This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/9c5359-3452-42f3-880b-82d9a9eb430c/1/UQMWeuGBzStaoNEBdqaD6Sfu2QU.roa File: UQMWeuGBzStaoNEBdqaD6Sfu2QU.roa (raw, json) Hash identifier: A3XBOP0i9HHKEaAgIMvo0xkJ9BA3b3wJo3xMjrp7ITM= Subject key identifier: 51:03:16:7A:E1:81:CD:2B:5A:A0:D1:01:76:A6:83:E9:27:EE:D9:05 Certificate issuer: /CN=7ed500164f0738135b9aec04e38fc24cb90e0f5f Certificate serial: 019B7834FD8DC520603F09E7EF297C801996 Authority key identifier: 7E:D5:00:16:4F:07:38:13:5B:9A:EC:04:E3:8F:C2:4C:B9:0E:0F:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ftUAFk8HOBNbmuwE44_CTLkOD18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/9c5359-3452-42f3-880b-82d9a9eb430c/1/UQMWeuGBzStaoNEBdqaD6Sfu2QU.roa Signing time: Thu 01 Jan 2026 06:18:17 +0000 ROA not before: Thu 01 Jan 2026 06:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204279 IP address blocks: 153.94.16.0/20 maxlen: 24 178.249.192.0/21 maxlen: 24 178.249.192.0/23 maxlen: 24 178.249.194.0/23 maxlen: 24 185.108.248.0/22 maxlen: 24 185.108.249.0/24 maxlen: 24 185.108.250.0/24 maxlen: 24 2a01:a4a0::/32 maxlen: 32 2a06:4940::/29 maxlen: 29 2a06:4942::/41 maxlen: 41 2a06:4942:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/9c5359-3452-42f3-880b-82d9a9eb430c/1/ftUAFk8HOBNbmuwE44_CTLkOD18.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/9c5359-3452-42f3-880b-82d9a9eb430c/1/ftUAFk8HOBNbmuwE44_CTLkOD18.mft rsync://rpki.ripe.net/repository/DEFAULT/ftUAFk8HOBNbmuwE44_CTLkOD18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:fd:8d:c5:20:60:3f:09:e7:ef:29:7c:80:19:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ed500164f0738135b9aec04e38fc24cb90e0f5f Validity Not Before: Jan 1 06:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5103167ae181cd2b5aa0d10176a683e927eed905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:53:f8:f7:63:4a:4e:f9:b5:39:6a:73:44:2b: fa:c7:84:5a:18:2c:4d:49:d7:b3:76:57:20:2f:2b: 61:9d:7d:4d:22:1a:96:e7:50:d4:31:db:a3:7e:78: 1c:5f:f9:9d:67:4b:e4:4e:b0:82:f3:49:88:0c:7d: 7c:f8:e4:ac:a8:ed:cb:8f:dd:c1:81:64:74:5f:61: f2:20:d6:07:b1:c3:69:29:4a:73:0c:ce:4c:ff:6c: 79:fc:aa:23:63:4c:ef:62:86:ea:4a:b9:67:5f:fc: 1e:39:40:86:ea:67:c7:b1:ae:b9:45:ce:af:fb:3a: 36:cc:b1:b9:e5:2f:8c:15:96:a9:fe:b6:72:08:31: f8:7b:58:f4:d9:a0:3a:ce:14:fc:e0:6a:50:1d:a2: b3:f8:e6:fe:85:46:2c:15:41:66:a8:01:d8:f6:7b: 83:04:c3:7f:69:17:e9:2c:40:8d:44:23:f5:b2:0c: 19:23:46:23:18:91:03:e3:76:49:88:a3:08:02:20: c5:be:03:bc:26:fd:e4:f7:ca:f8:c8:59:b7:19:c5: 1a:5d:41:df:3e:a6:ba:ac:60:78:27:f0:75:92:6f: 6e:b0:7e:b0:f6:d1:a3:7c:ec:7a:6b:7d:29:08:f0: 96:ea:27:a9:40:ee:ce:10:96:f9:8e:24:d0:e4:56: ff:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:03:16:7A:E1:81:CD:2B:5A:A0:D1:01:76:A6:83:E9:27:EE:D9:05 X509v3 Authority Key Identifier: keyid:7E:D5:00:16:4F:07:38:13:5B:9A:EC:04:E3:8F:C2:4C:B9:0E:0F:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ftUAFk8HOBNbmuwE44_CTLkOD18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/9c5359-3452-42f3-880b-82d9a9eb430c/1/UQMWeuGBzStaoNEBdqaD6Sfu2QU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/9c5359-3452-42f3-880b-82d9a9eb430c/1/ftUAFk8HOBNbmuwE44_CTLkOD18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 153.94.16.0/20 178.249.192.0/21 185.108.248.0/22 IPv6: 2a01:a4a0::/32 2a06:4940::/29 Signature Algorithm: sha256WithRSAEncryption 41:32:b4:26:cd:0e:8e:a6:fe:93:0d:ba:c5:58:5b:a7:f9:b9: a5:b9:d7:c3:27:58:2e:7e:5e:35:26:8e:09:7e:d5:28:fb:07: 09:72:cd:aa:2f:06:6b:ca:6c:05:4f:1b:e7:18:89:cb:de:07: 77:94:b9:3a:d3:02:d4:f1:ec:ff:a2:bb:31:2d:f1:f6:c6:c1: 49:13:78:b4:39:02:55:06:12:7f:32:8d:9d:ca:80:e3:17:6b: 45:34:81:45:be:f9:f3:82:67:b7:9e:59:00:14:30:0a:07:4c: 2f:89:c0:75:04:53:76:18:ad:c3:c3:97:27:b0:1b:f8:82:a6: e5:ef:97:cb:d4:8a:f1:8c:22:bd:55:76:7f:5a:f2:a8:b9:bb: 0b:88:a0:0e:5b:53:7f:85:f0:59:3e:6b:53:00:b8:49:86:dc: fb:6d:57:ad:89:a8:e3:03:cd:f0:d3:8c:43:6b:77:6c:ff:75: 1e:9f:a8:6d:6c:e2:d4:54:6d:d0:40:bc:27:32:68:8b:4b:7b: 41:20:7d:94:64:ed:44:59:8d:03:7c:ae:2c:9f:17:25:a4:8f: 81:28:bf:93:b6:93:3e:18:cc:82:d3:99:72:b2:e5:32:16:91: 30:f7:d5:a8:4a:6b:81:fe:15:ff:e9:9c:e6:42:f9:2b:17:27: 2a:fb:ed:3c -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt4NP2NxSBgPwnn7yl8gBmWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlZDUwMDE2NGYwNzM4MTM1YjlhZWMwNGUzOGZjMjRjYjkw ZTBmNWYwHhcNMjYwMTAxMDYxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MTAzMTY3YWUxODFjZDJiNWFhMGQxMDE3NmE2ODNlOTI3ZWVkOTA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAplP492NKTvm1OWpzRCv6x4RaGCxN SdezdlcgLythnX1NIhqW51DUMdujfngcX/mdZ0vkTrCC80mIDH18+OSsqO3Lj93B gWR0X2HyINYHscNpKUpzDM5M/2x5/KojY0zvYobqSrlnX/weOUCG6mfHsa65Rc6v +zo2zLG55S+MFZap/rZyCDH4e1j02aA6zhT84GpQHaKz+Ob+hUYsFUFmqAHY9nuD BMN/aRfpLECNRCP1sgwZI0YjGJED43ZJiKMIAiDFvgO8Jv3k98r4yFm3GcUaXUHf Pqa6rGB4J/B1km9usH6w9tGjfOx6a30pCPCW6iepQO7OEJb5jiTQ5Fb/EwIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFFEDFnrhgc0rWqDRAXamg+kn7tkFMB8GA1UdIwQY MBaAFH7VABZPBzgTW5rsBOOPwky5Dg9fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZnRVQUZrOEhPQk5ibXV3RTQ0X0NUTGtPRDE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC85YzUzNTktMzQ1Mi00MmYzLTg4MGIt ODJkOWE5ZWI0MzBjLzEvVVFNV2V1R0J6U3Rhb05FQmRxYUQ2U2Z1MlFVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC85YzUzNTktMzQ1Mi00MmYzLTg4MGItODJkOWE5ZWI0MzBj LzEvZnRVQUZrOEhPQk5ibXV3RTQ0X0NUTGtPRDE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAYBAIAATASAwQEmV4QAwQD svnAAwQCuWz4MBQEAgACMA4DBQAqAaSgAwUDKgZJQDANBgkqhkiG9w0BAQsFAAOC AQEAQTK0Js0Ojqb+kw26xVhbp/m5pbnXwydYLn5eNSaOCX7VKPsHCXLNqi8Ga8ps BU8b5xiJy94Hd5S5OtMC1PHs/6K7MS3x9sbBSRN4tDkCVQYSfzKNncqA4xdrRTSB Rb7584Jnt55ZABQwCgdML4nAdQRTdhitw8OXJ7Ab+IKm5e+Xy9SK8YwivVV2f1ry qLm7C4igDltTf4XwWT5rUwC4SYbc+21XrYmo4wPN8NOMQ2t3bP91Hp+obWzi1FRt 0EC8JzJoi0t7QSB9lGTtRFmNA3yuLJ8XJaSPgSi/k7aTPhjMgtOZcrLlMhaRMPfV qEprgf4V/+mc5kL5KxcnKvvtPA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:29:49 2026 by rpki-client