.113.70.0/24 93.119.144.0/24 93.119.201.0/24 93.119.232.0/24 188.208.124.0/24 188.214.136.0/22 Signature Algorithm: sha256WithRSAEncryption 65:5c:38:76:8a:37:1d:51:01:58:8d:f3:85:6e:54:18:33:da: e9:71:0c:37:ba:10:7e:25:ba:64:39:1a:ca:41:ba:6d:76:b0: 73:ff:d9:60:50:34:ca:78:bf:e1:ab:af:c7:2b:a9:1e:8e:f3: e2:b2:0b:f9:6e:eb:01:e2:ef:e3:65:87:88:b0:3e:30:21:24: 54:42:6d:94:88:6d:4c:f9:e2:c6:95:f1:cb:af:86:fc:55:c5: bc:9a:fe:84:31:44:2a:34:61:e1:15:dd:5e:c9:47:7c:85:8e: da:16:4a:5c:0a:59:3a:49:f3:5e:47:34:59:e0:ac:96:52:df: e3:d8:59:18:2f:ca:6e:77:04:d4:af:bd:b1:1e:27:bc:ea:0f: 74:ab:ec:12:cb:e9:28:a4:d5:75:88:ad:84:1b:0e:74:f9:11: 5c:52:89:6c:d3:0e:d8:d1:5e:fc:af:e0:8e:4b:4d:31:8e:f1: 36:0d:05:01:0e:9b:eb:fe:64:ef:3a:16:70:3d:c7:9d:ce:86: d6:29:95:97:d6:47:d0:8f:f2:aa:00:b6:9d:34:2c:57:6c:18: ba:66:1b:d8:cb:15:e2:af:51:45:0c:64:e6:e0:a6:c7:c0:95: 7e:5b:13:ba:9b:1d:22:c3:73:85:28:e3:fb:8d:74:07:40:0c: 87:ad:e3:74 -----BEGIN CERTIFICATE----- MIIFOTCCBCGgAwIBAgISAZt3xwL+bOpFPugeI6CXQUFTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyMDg4ZTA2ZDU1M2NmZjI5M2QyNzdmNGQ3NmMzYTcxMGJk OGIyZjcwHhcNMjYwMTAxMDQxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYmU1MTVkMzU3MmI4YmY0ZTRiN2QxY2NjMDAxYWJkMTgzMjIwZTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwipyCaI455WNpvlICNqbFoYJTV0P I6fKSsYPnGqlMDWjKiCkW7TZ/g3cnZB/cDsI9QHKjz86tvE/XddS4tETw/U9NUx8 LpiVq93lzkHZu+NEedLAE6GC8fiCCr2Me9qcpPKH8awJQXkJK3JX0EvGZnRdUyBc raEhU6UtI9Iu6uLVHL1dWqRb/Z7h6LeIL8gQn5qvXrWz5oqdW6KDmFT/mDp8o0NK iXAIVYzgwEqjWf0RJuLg9Ce5+JjCf3TfHmM1Z7hb6LctrryB5t73Mgo0+uNxdgfs lx+MO1eXDhrctu2fNQE2TYgaPg6U9oaOlkBZ/NB/xs02IG4hS2xuIqnqvQIDAQAB o4ICRTCCAkEwHQYDVR0OBBYEFNvlFdNXK4v05LfRzMABq9GDIg5vMB8GA1UdIwQY MBaAFKIIjgbVU8/yk9J39NdsOnEL2LL3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2dpT0J0VlR6X0tUMG5mMDEydzZjUXZZc3ZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9iNDVkNzktYTRkNy00NDYwLWJmZTct YmJlYTI5MThlMTAyLzEvMi1VVjAxY3JpX1RrdDlITXdBR3IwWU1pRG04LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS9iNDVkNzktYTRkNy00NDYwLWJmZTctYmJlYTI5MThlMTAy LzEvb2dpT0J0VlR6X0tUMG5mMDEydzZjUXZZc3ZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFsGCCsGAQUFBwEHAQH/BEwwSjBIBAIAATBCAwQAVcy1AwQA Vmk6AwQAVmnTAwQAVmukAwQAWSdhAwQAXXFGAwQAXXeQAwQAXXfJAwQAXXfoAwQA vNB8AwQCvNaIMA0GCSqGSIb3DQEBCwUAA4IBAQBlXDh2ijcdUQFYjfOFblQYM9rp cQw3uhB+JbpkORrKQbptdrBz/9lgUDTKeL/hq6/HK6kejvPisgv5busB4u/jZYeI sD4wISRUQm2UiG1M+eLGlfHLr4b8VcW8mv6EMUQqNGHhFd1eyUd8hY7aFkpcClk6 SfNeRzRZ4KyWUt/j2FkYL8pudwTUr72xHie86g90q+wSy+kopNV1iK2EGw50+RFc Uols0w7Y0V78r+COS00xjvE2DQUBDpvr/mTvOhZwPcedzobWKZWX1kfQj/KqALad NCxXbBi6ZhvYyxXir1FFDGTm4KbHwJV+WxO6mx0iw3OFKOP7jXQHQAyHreN0 -----END CERTIFICATE-----Generated at Mon Jan 19 11:49:48 2026 by rpki-client