This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/UGZ3vMnUVhnMHprA-js3vspKmwo.roa File: UGZ3vMnUVhnMHprA-js3vspKmwo.roa (raw, json) Hash identifier: n4uZoakF4GvbWWZaqJL1srzglcS0eKby+fyHBjJ5GXk= Subject key identifier: 50:66:77:BC:C9:D4:56:19:CC:1E:9A:C0:FA:3B:37:BE:CA:4A:9B:0A Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1 Certificate serial: 019B7E380B11EC76380458150554AFCBEAE0 Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/UGZ3vMnUVhnMHprA-js3vspKmwo.roa Signing time: Fri 02 Jan 2026 10:19:20 +0000 ROA not before: Fri 02 Jan 2026 10:19:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 63023 IP address blocks: 109.172.80.0/22 maxlen: 22 178.130.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.mft rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:0b:11:ec:76:38:04:58:15:05:54:af:cb:ea:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1 Validity Not Before: Jan 2 10:19:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=506677bcc9d45619cc1e9ac0fa3b37beca4a9b0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:dd:8d:56:54:29:df:7f:e8:3a:d3:5b:6a:a0: 5a:8c:d5:89:80:e3:0a:89:60:0e:ac:8d:4a:43:4a: 6c:d1:af:c6:71:21:bd:b2:a7:77:99:6d:e3:da:63: 13:19:2b:45:c6:c5:b6:1e:2b:fe:ee:09:e0:4f:87: b6:ee:6c:71:89:16:ff:9f:e3:5b:f6:bb:ca:0d:7b: 22:9a:1d:d5:16:a0:27:88:fa:de:d7:6e:b3:79:15: 7b:5b:4e:15:20:16:ad:4d:95:85:67:95:72:1d:a7: 42:dd:e9:40:17:08:bb:c8:85:95:40:2a:c9:30:fd: 2f:0a:d2:cf:b4:db:65:a5:3c:87:8f:65:62:23:53: f1:a7:6b:f1:42:3d:b5:6c:e4:6c:53:18:72:9a:80: 5e:69:ee:54:a9:db:6d:a7:28:f5:b7:51:98:65:ba: e0:ce:a1:36:f3:c7:11:b9:c5:44:77:4b:83:63:72: 26:88:ff:8c:a7:ad:dd:33:0a:4d:bb:a6:36:46:7a: a8:f2:5e:e9:e6:31:7a:c1:64:6c:2e:e3:90:b3:8a: dc:0f:02:f6:5c:12:5d:95:4b:f4:fb:0a:5e:51:2f: 05:f5:fe:f6:6a:2c:7d:ec:d2:22:75:1e:47:26:37: 91:ce:e6:76:ad:c5:17:b1:aa:b7:7d:fd:df:19:27: 41:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:66:77:BC:C9:D4:56:19:CC:1E:9A:C0:FA:3B:37:BE:CA:4A:9B:0A X509v3 Authority Key Identifier: keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/UGZ3vMnUVhnMHprA-js3vspKmwo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.172.80.0/22 178.130.132.0/22 Signature Algorithm: sha256WithRSAEncryption a3:53:15:1d:28:e7:59:ad:3d:12:e6:e4:28:51:39:29:67:18: a2:34:47:59:16:da:4a:49:10:7d:7b:90:eb:c5:d0:9d:4b:7e: e6:6b:c9:8a:eb:88:c7:2c:e9:31:6c:94:4b:34:6c:ff:1d:5f: 7f:f2:cd:76:2b:9b:dc:8a:5a:b4:27:83:9a:7d:b7:20:74:05: 19:b2:c9:68:51:17:29:da:30:fe:e4:34:fe:24:3e:79:e4:4d: 23:a7:66:df:5a:ed:8d:5f:57:21:3c:96:a5:2b:e6:5f:0f:5a: 41:24:94:10:23:b9:e6:7f:37:a3:79:5e:d0:5b:d6:96:d6:87: 9e:dd:21:d3:ca:8b:e5:8f:7b:62:18:ba:ee:f8:b3:e9:a4:b2: ff:8a:41:3c:3b:8f:87:df:27:76:81:00:68:78:0a:dc:89:f6: 9d:17:b1:ec:64:d1:bf:db:9b:ca:38:1a:20:c5:11:c7:a3:9a: 7a:35:98:77:90:82:d0:85:a8:81:2f:ce:d3:9e:68:ff:0d:c9: 36:5a:d0:a6:90:83:5b:aa:e9:23:bb:8d:4d:58:c7:8c:b0:e6: ff:df:2e:55:5c:5c:bd:a1:44:68:48:f5:62:f2:ac:14:20:07: 75:ea:ad:3f:6a:b0:74:1a:75:78:2a:8a:db:96:14:d0:55:08: f3:bb:e8:e8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+OAsR7HY4BFgVBVSvy+rgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0NTllYzJhNWZkNTM5MDljNTIzOWY0Y2M4ZDZkMzI5YTI3 NzliYjEwHhcNMjYwMTAyMTAxOTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MDY2NzdiY2M5ZDQ1NjE5Y2MxZTlhYzBmYTNiMzdiZWNhNGE5YjBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8N2NVlQp33/oOtNbaqBajNWJgOMK iWAOrI1KQ0ps0a/GcSG9sqd3mW3j2mMTGStFxsW2Hiv+7gngT4e27mxxiRb/n+Nb 9rvKDXsimh3VFqAniPre126zeRV7W04VIBatTZWFZ5VyHadC3elAFwi7yIWVQCrJ MP0vCtLPtNtlpTyHj2ViI1Pxp2vxQj21bORsUxhymoBeae5Uqdttpyj1t1GYZbrg zqE288cRucVEd0uDY3ImiP+Mp63dMwpNu6Y2Rnqo8l7p5jF6wWRsLuOQs4rcDwL2 XBJdlUv0+wpeUS8F9f72aix97NIidR5HJjeRzuZ2rcUXsaq3ff3fGSdBOwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFBmd7zJ1FYZzB6awPo7N77KSpsKMB8GA1UdIwQY MBaAFERZ7Cpf1TkJxSOfTMjW0ymid5uxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTkt NmI0MzcyNjAyMDk2LzEvVUdaM3ZNblVWaG5NSHByQS1qczN2c3BLbXdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTktNmI0MzcyNjAyMDk2 LzEvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCbaxQAwQC soKEMA0GCSqGSIb3DQEBCwUAA4IBAQCjUxUdKOdZrT0S5uQoUTkpZxiiNEdZFtpK SRB9e5DrxdCdS37ma8mK64jHLOkxbJRLNGz/HV9/8s12K5vcilq0J4OafbcgdAUZ ssloURcp2jD+5DT+JD555E0jp2bfWu2NX1chPJalK+ZfD1pBJJQQI7nmfzejeV7Q W9aW1oee3SHTyovlj3tiGLru+LPppLL/ikE8O4+H3yd2gQBoeArcifadF7HsZNG/ 25vKOBogxRHHo5p6NZh3kILQhaiBL87Tnmj/Dck2WtCmkINbqukju41NWMeMsOb/ 3y5VXFy9oURoSPVi8qwUIAd16q0/arB0GnV4KorblhTQVQjzu+jo -----END CERTIFICATE-----Generated at Mon Jan 19 18:03:43 2026 by rpki-client